In fact, information security spending will grow a further 8.2 per cent in 2015 to reach $76.9bn ( £46.36bn) in 2015, according to the latest forecast from Gartner.
Gartner research director Lawrence Pingree explains that the biggest trend that emerged in 2013 was the democratisation of security threats, driven by the easy availability of malicious software (malware) and infrastructure (via the underground economy) that can be used to launch advanced targeted attacks.
This has led to increased awareness among organisations that would have traditionally treated security as an IT function and a cost centre,” said Pingree.
Regulatory pressure is also set to increase in Western Europe and Asia/Pacific. Indeed, regulatory compliance has been a major factor driving spending on security in the last three years. Examples of intensifying regulatory pressure driving spending on compliance include the issue of guidelines regarding personal information protection in China in February 2013 (although they are not legally binding) and planned implementation of an addition to the EU Data Protection Directive.
And by 2018, more than half of organisations will use security service firms that specialise in data protection, security risk management and security infrastructure management in order to address regulatory compliance demands and enhance their security postures. This will be in part due to the fact that many organisations continue to lack the appropriate skills necessary to define, implement and operate appropriate levels of data protection and privacy-specific security controls.
Furthermore, a significant portion of organisations are shifting existing resources away from the operational aspects of security technologies, such as security device administration and monitoring, toward mitigation and incident response. This new dynamic has given rise to significant growth throughout the globe for managed security services.
More importantly, mobile security will be a higher priority for consumers from 2017 onward. Most consumers do not recognise that antivirus is important on mobile devices and therefore have not yet established a consistent practice of buying mobile device endpoint protection software. This purchasing trend and market shift away from PCs will have significant repercussions on the consumer security market – until 2017 that is.