ESG Research Report: Security Management Matures

List of Figures

List of Tables

Executive Summary

Introduction

Market Overview

Project Objective

Summary of Key Findings

Research Methodology

Quantitative Research

The Changing Nature of Security Management

Who is Making Security Management Decisions?

Security Management and Compliance are Driving Increased Collaboration

IT Governance and Processes

Security Management Technology

Security Management Integration Lags Behind

Users are Leaning Toward More Security Management Technology Integration

Security Information Management (SIM)

SIM: Doing More with the Data

SIM Data and Archival

The Many Faces of SIM

SIM is Good, but it’s Not Perfect

SIM Purchases Come From an IT Budget

Many SIM Laggards Plan to Adopt the Technology

Security Dominates SIM Planning

A Tale of Two SIMs

IT Action Items

Vendor Action Items

Respondent Demographics

Respondents by Job Responsibility

Respondents by Number of Employees

Respondents by Industry

Respondents by Annual Revenue

Respondents by Annual Security Budget

Respondents by Compliance Obligations

Also Available From ESG Research:

List of Figures

Figure 1. Factors Influencing Security Management

Figure 2. Security Management Roles

Figure 3. “C-Level” Compliance, Privacy, Risk and Security Executives

Figure 4. Significant Collaboration Between Security and IT Operations Groups

Figure 5. Significant Collaboration Between Security and Regulatory Compliance Groups

Figure 6. IT Governance and Security Frameworks

Figure 7. Security and Compliance Management Technologies Deployment

Figure 8. Amount of Integration Between Security Management Technologies

Figure 9. Adverse Effects of Limited Security Management Technology Integration

Figure 10. “Best of Breed” Versus Product Integration Capabilities for Security Management Technologies

Figure 11. Changing Attitudes Toward Product Integration Versus “Best of Breed” Functionality for Security Technologies

Figure 12. Security Information management (SIM) Deployment

Figure 13. Number of SIM Log File Sources

Figure 14. SIM Log File Source Changes Over the Next 12 Months

Figure 15. Amount of Data Collected by SIM Tools on a Monthly Basis

Figure 16. Changes in Monthly SIM Log Data Capacity Over the Next 12 Months

Figure 17. SIM and Enterprise Storage Utilization

Figure 18. SIM Data Backup Processes and Tools

Figure 19. Organizations Archive Log File Data

Figure 20. Most Organizations Have Been Asked to Produce Log File Data

Figure 21. Log File Retention Policies are a Cross-Functional Effort

Figure 22. Archived Log File Data Capacity

Figure 23. SIM is Used for Multiple Activities

Figure 24. SIM Effectiveness

Figure 25. Users Define Problems with Their SIM Platforms

Figure 26. Budgets Used to Fund SIM Purchases

Figure 27. Pent Up Demand for SIM Technologies

Figure 28. Areas of Interest for Organizations with No SIM Technologies Deployed

Figure 29. Budget Allocated to Fund Future SIM Purchases

Figure 30. The ESG Log Management Architecture

Figure 31. Respondents by Role

Figure 32. Respondents by Number of Employees

Figure 33. Respondents by Annual Revenue

Figure 34. Respondents by Annual Security Budget

Figure 35. Respondents by Compliance Obligations

List of Tables

Table 1. Factors Influencing Security Management, by Organization Size

Table 2. Organizations with CISOS and Chief Compliance Officers

Table 3. “C-Level” Hiring for Security, Compliance, Risk, and Privacy is Increasing

Table 4. Security and Compliance Management Technologies Deployment, by Organization Size

Table 5. SIM Deployment, by Organization Size

Table 6. SIM Deployment, by Organization Size

Table 7. Number of Log File Sources, by Organization Size

Table 8. Growth of Log File Sources, by Organization Size

Table 9. Respondents by Industry