At the 2012 RSA Security Conference, ESG participated on a panel of experts to discuss whether security analytics would soon be considered “big data.” ESG and the other panelists agreed that this intersection was coming, we just weren’t sure of the timing. Were we right? ESG recently completed research project to find out. As part of this effort, ESG surveyed 257 security professionals working at enterprise organizations (i.e. more than 1,000 employees) were provided with the following definition of “big data:” ESG considers data to be big once the volume exceeds the capability and boundaries of traditional IT infrastructure. Difficulties include capture, storage, search, sharing, analysis, and visualization. “Big data” requires engineers to rethink and possibly redesign architectures such that they can support business requirements as data volumes grow. When applied to analytics, big data can also be characterized by the speed with which organizations require data processing, data integration, and data analytics tasks be completed in order to spot business trends, prevent diseases, combat crime, etc. Once presented with this description, security professionals were asked this simple question: Based upon this definition, do you believe that security data collection and analysis would be considered “big data” at your organization? The result? The RSA panel was right about the trend but overly conservative about the timing. Forty-four percent of enterprise security professionals believe that security data collection and analysis would be considered “big data” at their organizations today while another 44% believe that security data collection and analysis will become “big data” at their organizations within the next 24 months. To be clear, this does not mean that CISOs are actively hiring data scientists, implementing Hadoop, and sending CISSPs out for training on Cassandra, Hive, MapReduce, or Pig. It does indicate however that they are collecting massive amounts of data and existing security analytics tools can no longer keep up. As a result, IT risk continues to increase – a very scary scenario. CISOs may not have the time to piece together big data security analytics solutions but security vendors should be all over this! Some already are: IBM, SAIC, and Splunk for example. Others will follow suit soon. Security analytics is getting harder and harder so we need new tools, services, and expertise. As the ESG data indicates, we no longer have to postulate that this will happen in the future – it’s happening now. For users, this means massive near-term changes to their security infrastructure, investment, and organizations. For vendors it means new lucrative market opportunities beginning immediately. Finally, those rare security professionals proficient in mathematics and statistics will be sitting in the cat-bird seat for rapid career advancement.
New ESG data reveals that enterprise organizations believe that the intersection of security analytics and big data is here today or will arrive very soon
The Elections and CybersecurityNext Post
Enterprises Are Buying Host-based Advanced Malware Detection/Prevention Tools to Capture Forensic Data
A study shows that if the U.S. mandates backdoors to decrypt secret messages, there are hundreds of...
KDE's recently announced Linux distro, KDE Neon, seems like a questionable move that has the potential...
A prominent Linux kernel developer announced today in a blog post that she would step down from her...
As enterprises struggle to keep up with their internal demand for mobile apps, more are turning to more...
Amazon does a great job with infrastructure, but securing your cloud applications and environment is up...
Not quite 2:1 adoption rate for ACI like last fall, but close
When it comes to gripes about IT, CIOs need to go back to basics to address the needs of their most...