The IDC presents the main challenges faced by companies when it comes to information security. According to IDC, the biggest one is to change the organizational culture to promote security. Some other executive level of risk and its consequences are aware; address the lack of skilled labor; place the issue of security in CIO agenda; and offer new and more comprehensive security offerings.
According to IDC, the current situation shows that companies have difficulty to buy information security solutions. Only 15% of companies have clear what they wish to purchase. Another 40% know about buying security and the rest is disoriented, according to research conducted with 206 companies throughout India for all market segments.
The difficulty is in understanding between the offers available in the market, which meet optimally the need and cost and time of undertaking the second assessment consultancy. Even the more mature customers rely heavily on the support of a specialized partner to properly purchase hardware, software or security services. “A team of information security professionals specialized in solutions in the firm, it is expensive to build and expensive to maintain,” says research manager at IDC India.
IDC figures show that currently, the budget for information security represents between 5% and 20% of total IT, and companies with corporate projects (affecting the entire company) have more significant security budget, around 15 % to 20% of the IT budget.
Cloud computing solutions, for example, is present on the agenda of investment, but did not take off. “While I believe in the cloud model as a trend for the future, few expect that this will be the dominant model. Some solutions are more appropriate or fit better in the cloud model (as a service) as webmail and spam, ie, solutions that require a constantly updated data base, “added the manager at IDC.
Another conclusion of the study is that manufacturers of information security solutions understand the great demand for these solutions and offer options for various sections of organization, whether small medium or large in Premisse on model or as a service.
The need today is to address problems proactively and take into account the training of people with a view to prevention. The Health and Trade segments are less mature in relation to information security, but show interest in the subject and therefore are potential markets for years to come. In trade, the demand will come from mobile e-commerce.