ISG to Publish Reports on Cybersecurity Providers

Upcoming ISG Provider Lens™ reports will evaluate cybersecurity solutions and services designed to help enterprises and public sector organizations better protect their data

Information Services Group (ISG) (Nasdaq: III), a leading global technology research and advisory firm, has launched a study examining how cybersecurity providers can help enterprises and U.S. public sector organizations navigate emerging threats, technological advancements and evolving regulatory environments.

The study results will be published in a comprehensive ISG Provider Lens™ report called Cybersecurity – Solutions and Services, scheduled to be released in July 2024. The report will cover companies offering many of today’s most sought-after cybersecurity services, including identity and access management, data loss prevention, extended detection and response and managed security services. At the same time, ISG will publish the U.S. Public Sector Cybersecurity – Solutions and Services report, covering providers with experience in providing cybersecurity protection to state, local, municipal and educational entities in the U.S.

Enterprise and public sector buyers will be able to use information from the respective reports to evaluate their current vendor relationships, potential new engagements and available offerings, while ISG advisors use the information to recommend providers to the firm’s buy-side clients.

The study will look at the cybersecurity protections offered by leading providers to help enterprises and public sector organizations defend against attacks of increasing sophistication and severity, including those leveraging AI. An evolving threat vector, AI brings both challenges and opportunities, offering automation for analysis and detection while posing risks of bias and misuse.

“Security providers help clients navigate the cybersecurity landscape, where vigilance is crucial,” said Jan Erik Aase, partner and global leader, ISG Provider Lens Research. "Providers help with services such as identifying and mitigating threats, understanding the transformative impact of technologies such as AI and ML, and staying attuned to evolving regulatory frameworks.”

ISG has distributed surveys to more than 245 cybersecurity providers for the enterprise cybersecurity study. Working in collaboration with ISG’s global advisors, the research team will produce nine quadrants representing the typical cybersecurity services an enterprise is buying, based on ISG’s experience working with its clients. The nine quadrants are:

• Identity and Access Management (IAM), evaluating providers for their ability to offer proprietary software and related services for managing enterprise user identities and devices, including SaaS offerings based on proprietary software.

• Data Leakage/Loss Prevention (DLP) and Data Security, assessing providers offering proprietary software and services, including SaaS, that can identify and monitor sensitive data and provide access only to authorized users and prevent data loss/leakage.

• Extended Detection and Response (XDR), covering providers offering platforms that integrate, correlate and contextualize data and alerts from multiple threat prevention, detection and response components. XDR is delivered through the cloud.

• Security Service Edge (SSE), evaluating providers of cloud-centric solutions that combine proprietary software or hardware with associated services, enabling secure access to cloud services.

• Technical Security Services, assessing providers’ ability to cover integration, maintenance and support for IT and operational technology (OT) security products and solutions, addressing all security products, including antivirus, IAM, DLP, network security and others.

• Strategic Security Services, covering providers offering IT and OT security consulting, including security audits, compliance and risk advisory services, security assessments and security training. These providers also help define cybersecurity strategies for enterprises based on their specific requirements.

• Managed Security Services — SOC (MSS - SOC), assessing providers of services related to the operations and management of IT and OT security infrastructures for one or more customers through a security operations center (SOC).

• Digital Forensics and Incident Response (DFIR), evaluating providers offering services related to threat response activities, including identification, investigation, containment and remediation, while preserving evidence against attackers.

• Vulnerability Assessment and Penetration Testing (VAPT), assessing providers offering refined technical skills on known and daily discovered gaps and increasingly elaborate approaches and mechanisms to circumvent established lines of defense, including attackers leveraging generative AI tools, ransomware and other threats.

For the U.S. public sector study, ISG has distributed surveys to more than 40 cybersecurity providers with experience serving U.S. public agencies. ISG will evaluate the providers in four quadrants:

• Identity and Access Management (IAM), covering providers offering software and services that help public sector organizations manage user identities and devices. Offerings can be deployed in several ways, including on-premises, in the cloud or an as-a-service model.

• Technical Security Services, covering integration, maintenance and support for IT and OT security products and solutions, encompassing all security products including antivirus, cloud and data center security, IAM, DLP, network and endpoint security and more.

• Strategic Security Services, evaluating providers of consulting services covering IT and OT security, with the services used to assess security maturity and risk posture and define cybersecurity strategies for public sector organizations.

• Managed Security Services — SOC (MSS - SOC), evaluating providers running security operations centers and offering services related to the operations and management of IT and OT security for one or more customers.

Geographically focused reports from the study will cover the global cybersecurity market and examine products and services available in the U.S., the U.K., Germany, Switzerland, France, Brazil, Australia, and the U.S. public sector. ISG analysts Frank Heuer (Germany and Switzerland), Gowtham Kumar (U.S.), Aditya Prakash (U.K.), Benoit Scheuber and Dr. Maxime Martelli (France), Craig Baty (Australia), and Christian Horst Alves Reis (Brazil) will serve as authors of the enterprise report. ISG analyst Phil Hassey will serve as author of the U.S. public sector report.

A list of identified providers and vendors and further details on the enterprise study are available in this digital brochure. Details on the public sector providers and vendors are in this digital brochure. Companies not listed as cybersecurity providers can contact ISG and ask to be included in the study.

All 2023 ISG Provider Lens™ evaluations feature expanded customer experience (CX) data that measures actual enterprise experience with specific provider services and solutions, based on ISG’s continuous CX research. Enterprise customers wishing to share their experience about a specific provider or vendor are encouraged to register here to receive a personalized survey URL. Participants will receive a copy of this report in return for their feedback.

About ISG Provider Lens™ Research

The ISG Provider Lens™ Quadrant research series is the only service provider evaluation of its kind to combine empirical, data-driven research and market analysis with the real-world experience and observations of ISG's global advisory team. Enterprises will find a wealth of detailed data and market analysis to help guide their selection of appropriate sourcing partners, while ISG advisors use the reports to validate their own market knowledge and make recommendations to ISG's enterprise clients. The research currently covers providers offering their services globally, across Europe, as well as in the U.S., Canada, Brazil, the U.K., France, Benelux, Germany, Switzerland, the Nordics, Australia and Singapore/Malaysia, with additional markets to be added in the future. For more information about ISG Provider Lens research, please visit this webpage.

A companion research series, the ISG Provider Lens Archetype reports, offer a first-of-its-kind evaluation of providers from the perspective of specific buyer types.

About ISG

ISG (Information Services Group) (Nasdaq: III) is a leading global technology research and advisory firm. A trusted business partner to more than 900 clients, including more than 75 of the world’s top 100 enterprises, ISG is committed to helping corporations, public sector organizations, and service and technology providers achieve operational excellence and faster growth. The firm specializes in digital transformation services, including automation, cloud and data analytics; sourcing advisory; managed governance and risk services; network carrier services; strategy and operations design; change management; market intelligence and technology research and analysis. Founded in 2006, and based in Stamford, Conn., ISG employs more than 1,600 digital-ready professionals operating in more than 20 countries—a global team known for its innovative thinking, market influence, deep industry and technology expertise, and world-class research and analytical capabilities based on the industry’s most comprehensive marketplace data. For more information, visit www.isg-one.com.

View source version on businesswire.com: https://www.businesswire.com/news/home/20240116925349/en/