STEP LOGIC in the review by TAdviser «Information Systems Security 2019»
The Russian market of information security systems demonstrates positive dynamics. According to the estimates of TAdviser Analytic Centre, the IS market volume in Russia achieved RUB 79.5 billion by the year-end 2018. The increase is 10%, as compared to 2017. Nikolay Zabusov, Director of Information and Network Security Department at STEP LOGIC, answered the questions of TAdviser regarding the situation in the Russian IS market, trends and prospects of its further development.
Current situation in the Russian IS market
One of the most significant events that occurred within the recent months was the exit of Splunk from the Russian market (Splunk is a USA-based company providing solutions for big data analysis, which are also used for cybersecuirty purposes). This clearly demonstrates how vulnerable an infrastructure that is fully based on the foreign-made products can be. For this reason, regular investments are required in domestic development of high quality ISSs. Hopefully, a number of Russian protection tools will appear this year, which are not only developed with a single purpose of meeting compliance requirements, but also offer competitive functionality.
The situation in the IS market largely depends upon a number of external factors. Crisis phenomena in economics and volatility of national currency lead to a dramatic reduction of IS-related costs. Cryptoware outbreaks and other critical threats result in an increase in the costs because comprehensive responses to intrusions are needed. Amendments in legislation are also progress "drivers". A number of legislative initiatives is going to be implemented this year, which, according to our forecasts, sets expectations regarding steady growth of the IS market.
About the prevailing trends in the Russian IS market
Today, in the digitisation era, every technology is just bound to contain vulnerabilities and backdoors. Owners and executives of the companies are already recognising the fact, and IS today is becoming an important part of the corporate culture. Besides, intensive legislative activity of regulatory authorities also drives interest in IS.
Customers attempt to automate routine processes and "filter out" lots and lots of new generation startups in order to find "crown jewels" in the infinitude of IS solutions. The thing is that frequent updates of the legislation lead to release of underdeveloped "patchwork" products that are focused on addressing individual challenges. A sheer "zoo" comprising dozens of isolated products results in loss of control, too high cost of ownership for the infrastructure, and obviously creates more complexity than value. However, a great number of challenges associated with IS may be addressed due to consistent and well-defined processes. Customers receive more value through purchasing mature products from the vendors who amplify the structure of their protection mechanisms within a single solution.
Integrators are sensitive and promptly reacting to the changes in the market. For instance, after the Federal Law No. 187-FZ "On the Security of the Critical Information Infrastructure in the Russian Federation" appeared, customers faced the necessity for Security Operation Centres (SOC). The initiative was taken up by the integrators that offer their own SOC services on an outsource basis.
About customer priorities in the sphere of IS
For shareholders, owners and top executives, having fair view of IS and technology processes inside the company is always of great importance, that is why the general maturity level of IS across the companies grows annually. However, some large organisations are still lacking simple orderliness in their business processes that support operations of the information systems — which, in turn, leads to chaos in the IS domain. That's why addressing these challenges is the top priority for the large companies.
Companies in the SMB segment are reaching out to the clouds — to MSSP (Managed Security Service Provider)-based model of service consumption — which helps them significantly cut operation costs associated with IS.