Wednesday, 26th June 2019
Logo

Critical infrastructure security spending to reach $125 billion

Critical infrastructures are radically transforming on an unprecedented scale, boosted by a rapid adoption of ‘smart’ operational technologies. Cybersecurity is a growing part of that evolution. ABI Research, a market-foresight advisory firm providing strategic guidance on the most compelling transformative technologies, forecasts security spending for the protection of critical infrastructures will hit US$125 billion globally by 2023.

Currently, defense contractors (Lockheed Martin, BAE Systems, Harris, Northrop Grumman), industrial OEMs (Honeywell, Siemens, Airbus, Rockwell, Boeing), tech leaders (IBM, Amazon, Microsoft, Verizon), and energy companies (Shell, Total, Exxon) are the big security spenders.

Three primary drivers are pushing better digital security in sectors such as utilities, transport, and healthcare: digital transformation and increased connectivity of operational technologies; democratization of cyber attacks targeting critical infrastructure; and a maturing market for industrial and IoT security.

“Connected OT has enabled optimization and greater efficiency for decades-old legacy systems, cutting costs and vastly improving operations for operators,” said Michela Menting, Research Director at ABI Research. But it has also introduced new vulnerabilities and opened new threat vectors to previously air-gapped technologies. The first specialized attacks against industrial control systems are over a decade old, and the attack tools and methods are accessible to even the most common cybercriminals. Fortunately, the cybersecurity industry has been working in parallel to address that security gap between IT and OT. As a result, security solutions for industrial control systems and IoT have been fast maturing, rendering them more widely available and affordable. “So, while critical infrastructure operators face an expanding threat landscape, they also have greater choice and support in terms of digital protection of their OT and IT systems. Security budgets have increased significantly, which is encouraging news for those sectors which have long lagged in digital security,” Menting explained.

However, these positive developments face-off against several obstacles plaguing critical infrastructures: a macro-focus slowdown by governments regarding national cybersecurity strategies, especially in the U.S., and the E.U., continued resistance to cybersecurity regulation and sectoral information sharing, and cyberthreat fatigue leading to general apathy regarding cybersecurity by the private sector. Many stakeholders view cybersecurity as a check-box exercise for one-time spending rather than investing on a continuous basis. “Consequently, while current security spending levels are significantly higher compared to just a few years ago, there is still significant room for further investment, both from an awareness and an implementation perspective,” she concluded.

Research conducted by Endace and VIB identifies the economic, resourcing, and management challenges...
Global research survey discovers that 65% of respondents experience buyers’ remorse after closing an...
UK law firm uses the Cognito platform from Vectra to gain 360-degee visibility into hidden attackers...
Provides three seconds or less DDoS mitigation SLA for any size of attack.
New EfficientIP report, in partnership with IDC, shows 34% increase in attacks.
New threat intelligence from F5 Labs shows that Europe suffers more attacks from within its borders...
A new survey by Cybera, the leader in SD-WAN Edge application and security services, has found that...
CloudGuard Log.ic provides threat protection and context-rich security intelligence in the public cl...