Cybersecurity investment to grow by 13% in 2023

According to Canalys’ latest cybersecurity forecasts, global cybersecurity spending (including enterprise products and services) will increase by 13.2% in 2023 and remain a key growth sector for channel partners.

  • 7 months ago Posted in

Total spending in 2023 is expected to hit US$223.8 billion in the best-case scenario, with growth in the delivery of cybersecurity services outpacing product shipments. Persistent heightened threat levels will keep cybersecurity high on the list of investment priorities for organizations. But not all planned projects will be signed off, as pressure mounts on budget holders to scrutinize spending and focus only on the most pressing cybersecurity needs to minimize the risk of breaches. Spending among governments and enterprises will rise, but investment by smaller businesses will weaken as economic conditions deteriorate.

The evolving threat landscape will maintain pressure on organizations to broaden and deepen their cybersecurity defenses, expand detection capabilities and improve incident response in 2023. “Ransomware remains the biggest threat to organizations from an operational, financial and brand perspective. But the emergence and abuse of generative AI models, such as ChatGPT, will increase the risk to another level in 2023,” said Matthew Ball, Chief Analyst at Canalys. “This will enable and accelerate the creation of malicious code on an industrial scale by more threat actors and increase the frequency and range of attacks. Organizations are already struggling to deal with current threat levels and cannot afford to cut back on spending as it will leave them even more vulnerable. Instead, they will need to work more closely with channel partners to make smarter investments.”

The delivery of cybersecurity services, including consulting, outsourcing, deployment, integration, maintenance and managed services, is forecast to grow by 14.1% to US$144.3 billion in 2023. This will account for 64.5% of the worldwide cybersecurity market in 2023. “Organizations will continue transforming their cybersecurity strategies to increase their resilience this year. Implementing Zero Trust architectures to address the vulnerabilities that have been successfully exploited over the last three years since the start of the pandemic will be the central theme,” said Srikara Upadhyaya, Research Analyst at Canalys. “This will drive more consulting engagements for channel partners, as well as create opportunities around deploying and integrating multiple products from different vendors, while reducing operational complexity via managed services. Overall, more than 90% of total cybersecurity product and services spending will go through channel partners in 2023.”

Shipments of cybersecurity products, including endpoint security, network security, web and email security, data security, identity and access management, and vulnerability and security analytics, will increase by 11.7% to US$79.5 billion in 2023. This represents robust growth for the technology sector, but is also a slowdown from 2022 levels, when organizations ramped up spending to upgrade existing defenses and added new capabilities, especially cloud, IoT/OT and identity security. Deal sizes will continue to increase in 2023. But this will also extend sales cycles, as additional levels of sign-off will be required. Presenting risk assessments and demonstrating a return on investment will be even more important for channel partners. But total cybersecurity spending will still fall short of the level needed to turn the tide against threats after years of chronic underinvestment.

Intel presents a software-defined, silicon-accelerated approach built on a foundation of openness, choice, trust and security.
BlueVoyant and Qualys join forces to offer an integrated managed service for Qualys VMDR and TotalCloud, delivering an enhanced vulnerability identification, cloud security, and compliance solution.
New cloud-centric platform, purpose-built for small and midsize MSPs, improves customer billing, reduces complexity, and maximizes revenues.
CloudBees has introduced a new cloud native DevSecOps platform that places platform engineers and developer experience front and center.
To mitigate ransomware attacks, IT professionals must consider both business-related and infrastructure data equally.
New solution combines forensics evidence with real-time telemetry to deliver unified insights into security incidents analysts need to perform investigation and response activities with efficiency and speed.
Orange Cyberdefense has launched a new security orchestration and automated response ‘as a service’ offering that provides cost-effective automation to streamline security, IT and business operations. By automating response-based actions through to the end user and driving a faster mean time to respond (MTTR) to security threats, AutoXR addresses the need for increased efficiencies and reduced costs, reducing the burden on staff who have limited time to execute tasks.
MSSPs, MSPs, SIs, GSIs can now create and deliver new managed security services leveraging CrowdStrike’s industry-leading MDR and MXDR offerings.