“Security and risk leaders will see new spending in areas related to cloud security and data security, driven by regulations and an increased awareness among organisations as their needs evolve to address more complex threats,” said Sam Olyaei, principal research analyst at Gartner. “Those two segments are set to achieve the highest growth rates in 2019, at 108 and 18 percent respectively.”

The enterprise information security spending market is comprised of five enterprise security product segments that Gartner believes will bolster growth in 2019:

1. Cloud security spending will total US$9 million — a 108 percent increase in 2019.

2. Data security spending will total US$125 million — a 17.6 percent increase in 2019.

3. Infrastructure protection will total US$225 million — a 10.5 percent increase in 2019.

4. Integrated risk management will total US$33 million — a 9.2 percent increase in 2019.

5. Security services will total US$798 million — a 9.9 percent increase in 2019.

Gartner analysts provided the latest outlook for the information security industry recently at the 2018 Gartner Security and Risk Management Summit in Dubai.

According to the researchers, these established security product segments benefit from strong growth rates due to net new adopters who are looking to rapidly increase their investments in security technology. Additionally, existing buyers of these technologies are looking to acquire more advanced capabilities in these areas, especially as organisations in the region race to catch up with government and national attitude toward digital transformation.

While the spending on cloud security products is set to increase 108 percent in 2019, the market remains much smaller than the other four segments, and this is primarily due to its relative immaturity. As large cloud service providers such as Amazon, Microsoft, and Alibaba establish data centers and service clients in the region, the market will continue to see double-digit growth in the future, according to the research.

In the last few years, Gartner analysts witnessed organisations and governments in the MENA region adopting digital initiatives. “Digital business initiatives are changing how organisations identify, evaluate and confront risk,” said Mr. Olyaei. “Having an integrated view of risk management is also becoming more pervasive as organisations are increasingly participating in digital ecosystems, making them more vulnerable than ever before.”

“CIOs have had to evolve their traditional cyber security systems to address the new cyber security risks that digital business initiatives introduce,” added Mr Olyaei.

Cyber security represents one of the major risks affecting MENA businesses and individuals today. Most attacks can be grouped into five categories that commonly exploit weaknesses through mechanisms such as socially engineered malware, phishing attacks, unpatched/insecure software, social media attacks, and the regular advanced persistent threats.

Organisations continue to feel the pressure to find the right people with the right skills to grow their security teams, particularly given the 24/7 nature of security operations functions. These ongoing skills shortages are driving demand for security services, particularly security outsourcing, managed security services and security consulting.

As the realities of digital sink in, the skills shortage may expose organisations to undue risk that increases the likelihood of a breach, causing ramifications for the organisation in terms of data, monetary and brand reputation loss. Gartner estimates that 68 percent of digital organisations globally have a cyber security expert on staff, but remain incapable of managing digital risk.

“Security and risk management leaders should validate if their existing security programmes can adequately address the emerging challenges resulting from participation in digital ecosystems, and build and develop new competencies and skills required to effectively support digital business initiatives,” said Mr Olyaei.