target audience: TECH BUYER Publication date: Nov 2022 - Document type: IDC MarketScape - Doc Document number: # AP49101222
IDC MarketScape: Asia/Pacific Managed Security Services 2022 Vendor Assessment
The IDC MarketScape: Asia/Pacific Managed Security Services 2022 Vendor Assessment study evaluates 18 vendors that provide managed security services within the region. The participating firms were meticulously evaluated using the IDC MarketScape model, which reviews the vendors' capabilities and strategies against an extensive list of scoring criteria and parameters. The 26 different market determining criteria included breadth of service offerings, managed detection and response (MDR) and zero-trust capabilities, portfolio benefit, cloud security, services delivery model, marketing/thought leadership, innovation/intellectual property (IP), cost management, customer satisfaction, business performance and employee management, to name a few. With the combination of primary research and IDC's own in-depth industry knowledge and insights, IDC conducted a series of interviews and multipoint assessments with vendors and their clients to comprehensively capture the differentiating factors, strengths, and challenges of each vendor. Following a comprehensive and exhaustive analysis, the results were deliberated with IDC's internal panel of expert analysts, resulting in the positioning in IDC’s MarketScape figure. The vendors' position on IDC’s MarketScape figure will act as a useful and relevant barometer for Asia/Pacific enterprises that are currently evaluating a trusted security services partner to help them navigate their digital-first journeys.
"Building and maintaining digital trust is crucial for enterprises today as they seek partners that can provide a full breadth of security services with clear transparency and visibility to threats coupled with actionable insights. As the threat landscape expands and evolves, organizations are evaluating managed security SPs with deep technical and industry expertise, extensive threat management, and cyber-risk advisory capabilities, which include managed extended detection and response (MxDR), zero trust, and risk assessment, to align their security strategies with digital-first goals," says Shweta Baidya, senior research manager, IDC Asia/Pacific Services and Security. She adds, "SPs that adopt a consultative approach and can deliver global capabilities customized to local requirements, including regulatory and data sovereignty demands, will certainly have an advantage over the rest. SPs in the region have done a commendable job with understanding the challenges of customers with varied maturity levels across countries and are working in close collaboration with their customers to help them transition into the digital environment."
"With an increasingly challenging threat landscape, coupled with the growing demands of the market, being a successful managed security SP (MSSP) can be a struggle in this digital-first era. Organizations are rapidly looking at the support of an MSSP as an alternative to investing heavily in recruitment and staffing costs to curb the scarcity of cyber professionals. In fact, organizations are sourcing for SPs that will act as an extension of their internal IT and security teams, which can offer further cybersecurity expertise to maintain its security posture. A good MSSP employs and maintains the right toolsets and staff, relays accurate data, and understands its customers’ reporting processes. A great MSSP goes beyond all that and partners with its customers to measure success, deliver value-added information, and proactively cater to their business needs," says Christian Fam, research manager, IDC Asia/Pacific Services and Security.