Improving Security Solutions Could Grow the Internet of Things Cybersecurity Market by $9-$11 Billion
New Bain & Company research identifies four steps IoT device vendors can take to address security concerns that are holding back further growth in this market
NEW YORK, May 30, 2018 (GLOBE NEWSWIRE) -- Security concerns are a significant roadblock to investment in the Internet of Things (IoT). According to a new Bain & Company report, Cybersecurity is the Key to Unlocking Demand in IoT , 45 percent of IoT buyers say concerns about security remain a significant barrier and are hindering the adoption of IoT devices.
If vendors could provide better security, enterprise customers surveyed say they would be willing to buy, on average, at least 70 percent more IoT devices. In addition, 93 percent of executives said they would pay more for devices with better security - about 22 percent more on average. Taken together, Bain & Company estimates that improving security solutions for these devices could grow the IoT cybersecurity market by $9-$11 billion. For IoT device vendors - companies that make IoT devices as well as those that provide related solutions - the message is clear: improve security to gain a competitive edge and grow your market.
These are among Bain & Company's findings over the last three years and new, recently completed research on IoT security.
"We expect growth in the markets that comprise the IoT to continue full steam ahead, but issues around security concerns could derail that progress," said Ann Bosche, a partner in Bain & Company's Telcom, Media and Technology Practice. "Enterprise customers are moving cautiously until they can gain some reasonable assurance of the security of their data and operations, which increasingly rely on devices, sensors and the Internet of Things."
The Bain & Company survey found most executives (60 percent) said they were very concerned about the risks IoT devices pose to their companies - not surprising, given the damage that an IoT security breach can cause to operations, revenues and safety.
In determining solutions to guard against attacks, IoT device vendors can segment their target customers by levels of cybersecurity capability maturity. The research finds that customers at the least-advanced end of the spectrum are more likely to seek out simplified and integrated security solutions, whereas those with more advanced capabilities prefer to invest in best-of-breed or customized point solutions.
Further, across segments, nearly all executives - 90 percent - said that IoT devices pose a moderate or significant risk to their organizations, and executives in companies with greater cybersecurity sophistication see more risk than those in less sophisticated companies.
The research also found that executives in some industries see themselves at greater risk than others. Those in durable goods, building and construction, energy and utilities, financial services, and technology were most likely to express a significant level of concern.
In response to these risks, executives who manage security said that, as customers, they want solutions that are highly effective, easy to integrate, and flexible to deploy.
Companies take a range of approaches to meet their security needs, based on their capabilities and the availability of marketplace solutions from vendors. Only about a third of IoT cybersecurity solutions used today are from IoT device vendors, indicating that vendors are either not offering holistic, high quality, solutions that meet consumer needs or they are not promoting them well enough. Bain & Company found that companies with the most advanced cybersecurity capabilities rely more on internally developed security solutions, not only because they may have more complex needs but because they are more likely to have the talent and capabilities to develop their own solutions. Companies with ad hoc security capabilities have the most gaps across all IoT layers tested.
The research also looked at how companies deploy solutions by layer of security and found ample opportunity for IoT device vendors at every layer of the stack. The access interface layer has the greatest level of protection, whether developed internally or provided by a manufacturer or third party. Other layers of the stack were protected by more internal solutions - or, in some cases, none at all. Customers' preference for internal solutions may be partially explained by considering the specific conditions of each layer. For example, data security solutions typically require more computing and power resources than are currently available on basic IoT devices.
"Most enterprises want a cohesive set of tools and a unified overview of the security posture of their devices, but few IoT device makers understand their customers' operations well enough to provide that kind of solution," said Syed Ali, a cybersecurity expert in Bain & Company's IT Practice. "Lacking well-designed IoT cybersecurity products and services, customers are devising their own solutions, foregoing them altogether, or failing to implement IOT solutions until vendors can fill the gap."
All IoT device vendors will need to pay more attention to security in the design, development and deployment of devices. Four steps can help executives frame their task:
Understand how customers are using devices. Staying current by refreshing their understanding of customer use cases every 12 to 18 months will allow them to stay on top of evolving security requirements, and help identify unmet needs. Ascertaining the average cybersecurity maturity level of their customers will help manufacturers invest in the right out-of-the-box and add-on solutions.
Provide cybersecurity capabilities on the device and, where possible, partner with trusted cybersecurity vendors to provide additional solutions. Engineering teams should embed secure development practices in the software and hardware components of the device, and provide inherent solutions for the access interface, apps, data and device layers. Taking these measures can mitigate common vulnerabilities in IoT devices today such as default or embedded passwords, lack of data security for credentials and network communications, and weak safeguards for ensuring system integrity.
Meet quality assurance thresholds and be able to certify that their IoT devices are free from known vulnerabilities. This would mitigate a major pain point for customers who sometimes install new devices without realizing they contain vulnerabilities. Deploying a more methodical process to identify and remove vulnerabilities across layers or engaging third-party vulnerability scanning and or penetration test firms can help manufacturers meet this bar.
- Fulfill their obligations during the warranty period by continuously testing for new vulnerabilities, providing software and firmware updates, as well as feature and functionality upgrades for out-of-box and aftermarket solutions. Delivering updates to firmware, operating systems and applications in response to newly discovered security vulnerabilities should remain a top priority through the warranty period.
"IoT device vendors and ecosystem players that move quickly to improve the security around IoT devices are likely to reap rewards not only from their ability to earn a premium, but also from an expanded market," said Frank Ford, a partner in Bain & Company's IT Practice. "These four steps are a start, though by no means, the whole of what it will take to begin to address the security concerns that are holding back growth of the IoT."
Editor's Note: To arrange an interview, contact Dan Pinkney at firstname.lastname@example.org or +1 646 562 8102
About Bain & Company
Bain & Company is the management consulting firm that the world's business leaders come to when they want results. Bain advises clients on strategy, operations, information technology, organization, private equity, digital transformation and strategy, and mergers and acquisition, developing practical insights that clients act on and transferring skills that make change stick. The firm aligns its incentives with clients by linking its fees to their results. Bain clients have outperformed the stock market 4 to 1. Founded in 1973, Bain has 55 offices in 36 countries, and its deep expertise and client roster cross every industry and economic sector. For more information visit: www.bain.com. Follow us on Twitter @BainAlerts.
Bain & Company
Tel: +1 646 562 8102
The issuer of this announcement warrants that they are solely responsible for the content, accuracy and originality of the information contained therein.
Source: Bain & Company via Globenewswire
One Liberty Plaza - 165 Broadway
NY 10006 New York
GlobeNewswire is one of the world's largest newswire distribution networks, specializing in the delivery of corporate press releases financial disclosures and multimedia content to the media, investment community, individual investors and the general public.
Følg saker fra GlobeNewswire
Registrer deg med din epostadresse under for å få de nyeste sakene fra GlobeNewswire på epost fortløpende. Du kan melde deg av når som helst.
Siste saker fra GlobeNewswire
CTG Promotes Three Long-time Business Leaders in Europe15.2.2019 15:00:00 | Pressemelding
Bob Daelman, Guido Helsloot and Rénald Wauthier named Vice Presidents BUFFALO, N.Y., Feb. 15, 2019 (GLOBE NEWSWIRE) -- CTG (NASDAQ: CTG), a leading provider of information technology (IT) solutions and services in North America and Western Europe, announced today that three of the Company’s high-performing managers in its European business, Bob Daelman, Guido Helsloot and Rénald Wauthier, have each been named vice president. “Bob Daelman and Rénald Wauthier have proven track records of significantly expanding their respective businesses in Europe. Guido Helsloot has been key enabler in effecting two acquisitions in the past six years that expanded our operations and was again instrumental in driving our recent Tech-IT acquisition that will give CTG broader end-to-end capabilities to better-serve our clients. Together, this team has greatly contributed to our success in Europe, where CTG has recorded eight consecutive years of revenue growth,” commented Filip Gydé, current Executive Vic
Jazwares Announces Partnership with Kellytoy for Russ Berrie™ Worldwide15.2.2019 01:00:00 | Pressemelding
Sunrise, FL, Feb. 14, 2019 (GLOBE NEWSWIRE) -- Jazwares LLC, a global leader in toys and licensing, announced today that its affiliate Zag Toys, LLC (“Zag Toys”) formed a strategic partnership for their wholly owned brand Russ Berrie™, with Kellytoy, an influential manufacturer and distributor of plush toys and pet products. This relationship will carry on the 50+ year legacy of the Russ Berrie™ brand, positioning it globally as the premier plush brand on retail shelves in Fall 2019. Kellytoy will market the Russ Berrie™ brand through its global distribution channels, which include almost every market segment. “Working together with Kellytoy will maximize the Russ Berrie™ legacy,” says Judd Zebersky, Jazwares CEO and President. “By leveraging Russ Berrie™ and its reputation for quality and commitment to “Make Someone Happy™” with Kellytoy’s global footprint we’ll secure placement in retailers all around the world, putting Russ Berrie™ at the forefront of today’s plush presence at retai
PROFEPA report confirms no contamination of soil from overflow of contingency pond at the San Jose Mine, Mexico in October 201814.2.2019 19:46:00 | Pressemelding
VANCOUVER, British Columbia, Feb. 14, 2019 (GLOBE NEWSWIRE) -- Fortuna Silver Mines Inc. (NYSE: FSM) (TSX: FVI) is pleased to report that the Federal Attorney's Office for Environmental Protection (PROFEPA) has completed its investigation into the overflow of the contingency pond at the dry stack tailings facility at the San Jose Mine on October 8, 2018, which was caused by heavy seasonal rains (refer to Fortuna news release dated October 11, 2018). PROFEPA’s final report confirms that the overflow did not contaminate soil, and therefore no remediation is required. The Company awaits a final report from the Mexican National Water Commission (CONAGUA). The Company reiterates its commitment to safeguarding the wellbeing of the environment, local communities and our work force. About Fortuna Silver Mines Inc. Fortuna is a growth oriented, precious metals producer focused on mining opportunities in Latin America. Our primary assets are the Caylloma silver Mine in southern Peru, the San Jos
Cloudian HyperStore Named 2018 Product of the Year in Software-defined and Cloud Storage by Storage Magazine14.2.2019 19:10:00 | Pressemelding
Also Wins Best Hybrid Cloud Solution in 2018-2019 Cloud Awards, Further Reinforcing Company’s Object Storage Leadership SAN MATEO, Calif., Feb. 14, 2019 (GLOBE NEWSWIRE) -- Cloudian today announced two top industry awards for its HyperStore object storage platform. The awards are the latest honors for the company’s limitlessly scalable, highly cost-effective solution, which provides the industry’s best S3 compatibility and seamless data management across on-premises and public cloud environments. 2018 Software-defined and Cloud Storage Product of the Year TechTarget’s Storage magazine and SearchStorage.com named HyperStore 7 as the Gold winner in the Software-defined and Cloud Storage category of the 2018 Products of the Year Awards. The judging panel of analysts, consultants, users and TechTarget writers were “particularly impressed with [HyperStore’s] functionality.” In addition, the solution received high marks for innovation, value and ease of integration, use and manageability, en
Hot Silicon Valley Tech Firm Grows in Krakow14.2.2019 16:28:00 | Pressemelding
SignalFx Opens Research and Development and Support Office; Hires Industry Veteran Martin Burlinski, Head of Engineering, EMEA SAN MATEO, Calif., Feb. 14, 2019 (GLOBE NEWSWIRE) -- SignalFx, the leader in real-time cloud monitoring for infrastructure, microservices, and applications, is announcing the opening of a new Research, Development and Support Office in Krakow, Poland and the addition of Martin Burlinski, Head of Engineering, EMEA. The new Krakow facility will enable SignalFx to accelerate product development and provide broader global support for its customers. “We were naturally attracted to Krakow not only because of its strong existing talent pool of world-class engineers but also its proximity to recent graduates from the city’s many universities,” said Leonid Igolnik, EVP Engineering for SignalFx. “We have an immediate need for engineers to become a core part of our company working side-by-side with our Silicon Valley and Research Triangle Park teams. With a global client
HL7 and SNOMED International Announce Agreement for Free Set of Terms for Use with International Patient Summary14.2.2019 15:00:00 | Pressemelding
Orlando, Fl., Feb. 14, 2019 (GLOBE NEWSWIRE) -- SNOMED International and Health Level Seven International (HL7) announce today the formalization of a license agreement in which a relevant ‘Free for Use’ Set of SNOMED CT coded concepts will be used within the HL7 International Patient Summary (IPS). Health Level Seven International (HL7) is a not-for-profit, ANSI-accredited standards developing organization dedicated to providing a comprehensive framework and related standards for the exchange, integration, sharing and retrieval of electronic health information that supports clinical practice and the management, delivery and evaluation of health services. SNOMED International is a not-for-profit, member-owned and driven international organization charged with maintaining and releasing the SNOMED CT clinical terminology product; the world’s most comprehensive clinical terminology. Presently comprised of 38 Member countries globally, SNOMED International supports the role that structured