Managed security service global revenue totaled $17,4-billion in 2015, up 9 percent from the prior year, and it is forecast to grow by one third over the next five years. More than half (54 percent) of security service revenue in 2015 came from customer-premises-equipment- (CPE-) based services, with cloud-based offerings contributing 46%; however, this ratio is expected to reverse by 2020, according to IHS.
Managed security providers are now beginning to leverage software-defined networking (SDN) and network functions virtualisation (NFV) rollouts, to scale delivery of managed security services. However with the advent of virtual CPE solutions, many providers expect managed CPE-based service revenue to continue growing as well.
“SDN deployments in cloud and hosting environments will help providers build more scalable, flexible and profitable hosted and cloud security services,” says Jeff Wilson, cybersecurity research director for IHS Technology. “The availability of a new generation of virtual CPE services driven by NFV will enable carriers to deliver services to the customer edge on a common hardware platform capable of running virtual machines. While common wisdom says the transition to the cloud and cloud services for security will overwhelm CPE, there’s still a play for on-premises services, even in a virtualised world.”
Sales of cloud-based security services grew 12% in 2015 from the prior year, and the segment is expected to grow at a compound annual growth rate (CAGR) of 9% over the five years from 2015 to 2020. The largest contributor to cloud-based security service revenue is content security, followed by managed firewall services, other security services, distributed denial of service (DDoS) mitigation, and intrusion detection and prevention systems.
“The majority of providers IHS tracks either met or exceeded their revenue expectations for the year,” Wilson says. “The long-term outlook for this market – especially for cloud services – is strong.”
