Re: Gartner's Security 3.0

[Pete Herzog <lists () isecom org>]

Hi,

> > is that analyst firms are there to make statements like that one not to actually set their
> > users' budgets, but to help frame conversations.
>
> Indeed.

Actually I think they came off as a bit authoritative and sure of 
themselves to call it "framing conversations".  Otherwise they would say 
that some companies will be shooting for X% bracket because of YZ, should 
you? Then maybe they can list their reasons why.

But they won't do that because it also puts a spotlight on the failure of 
some current solutions who are made by big companies who buy Gartner 
services.

> > So in 2006, the average will spend 4% to 5%, the pikers and cheapskates 3%-4%, but in
> > 2008 everyone will spend from 5%-8%? Cool!
>
> Guess that is more like a correction due to some new threats and
> emerging TJX-powered fears.
> Lets remember that back in 2004, content filtering solutions was
> basically about parental control.

Really, sounds like an update rather than a correction.  For whatever 
reason they decided that threats currently have gotten much worse and so 
much so that you need to nearly double your spending to handle them.  Now 
I'm not going to say that the risk scenario shows them to be right because 
risk is very subjective but I think it's still way too general of a 
statement to apply across the board to all network infrastructures of all 
businesses.

-pete.


------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------