Security As A Service

By Jim Kaskade

March, 2011 Confidential

Cheyenne Mountain Operations Center

Next Generation Managed, Real-Time

Cloud Security As A Service

2010 (per Symantec)

286M Malware Threats

93% Increase in Web Attacks

42% more mobile vulnerabilities

1M+ botnets

2010 (per IBM)

13B events / day

49% of vulnerabilities from web apps

44% without a patch by year-end

APTs now targeted, sophisticated & complex

Symantec, 2010

Advanced Persistent Threats

Market Opportunity

$14.8

$16.5

$13.0

$14.0

$15.0

$16.0

$17.0

WW Security SW Revenue (TAM)

Ann

ual

Rev

enue

($

B)

2009

2010

11.3% CAGR

$1.6

$2.5

$0.0

$1.0

$2.0

$3.0

WW IDPS SW Revenue (SAM)

Ann

ual

Rev

enue

($

B)

2011

2014

16.5% CAGR

Gartner, 2010

IDC, 2010

$9.5B HW+SW

Market Opportunity Managed Service Model

$6.0

$17.0

$0.0

$5.0

$10.0

$15.0

$20.0

SaaS, CPE, Cloud MSSP Revenue

Ann

ual

Rev

enue

($

B)

2010

2015

23% CAGR

How Do Small-Medium Sized Businesses Deploy Cost-Effective Intrusion Detection & Prevention?

Predictive Analytics Engine

(BotHunter)

Data Collector (WebSpy)

Real-Time Database

(uCirrus)

Data Warehouse

Administration

.

.

.

.

.

.

Internet Users

Intranet Users

Real-Time Security As A Service Cloud

Real-Time Reporting

Discovery

Raw Data Store

Knowledge Store

Company A

Company B

Company C

Company D

Leveraging The Community

Original Event Data

Community Knowledge Repository

D

C

B

A

Use-case

Enterprise

Security As A Service

Cloud

BU

Internet

Telecom

Sensor Data

Real-time Reporting

Real-time Status/Control

Value Proposition

 Signature-less Real-time Network Detection / Protection

 Real-time Collection & Analysis of Information From Hosts, Security Devices, and Network Devices

 Real-time Reporting of Data & Discovery of Information

 No customization required

 Simple Cloud-based Deployment

 Cloud Economics

Pricing / TCO Differentiators

$40,000

$0

$80,000

$0

$0

$75,000

$0

$20,000

$40,000

$60,000

$80,000

$100,000

$120,000

$140,000

Traditional On-Prem Security Managed Secruity As A Service

Ann

ual

Sec

urit

y C

osts

($

)

250-User Network (Annual Costs)

Subscription

Security Staff

Hardware/Software

$25/User/Mth

Competitive Landscape Top Security Providers by Revenue: IDC, 2011

Legacy HW Appliance Model

SIEM IDPS

Competitive Landscape

Cloud-based Landscape

 Sumo Logic

 MetaFlows

 Alert Logic

  IPTrust

 Symantec.cloud

 Sourcefire Immunet/Razorback

 Zscaler

 Webroot

Why Cloud?

  Light client applications – don’t have to burden having users constantly update end devices with heavy apps.

  End device performance does not become a concern – offload security software to cloud

  Uniform policy across the entire organization – single source for all security services = all devices must abide by a controlled set of consistent policies

  Centralized reporting platform for IT & Execs – a single view of the entire enterprise’s security state, which in many cases is half the battle.

  Zero latency in deployment – by having a global distribution network via cloud services, all organizations are covered quickly

Thank You!

Security Is Impacting Cloud Adoption

IDC, 2010