Building strong detection and response capabilities is vital for organizations seeking to improve their cybersecurity posture and business resilience.
Many organizations do not have the in-house skills or resources to make the required improvements in detection and response. For example, just 15% of large organizations in Europe have sufficient security operations center (SOC) analyst skills in house, and churn and burnout among these analysts are often high. These challenges can have a strong negative impact on a company’s cybersecurity posture.
Consequently, many organizations are turning to service providers to fill specific gaps in their detection and response capabilities or are outsourcing their requirements in full.
The high level of interest in managed detection and response (MDR) has led to many service providers entering the market, which has now become highly competitive, providing customers with a greater range of services. This is not always the case for IT services markets, some of which are dominated by a handful of players.
The choices for detection and response include telecom and network players, IT services companies, systems integrators, cybersecurity specialists, professional services companies, and vendors with services offerings. Each has something different to offer enterprises.
Many of the service providers in this market have a global presence, others have a more regional focus. Service providers have different types and levels of skills and knowledge, and so there are differences in the ways they can support the unique needs of European organizations.
Europe is a complex patchwork of numerous factors, including cultural, language, economic, and regulatory factors (among others)meaning that in-region (and sometimes in-country) capabilities are vital to meet customers’ objectives.
The IDC MarketScape: European Managed Detection and Response Services 2024 Vendor Assessment examines the strengths and weaknesses of leading providers of European MDR services. We have identified eight leaders and nine major players in this market, providing a detailed analysis of the services offered by each; this is aimed at providing European organizations with clear guidance to assist them in their purchasing decisions.
There are marked differences between providers in terms of target customers, technical capabilities, and detailed expertise in addressing the needs of European organizations. Organizations should evaluate all these aspects carefully to ensure they choose a service provider that delivers on their business and technology objectives. This will include making optimal decisions that relate to technical capabilities, services and skillsets, target markets, and strategic roadmaps.
One critical area to consider is onboarding and time-to-value. Customers should ensure they are clear on delivery capabilities and the desired operating model. They should be fully informed by their provider in advance how they will be onboarded and the timing of key steps.
As the threat landscape is becoming ever more complex, with a growing ecosystem of actors, the need for proactive detection and response capabilities is becoming essential for all organizations across the region. According to IDC’s EMEA Security Services Survey, MDR is now a priority for 65% of organizations, with the market in Europe forecast to record a compound annual growth rate of 29.2% from 2022 to 2027.