1. Market Research
  2. > Computer Security Market Trends

Analysis of the SIEM and Log Management Market

  • November 2013
  • 73 pages
  • Frost & Sullivan
Report ID: 1870988


Table of Contents

Continuous Security Intelligence

Security information event management (SIEM) and log management products are gaining a strong following as enterprise organizations look for techniques to defend against advanced threats and persistent hackers. As cyber attacks become more sophisticated, organizations are implementing security products, such as SIEM, to protect their virtual and physical assets. Large organizations leverage SIEM to gain the continuous security intelligence needed to protect against threats that inevitably defeat antivirus , intrusion detection systems (IDS), network behavior analysis devices, and firewall defenses.

Executive Summary

• Frost & Sullivan estimates the global Security Information and Event Management (SIEM) and Log Management (LM) market at $Xbillion for 2012. The SIEM/LM market is estimated to grow at an X% CAGR through 2017 and reach $X billion.
• Frost & Sullivan considers Security Information and Event Management/Log Management (SIEM/LM) to be a mature market with little competitive movement among the top revenue-producing companies. SIEM/LM is very much a displacement market (i.e., one vendor’s product replacing another) and it is also common to see an incumbent SIEM positioned as a data feed to a competing vendor.
• The primary driver at the high end of the market is continuous security intelligence to protect against threats that inevitably defeat antivirus (AV), intrusion detection & intrusion prevention system (IDS/IPS), network behavior analysis devices (NBAD), and firewall (FW) defenses.
• The primary driver at the low end of the market is compliance with regulatory mandates at lower price points. In this market segment, vendors follow a cloud-delivery model to capture new SIEM/LM businesses where there is no incumbent to displace. Incremental features will be added over time to appeal to more than first-entry SIEM/LM customers.
• Unlike other security sectors, the federal government represents the leading vertical for many vendors, a trend that will continue through 2017 with increasing cybersecurity budgets, though there is always the risk of government budget cuts.

CEO’s Perspective

1. SIEM based intelligence becomes focal point of continuous security intelligence
2. Log Management critical for complying with regulatory mandates
3. Federal government remains the leading vertical for many
4. Privacy issues inhibit multi-national SIEM/LM deployments in EMEA
5. Cloud vendors find traction extending the low end of the market

Market Overview—Definitions

Log Management (LM) - The collection, administration, and archiving of cyber-information—tackles the Big Data problem. Frost & Sullivan considers LM to provide the foundation for continuous compliance and SIEM analysis. Types of information collected include:
oSecurity events from sources such as firewalls, intrusion detection & intrusion prevention systems, and host-based antivirus are collected in centralized systems by LM.
oNetwork flows provide information on communications within the network—essential for tracing an attack.
oApplication logs, from Web servers, application servers, and database servers, for example, provide operations information.
oManagement feeds including Syslog and Simple Network Management Protocol (SNMP) provide standardized mechanisms for delivering information to Log Management.
oCustom-developed connectors for translating proprietary protocols and delivering custom information to LM are developed and deployed when necessary.

Security Information and Event Management (SIEM) – The continuous correlation, analysis, and reporting of security and operational information—tackles the Security Intelligence problem. Frost & Sullivan considers SIEM to be essential in translating the information stored within LM into actionable intelligence.
• For many vendors, SIEM includes LM features.
• SIEM will drive the inclusion of more information into LM, including:
oThreat feeds with profiles of newly discovered cyber-attacks. Security teams use threat feeds to measure the risk of new attacks to their businesses and to take preventive actions before security signature updates are created.
oVulnerability scans, targeted at specific resources on demand by SIEM, allow IT to embark on continuous compliance and monitoring programs.
oBusiness intelligence and analytic systems allow IT operations to associate security actions with business priorities.

Key Questions This Study Will Answer

How can I tell earlier if my network is being victimized by a cyber-attack?
How can I better drive the costs out of complying with government and industry security regulations?
What are the major opportunities in the SIEM/LM security segment?
Who are the leading SIEM/LM vendors? Who are the upstarts to keep an eye on?
What are the financial profiles of the SIEM/LM market? Is the market growing or contracting?
What are the major trends being established by the SIM/LM market leaders?

Get Industry Insights. Simply.

  • Latest reports & slideshows with insights from top research analysts
  • 60 Million searchable statistics with tables, figures & datasets
  • More than 25,000 trusted sources
  • Single User License — provides access to the report by one individual.
  • Department License — allows you to share the report with up to 5 users
  • Site License — allows the report to be shared amongst all employees in a defined country
  • Corporate License — allows for complete access, globally.

Amrita helps you find the right report:


The research specialist advised us on the best content for our needs and provided a great report and follow-up, thanks very much we shall look at ReportLinker in the future.

Kate Merrick

Global Marketing Manager at
Eurotherm by Schneider Electric

We were impressed with the support that ReportLinker’s research specialists’ team provided. The report we purchased was useful and provided exactly what we want.

Category Manager at

ReportLinker gave access to reliable and useful data while avoiding dispersing resources and spending too much time on unnecessary research.

Executive Director at
PwC Advisory

The customer service was fast, responsive, and 100% professional in all my dealings (...) If we have more research needs, I'll certainly prioritize working with ReportLinker!

Scott Griffith

Vice President Marketing at
Maurice Sporting Goods

The research specialist provided prompt, helpful instructions for accessing ReportLinker's product. He also followed up to make sure everything went smoothly and to ensure an easy transition to the next stage of my research

Jessica P Huffman

Research Associate at
American Transportation Research Institute

Excellent customer service. Very responsive and fast.

Director, Corporate Strategy at

I reached out to ReportLinker for a detailed market study on the Air Treatment industry. The quality of the report, the research specialist’s willingness to solve my queries exceeded my expectations. I would definitely recommend ReportLinker for in-depth industry information.

Mariana Mendoza

Global Platform Senior Manager at
Whirlpool Corporation

Thanks! I like what you've provided and will certainly come back if I need to do further research works.

Bee Hin Png

CEO at
LDR Pte Ltd

The research specialist advised us on the best content for our needs and provided a great report and follow-up, thanks very much we shall look at ReportLinker in the future.

Kate Merrick

Global Marketing Manager at
Eurotherm by Schneider Electric

Purchase Reports From Reputable Market Research Publishers

Asia-Pacific Web Application Firewall Solutions Market, Forecast to 2021

  • $ 15000
  • Industry report
  • May 2017
  • by Frost & Sullivan

Escalation of Sophisticated Attacks on Web Applications Driving Market Growth The Asia-Pacific (APAC) Web application firewall (WAF) solution market continued to grow tremendously in 2016 by 27.6% year-on-yea ...

Managed Network Services Market by Service, Organization Size, End-Use Vertical, and Region - Global Forecast to 2021

  • $ 5650
  • Industry report
  • February 2017
  • by MarketsandMarkets

“Growing demand for managed network services, greater network accessibility, and superior network security, and the need for improving the business process at a minimum cost are driving the managed network ...

Privileged Identity Management Market by Solution, Service, Installation Type, Deployment Mode, Vertical, and Region - Global Forecast to 2021

  • $ 5650
  • Industry report
  • March 2017
  • by MarketsandMarkets

Protection from increasing instances of security breach due to insider attacks is driving the privileged identity management market The privileged identity management market size is expected to grow from ...

Top 10 Security Technologies

February 2017 $ 5650


Reportlinker.com © Copyright 2017. All rights reserved.

ReportLinker simplifies how Analysts and Decision Makers get industry data for their business.