The Rising Role of Security in Advanced IT Analytics
June 16, 2016

Dennis Drogseth
EMA

Share this

In two prior blogs I provided some highlights from EMA's Advanced IT Analytics (AIA) research earlier this year, and explained how AIA goes beyond being just a market. (I haven't changed my opinion there, by the way. Right now I'm using the term "landscape of innovation" for AIA, which many in the industry still call "IT Operations Analytics.") In that second blog, I also explained that AIA isn't just about operations, but rather it's a unifying investment that may well span all of IT and even support a growing number of business stakeholders.

As a quick refresher, the research was done in Q1 of this year, and we spoke to 250 respondents — 150 in North America and 100 in Europe (England, France and Germany). We targeted companies over 500 employees with fairly good spread between those over 20,000 employees and smaller businesses. Our leading verticals were finance and banking, high tech software, manufacturing and retail in that order. We tried not to legislate what our respondents thought AIA was or should be, although we did require high-volume, cross-domain (network, systems, applications, etc.) data collection from many different sources, as well as the application of some level of advanced heuristics. The goal was to find out what actual IT priorities were, not to prematurely force them into a box.

In this blog I'd like to highlight one very critical area of AIA that came out in my research: the growing role of security as an integrated requirement for performance, change and capacity management. The truth is, our EMA research did not approach security as a separate use case, but did include security options in questions regarding data source, triage, and other parameters. In fact only 6% of those participating indicated that security was their job description. This contrasted with 21% in operations planning and design and 10% in IT performance engineering.

Here's a look at some of our respondents' priorities. (Remember that we didn't require security roles or use case to do this research, but instead were focusing on performance, change and capacity management.)

Security led the charge for triage and diagnostics: Security came in first followed by what I'd expected to win — isolating whether the problem was in the application, server, network or database. Isolating infrastructure issues in the network came in third followed by isolating problems in provisioning applications. Security's high ranking surprised me, but when I checked earlier research from 2014, I saw that security (or security information and event management or SIEM) was already tied for first place with triage across the application infrastructure.

Security Information and Event Management also led as a data source: Once again security came in first place, this time followed by Internet of Things (IoT). This was an even bigger surprise given past history, as in 2014 the lead data source was, believe it or not, Excel spreadsheets. In fact, the trend in 2016 indicates much more sophisticated attention to data sources, with business process impacts and application transaction data (for technical and business performance) also topping the charts.

Security tied for first place in domain role support: Security tied, in fact, with systems management followed by application development, database and cloud architecture.

Security led in three of the four top AIA use cases directed at supporting the move to cloud: To be specific, the number one priority for AIA-enabled support for the move to public/private or hybrid cloud was improved network security. This was followed by hybrid cloud optimization, compliance and integrated security and performance. Finally, real-time service performance (the ostensible focus for our research) came in fifth. What this tells me is that the move to cloud though desirable is also a little scary — nothing new there. But what is new, at least to me, is security's growing role as an integrated part of AIA initiatives supporting performance and change.

The ascendance of security in core operations and even ITSM concerns is of interest to me even though I'm not the security analyst at EMA (that's David Monahan). Years ago, well before Dave joined, I worked with our security lead to promote joint research and other initiatives across security, performance and change management. But the reaction ten years ago was a lot of nods and no action. The industry just wasn't ready.

Now, it seems, things are changing and they are changing dramatically. Security, operations and even IT service management are becoming much more closely intertwined than in the past. The reasons for this are manifold and include the move to cloud, the pressures from our "digital age" on more cross-domain ways of working, and the need for managing change in a far more dynamic, less conflicted, and "risk free" (or its pragmatic equivalent) way.

One of the critical catalysts for this is in fact AIA. By bringing many multiple data sources together and applying advanced analytic techniques, AIA is becoming a powerful enabler for truly integrating security and service delivery — two worlds that still have different metrics, processes and cultures, but which are finally seeking to work together in a way that was unprecedented in the past.

For more information, view a video on this data and research.

Dennis Drogseth is VP at Enterprise Management Associates (EMA).

Dennis Drogseth is VP at Enterprise Management Associates (EMA)
Share this

The Latest

June 26, 2017

Many organizations are struggling to resolve customer-impacting incidents quickly enough to preserve brand loyalty and revenue, according to PagerDuty's recent State of Digital Operations Report ...

June 23, 2017

"Become the Automator, Not the Automated." While it's a simple enough phrase, it speaks directly to how today's organizations and IT teams must innovate to remain competitive. A critical aspect of innovation is acknowledging the digital transformation of businesses. The move to digitalization enables organizations to more effectively unlock the power of information technology (IT) to fuel and accelerate business innovation. It is a competitive weapon and a survival imperative ...

June 22, 2017

Executives in the US and Europe now place broad trust in Artificial Intelligence (AI) and machine learning systems, designed to protect organizations from more dynamic pernicious cyber threats, according to Radware's 2017 Executive Application & Network Security Survey ....

June 21, 2017

While IT service management (ITSM) has too often been viewed by the industry as an area of reactive management with fading process efficiencies and legacy concerns, a new study by Enterprise Management Associates (EMA) reveals that, in many organizations, ITSM is becoming a hub of innovation ...

June 20, 2017

Cloud is quickly becoming the new normal. The challenge for organizations is that increased cloud usage means increased complexity, often leading to a kind of infrastructure "blind spot." So how do companies break the blind spot and get back on track? ...

June 19, 2017

Hybrid IT is becoming a standard enterprise model, but there’s no single playbook to get there, according to a new report by Dimension Data entitled The Success Factors for Managing Hybrid IT ...

June 16, 2017

Any mobile app developer will tell you that one of the greatest challenges in monetizing their apps through video ads isn't finding the right demand or knowing when to run the videos; it's figuring out how to present video ads without slowing down their apps ...

June 15, 2017

40 percent of UK retail websites experience downtime during seasonal peaks, according to a recent study by Cogeco Peer 1 ...

June 14, 2017

Predictive analytics is a popular ITOA technology that you can leverage to improve your business by leaps and bounds. Predictive analytics analyzes relationships among various data points to predict behavioral trends, growth opportunities and risks, which can add critical value to your business. Here are a few questions to help you decide if predictive analytics is right for your business ...

June 13, 2017

Many organizations are at a tipping point, as new technology demands are set to outstrip the skills supply, according to a new Global Digital Transformation Skills Study by Brocade ...