Infonetics Research White Paper Infonetics Research, Inc.



Similar documents
High-End Firewall Strategies

The Cost Effective Migration to Integrated Hybrid SaaS Security

Enterprise Networking and Communication Vendor Scorecard

WHITE PAPER RUN VDI IN THE CLOUD WITH PANZURA SKYBRIDGE

Hybrid Cloud Architecture: How to Streamline Hybrid Cloud Migration

Global Service Providers Identify Optical Equipment Leaders

Delivering Security Virtually Everywhere with SDN and NFV

Data Center Security Strategies and Vendor Leadership: North American Enterprise Survey

Public or Private Cloud: The Choice is Yours

Archiving: To SaaS or not to SaaS?

Cloud, Appliance, or Software? How to Decide Which Backup Solution Is Best for Your Small or Midsize Organization.

OTN, MPLS, and Control Plane Strategies

Why SAAS makes sense: The benefits of Cloud Computing for Archiving

Whitepaper : Cloud Based Backup for Mobile Users and Remote Sites

Symantec Messaging Gateway powered by Brightmail

4 Critical Risks Facing Microsoft Office 365 Implementation

Archiving: To SaaS or not to SaaS?

INFORMATION PROTECTED

Reducing Downtime Costs with Network-Based IPS

When your users take devices outside the corporate environment, these web security policies and defenses within your network no longer work.

Cost Savings Solutions for Year 5 True Ups

7 things to ask when upgrading your ERP solution

Storage Infrastructure as a Service

10 easy steps to secure your retail network

Data Center Consolidation for Federal Government

Case Study: D+M Group Cloud Consolidation: Migrating 15 physical data centers into three private clouds

Designing & Managing Reliable IT Services

security Cloud vs. On-premise solutions

management solutions

Creative Configurations

Demystifying Virtualization for Small Businesses Executive Brief

The reality of cloud. Go beyond the hype and make a better choice. t e sales@365itms.co.uk.

Cautela Labs Cloud Agile. Secured. Threat Management Security Solutions at Work

How On-Premise ERP Deployment Compares to a Cloud (SaaS) Deployment of Microsoft Dynamics NAV

Windows Server 2003 Migration: Take a Fresh Look at Your IT Infrastructure

The Case for Cloud-Based Dentistry

OpenText Fax Servers and Microsoft Office 365

THE CORNERSTONE DIFFERENCE

Making the Transition. From ISV to SaaS. with Xterity Wholesale Cloud

Taking the Leap to Virtualization

Strengthen Microsoft Office 365 with Sophos Cloud and Reflexion

Unified Communications: The Layman s Guide

RESEARCH NOTE NETSUITE S IMPACT ON E-COMMERCE COMPANIES

The Journey to Cloud Computing: from experimentation to business reality

Cloud Computing: It s In Your Future. What You Need to Know about Logicalis and Cloud Computing

Symantec Messaging Gateway 10.5

Journey to SaaS: How You Can Grow Your Software Business by Moving to the Cloud

Cloud Without Limits: How To Deliver Hybrid Cloud With Agility, Governance, And Choice

ANALYTICS PAYS BACK $13.01 FOR EVERY DOLLAR SPENT

Cloud, On-premises, and More: The Business Value of Software Deployment Choice

The Advantages of Security as a Service versus On-Premise Security

security Cloud vs. On-premise solutions

HOW TO BUY ERP. SaaS, Custom, Packaged, or Hybrid Software? A Buyer s Guide to Purchasing ERP Solutions

are you helping your customers achieve their expectations for IT based service quality and availability?

Varonis: Secure Enterprise Collaboration and File Sharing Date: June 2015 Author: Terri McClure, Senior Analyst; and Leah Matuson, Research Analyst

Technology Blueprint. Protect Your . Get strong security despite increasing volumes, threats, and green requirements

ATS. The. The Staffing Agency s Guide to Buying an Applicant Tracking System

Virtual Desktop Infrastructure Optimization with SysTrack Monitoring Tools and Login VSI Testing Tools

Building a Multi-Channel Contact Center

Zentera Cloud Federation Network for Hybrid Computing

VMware vcloud Powered Services

Building on a Foundation for Growth: Integrating DLP with Message Security Infrastructure

The Role of the Operating System in Cloud Environments

The Headache of Managing an Service Top 10 Reasons to Outsource. White Paper July 08

Redefining Infrastructure Management for Today s Application Economy

Five Tips to Ensure Data Loss Prevention Success

Building a Multi-Channel Contact Center

SELLING SHAREPOINT ENGAGEMENTS IN THE CLOUD ERA A GUIDE FOR MICROSOFT SI PARTNERS

Encryption Made Simple

Moving to the Cloud: Truth or Dare? Debunking 5 Myths of Hosted Contact Centers

Virtualization Essentials

Transcription:

Infonetics Research White Paper Hybrid E-mail Security: Integrating SaaS and On-Premise Solutions By JEFF WILSON Principal Analyst, Security JUNE 2010 Hybrid e- mail security E-mail-borne threats and spam are ubiquitous problems with no end in sight. No company can afford to be without an e-mail security solution, and most companies around the globe have made some level of investment in e-mail security, but there are still threats and victims. If a company has invested in an e-mail security solution and still finds it has an insurmountable spam problem, or still finds its employees falling victim to e-mail-borne threats, it often has to do with the way e-mail security is purchased and rolled out. For many companies, e-mail security purchases are reactive. Everything is clicking along perfectly one day, and then the next day there s simply too much spam to effectively deal with, and mail servers slow down to a crawl. This is followed by the inevitable IT fire drill and the purchase of a product that may not solve the long-term problem. Purchasing e-mail security solutions this way often leads organizations to have mixed environments, with e-mail server gateway and hosted solutions layered in the same network. There are many hosted/saas e-mail security solutions available, which solve some deployment problems and help IT departments come to terms with massive volumes of spam and e-mail-borne threats. However, they add an additional layer of management complexity because they are generally deployed on top of existing on-premise gateway hardware or software security solutions. We suspected that there are many organizations using hybrid e-mail security solutions created by deploying hosted/ SaaS security in addition to their existing on-premise e-mail security products, often from multiple vendors. We lacked the proof however, so we devised a survey to find out how common this practice really is, what issues customers are trying to solve with these hybrid solutions, and respondent interest in an integrated hybrid e-mail security solution from a single vendor. Using a panel of qualified IT decision-makers, in May 2010 we conducted a web survey of 150 US organizations that have at least 1,000 users in their e-mail environments. Survey respondents have detailed knowledge of the e-mail security products and services their company uses, and have influence in the e-mail security purchase process. This paper discusses the results of the survey and our conclusions based on those results. ACCURATE. OBJECTIVE. PROVEN. Research and analysis you can rely on.

IT S A GRASS-ROOTS MOVEMENT First we asked respondents what types of e-mail security solutions they have deployed. Thirty-seven percent use onpremise solutions only (software or appliance gateway products), while 16% use hosted solutions or SaaS only. The single most significant finding of this survey is simply this: nearly half of respondents, a random sample of enterprise e-mail environments, have a do-it-yourself hybrid on-premise and hosted solution. use of hybrid e-mail security is widespread Hosted 16% On-premise 37% Hybrid 46% Respondent responses to the question: What does your company use for e-mail security? This points to the nature of the buying process for e-mail security; many companies have a primary e-mail security solution, but will bolt on other solutions as needed. In some cases new solutions must be purchased to handle new threats not covered by existing solutions. In other cases there is an immediate capacity need, and there s no time to evaluate and buy new products, so hosted solutions make perfect sense. Mergers and acquisitions often leave enterprises with disparate mail security solutions as well. The cases are many and varied, but the end result is the same: rollout of hybrid e-mail security solutions has become a grass-roots movement. Hybrid E-mail Security: Integrating SaaS and On-Premise Solutions 2 June 2010

As a follow-up to the question above, we asked respondents with hybrid solutions to choose from a list of factors that drove their deployments. Their responses boiled down to 2 key issues: increasing the level of security, and reducing the time/cost involved with deploying and managing e-mail security. It is clear that layering hosted/saas solutions on top of existing on-premise products is an additive solution. hybrid solutions increase security strength and decrease workload Reasons Keep threats off the network Add another layer of security Save staff time Reduce inbound e-mail volume Reduce costs 73% 71% 70% 64% 61% Data center consolidation 53% E-mail security for hard to reach users 51% Corporate SaaS initiative 36% 0% 20% 40% 60% 80% 100% Percent of Respondents Respondent responses to the question: Why did you choose to deploy hosted e-mail security in addition to on premises e-mail security products? The variety in the drivers above, and the strong responses for nearly all of them (other than corporate SaaS initiatives) is more evidence that companies will continue to deploy hosted e-mail security on top of an on-premise solution whether it s in the plan or not, simply as a reaction to security events and capacity requirements. Hybrid E-mail Security: Integrating SaaS and On-Premise Solutions 3 June 2010

So given that 46% of our respondents have deployed do-it-yourself hybrid solutions from Infonetics multiple vendors, Research, we Inc. wanted to understand whether the management and reporting is automated or manual, and among respondents managing them manually, if reporting is integrated. Most respondents manually manage their solutions and manually integrate reporting, or manually manage but don t integrate; 32% of respondents use an automated solution. This certainly creates a variety of challenges for IT departments. First, for those developing their own automated solutions, there is an investment in time and resources to develop and maintain that solution, which though functional, is probably missing many of the capabilities of their individual management and reporting tools for on-premise and hosted solutions. Respondents who integrate manually face the same issues as those developing their own automated solutions, but the problem is magnified, and respondents who don t integrate management and reporting have no way to ensure that policies and security are consistent across their hybrid solution. 66% of respondents manage hybrid solutions manually or separately Manually integrate management 50% Develop automated solution 32% Manage separately 16% 0% 20% 40% 60% 80% 100% Percent of Respondents Respondent responses to the question: How do you manage messaging policies, reporting, and message tracking across your layered hosted and on-premise e-mail security deployment? Hybrid E-mail Security: Integrating SaaS and On-Premise Solutions 4 June 2010

Market INTEGRATED HYBRID Highlights SOLUTIONS ARE THE KEY 1Q09 MOVING FORWARD Looking forward, it seems logical that integrated hybrid solutions from a single vendor, offering one console for management, reporting, and administration of the SaaS and on-premise e-mail security, are critical in shoring up the leaks in hybrid solutions that many customers have built on their own. Integrated hybrid solutions with a single management console would alleviate many of the headaches of managing separate on-premise and SaaS solutions by: Providing a single location for managing quarantined messages Unifying message tracking capability Removing the need to manually build integrated reports for auditing/compliance issues Centralizing all e-mail security policies We asked respondents what they think about integrated on-premise/hosted solutions from a single vendor. Would they deploy if it were available, or is something else keeping them from looking at integrated solutions? Respondents are nearly unanimous in their interest in integrated hybrid solutions, with 93% stating they would either consider deploying or would definitely deploy (half said they would definitely deploy). As a follow-up, we asked in an openended question why respondents would deploy an integrated hybrid solution, and the responses were nearly all along the lines of, it would be much more cost effective, it would make management easier, and it would be more secure. strong interest in single-vendor integrated hybrid solutions Would consider deploying 50% Would definitely deploy 43% Don t know 6% Would not deploy 1% 0% 20% 40% 60% 80% 100% Percent of Respondents Respondent responses to the question: If it were available, would you purchase a solution that integrated deployment, management, and reporting for a hybrid e-mail security product that combined hosted e-mail security with an on-premise solution from a single vendor? Hybrid E-mail Security: Integrating SaaS and On-Premise Solutions 5 June 2010

To hammer the point home, we asked respondents if they believe that the cost (in time and resources) of deploying hybrid solutions for e-mail security could be significantly reduced if they purchased an integrated solution from a single vendor. Eighty percent of respondents said they do. Looking back at the question about how respondents currently manage hybrid solutions, it s easy to see why the cost savings could be significant. respondents think integrated solutions mean significant savings Don t know 14% No 6% Yes 80% REQUIREMENTS FOR INTEGRATED HYBRID E- MAIL SECURITY SOLUTIONS That really leaves one remaining question: what should an integrated hybrid e-mail security solution look like? That question alone could be the subject of another full survey. Many vendors in this space are just starting to roll out their integrated hybrid products and there s no consensus yet on what makes a complete integrated hybrid solution, but there are some key components, such as: Common threat detection engine that works for both on-premise products and SaaS Common management platform that can either operate in the cloud or on-premise, or both Single source for policies that can be applied on-premise or in the cloud Simultaneous update of threat engines/databases for on-premise and hosted solutions Consistent user experience (interface, performance) for on-premise and hosted solutions In short, the solution shouldn t force the IT department to make sacrifices when deciding whether a particular user or location is covered by an on-premise or hosted solution, it should simply be a matter of what makes the most sense from a deployment and cost standpoint. In the words of one of our respondents, I m interested in an integrated hybrid solution from a single vendor because it would make life a lot easier. Hybrid on-premise and hosted e-mail security SaaS solutions are here to stay; now it s up to e-mail security vendors to offer integrated solutions so that IT departments can recover the time lost deploying and managing separate solutions, and improve their overall e-mail security posture. 900 EAST HAMILTON AVENUE SUITE 230 CAMPBELL, CALIFORNIA 95008 TEL 408.583.0011 FAX 408.583.0031 Silicon Valley, CA Boston Metro, MA London, UK Copyright 2010

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information