The Rising Role of Security in Advanced IT Analytics
June 16, 2016

Dennis Drogseth

Share this

In two prior blogs I provided some highlights from EMA's Advanced IT Analytics (AIA) research earlier this year, and explained how AIA goes beyond being just a market. (I haven't changed my opinion there, by the way. Right now I'm using the term "landscape of innovation" for AIA, which many in the industry still call "IT Operations Analytics.") In that second blog, I also explained that AIA isn't just about operations, but rather it's a unifying investment that may well span all of IT and even support a growing number of business stakeholders.

As a quick refresher, the research was done in Q1 of this year, and we spoke to 250 respondents — 150 in North America and 100 in Europe (England, France and Germany). We targeted companies over 500 employees with fairly good spread between those over 20,000 employees and smaller businesses. Our leading verticals were finance and banking, high tech software, manufacturing and retail in that order. We tried not to legislate what our respondents thought AIA was or should be, although we did require high-volume, cross-domain (network, systems, applications, etc.) data collection from many different sources, as well as the application of some level of advanced heuristics. The goal was to find out what actual IT priorities were, not to prematurely force them into a box.

In this blog I'd like to highlight one very critical area of AIA that came out in my research: the growing role of security as an integrated requirement for performance, change and capacity management. The truth is, our EMA research did not approach security as a separate use case, but did include security options in questions regarding data source, triage, and other parameters. In fact only 6% of those participating indicated that security was their job description. This contrasted with 21% in operations planning and design and 10% in IT performance engineering.

Here's a look at some of our respondents' priorities. (Remember that we didn't require security roles or use case to do this research, but instead were focusing on performance, change and capacity management.)

Security led the charge for triage and diagnostics: Security came in first followed by what I'd expected to win — isolating whether the problem was in the application, server, network or database. Isolating infrastructure issues in the network came in third followed by isolating problems in provisioning applications. Security's high ranking surprised me, but when I checked earlier research from 2014, I saw that security (or security information and event management or SIEM) was already tied for first place with triage across the application infrastructure.

Security Information and Event Management also led as a data source: Once again security came in first place, this time followed by Internet of Things (IoT). This was an even bigger surprise given past history, as in 2014 the lead data source was, believe it or not, Excel spreadsheets. In fact, the trend in 2016 indicates much more sophisticated attention to data sources, with business process impacts and application transaction data (for technical and business performance) also topping the charts.

Security tied for first place in domain role support: Security tied, in fact, with systems management followed by application development, database and cloud architecture.

Security led in three of the four top AIA use cases directed at supporting the move to cloud: To be specific, the number one priority for AIA-enabled support for the move to public/private or hybrid cloud was improved network security. This was followed by hybrid cloud optimization, compliance and integrated security and performance. Finally, real-time service performance (the ostensible focus for our research) came in fifth. What this tells me is that the move to cloud though desirable is also a little scary — nothing new there. But what is new, at least to me, is security's growing role as an integrated part of AIA initiatives supporting performance and change.

The ascendance of security in core operations and even ITSM concerns is of interest to me even though I'm not the security analyst at EMA (that's David Monahan). Years ago, well before Dave joined, I worked with our security lead to promote joint research and other initiatives across security, performance and change management. But the reaction ten years ago was a lot of nods and no action. The industry just wasn't ready.

Now, it seems, things are changing and they are changing dramatically. Security, operations and even IT service management are becoming much more closely intertwined than in the past. The reasons for this are manifold and include the move to cloud, the pressures from our "digital age" on more cross-domain ways of working, and the need for managing change in a far more dynamic, less conflicted, and "risk free" (or its pragmatic equivalent) way.

One of the critical catalysts for this is in fact AIA. By bringing many multiple data sources together and applying advanced analytic techniques, AIA is becoming a powerful enabler for truly integrating security and service delivery — two worlds that still have different metrics, processes and cultures, but which are finally seeking to work together in a way that was unprecedented in the past.

For more information, view a video on this data and research.

Dennis Drogseth is VP at Enterprise Management Associates (EMA).

Dennis Drogseth is VP at Enterprise Management Associates (EMA)
Share this

The Latest

March 26, 2020

While remote work policies have been gaining steam for the better part of the past decade across the enterprise space — driven in large part by more agile and scalable, cloud-delivered business solutions — recent events have pushed adoption into overdrive ...

March 25, 2020

Time-critical, unplanned work caused by IT disruptions continues to plague enterprises around the world, leading to lost revenue, significant employee morale problems and missed opportunities to innovate, according to the State of Unplanned Work Report 2020, conducted by Dimensional Research for PagerDuty ...

March 24, 2020

In today's iterative world, development teams care a lot more about how apps are running. There's a demand for fixing actionable items. Developers want to know exactly what's broken, what to fix right now, and what can wait. They want to know, "Do we build or fix?" This trade-off between building new features versus fixing bugs is one of the key factors behind the adoption of Application Stability management tools ...

March 23, 2020

With the rise of mobile apps and iterative development releases, Application Stability has answered the widespread need to monitor applications in a new way, shifting the focus from servers and networks to the customer experience. The emergence of Application Stability has caused some consternation for diehard APM fans. However, these two solutions embody very distinct monitoring focuses, which leads me to believe there's room for both tools, as well as different teams for both ...

March 19, 2020

The 2019 State of E-Commerce Infrastructure Report, from Webscale, analyzes findings from a comprehensive survey of more than 450 ecommerce professionals regarding how their online stores performed during the 2019 holiday season. Some key insights from the report include ...

March 18, 2020

Robinhood is a unicorn startup that has been disrupting the way by which many millennials have been investing and managing their money for the past few years. For Robinhood, the burden of proof was to show that they can provide an infrastructure that is as scalable, reliable and secure as that of major banks who have been developing their trading infrastructure for the last quarter-century. That promise fell flat last week, when the market volatility brought about a set of edge cases that brought Robinhood's trading app to its knees ...

March 17, 2020

Application backend monitoring is the key to acquiring visibility across the enterprise's application stack, from the application layer and underlying infrastructure to third-party API services, web servers and databases, be they on-premises, in a public or private cloud, or in a hybrid model. By tracking and reporting performance in real time, IT teams can ensure applications perform at peak efficiency — and guarantee a seamless customer experience. How can IT operations teams improve application backend monitoring? By embracing artificial intelligence for operations — AIOps ...

March 16, 2020

In 2020, DevOps teams will face heightened expectations for higher speed and frequency of code delivery, which means their IT environments will become even more modular, ephemeral and dynamic — and significantly more complicated to monitor. As a result, AIOps will further cement its position as the most effective technology that DevOps teams can use to see and control what's going on with their applications and their underlying infrastructure, so that they can prevent outages. Here I outline five key trends to watch related to how AIOps will impact DevOps in 2020 and beyond ...

March 12, 2020

With the spread of the coronavirus (COVID-19), CIOs should focus on three short-term actions to increase their organizations' resilience against disruptions and prepare for rebound and growth, according to Gartner ...

March 11, 2020

Whether you consider the first generation of APM or the updates that followed for SOA and microservices, the most basic premise of the tools remains the same — PROVIDE VISIBILITY ...