Career Contact Us
Menu

From perimeter to data: The five layers of cyber security

With more and more devices, cars, homes and – not least – production and manufacturing processes being connected to the internet, businesses and individuals are increasingly exposed to cyber-risks and vulnerable to cyber-attacks. This growing need for protection means a requirement for more sophisticated approaches to cyber security – something that is providing attractive opportunities for investors to participate in the growth prospects of companies at the forefront of these developments. Indeed, the layered approach that this article discusses has proven to be the most effective as malefactors only need to be right once, while security professionals – and the organisations they protect – need to be right all the time.

Perimeter security: the first line of defence

Perimeter security has traditionally been synonymous for firewalls; i.e., the protection of data and systems by filtering out potentially dangerous or unknown traffic. With the growing ubiquity of the cloud and remote access, perimeter security solutions – once designed to locally manage and protect local networks - must now adapt to this new and more complex landscape.

The transformation of network security defence

Network security covers both hardware and software technologies, and processes and devices that protect a network and its data from harm. Again, the expansion of the cloud and working from home/anywhere are fundamentally changing the landscape here; networks now also include the path to the cloud and hybrid infrastructures that may consist of on-premises data centres, public/private cloud instances, and SaaS applications. 

Perimeter and network security

With an increasing use and a deeper integration of cloud technologies into business processes and with the establishment of flexible work models (on-site, remote and hybrid), many organizations are struggling with more complex network and data vulnerability issues. Innovators in this sector are thus rethinking established security concepts and developing new models. For instance, Zscaler and CrowdStrike have developed a solution based on the idea of “zero trust”, where user identity, device posture (i.e., a device’s security credentials), and access policies are used to grant or withhold access rights. These risk-based conditional access solutions help steering a multitude of individual access requirements from users by detecting in real time possible threats which may arise when identities don’t match with corresponding access rights. This, in turn, protects complex and thus more vulnerable IT environments from breaches.

Endpoint security: where a network’s safety begins

The growing use of the cloud is also resulting in profound changes in how endpoints – i.e., any device that is connected to the network and can communicate both ways – should be protected from cyberattacks. Indeed, malicious actors now often target the vulnerability of endpoint devices to get access to a network while, until relatively recently, they would have focused on breaching perimeter security.

Given the increasing proliferation of devices connected to organization’s networks, the growth of the “internet of things” (IoT), and the unique risks associated with “bring your own device” (BYOD) policies, endpoint security is likely to represents a particularly strong growth area for the foreseeable future. Indeed, some estimates suggest that the endpoint security market will grow at a CAGR of 8.3% by 2028, reaching a value of USD 24.58 bn.1

Endpoint security

Formed in 2011, CrowdStrike has developed a comprehensive endpoint security offering comprising of a range of unified modules to prevent breaches. Their Falcon platform collects cyber security data – processing over 6 trillion events per week2 – and leverages AI to constantly improve its performance ands deliver one of the highest detection and efficacy rates in the industry.

The company’s annual recurring revenue grew by 65% year-on-year to exceed 1.7 billion, as of January 31, 2022.3

Endpoint security market: projected market CAGR of 9.4% by 2026, reaching a value of USD 22 billion4

Application security: defending apps and users

Application security is as multifaceted as applications themselves. It includes not only the procedures used to protect websites and apps while in use, but also those used during their development and design. 

Again, the rise of the cloud is changing the game here. With more and more organizations hosting resources in this way, application security is becoming ever more complex. Recent research suggests that the global application security market will experience a CAGR of 18.30% by 2028 reaching a value of USD 22.54 bn, up from USD 6.95 USD bn in 2021.5

Application security

One of the leaders in a range of cyber security areas and disciplines, Zscaler’s “Private Access” (ZPA) solution applies the principles of zero trust and segmentation to give users secure and direct connectivity to apps while eliminating unauthorized access via “zero trust network access” (ZTNA). ZPA is currently the world’s most deployed ZTNA platform6 , and this model is expected to become dominant in the coming years – Gartner predicts that, by 2025, over 70% of remote access deployments will use ZTNA7.

Application security – projected market CAGR of over 18% by 2028, reaching a value of USD 22.54 billion8

Data security: the heart of protection

The protection of data across platforms and applications connected to an organization’s network is often considered the paramount discipline of cyber security. The safeguarding of data is vital for every enterprise as many companies base their processes and business models on the storage, transmission, and, not least, the monetarization of gathered internal and external data. Indeed, the consequences of breaches in this respect present one of the greatest risks to companies and other organisations in terms of potential liability and reputational damage.

Data security

According to Cowen Research and Boston Consulting Group, the “human element” is responsible for at least three quarters of cyber breaches. Issues here include, for example, users failing to follow security protocols or becoming victim to deceptive communications or other forms of social engineering. For this reason, security awareness training for staff remains key to limiting such breaches. KnowBe4, the world’s largest security awareness training and simulated attack platform9 , offers a range of programmes to help build more resilient and secure organizations. Founded in 2010, the company employs over 47,000 staff and its annual recurring revenue grew by 44% year-on-year in 2021 to reach over USD 285 million. It was also named a “Leader in Security Awareness and Training Solutions” by Forrester Research in Q1 2022.

Allianz Global Investors identifies first movers in cybersecurity

When it comes to cyber security, it is vital for companies to stay a step ahead of malicious actors. Cybercrime is, and will continue to be, a difficult-to-assess risk. Leading companies providing solutions in this area are thus likely to benefit from the growing need for holistic cyber security approaches – a need that will only become more pertinent, and complex to address, in the coming years. 

Allianz Global Investors identifies innovators and first movers in cyber security across the full range of cyber security solutions, especially those that provide innovative solutions to protect applications, organizations, and users in complex cloud environments.

1 https://www.globenewswire.com/news-release/2023/01/20/2592453/0/en/endpoint-security-market-size-worth-usd-24-58-billion-by-2028-report-by-fortune-business-insights.html
2 https://www.crowdstrike.com/blog/the-crowdstrike-security-cloud-network-effect/
3 https://strategyofsecurity.com/earnings-crowdstrike-and-sentinelone-2022-annual-earnings-recap
4 https://www.prnewswire.com/news-releases/endpoint-security-global-market-report-2022-sector-to-reach-22-billion-by-2026-at-a-cagr-of-9-4-301712341.html,%20as%20of%20March%202023
5 https://www.vantagemarketresearch.com/industry-report/application-security-market-1406,%20as%20of%20June%202022
6 https://www.zscaler.com/products/zscaler-private-access
7 https://www.datacenterknowledge.com/security/gartner-zero-trust-will-replace-your-vpn-2025, as of October 2022
8 https://www.vantagemarketresearch.com/industry-report/application-security-market-1406, as of June 2022
9 https://www.knowbe4.com/en/products/enterprise-security-awareness-training/

2900311

Recent insights

A woman looking up at the intricate ironwork of the Eiffel Tower from below

Navigating Rates

French government changes: market factors to watch

France is in the grip of political upheaval. But what is the impact on markets?

Discover more

06/12/2024

Aeriel view of water shown through low cloud, with step hills on either side

Achieving Sustainability

Sustainable investing in 2025: five themes to watch

After a year dominated by elections, 2025 will be framed by the aftershocks. We explore five topics that will influence sustainable investing in 2025.

Discover more

04/12/2024

Close-up of a microchip on a circuit board, glowing with orange and gold highlights.

Are semiconductors the new utilities?

Due to both escalating trade tensions – most notably between the US and China – and its growing importance for the rapid development and implementation of AI, the semiconductor industry is currently top of the list of talking points for many market participants.

Discover more

04/12/2024

Allianz Global Investors

You are leaving this website and being re-directed to the below website. This does not imply any approval or endorsement of the information by Allianz Global Investors Asia Pacific Limited contained in the redirected website nor does Allianz Global Investors Asia Pacific Limited accept any responsibility or liability in connection with this hyperlink and the information contained herein. Please keep in mind that the redirected website may contain funds and strategies not authorized for offering to the public in your jurisdiction. Besides, please also take note on the redirected website’s terms and conditions, privacy and security policies, or other legal information. By clicking “Continue”, you confirm you acknowledge the details mentioned above and would like to continue accessing the redirected website. Please click “Stay here” if you have any concerns.

Welcome to Allianz Global Investors, Asia Pacific

Select your role
  • Institutional Investor

  • The website is for use by qualified Institutional Investors (or Professional/Sophisticated/Qualified Investors as such term may apply in local jurisdictions).

    Please read this page before proceeding. By clicking to “OK” this site, the entrant has agreed that he/she has reviewed and agreed on the terms contained herein in their entirety including any legal or regulatory rubric and has consented to the collection, use and disclosure of his or her personal data as set out in the Privacy referred to below.

    The information contained in this website is made available for informational purposes only. Any form of publication, duplication, extraction, transmission and passing on of the contents of this website is impermissible and unauthorised.

    Local Restrictions

    This website or information contained or incorporated in this website has not been, and will not be submitted to, become approved/verified by, or registered with, any relevant government authorities under the local laws. This website is not intended for and should not be accessed by persons located or resident in any jurisdiction where (by reason of that person's nationality, domicile, residence or otherwise) the publication or availability of this website is prohibited or contrary to local law or regulation or would subject any AllianzGI entity to any registration or licensing requirements in such jurisdiction. It is your responsibility to be aware of, to obtain all relevant regulatory approvals, licenses, verifications and/or registrations under, and to observe all applicable laws and regulations of any relevant jurisdiction in connection with your entrant to this Website.

    This website or information contained or incorporated in this website have been prepared for informational purposes only without regard to the investment objectives, financial situation, or means of any particular person or entity. The details are not to be construed as a recommendation or an offer or invitation to trade any securities or collective investment schemes nor should any details form the basis of, or be relied upon in connection with, any contract or commitment on the part of any person to proceed with any transaction. The details are also not to be construed as soliciting/ promoting any financial products or services or a recommendation to purchase or sell any particular security or strategy or an investment advice.

    Forward-looking statements

    The views and opinions expressed in this website or information contained or incorporated in this website, which are subject to change without notice, are those of Allianz Global Investors at the time of publication. While we believe that the information is correct at the date of this material, no warranty of representation is given to this effect and no responsibility can be accepted by us to any intermediaries or end users for any action taken on the basis of this information. Some of the information contained herein including any expression of opinion or forecast has been obtained from or is based on sources believed by us to be reliable as at the date it is made, but is not guaranteed and we do not warrant nor do we accept liability as to adequacy, accuracy, reliability or completeness of such information. The information is given on the understanding that any person who acts upon it or otherwise changes his or her position in reliance thereon does so entirely at his or her own risk without liability on our part. There is no guarantee that any investment strategies and processes discussed herein will be effective under all market conditions and investors should evaluate their ability to invest for a long-term based on their individual risk profile especially during periods of downturn in the market.

    The content may contain statements that are not purely historical in nature but are forward-looking statements, which are based on certain assumptions, risks and uncertainties. Actual events may differ from the those assumed. There can be no assurance that forward-looking statements will materialised or actual market conditions and/performance results will not be materially different or worse than those presented.

    No information on this website constitutes business, financial, investment, trading, tax, legal, regulatory, accounting or any other advice. If you are unsure about the meaning of any information provided, please consult your financial or other professional adviser.

    No Liability

    Allianz Global Investors shall have no liability for any loss or damage arising in connection with this website or out of the use, inability to use or reliance on the contents by any person, including without limitation, any loss of profit or any other damage, direct or consequential, regardless of whether they arise from contractual or tort (including negligence) or whether Allianz Global Investors has foreseen such possibility, except where such exclusion or limitation contravenes the applicable law.

    You may leave this website when you access certain links on this website. Allianz Global Investors has not examined any of these websites and does not assume any responsibility for the contents of such websites nor the services, products or items offered through such websites.

    Allianz Global Investors shall have no liability for any data transmission errors such as data loss or damage or alteration of any kind, including, but not limited to, any direct, indirect or consequential damage, arising out of the use of this website.

Please indicate you have read and understood the Important Notice.