Jon Oltsik

Jon Oltsik

Jon Oltsik is an ESG senior principal analyst, an ESG fellow, and the founder of the firm’s cybersecurity service. With 30 years of technology industry experience, Jon is widely recognized as an expert in all aspects of cybersecurity and is often called upon to help customers understand a CISO's perspective and strategies.

Recent Posts by Jon Oltsik:

ESG Brief: 2017 Cybersecurity Spending Trends

Abstract:

IT spending for cybersecurity products and services continues to accelerate in 2017 as business and IT executives grapple with the dangerous threat landscape, compounded by the increasing use of cloud services that expand the attack surface area. Nevertheless, the fact that cybersecurity is once again a top business priority clearly indicates that organizations intend to spend to protect themselves from risk and compromise.

Topics: Cybersecurity IT Spending Intentions

ESG/ISSA Research Report: Through the Eyes of Cyber Security Professionals: Annual Research Report (Part II)

Abstract:

Today’s cyber security professionals reside on the frontline of a perpetual battle, tasked with applying limited resources to outthink would be cyber-attackers and defend their organizations against everything from embarrassing website defacement through unseemly ransomware extortion to devastating data breaches. Alarmingly, cyber security professionals often accept this challenge knowing they are undermanned for the fight. According to ESG research, 46% of organizations claim to have a problematic shortage of cyber security skills.

Topics: Cybersecurity

ESG Brief: The Convergence of Cybersecurity and National Security in the 2016 Presidential Election

Abstract:

The 2016 U.S. presidential election has been fraught with hacking attempts, data breaches, and public exposure of confidential emails by whistleblower website WikiLeaks. These incidents, along with the general state of cybersecurity threats and vulnerabilities, have cybersecurity professionals extremely concerned. According to ESG research, 94% of cybersecurity and IT professionals surveyed say that cybersecurity should be a top national security priority for the next administration.

Topics: Cybersecurity

ESG/ISSA Research Report: The State of Cyber Security Professional Careers

Abstract:

In order to assess the experiences, careers, and opinions of cyber security professionals, ESG and ISSA surveyed 437 cyber security professionals representing organizations of all sizes and across all industries and geographic locations. Survey respondents were also ISSA members.

Topics: Storage Cybersecurity Data Protection Networking Data Platforms, Analytics, & AI Cloud Services & Orchestration

ESG Brief: Symantec-Blue Coat Merger Sentiment

Abstract:

ESG recently surveyed 171 IT and cybersecurity professionals at enterprise-class (i.e., 1,000 or more employees) organizations to get their perspectives on Symantec’s stated intention to acquire Blue Coat. This research found that customers of one or both companies—as well as those organizations that don't currently buy from either—are positive about the possibility of a combined Symantec-Blue Coat, with the prospect of an integrated cybersecurity products and services portfolio resonating as the most widely anticipated benefit of the merger.

Topics: Cybersecurity Networking

ESG Research Report: The Visibility and Control Requirements of Cloud Application Security

Abstract:

ESG’s cloud security research was designed to gain insights into the awareness of, requirements for, and future plans with regard to cloud security. Participating organizations were required to be using cloud services in production, with individual respondents responsible for or highly familiar with their company’s cloud security requirements, challenges, and subsequent plans. Survey participants represented a wide range of industries including manufacturing, financial services, health care, communications and media, retail, government, and business services. For more details, please see the Research Methodology and Respondent Demographics sections of this report.

Topics: Cybersecurity

ESG Brief: The Case for Network Traffic Security Analytics

Abstract:

Enterprise organizations spend millions of dollars on security technologies like antivirus software, firewalls, IDS/IPS, and SIEM systems, yet they continue to experience cyber-attacks and data breaches. What can be done to address this issue? To improve incident detection and response, large organizations need to invest in new types of security analytics tools that collect, process, and analyze security data more effectively. There are lots of security analytics technologies to choose from, but network traffic security analytics systems have some distinct advantages. Since malicious activities crisscross over networks, network traffic security analytics can act as a source of truth for modelling normal network behavior, detecting anomalies, investigating malicious patterns, and hunting for stealthy cyber-attacks in progress

Topics: Cybersecurity Networking

ESG Brief: 2016 Cybersecurity Spending Trends

Abstract:

According to ESG’s annual IT spending intentions survey, 92% of midmarket and enterprise organizations will increase or maintain their spending on cybersecurity technology in 2016. These increases are being driven by business and IT initiatives so they are likely to continue for the foreseeable future. While spending increases will impact all areas of cybersecurity, ESG anticipates pronounced focus and growth in areas like cloud computing security, automation/orchestration, and cybersecurity services.

Topics: Cybersecurity IT Spending Intentions

ESG Research Report: 2016 IT Spending Intentions Survey

Abstract:

In order to assess IT spending priorities over the next 12-18 months, ESG recently surveyed 633 IT professionals representing midmarket (100 to 999 employees) and enterprise-class (1,000 employees or more) organizations in North America and Western Europe. All respondents were personally responsible for or familiar with their organizations’ 2015 IT spending as well as their 2016 IT budget and spending plans at either an entire organization level or at a business unit/division/branch level.

Survey participants represented a wide range of industries including manufacturing, financial services, health care, communications and media, retail, government, and business services. For more details, please see the Research Methodology and Respondent Demographics sections of this report.

Topics: Storage Cybersecurity Data Protection Networking Data Platforms, Analytics, & AI Enterprise Mobility Cloud Services & Orchestration IT Spending Intentions

ESG Brief: Cybersecurity Skills Shortage: A State of Emergency

Abstract:

ESG has been researching, writing about, and addressing the cybersecurity skills shortage for a number of years. Unfortunately, this situation continues to deteriorate. In a disquieting development, nearly half of organizations now claim to have a problematic shortage of cybersecurity skills. Additionally, a vast majority of organizations acknowledge that it is difficult to recruit and hire cybersecurity talent. ESG believes that this trend represents a national security risk demanding a comprehensive strategy from national governments.

Topics: Cybersecurity