This study examines the increasingly complex environment of government regulations and industry standards that drives concerns about the accuracy and protection of an organization's data and information not only with employees but also with customers, partners, and contractors. Organizations are faced with addressing compliance issues surrounding Sarbanes-Oxley (SOX), the Gramm-Leach-Bliley Act (GLBA), the Health Insurance Portability and Accountability Act (HIPAA), FFIEC, PCI, and other federal regulations and guidelines, not only in the United States but also globally. This concern has created a new market that IDC has defined as security compliance and control (SCC).

Companies Mentioned: IBM; CA; RSA; VeriSign; Safenet; Novell; Fujitsu; Alladin; Entrust; Actividentity; Accenture; CSC; Price Waterhouse Coopers; Proofpoint; Tablus; Trend Micro; Workshare; CipherTrust; Clearswift; Entrust Technologies; Facetime; IMLogic; Ironport; MailFrontier; Mirapoint; Sendmail; Sigaba; SurfControl; Tumbleweed; Vericept; PortAuthority; Symantec; NetIQ; Vontu; Elemental; Qualys; Shavlik; Watchfire; Altiris; HP; ArcSight; ISS; Deloitte and Touche; Ernst and Young

• In This Study
  • Methodology
  • Executive Summary
• Situation Overview
  • Market View and Definition
  • The Emergence of Security Compliance and Control
    • Content Control
    • Identity and Access Management
    • Security and Vulnerability Management
    • Security Compliance Services
  • Sizing the Worldwide Security Compliance and Control Market
  • Figure: Worldwide Security Compliance and Control Revenue Share by Market Segment, 2005
  • Privacy Regulations and Industry Standards
    • Key Regulations
    • Asia/Pacific - Statutory General Protection Laws
  • The Business Impact of Government and Industry Regulations
  • Figure: Impact of Regulations on Information Security and Staffing
  • Internal Versus External Threats
  • Figure: Internal Security Violations by Company Size
  • Figure: Exposure of Confidential Information by Company Size
  • The Security Compliance and Control Marketplace
  • Table: Worldwide Security Compliance and Control Revenue by Market Segment, 2005
  • Table: Security Compliance and Control Market Segments and Leading Vendors
  • Security Compliance and Control Vendor Profiles
    • Accenture Ltd.
    • ActivIdentity
    • Aladdin Knowledge Systems
    • Altiris
    • ArcSight
    • Blue Coat
    • CA
    • CipherTrust Inc.
    • Citrix
    • Clearswift
    • CSC
    • Deloitte & Touche
    • EDS
    • Elemental Security
    • Entrust Inc.
    • Ernst & Young
    • FaceTime Communications
    • Finjan
    • Fujitsu Ltd.
    • Guardium
    • HP
    • IBM
    • Imlogic (Acquired by Symantec)
    • IronPort Systems
    • ISS
    • Liquid Machines
    • MailFrontier (acquired by SonicWall)
    • McAfee
    • Mirapoint
    • NetIQ
    • Novell Inc.
    • Orchestria
    • PortAuthority
    • PricewaterhouseCoopers
    • Proofpoint Inc.
    • Qualys Inc.
    • RSA
    • SafeNet Inc.
    • Sendmail Inc.
    • Shavlik Technologies
    • Sigaba
    • Sophos
    • SurfControl
    • Symantec
    • Tablus
    • Trend Micro
    • Tumbleweed Communications Corp.
    • Vericept
    • VeriSign
    • Vontu
    • Watchfire
    • WatchGuard
    • Workshare
• Future Outlook
  • Forecast and Assumptions
  • Figure: Worldwide Security Compliance and Control Revenue, 2005-2010
  • Table: Worldwide Security Compliance and Control Revenue by Market Segment, 2005-2010 ($M)
  • Table: Key Forecast Assumptions for the Worldwide Security Compliance and Control Market, 2006-2010
    • Content Control
    • Identity and Access Management
    • Security and Vulnerability Management
    • Security Compliance Services
• Essential Guidance
  • Advice for Buyers
• Learn More
  • Definitions
  • Related Research
  • Synopsis