The word “prevention” is broadly applied in cybersecurity. It can refer to the responsibility of a technology stack to block, an analyst team to detect, or a security team to respond. Historically security prevention budgets have been dedicated to point solutions installed to keep the bad guys out. As organizations mature their cybersecurity programs they are looking for ways to leverage intel gained at the detection and response stages to enhance prevention efforts across the board.
According to RSA sponsored research, the trend in security budget spend has been moving away from a historic split of 80% prevention, 15% detection and 5% response to a more equal allocation of funds – 33% for each initiative.