Worldwide end-user spending on information security is projected to total $212 billion in 2025, an increase of 15.1% from 2024, according to a new forecast from Gartner. In 2024, global information security end-user spending is estimated to reach $183.9 billion.
“The continued heightened threat environment, cloud movement and talent crunch are pushing security to the top of the priorities list and pressing chief information security officers (CISOs) to increase their organisation’s security spend,” said Shailendra Upadhyay, Senior Research Principal at Gartner. “Furthermore, organisations are currently assessing their endpoint protection platform (EPP) and endpoint detection and response (EDR) needs and making adjustments to boost their operational resilience and incident response following the CrowdStrike outage.”
The adoption of AI and generative AI (GenAI) continue to increase investments in security software markets like application security, data security and privacy, and infrastructure protection. Through 2025, GenAI will trigger a spike in the cybersecurity resources required to secure it, leading to an expected 15% increase on security software spending (see Table 1).
Table 1. Information Security End-User Spending by Segment, Worldwide, 2023-2025 (Millions of U.S. Dollars)
Segment |
2023 Spending | 2023
Growth (%) |
2024 Spending | 2024
Growth (%) |
2025 Spending | 2025
Growth (%) |
Security Software | 76,574 | 13.6 | 87,481 | 14.2 | 100,692 | 15.1 |
Security Services | 65,556 | 13.6 | 74,478 | 13.6 | 86,073 | 15.6 |
Network Security | 19,985 | 6.2 | 21,912 | 9.6 | 24,787 | 13.1 |
Total | 162,115 | 12.7 | 183,872 | 13.4 | 211,552 | 15.1 |
Source: Gartner (August 2024)
Since the release of GenAI, attackers are increasingly employing tools along with large language models (LLMs) to carry out large-scale social engineering attacks, and Gartner predicts that by 2027, 17% of total cyberattacks/data leaks will involve generative AI.
As organisations continue to move to the cloud, Gartner analysts expect an increase in cloud security solutions, and the market share of cloud-native solutions will grow. The combined cloud access security brokers (CASB) and cloud workload protection platforms (CWPP) market is estimated to reach $8.7 billion in 2025, up from forecasted $6.7 billion in 2024.
The global skills shortage in the cybersecurity industry is a major factor driving investment in the security services market (security consulting services, security professional services and managed security services) which is expected to grow faster than the other security segments.
In the Middle East and North Africa (MENA) region, end-user spending on information security is forecast to total $3.2 billion in 2025, an increase of 14% year on year (see Table 2).
Table 2. Information Security End-User Spending by Segments in MENA, 2023-2025 (Millions of U.S. Dollars)
Segment |
2023 Spending | 2023
Growth (%) |
2024 Spending | 2024
Growth (%) |
2025 Spending | 2025
Growth (%) |
Security Software | 1,167 | 6.9 | 1,290 | 10.5 | 1,441 | 11.7 |
Security Services | 930 | 18.8 | 1,110 | 19.4 | 1,307 | 17.7 |
Network Security | 415 | 4.8 | 448 | 7.9 | 504 | 12.6 |
Total | 2,512 | 10.6 | 2,848 | 13.4 | 3,253 | 14.2 |
Source: Gartner (August 2024)
“The continued growth in security spending in the MENA region is primarily driven by the constantly evolving regulatory environment and the rise in cyberattacks,” said Upadhyay. “Furthermore, digitalisation and cloud migration are broadening the threat landscape for enterprises. Consequently, CISOs in the region are focusing on ensuring compliance with rapidly changing regulatory and privacy frameworks, countering persistent threats as well as addressing C-suite and board-level executives concerns on organisational resilience and cybersecurity posture.”
Gartner clients can read more in “Forecast: Information Security, Worldwide, 2022-2028, 2Q24 Update.”
Learn more in the complimentary Gartner webinar “How to Plan, Prepare and Build a Cybersecurity Strategy for the Future.”
Discussion about this post