2022 cybersecurity forecasts predict growth, emphasizing resilience

Why cybersecurity spending Is resilient

Cybersecurity tech stacks must close the gaps that leave human and machine endpoints, cloud infrastructure, hybrid cloud and software supply chains vulnerable to breaches. The projected fastest-growing areas of cybersecurity reflect how urgent the issue of streamlining cybersecurity tech stacks is. Seventy-five percent of executives report too much complexity in their organizations, leading to concerning cybersecurity and privacy risks.

Secure access service edge (SASE) and extended detection and response (XDR) are integration-based approaches to closing the gaps in cybersecurity tech stacks. They’re proving effective in minimizing risks while providing CISOs, CIOs and their teams the visibility and control they need across all systems, endpoints and threat surfaces.

Every organization should anticipate that the attack surfaces they’re protecting will grow faster than forecasted, and that more human and machine identities will see attempts to compromise them than security and IT teams expect. In addition, more privileged access credentials will be stolen than a given business expects. These combined effects make cybersecurity spending one of the most resilient enterprise software. The following is a curated list of the most recent cybersecurity forecasts and market estimates:

  • 69% of organizations predict a rise in cyber spending in 2022 compared to 55% last year. More than a quarter (26%) predict cyber spending hikes of 10% or more; only 8% said that in 2021. PwC says their survey of senior management shows that organizations expect risks to continue increasing. In addition, more than 50% expect a surge in reportable incidents next year above 2021 levels, according to PwC’s 2022 Global Digital Trust Insights Survey.

  • Global cybersecurity insurance spending is projected to grow from $12.47 billion in 2022 to $37.14 billion by 2030, reaching a 21.8% CAGR. Digital-first business models and full-scale digital transformation projects combined with the exponential increase in ransomware attacks drive enterprises to spend more on cybersecurity insurance. Insurance carriers are pushing back against ransom payments, citing cyberattackers deliberately target their largest clients for quick, lucrative payouts. Last year, global insurance provider AXA decided no longer to pay ransomware payments in France. McKinsey and Company’s recent article on cybersecurity trends reflects how much enterprises are willing to pay for cyber insurance, predicting a 21% CAGR between 2022 and 2025 in cyber insurance. McKinsey also provides $101.5 billion that will be spent with service providers by 2025, as the enterprise seeks outside expertise to streamline complex cybersecurity tech stacks. This is all according to McKinsey & Company’s report titled Cybersecurity trends: Looking over the horizon.

  • The global cybersecurity software, services, and systems market is predicted to grow from $240.27 billion in 2022 to $345.38 billion by 2026, attaining a 9.5% CAGR, according to Statista. The major factors fueling the cybersecurity market include the rising frequency and sophistication of target-based cyberattacks, increasing demand for the cybersecurity mesh, and growing demand for cyber-savvy boards.
  • Worldwide secure access service edge (SASE) spending will reach $14.7 billion by 2025. Gartner predicts that global spending on SASE will grow at a 36% CAGR between 2020 and 2025, far outpacing global spending on information security and risk management. In 2022, global SASE spending will reach $6.8 billion, growing to $9.1 billion in 2023. Gartner says a key assumption of their forecasts is that enterprises will prefer paying for SASE using a subscription model over perpetual licenses. Leading SASE vendors include Cato NetworksFortinetPalo Alto NetworksVersa NetworksVMwareZscaler and others.
  • The worldwide security software market grew 22.5% in 2021, reaching $61.38 billion in revenue. The top five market segments by market share were: endpoint protection platform (enterprise), consumer security software, access management, security information and event management (SIEM), and identity governance and administration. Cloud workload protection platform spending grew 37.8% between 2020 and 2021, and spending on access management solutions jumped 33.5%. Cloud Access Security Brokers (CASB) spending grew the third fastest at 32.7%, followed by endpoint protection platforms, which grew 25.9%. Together, these five segments accounted for 46.1% of the total market size for security software. This is according to Gartner’s report: Market Share: Security Software, Worldwide, 2021.
  • 77% of C-level executives plan to increase their zero trust spending over the next 12 months. The Cloud Security Alliance (CSA) recently published its latest report, CISO Perspective and Progress in Deploying Zero Trust. The study is based on interviews with security and risk management professionals and C-level executives who provided insights into current and future zero trust deployment plans. It found that 80% of C-level executives cite zero trust as a priority for their organizations, and 94% are implementing zero-trust strategies. Ericom’s Zero Trust Market Dynamics Survey found that 80% of organizations plan to implement zero-trust security in less than 12 months, and 83% agree that zero trust is strategically necessary for their ongoing business. CISOs must remove trust from tech stacks and define their unique strategy to adopt the framework.

  • The global endpoint security market is predicted to reach $31.1 billion by 2026 from $17.4 billion in 2021, attaining a 12.3% CAGR. Frost &  Sullivan’s most recent endpoint security forecast reflects the growing need for resilient endpoint protection platforms that can withstand multiple attacks and capitalize on AI and machine learning to predict potential breach attempts. In addition, self-healing endpoints are a catalyst driving the growth of the endpoint security market. However, 55% of cybersecurity professionals estimate that more than 75% of endpoint attacks can’t be stopped with their current systems, based on a survey by Tanium.
  • 84% of C-level executives agree that cyber resilience is considered a business priority for their organizations in 2022. The World Economic Forum’s (WEF) cybersecurity survey found that 81% of C-level executives believe digital transformation is the main motivator for improving cyber resilience. WEF’s findings reflect many other surveys that cite the accelerating pace of digitalization due to the COVID-19 pandemic, and the shift in our working habits is pushing cyber resilience to a higher priority today. In addition, 87% of executives plan to improve their organization’s cyber resilience by strengthening policies, processes, and standards for engaging and managing third parties.
  • Zero-trust network access (ZTNA) spending is on pace to reach $823.1 million in 2022, reaching $1.973 billion by 2026, growing at a 19.1 CAGR. Gartner predicts that global demand for ZTNA-based systems, solutions, and platforms will grow faster than the global information security and risk management market, eclipsing the overall market growth rate by 8%. Of the five years included in the forecast, 2023 sees the most rapid growth, with ZTNA spending rising over $1 billion for the first time. Gartner is also seeing a 60% year-over-year growth rate in ZTNA adoption. Their 2022 Market Guide for Zero Trust Network Access is noteworthy in providing insights into all CISOs need to know about zero-trust security.
  • $5.9 billion was invested in cybersecurity startups in Q1, 2022. Crunchbase says funding in Q1 of this year was nearly a 50% increase from Q1, 2020. Cybersecurity venture funding is on pace to break the $20 billion invested in cybersecurity in 2021. A total of 189 funding deals were announced in Q1, 2022, down slightly from Q4, 2021, which recorded 232 funding events. Cybersecurity continues to show resilience as venture capitalists and private equity investors continue to finance startups.

Spending will continue despite economic uncertainty

Cybersecurity market estimates reflect continued spending despite global economic uncertainty. No business can afford to be down during challenging economic times. Therefore, the forecasts reflect a resilient outlook for the industry. Reducing risks, ensuring continued operations and managing identities and privileged access credentials are essential now.

Originally published on VentureBeat

By Louis Columbus

Vulnerability Scanners Cyber security vulnerabilities are a constant nuisance and it certainly doesn't help with the world in a current state of disarray and uncertainty. Vulnerabilities leave businesses and individuals subject to a wide range ...
Patrick Melampy
Cloud On-Ramp and Protecting Performance The expansion of remote work and the massive growth in usage of cloud-based applications have stressed existing infrastructure and put a keen focus on the performance of everyone’s network environment ...
Jen Klostermann
The Fintech Landscape The Nitty Gritty Although the COVID-19 pandemic has highlighted its existence, most of us have been using fintech in some form or another for quite some time. It’s a big part of ...
10 Leading Open Source Business Intelligence Tools
Open Source Business Intelligence Tools It’s impossible to take the right business decisions without having insightful information to back up the decision-making process. Open Source Business Intelligence Tools make it easier to have our raw ...
Stacey Farrar
Modern Auth and Exchange Online Migrations Microsoft has phased out Basic Authentication (Basic Auth), replacing it with Modern Authentication (Modern Auth) to provide increased protection and user security. Through this, Microsoft has turned off Basic ...
Drew Firment
Stop Focusing on Cloud Adoption and Start Focusing on Cloud Maturity For the past several years, most organizations have made it their priority to shift much of their applications and data from on-premises to the ...
Cybersecurity Bootcamps To Help Build Your Career
Cybersecurity Bootcamps We've discussed the importance of training and the hiring of cybersecurity professionals many times on CloudTweaks over the past 10+ years. Now more than ever as the world enters into a dark era ...
John Peluso
Save Your Organization on Cloud Costs Organizations of all sizes are currently navigating their plans to avoid the recent surge in cyber-attacks and data breaches and preparing for unforeseen setbacks. Building a sensible backup and ...
Disaster Recovery Plan.png
David Fletcher Blown Image
Recovery Experts.png
The Sticky Note.png


Pluralsight provides online courses on popular programming languages and developer tools. Other courses cover fields such as IT security best practices, server infrastructure, and virtualization. 


(ISC)² provides IT training, certifications, and exams that run online, on your premises, or in classrooms. Self-study resources are available. You can also train groups of 10 or more of your employees.


CYBRARY Open source Cyber Security learning. The world's largest cyber security community. Cybrary provides free IT training certificates. Courses for beginners, intermediates, and advanced users are available.