Whenever you visit our websites, information may be collected using cookies and similar tools to improve your user experience and to enhance the performance of the website.
Closing this message means you accept the use of cookies.

 
  • Report details
  • 31 Figures
  • 0 Tables
  • Executive Summary
    • Report Conclusions
  • Introduction
    • Research Objectives
  • Research Findings
    • Application Environments Continue to Evolve, Opening the Door for Attacks
    • Most Organizations Use Multiple WAFs but Are Interested in Consolidation
    • Bot Incidents Are Varied, and Most Organizations Rely on Specialized Tools
    • DDoS Attacks Vary, and Most Organizations Subsequently Use Multiple Forms of…
    • Despite Bot and DDoS Tool Preferences, Application Protection Consolidation Is…
    • Spending Intentions Appear Strong, but Focus Is Fragmented
  • Conclusion
  • Research Methodology
  • Respondent Demographics
Research Report: Balancing Requirements for Application Protection: Teams Desire Consolidation but Need Specialized Protection
Research Report
Apr 11, 2025
by John Grady, Emily Marsh, Enterprise Strategy Group Research
Application environments are more complex than ever, with web applications increasingly cloud-resident, containerized, connected via APIs, and delivered via CDNs. On top of this increasingly heterogeneous environment, security responsibility is distributed across a variety of roles and personas. This has resulted in complexity and tool sprawl as security teams struggle to keep pace. Attackers understand this and use it to their advantage through exploits against known vulnerabilities and advanced campaigns that use a variety of tactics such as bots that amplify denial-of-service and credential attacks on web applications and the APIs that tie them together. While platforms are attractive, security cannot be compromised. Security leaders need to understand the actions that forward-thinking organizations have undertaken to properly assess which tools are best positioned to solve the key business challenges they face.

To gain insights into these trends, Enterprise Strategy Group surveyed 383 IT and cybersecurity professionals in North America (U.S. and Canada) involved with securing their organization’s web applications and APIs.
 
Page Count: 27
Table of Contents
  • Executive Summary
    • Report Conclusions
  • Introduction
    • Research Objectives
  • Research Findings
    • Application Environments Continue to Evolve, Opening the Door for Attacks
    • Most Organizations Use Multiple WAFs but Are Interested in Consolidation
    • Bot Incidents Are Varied, and Most Organizations Rely on Specialized Tools
    • DDoS Attacks Vary, and Most Organizations Subsequently Use Multiple Forms of Protection
    • Despite Bot and DDoS Tool Preferences, Application Protection Consolidation Is Desired
    • Spending Intentions Appear Strong, but Focus Is Fragmented
  • Conclusion
  • Research Methodology
  • Respondent Demographics
Categories
John Grady
Principal Analyst, Cybersecurity
Emily Marsh
Associate Research Director
Enterprise Strategy Group Research
To the Top