All Research
Leadership Compass

Identity Threat Detection and Response (ITDR): IAM Meets the SOC

Mike Neuenschwander
The nascent identity threat detection and response (ITDR) market is gaining tremendous momentum in 2024. Cisco and Delinea recently jumped into the market with their recent acquisitions of Oort and Authomize, respectively. Top cybersecurity companies BeyondTrust, CrowdStrike, and SentinelOne continue to make substantial investments in ITDR. Microsoft has leaned into ITDR by blending technologies from its Entra and Defender XDR products. Other vendors, such as Gurucul, Securonix, and Sharelock are attempting to broaden the definition of ITDR in various ways. Given these developments, the market remains difficult to quantify. Arguably, there isn’t even a real “ITDR market,” because it’s ultimately more like an activity or an identity protection platform. Many of these vendors don’t even use the term ITDR in their products’ names. But what is clear is that ITDR is a banner under which enterprise identity and access management (IAM) and security operations center (SOC) teams must unite. So, what’s your organization’s best route to protecting identities and IAM infrastructure? This Leadership Compass evaluates the market dynamics for ITDR in 2024 and provides guidance on how your organization can take advantage of these critical technologies.

1 Executive Summary

Identity Threat Detection and Response (ITDR) is a class of security solutions designed to proactively detect, investigate, and respond to identity-related threats and vulnerabilities in an organization's IT environment. ITDR solutions focus on protecting digital identities and infrastructure against a variety of attacks by threat actors.

ITDR is a crucial component of a comprehensive cybersecurity strategy, as identities have become the primary targets of attackers looking to gain unauthorized access to sensitive systems and information. By focusing on the security of identities, ITDR helps organizations protect against a range of threats, including credential theft, account takeovers, and insider threats.

This Leadership Compass covers the dynamics of this emerging market, provides a framework for evaluating ITDR solutions, and offers guidance on how enterprises can select the appropriate technologies for their organizations. To better understand the fundamental principles this report is based on, please refer to KuppingerCole’s Research Methodology.

1.1 Key Findings

In our research on ITDR, we found the following:

  • The total market size of ITDR (including revenue, services, labor, fines, lawsuits, ransom payments, etc.) was in excess of $2.4 billion in 2023, with very strong growth in 2024.
  • ITDR is a use case, not a product and will likely be called by another name by 2025. In this report we propose “identity defense-in-depth” (IDID), but the market will eventually decide.
  • The ITDR market spans the space between identity IT administration and security operations center (SOC) threat detection and response. This dynamic is creating a new type of solution, because protecting identity requires both departments to cooperate in converged products.
  • BeyondTrust, CrowdStrike, Microsoft, Securonix, and SentinelOne are market leaders, joined by Gurucul in product leadership.
  • Consolidation has heated up in the ITDR market, with Cisco acquiring Oort and Delinea acquiring Authomize.
  • All vendors we cover in this report have experienced strong product-market fit, but they are also fairly diverse in their architecture and approaches. As such, selecting a vendor relies primarily on enterprise organizations understanding internal requirements for ITDR.
Full article is available for registered users with free trial access or paid subscription.
Log in
Register and read on!
Create an account and buy Professional package, to access this and 600+ other in-depth and up-to-date insights
Register your account to start 30 days of free trial access
Register
Get premium access
Choose a package

Stay up to date

Subscribe for a newsletter to receive updates on newest events, insights and research.
I have read and agree to the Privacy Policy
I have read and agree to the Terms of Use