Information Services Group (ISG), a global AI-centered technology research and advisory firm, has initiated a research study to evaluate providers of cybersecurity services. This study aims to assist enterprises in safeguarding sensitive data across hybrid architectures and enhancing their cyber resilience.

ISG highlighted that the cybersecurity market is undergoing a reorganization into distinct capability domains. Enterprises, facing expanded regulatory demands, are increasingly seeking providers capable of delivering cyber resilience through strategic planning, technical execution, and intelligence-driven operations.

Heiko Henkes, managing director, ISG Provider Lens Research, stated, “The cybersecurity market is reorganizing itself into clearly defined capability domains. As regulatory demands expand, enterprises are seeking providers that can deliver cyber resilience through strategy, technical execution and intelligence-driven operations.”

The study’s findings will be published in a series of comprehensive ISG Provider Lens reports, titled Cybersecurity — Services and Solutions, with an anticipated release in July 2026. These reports will offer insights for enterprise buyers to assess existing vendor relationships, evaluate potential new engagements, and review available offerings. ISG advisors will also leverage this information to recommend providers to their buy-side clients.

With increasing pressure on all industries to secure complex, distributed IT architectures and counteract AI-enabled attacks, organizations also face demands from regulators and corporate boards for demonstrable cyber resilience and effective data control. These factors are accelerating the adoption of strategic cybersecurity services that align with governance, risk, and architectural priorities, integrating security programs into digital transformation initiatives.

ISG has distributed surveys to over 350 cybersecurity providers for this research. The research team, in collaboration with ISG’s global advisors, will produce seven quadrants representing typical enterprise cybersecurity services and solutions. These quadrants include:

Strategic Security Services (SSS): Evaluating providers of consulting-led cybersecurity services focused on strategy, governance, risk management, and organizational transformation, assessing security maturity and developing strategies.

Technical Security Services (TSS): Assessing providers that design, integrate, implement, and modernize IT and OT security technologies in multi-vendor environments, requiring strong partnerships and specialized certifications.

Next-gen SOC/MDR Services: Covering providers of security operations centers that offer continuous threat monitoring, detection, and response, often with co-managed service models.

Risk-based Vulnerability Management: Evaluating providers of continuous vulnerability assessment and prioritization based on exploitability, exposure, and business impact, helping enterprises address evolving attack techniques.

Post-quantum Encryption Consulting: Assessing consulting-led providers that assist enterprises in preparing for the transition necessary to mitigate quantum computing risks across IT, OT, IoT, and digital supply chain environments.

Data Leakage/Loss Prevention (DLP) and Data Security: Covering independent software vendors (ISVs) developing proprietary solutions for discovering, classifying, and protecting sensitive data across endpoints, evaluated on centralized governance and compliance support.

Extended Detection and Response (XDR): Evaluating ISVs that develop proprietary XDR platforms integrating telemetry, analytics, and response capabilities to detect and block sophisticated threats with automated or semi-automated actions.

Geographically focused reports from the study will cover the global cybersecurity market and specifically examine products and services available in the U.

S., the U.

K., Australia, Brazil, France, Germany, Switzerland, and the U.

S. public sector. ISG analysts Frank Heuer (Germany and Switzerland), Bhuvaneshwari Mohan (U.

K. and U.

S. public sector), Yash Jethani (U.

S.), Benoit Scheuber (France), Andrew Milroy (Australia), and João Mauro (Brazil) will author these reports.

All 2026 ISG Provider Lens evaluations will incorporate expanded customer experience (CX) data, measuring actual enterprise experiences with specific provider services and solutions based on ISG’s continuous CX research.

ISG, founded in 2006, serves over 900 clients, including 75 of the world’s top 100 enterprises. The firm provides proprietary market data, in-depth knowledge of provider ecosystems, and expertise from its 1,600 professionals worldwide to help clients maximize technology investment value.