On July 12, the official website of the Ministry of Industry and Information Technology (MIIT) released the three-year action plan for high-quality development of the cybersecurity industry (2021-2023) (draft for public opinion) (hereinafter referred to as the action plan). The development goals of industrial scale, technological innovation, enterprise development, demand release, talent training, ecological cultivation and so on are put forward. It is clearly mentioned that by 2023, the scale of the network security industry will exceed 250 billion yuan, with a compound annual growth rate of more than 15%.
First, the national policy increase, the information security industry as a whole benefit
Since the release and implementation of the National Cyberspace Security Strategy at the end of 2016, major regulations such as the Cyber Security Law, the Data Security Law, and the Personal Information Protection Law (draft) have been released, and cyber security has been deployed as a national security work. The “action plan” is 2.0 level protection regulation after another national top planning policy network security field, not only within the next three years, has been clear about the network security industry development goals, and from industry supply strengthening action, safety demand traction, industry and financial deepening action, talent team construction, industrial ecological optimization operation, such as multiple dimensions, Nineteen priority missions were deployed.
At present, the overall scale of China’s information security industry and Europe and the United States have a big gap, domestic network security accounted for about 3% of the investment in information, and Europe and the United States and other developed countries are more than 10%, more than 15%, which is not consistent with China’s current economic status and the status of the development of the digital economy. The release of the action plan shows that the national strategic status of network security has been further affirmed, will strongly boost the rapid growth of China’s information security industry, close the gap with Europe and the United States, for network security enterprises and institutions, as well as the various organizations of the industrial security ecology will ushered in a rare development dividend.
Second, the budget for cyber security has been significantly increased, and the proportion of input in key industries has been clarified
The “action plan” in the “demand release” development goals clear specific planning, telecommunications and other key industries network security investment accounted for 10% of the information investment; Security applications in key industries and sectors have been accelerated across the board, the cyber security capabilities of small and medium-sized enterprises have been significantly improved, and the cyber security protection of infrastructure in key industries has been continuously improved.
In recent years, the degree of digitization of all industries has been accelerating, and the security threats of industrial Internet have become more subtle, complex and destructive. Tencent previously published in the report on “2020 industrial safety, industrial safety has become the lifeline of the enterprise, enterprise survival, at the same time, industrial safety are about enterprise development, digital throughout the enterprise research and development, production, circulation, service and the whole process, all related to security requirements, security has gradually become one of the core competitiveness of enterprises. In the past two years, frequent security incidents, such as hacker attacks on foreign telecom giants and industrial data leakage of car companies, have once again proved the importance and urgency of investment in security construction in the process of digital development.
The Action Report not only mentioned the guidance of telecommunications, Internet and other key industries to increase investment in network security, promote the simultaneous planning, construction and use of network security and information technology, and improve the network security management and technical support system. At the same time, it also mentioned to promote the construction of network security capacity of small and medium-sized enterprises, implement the special action of “security cloud” for small and medium-sized enterprises, build network security operation service center, and provide high quality, low cost and intensive network security products and services for small and medium-sized enterprises. We will encourage enterprises of all sizes in the industry to strengthen security capacity building in a more comprehensive way to release security demands.
3. Emerging technologies will be the focus of investment
In recent years, a variety of new technologies have created a variety of new security needs, which is also the “Action Plan” pointed out that the network security supply level to strengthen investment in the key areas.
The Action Plan mentions in detail in the “Industrial Supply Enhancement Action” that for 5G, cloud computing, artificial intelligence and other emerging technology fields, it will accelerate the development and promotion of native security, intelligent choreography, endogenous security, dynamic access control, trusted computing and other technology products. For the industrial Internet, strengthen the security analysis of large traffic, vulnerability mining and management, data fusion analysis, protocol identification analysis and other capabilities. For the Internet of Vehicles and the Internet of Things, lightweight terminal security products or middleware that promote endogenous combination, as well as protection solution applications such as communication security, identity authentication, platform security, etc. Promote research and application of federated learning, multi-party security technology, privacy computing, secret state computing, secure retrieval, multi-threshold cooperative tracking and other data security technologies. At the same time, it also emphasized the innovation of security service mode, strengthen the cloud capability of security enterprise technology products, promote the application of cloud security products, and encourage security enterprises with strong comprehensive strength to develop flexible and flexible cloud mode network security services.
IV. Support excellent network security enterprises to “grow bigger and stronger”
In the “enterprise development goals”, “action plan” to encourage the foundation strong network security companies listed, support leading enterprises through strategic investment way to integrate resources, bigger and stronger, promote ecological network security leading ability, at the same time, a group of car development, industry, Internet and Internet of things, the wisdom city such as new track of specialization, “new” rapid growth of small and medium-sized enterprise groups, The number of champion enterprises in network security products, services and solutions has gradually grown.
“Global Network Security Enterprise Competitiveness Research Report” shows that among the top 100 global network security enterprises, the United States occupies 58 seats, monopolization half of the country, 17 seats in China, although ranked second, but the gap is obvious, China’s network security industry in market demand and industrial capacity is relatively backward. With the continuous development of the digital economy, China is expected to see the emergence of a number of benchmark network security companies with greater industry influence and even global influence.
Based on this goal, industrial funds will be invested more intensively and slanted, and capital will be guided to accurately support the development of enterprises through the deepening action of industry and finance cooperation. We will launch a capital empowerment project for the cybersecurity industry, and make clear plans for the implementation of industrial and financial cooperation mechanisms, services, and insurance.
In addition, the “Action Plan” also mentioned the “talent team construction action” and “industrial ecological optimization action” a total of six important tasks, including the continuous promotion of network security cooperation between schools and enterprises, training high-quality network security talents; We will guide the agglomeration of cybersecurity industries, actively promote the construction of national cybersecurity industrial parks in Beijing and Changsha, Hunan, and speed up the layout of national cybersecurity industrial parks.
The Ministry of Industry and Information Technology issued the three-year action plan for high-quality development of the cybersecurity industry (draft for public opinion), which is an important measure to thoroughly implement the strategic decisions and arrangements of the CPC Central Committee and the State Council on making China a manufacturer and a network power, and to implement the relevant requirements of the 14th Five-Year Plan. With the implementation of this plan, it is believed that the whole security industry will bring great changes and development.
Please click here for details of the Action Plan.