The map shows more than 290 domestic companies that develop products and services in the field of cybersecurity, as well as suppliers of information security services. During the preparation of the map, the company's solutions were segmented into 46 categories in 4 main groups: "Infrastructure Protection," "Monitoring, Research and Analysis," "Data Protection" and "Services and Services."
When preparing the map, analysts relied on:
- TAdviser Knowledge Base
- Industry ratings
- Websites of information security companies
The partners of the new project were the leading players in the Russian cybersecurity market - Gazinformservice, Kontur, Indid, Luntry and Sber Tech.
Gazinformservice is a domestic developer of software and hardware information security tools. The company specializes in creating information security systems for facilities and information security systems for corporations in the energy and transport industries, the extractive industry, as well as government agencies, industrial enterprises and institutions of the financial and telecommunications sectors.
Luntry - comprehensive protection of containers and Kubernetes at all stages of the application lifecycle. The solution provides a high level of process security, helps to create an infrastructure without blind spots and establish seamless communication between teams even in the largest projects.
Contour is an ecosystem for business. The portfolio of the Contour includes Internet reporting and online accounting, services for EDO and labeling, cloud accounting and online cash desks, checking counterparties, information security solutions, electronic signatures for any tasks. Information security from Kontur is represented by a set of services Kontur. Guide (2FA, PAM, corporate VPN, information security services) and the Staffcop system. Solutions help businesses comply with legal requirements, reduce risks associated with insiders, attacks and human factors, as well as increase the digital stability of companies.
Indid is a Russian developer of a set of security identity solutions. For more than 16 years, the largest customers from Russia and the CIS in all sectors of the economy have been implementing Indid solutions that provide authentication and access management, certificate lifecycle management, privilege control, and threat monitoring. Indid software is included in the Register of the Ministry of Digital Development, is suitable for implementing the requirements of the import substitution program in the Russian Federation and helps to comply with the requirements of the NPA in the field of information security (GOST, FSTEC and others).
Sber Tech is one of the largest Russian IT companies, a developer of infrastructure software. For more than 14 years, it has been creating reliable corporate-level solutions that have already ensured the digital transformation and technological independence of Sberbank. The flagship solution of Sber Tech is the digital platform Platform V. It combines more than 90 products that allow companies from different sectors of the economy to optimize development, increase business efficiency, and implement import substitution programs.
At the request of TAdviser, experts from partner companies of the new information security card shared their opinion on the most important changes that have occurred in the Russian cybersecurity market recently and the prospects for its development in the coming years.
On the most important changes and trends in the Russian information security market
Vseslav Solenik, Director of Cybersecurity Sber Tech:
Over the past year, the Russian information security market has developed under the influence of several trends. On the one hand, import substitution and the development of DevSecOps (methods for integrating safety principles into all stages of software development) continued actively. On the other hand, domestic solutions in key classes have not yet reached full enterprise maturity. Traditional products continue to evolve, competing with vendor and independent startups launched two years ago, which are also in a stage of active growth. In general, the information security market is showing an increase in maturity, successfully adapting to difficult conditions and new challenges.
Yuri Drachenin, Deputy Head of the Product Group Kontur.Egida and Staffcop (owned by SKB Kontur):
Over the past year, the information security market in Russia has continued to grow, but not at the same pace as previously predicted. After an active period of import substitution, companies faced an increase in the cost of solutions - mainly due to the replacement of imported components, the complication of certification procedures and the need to comply with regulatory requirements. A significant deterrent was the personnel shortage: many specialists require retraining, and their current level of expertise does not always correspond to new technologies and tasks, which slows down the implementation of solutions and refinement of products for customer requests.
The development of the market is influenced by the current norms on CII, the increase in the number and complexity of cyber attacks, as well as the general digitalization of business. At the same time, companies are becoming more aware: they are moving from targeted protection measures to system approaches, increasing the level of control over the actions of employees, introducing access management tools and automating incident response. The focus is not just formal compliance, but the creation of a sustainable security infrastructure built into business processes.
Sergey Nikitin, Head of the Product Management Department of Gazinformservice:
In the Russian information security market, there is a change in euphoria to a more rational approach. The rigidity of monetary policy affects - organizations "vote with the ruble" for real cybersecurity, choosing only those decisions that are necessary.
As for the factors of influence - the classics of marketing (Porter) also distinguished five "forces":
- market power of consumers (the ability to allocate a budget to mitigate information security risks),
- market power of suppliers (quality of products and services, uniqueness of solutions),
- the emergence of new players (we only announced about 50 NGFW releases),
- the level of competition (how many of these NGFWs will "survive" to mass implementations and will be heard in 2030 is a question),
- emergence of new substitute products or whole concepts, philosophies.
For example, recently there has been a tendency not to seek to close all gaps, but to create a cyber-resilient infrastructure that can return to work after a short time. An example of professionalism is the elimination of the consequences of the incident at Aeroflot, when one day passed from failure to complete recovery.
The second trend: despite the popularity and interest in AI, the role of a person in information security is increasing, as evidenced by the interest in the services of monitoring centers (SOC), cyber intelligence and the search for traces of compromise in infrastructure.
Third, professionals are increasingly asking information security questions at the stage of creating IT services: hence the growing interest in solutions that ensure secure development, including the use of MLSecOps frameworks.
Andrey Laptev, Director of the Product Office of Indid:
Identity Security (Identity Security) becomes the main task for organizations in the field of information security and IT. It must be addressed in order to ensure the security of information systems, preventing compromise of credentials. Despite the fact that in Russia this segment of the market is only being formed, the processes of identity protection and related technologies are developing very dynamically.
It is already obvious that the number of attacks on identity will only grow in the future. Therefore, protecting identity will become an increasingly urgent task. The Identity Security concept will be embodied in technical solutions: other vendors will be connected to its implementation, and information systems will initially be built so that identity security is reliably ensured.
In recent years, we have also seen sustained demand for cloud services from not only small and medium-sized companies, but also large customers. This is due to the growing need to implement hybrid work formats, protect remote access, and simplify identity management in complex IT landscapes. Clouds just provide the necessary conditions for this - flexibility and scalability.
Another important task is to effectively manage corporate secrets. Today, it is important for companies to build an access and password control system that meets modern security standards.
On the prospects and expected changes in the Russian information security market
Andrey Ganyushkin, Commercial Director of Luntry:
The information security market in 2024 grew by about 20-25%, and in 2025 growth remains, although it becomes more selective: services, secure development, cloud protection and solutions for CII are developing faster. In 2026-2027, a steady increase in demand is expected due to regulation, cloud development and the introduction of DevSecOps.
Containerization is becoming the standard for large companies, and the use of Kubernetes - both domestic distributions and cloud platforms - has increased markedly. At the same time, there is a growing understanding of the risks due to increasing the maturity of attacks on K8s, so protecting microservices is already seen as a mandatory part of DevSecOps.
In the future of 2026-2027, the Kubernetes security requirements will be standardized, the connection with DevSecOps will increase, and the maturity of companies in managing container and cloud risks will grow.
Yuri Drachenin, Deputy Head of the Product Group Kontur.Egida and Staffcop (owned by SKB Kontur ):
The prospects for the information security market remain stable. Growth is expected at the level of 8-10% per year. The further development of the requirements of legislation in the field of CII and personal data, as well as the formation of mature ecosystems of domestic decisions will have a significant impact.
In the coming years, the role of service models and consulting services, which allow companies to meet regulatory requirements without significant capital costs, can be expected to strengthen. Integration of monitoring, analytics and response systems will continue, as well as the introduction of tools with elements of artificial intelligence. The key challenge will remain a shortage of qualified specialists, which will increase the demand for automation and managed security services. The market is gradually moving from the import substitution stage to the stage of technological strengthening and increasing the efficiency of solutions.
Vseslav Solenik, Director of Cybersecurity Sber Tech:
The prospects for the Russian information security market for 2026-2027 remain generally positive: it will continue to outperform growth even in conditions of high uncertainty. The key drivers will be economic optimization, which allows you to increase the effectiveness of protection with limited budgets, total AI-transformation of the business, requiring new approaches to security, the rapid development of the secure development market, the completion of import substitution in critical segments and the transition to service and platform models. In Sber Tech, we are already implementing these trends in practice and offer customers ready-made products and services that help us stay one step ahead of the challenges.
Sergey Nikitin, Head of the Product Management Department of Gazinformservice:
I want to be optimistic! Digital technology has confidently taken a place in our lives, and no one will argue that it brings tangible benefits. We all - well, or at least many of us - want to use our favorite services that are not limited to computer screens - learn something interesting about other areas, plan a trip, share photos with friends and family (and at least order pizza on a rainy day) - all this is based on IT infrastructure, which must be protected and maintained in a stable state.
Federal development programs provide opportunities for a wide variety of businesses, which, in turn, will invest in "digital," because it is profitable. Of the difficulties - raising taxes, of course, will affect the pace of development, and the shortage of qualified personnel in the field of information security has not yet been eliminated.
Our company works with the largest customers, where they require professionalism, knowledge in many related industries - from higher mathematics to marketing - and the struggle for experienced specialists does not stop. Things, as always, speak better than words - and since professionals remain in the industry, then there is definitely something to do.
Applications for the printed version of the card can be sent to the editor@tadviser.ru address. Free delivery is carried out in Moscow to the heads of structural divisions for information security in companies and state organizations. It is also possible to purchase a card.
The new map of the Russian information security market is already the 23rd TAdviser product in this series. Previously prepared:
- Market map "Russian manufacturers of telecom equipment"
- Russian IT Market Map 2025
- Russian Software Market Map 2025
- Market map "Digitalization of retail 2024"
- Market map "Digitalization of industry 2024"
- Map of the Russian information security market 2024
- Market map "Digitalization of banks 2024"
- Map of the Russian IT market 2024
- Russian software and hardware systems. Manufacturers Map
- Russian Software Market Map
- Digitalization of Construction Market Map
- Map "Employee's Digital Workplace 2023"
- Map of the Russian information security market 2023
- Map of the Russian IT market 2022
- Market Map Information Technology in the Bank
- Map of the Russian information security market 2021
- Industry IT Vendor Market Map
- Russian IT Market Map 2020
- Russian IT Market Map 2019
- Information Technologies in the Bank Market Map
- Information Technology in Retail Market Map
- Map of the Russian industrial robotics market
See also
Site Control and Blocking
- Internet censorship. World experience
- Censorship (control) on the Internet. China Experience, China Computer Emergency Response Team (CERT)
- Censorship (control) on the Internet. Experience of Russia, Roskomnadzor Policy on Internet Control, GRCC
- Requests from security officials for telephone and bank data in Russia
- Runet Regulation Act
- National Internet Traffic Filtering System (NaSFIT)
- How to get around internet censorship at home and in the office: 5 easy ways
- Blocking sites in Russia
- Auditor - site blocking control system in Russia
Anonymity
- Darknet (shadow internet, DarkNet)
- VPN and privacy (anonymity, anonymizers)
- VPN - Virtual Private Networks
- SORM (System of operational-search measures)
- State System for Detection, Prevention and Elimination of Consequences of Computer Attacks (State system of detection, prevention and elimination of consequences of computer attacks)
- Yastreb M Statistika of telephone conversations
Critical infrastructure
- Digital economy of Russia
- E-Government of Russia
- Information security of the digital economy of Russia
- Protection of Russia's critical information infrastructure
- Law on Security of Critical Information Infrastructure of the Russian Federation
- Fundamentals of the State Policy of the Russian Federation in the Field of International Information Security
- Russia's Information Security Doctrine
- Russian National Security Strategy
- Agreement of the CIS countries in the fight against crimes in the field of information technology
- Autonomous Internet in Russia
- Cyber police of Russia for information security training
- National Biometric Platform (NBP)
- Unified Biometric System (UBS) of Bank Customer Data
- Biometric identification (Russian market)
- Biometrics Solutions and Projects Catalog
- Russian State Network (RSNet)
- Article:Unified Software Documentation System (SPDS).
- Government Data Transmission Network (SPDD)
- Unified Telecommunication Network of the Russian Federation
- Unified Portal of Public Services (FSIS EPGU)
- Gosoblako - State Unified Cloud Platform (GEOP)
- Gosweb Unified platform of Internet portals of state authorities
Import substitution
- Import substitution in the field of information security
- Review: Import substitution of information technology in Russia
- The main problems and obstacles to import substitution of IT in Russia
- Advantages of replacing foreign IT solutions with domestic ones
- Main risks of IT import substitution
- Import substitution of information technologies: 5 "For" and 5 "Against"
- How did IT import substitution affect the business of foreign vendors? A look from Russia
- How the launch of the register of domestic software influenced the business of Russian vendors
- What changes are taking place in the Russian IT market under the influence of import substitution
- Assessment of import substitution prospects in the public sector by market participants
Information Security and Cybercrime
- Cybercrime in the world
- NIST Requirements
- Global Cyber Security Index
- Cyber War, Cyber War of Russia and the USA, Cyber War of Russia and Great Britain, Cyber War of Russia and Ukraine
- Locked Shields (NATO Cyber Training)
- Cybercrime and cyber conflicts: Russia, Cyber military of the Russian Federation, FSB, National Coordination Centre for Computer Incidents (NCCCI), Information Security Center (CIB) FSB, Investigative Committee under the Prosecutor's Office of the Russian Federation, Department of the BSTM of the Ministry of Internal Affairs of Russia, MINISTRY OF INTERNAL AFFAIRS OF THE RUSSIAN FEDERATION, Ministry of Defense of the Russian Federation, National Guard of the Russian Federation, FinCERT
- The number of cybercrimes in Russia, Russian hackers
- Cybercrime and cyber conflicts: Ukraine, Cyber UA30 Center, National Cyber Warfare of Ukraine
- Norwegian National Health System Data Protection Centre (HelseCERT)
- CERT NZ
- UZINFOCOM Department CERT-UZ
- Internet regulation in Kazakhstan, KZ-CERT
- Cybercrime and cyber conflicts: US, Pentagon, CIA, NSA, NSA Cybersecurity Directorate, FBI, US Cyber Command (US Cybercom), US Department of Defense, NATO, Department of Homeland Security, Cybersecurity and Infrastructure Security Agency (CISA)
- Information Security in the United States
- How the United States spied on the production of microcircuits in the USSR
- Cybercrime and cyber conflicts: Europe, ENISA, ANSSI, Joint Cyber Unit, National Cyber Force
- EU cybersecurity strategy
- Internet regulation in EU countries
- Information security in Germany
- Information security in France
- Information security in Greece
- Information Security in Australia
- Tactical Edge Networking (Military Internet)
- Cybercrime and cyber conflicts: Israel
- Cybercrime and cyber conflicts: Iran
- Cybercrime and cyber conflicts: China
- Import substitution of information technology in China
- Cybercrime and cyber conflicts: DPRK
- Internet security
- Internet Site Security
- Software Security (SW)
- Web Application Security
- Messenger security
- Mobile Network Security Threats
- Social media security
- Cyberbullying (cyberbullying, cyberstalking)
- Information security in banks
- Information Security in Courts
- CERT-GIB Computer Emergency Response Team - Group-IB
- Bank card fraud
- Hacking ATMs
- Review: IT in Banks 2016
- Central Bank policy in the field of information protection (cybersecurity)
- Loss of organizations from cybercrime
- Bank losses from cybercrime
- IT trends in insurance (cyber insurance)
- Cyber attacks
- The number of cyber attacks in Russia and in the world
- Cyber attacks on cars
- Overview: Security of Information Systems
- Information security
- Information security in the company
- Information Security in Medicine
- Information Security in E-Commerce
- Information security in retail
- Information Security (Global Market)
- Information security (Russian market)
- Information security in Ukraine
- Information security in Belarus
- Top Trends in Information Protection
- Information Security Software (Global Market)
- Information Security Software (Russian Market)
- Pentesting (pentesting)
- Information Security - Encryption Tools
- Cryptography
- Security Incident Management - Issues and Solutions
- Authentication systems
- Personal Data Law No. 152-FZ
- Protection of personal data in the European Union and the USA
- Prices for user data in the cybercriminal market
- Bootkit
- Software and hardware vulnerabilities
- Jackpotting
- Ransomware virus (ransomware), Ramsomware, WannaCry, Petya/ExPetr/GoldenEye, CovidLock, Ragnar Locker, Ryuk, EvilQuest Ransomware for MacOS, Ransomware of Things (RoT), RegretLocker, Pay2Key, DoppelPaymer, Conti, DemonWare (ransomware virus), Maui (ransomware virus)
- Ransomware Protection: Does it exist?
- Big Brother (malware)
- MrbMiner (miner virus)
- Protection against ransomware viruses (ransomware)
- Malware (malware)
- APT - Targeted or Targeted Attacks
- TAdviser and Microsoft study: 39% of Russian SMB companies faced targeted cyber attacks
- DDoS and DeOS
- Attacks on DNS servers
- DoS attacks on content delivery networks, CDN Content Delivery Network
- How to protect yourself from a DDoS attack. TADetali
- Visual Information Protection - Visual Hacking - Peeping
- Honeypots (traps for hackers)
- Rootkit
- Fraud Detection System
- Catalog of Anti-Fraud Solutions and Projects
- How to choose an anti-fraud system for the bank? TADetali
- Security Information and Event Management (SIEM)
- SIEM Solutions and Projects Catalog
- How is the SIEM system useful and how to implement it?
- Why SIEM is needed and how to implement TADparts
- Intrusion Detection and Prevention Systems
- Local Threat Reflections (HIPS)
- Protect sensitive information from internal threats (IPCs)
- Spoofing - Cyber attack
- Phishing, Phishing in Russia, DMARC, SMTP
- Stalker Software (spyware)
- Trojan, Trojan Source (cyber attack)
- Botnet Boats, TeamTNT (botnet), Meris (botnet)
- Backdoor
- Worms Stuxnet Regin Conficker EternalBlue
- APCS Safety Market
- Flood
- Information Loss Prevention (DLP)
- Skimming (shimming)
- Spam, Email Fraud
- Social engineering
- Telephone fraud
- Sound attacks
- Warshipping (Warship cyberattack)
- Antispam software solutions
- Classic file viruses
- Antiviruses
- Information security: protective equipment
- Backup system
- Backup System (Technology)
- Backup System (Security)
- Firewalls
| The site content is translated by machine translation software powered by PROMT. The machine-translated articles are not always perfect and may contain errors in vocabulary, syntax or grammar. Read original article If you find inaccuracies or errors in the results of machine translation, please write to editor@tadviser.ru. We will make every effort to correct them as soon as possible. |