The report by analysts IDC found that the main reason for this approach lies with companies taking a piecemeal approach to security problems.
"Securing digital assets presents significant challenges to most European organizations, many of which are now realizing that a holistic approach to security is not just nice to have, but rather paramount for survival and an integral part of any successful business strategy," said Thomas Raschke, European research program manager at IDC.
He added successful companies are bound to make the transition from reactive security to a comprehensive, integrated, and forward-looking approach to IT security and this would only be done with the help of the security industry. Corporate concerns with over many aspects of security will help to drive the security software market to achieve almost $6 billion in revenue in 2009, according to Raschke.
Other experts said up until recently security spending had been focused on operating systems or networks. Sarah Saltzman, solutions manager, Compuware said as companies develop end-to-end security policies "it will become apparent that the gaping hole in their security policy to date has been that they haven't developed applications with security in mind."
"If people paid more attention to making software secure we wouldn't need the masses of security technology that protects us from the security holes in the applications we use. This is a key area for businesses to look at if they want to develop well rounded proactive security policies, rather than repeatedly patching a leaky boat," she added.