I had a conversation with my security colleagues about their impressions of the state of the security software market – especially coming out of RSA (See Anton Chuvakin’s recap here ). The impression was that we have a market run amok – every vendor trying to do everything (jack of all trades master of none), lots of niche vendors; customers buying products that overlap, not knowing what they have that can do the job, and managing multiple products that don’t want to be managed – or at least don’t want to play nice with each other.
This, my friends, sounds like a market ripe for fallout.
But, as was pointed out, there is a lot of money in buyer’s hands, and a lot of pressure/motivation to do something, ANYTHING, to prevent breaches, mitigate risk, and maybe even save your job before the next state sponsored hacker puts your emails in the wild. A red light district loves a bunch of drunken sailors in the ‘hood…but is it sustainable? Or is it, as Bob Blakely (former Gartner analyst) said in 2007 “always consolidating, but never consolidated.”
My CIO reptilian brain kicks in and I worry about “how do I make a decision with a manageable set of vendors that I can trust and develop a long term relationship with.” Or, more to the point, how do all of us, CIO or not, make the right recommendations and decisions that really helps our company stay out trouble.
What do you think? Is the security market headed for a fall? Are a lot of end user organizations going to get hurt with poor purchases, before things get better? Or will the last standing BIG (security) BOX vendor eventually clean up?
Our research with Magic Quadrants, critical capabilities, evaluation criteria, and in depth assessments certainly help with decision-making…but the decision-making isn’t getting any easier given the market….
View Free, Relevant Gartner Research
Gartner's research helps you cut through the complexity and deliver the knowledge you need to make the right decisions quickly, and with confidence.Read Free Gartner Research
Comments or opinions expressed on this blog are those of the individual contributors only, and do not necessarily represent the views of Gartner, Inc. or its management. Readers may copy and redistribute blog postings on other blogs, or otherwise for private, non-commercial or journalistic purposes, with attribution to Gartner. This content may not be used for any other purposes in any other formats or media. The content on this blog is provided on an "as-is" basis. Gartner shall not be liable for any damages whatsoever arising out of the content or use of this blog.