CISOs and different security execs typically discover themselves in a tough place. Attackers are all the time getting higher, and now they will use genAI to assist craft ransomware emails or create deepfakes. On the identical time, security practitioners are bombarded by distributors with an alphabet soup of options: SSE, SASE, ZTNA, DLP, CASB, SWG, SOAR, DEM, XDR, CSPM — the checklist goes on and on.
Enterprise prospects have had it with level merchandise. They need platforms that defend every part: finish customers, whether or not distant or within the workplace; gadgets, together with IoT and OT; functions, together with SaaS; knowledge, at relaxation or in movement; growth environments, on-prem or within the cloud. They need automation, they need analytics, they usually need AI and generative AI.
The ability gamers in security have gotten the message. Over the previous 12 months or so, vital vendor consolidation has occurred. Cisco purchased Splunk. Broadcom purchased VMware. Fortinet is shopping for Lacework. Strategic alliances have been solid. IBM and Palo Alto Networks. CrowdStrike and Cloudflare.
The distributors on this checklist have constructed platforms that supply cloud-based administration and superior knowledge analytics, and that leverage AI and genAI to place real-time data on the fingertips of security professionals.
1. Cisco: Buying Splunk for AI
Why they’re right here: Networking powerhouse Cisco has cobbled collectively — largely by acquisition — a broad portfolio of security merchandise. (Viptela for SD-WAN. Meraki for cloud administration. Duo for authentication. Thousand Eyes for digital expertise monitoring. AppDynamics for observability.) Some would say too broad, as Cisco has been criticized for having overlapping product strains. Cisco has addressed these considerations with the current launch of Cisco Safety Cloud, which replaces level merchandise with suites.
Energy strikes: Cisco made a serious splash with the acquisition of SIEM and knowledge analytics vendor Splunk. The transfer offers Cisco a possibility to mix its networking, security, and observability merchandise with Splunk’s AI-based knowledge analytics prowess to ship full-stack security safety for enterprises.
By the numbers: $28B: The quantity that Cisco paid for Splunk.
Outlook: Cisco’s security income in its most up-to-date quarter was a wholesome $1.3B (together with income from Splunk.) Nonetheless, Gartner analyst Jon Forest says that security contributes solely 7% of Cisco’s whole income, so there’s definitely alternative for development. And Cisco has recognized 5,000 of its prospects who don’t have any Splunk presence in any respect, which creates potential for cross-selling. Cisco CEO Chuck Robbins says that with Splunk within the Cisco fold, “We are going to revolutionize the way in which our prospects leverage knowledge to attach and defend each facet of their group as we assist energy and defend the AI revolution.”
2. Broadcom: All of it comes right down to execution
Why they’re right here: When Broadcom introduced its intention to buy VMware in 2022, the main focus was on VMware’s virtualization and hybrid cloud administration platforms. However the mixture of security vendor Symantec, which Broadcom bought in 2019, and VMware’s security belongings, creates the potential for a serious participant in security. The questions had been: Is Broadcom going to promote endpoint security powerhouse Carbon Black (owned by VMware), because it initially indicated? And the way is it going to deal with overlapping product strains between VMware and Symantec in the case of sizzling product areas akin to SSE and SASE? In a shocking about face, Broadcom introduced in March that it’s going to maintain Carbon Black, and can try to combine Symantec and VMware security instruments. It’s too early to inform if these tough integrations shall be profitable, however the alternative is there for Broadcom.
Energy strikes: Determined not to promote endpoint security vendor Carbon Black.
By the numbers: $49B: Quantity Broadcom paid for VMware.
Outlook: On the current Cell World Congress in Barcelona, Broadcom introduced its first integration: A single-vendor SASE providing that mixes VMware’s VeloCloud SD-WAN and Symantec’s SSE. There are definitely extra areas of potential integration. Forrester Analysis factors out that each Symantec and Carbon Black have robust endpoint security choices, and each have zero belief platforms. However Broadcom has acknowledged its intention to dedicate vital sources to innovation and integration.
3. Palo Alto Networks: Platformization is the phrase
Why they’re right here: Palo Alto Networks is without doubt one of the established energy gamers in cybersecurity, from its roots because the creator of the application-aware firewall to its present management place primarily based on what it calls “platformization,” the deployment of an built-in security platform. Palo Alto Networks is a Chief in Gartner’s Magic Quadrant for SSE, and a Chief within the just-released Forrest Wave for XDR.
Energy strikes: In Could, Palo Alto introduced a broad partnership with IBM that has many transferring elements. Palo Alto will change into IBM’s most well-liked security companion, with IBM pledging to coach greater than 1,000 of its security consultants on migration, adoption, and deployment of Palo Alto Networks merchandise. Palo Alto will incorporate IBM’s watsonx massive language mannequin in its Cortex XSIAM. And Palo Alto will purchase IBM’s QRadar SIEM software, migrating QRadar prospects over to Palo Alto’s security operations (SOC) platform.
By the numbers: 15%: Palo Alto reported income of $1.98B in its newest quarter, up 15% year-over-year.
Outlook: Palo Alto is betting that enterprise prospects agree with its imaginative and prescient of an AI-based, all-in-one security platform. Palo Alto CEO Nikesh Arora says, “The security business is at an inflection level the place AI will rework companies and ship outcomes not seen earlier than. It’s a second to speed up development and innovation. Along with IBM, we’ll capitalize on this development, combining our main security options with IBM’s pioneering watsonx AI platform and premier providers to drive the way forward for security platformization with full, AI-powered, secure-by-design choices.”
4. Microsoft: Making security a high precedence
Why they’re right here: Microsoft has taken the platform route and consolidated scores of particular person instruments into six product strains: Defender, Sentinel, Entra, Purview, Priva, and Intune. A frontrunner in AI by its shut alliance with OpenAI (the creator of ChatGPT), Microsoft has launched Copilot for Safety, a generative AI resolution that permits security groups to simplify processes akin to incident remediation and guided response. Microsoft has an SSE providing, and it was named a frontrunner within the 2024 Forrester Wave for XDR platforms.
Energy strikes: In March, Microsoft introduced that it had employed the co-founders of AI startup Inflection (Mustafa Suleyman and Karen Simonyan) to run Microsoft’s AI operations. In April, Microsoft introduced its unified SOC platform designed to interrupt down silos and ship SIEM, XDR, SOAR, and different capabilities underneath one roof.
By the numbers: $20B: Microsoft says its security division generates $20B in annual income. And Microsoft places the annual development of its cybersecurity enterprise at over 30%.
Outlook: Microsoft has suffered some high-profile, embarrassing data breaches just lately which were blamed on Chinese language and Russian hackers. In response, Microsoft CEO Satya Nadella instructed analysts: “Safety underpins each layer of the tech stack and it’s our No. 1 precedence. We’re doubling down on this crucial work, placing security above all else, earlier than all different options and funding.” And in an e-mail to Microsoft staff, Nadella wrote: “For those who’re confronted with a tradeoff between security and one other precedence, your reply is obvious: Do security.”
5. Fortinet: Safety and networking underneath one roof
Why they’re right here: Fortinet is exclusive amongst cybersecurity distributors for 2 causes: 1. Fortinet is ready to natively mix networking and security in a seamless platform. In actual fact, Fortinet is a frontrunner within the newest Gartner Magic Quadrant for enterprise wired and wi-fi LAN networking. 2. Not like firms that develop by acquisition and have to combine new merchandise into their portfolio, Fortinet builds its personal chips, has its personal working system (FortiOS), and, for many half, develops merchandise in-house, offering full integration from community switches to firewalls to SASE.
Energy strikes: Fortinet introduced on June 10 that it has reached an settlement to amass cloud security agency Lacework. Fortinet stated that it’s going to combine Lacework’s CNAPP (cloud-native software safety platform) into its Unified SASE providing to create “some of the complete, full stack AI-driven cloud security platforms obtainable from a single vendor.”
By the numbers: 7%: On Could 2, Fortinet introduced Q1 income of $1.35B, up 7% year-over-year.
Outlook: Fortinet is making an enormous push to take a management place in single-vendor SASE. Says CEO Ken Xie, “We’re diligently executing on our technique to capitalize on the fast-growing unified SASE and security operations markets whereas persevering with to achieve market share in safe networking.” As well as, Fortinet is looking for the candy spot between prospects who need a consolidated platform, however are cautious of vendor lock-in. Fortinet is now providing prospects a collection of 5 platforms (hybrid mesh firewall, XDR, single-vendor SASE, SD-branch, and cloud e-mail security) that they will select from.
6. CrowdStrike: Cloud-native security platform constructed to guard cloud knowledge
Why they’re right here: CrowdStrike is a frontrunner in Gartner’s 2023 Magic Quadrant for Endpoint Safety Platforms. It’s a chief within the 2024 IDC MarketScape for worldwide managed detection and response providers. And CrowdStrike is a frontrunner within the 2024 Forrester Wave for Prolonged Detection and Response Platforms. IDC says, “There’s a push ‘to the platform’ that’s occurring in cybersecurity. That is worthy of point out as CrowdStrike has a large depth and breadth of capabilities constructed into its Falcon platform that gives the expertise muscle for its MDR providing. The added capabilities, akin to its managed cloud workload safety (CWP) and its totally managed identification risk safety service, present knowledgeable administration, monitoring, safety, and optimization of identities and identification shops.”
Energy strikes: Acquired Move Safety, a frontrunner in knowledge security posture administration (DSPM).
By the numbers: 33%: On June 4, CrowdStrike introduced that income in its most up-to-date quarter elevated 33%, reaching $921M.
Outlook: CrowdStrike continues to innovate. It just lately delivered a Falcon Subsequent-Gen SIEM, and Falcon software security posture administration (ASPM). The Move Safety acquisition is aimed toward boosting CrowdStrike’s DSPM capabilities and suits right into a broader technique to ship what CrowdStrike calls “essentially the most full knowledge safety providing, from code to software to gadget to cloud.”
7. Cloudflare: Teaming up with CrowdStrike
Why they’re right here: Cloudflare is a frontrunner in safe content material supply community providers, what it calls its “connectivity cloud,” with a unified platform of networking, security, and software supply providers. Launched in 2020, Cloudflare One is a quick rising platform for SASE and SSE providers. Cloudflare was named a “Chief” in 2023 IDC MarketScape for zero belief community entry (ZTNA), and is a Sturdy Performer in 2024 Forrester Wave for SSE.
Energy strikes: Purchased BastionZero, a zero belief infrastructure entry platform, to additional strengthen distant entry to core IT techniques for purchasers of Cloudflare One.
By the numbers: 30%: Cloudflare’s income for the primary quarter of 2024 was $378.6 million, a rise of 30% year-over-year.
Outlook: On Could 30, Cloudflare introduced a strategic partnership with CrowdStrike designed to mix their platforms to assist enterprise prospects obtain vendor consolidation throughout its cybersecurity infrastructure. Particularly, the deal combines cloud-native, zero belief safety and connectivity from Cloudflare One with AI-native cybersecurity from CrowdStrike Falcon’s cybersecurity platform, together with its Subsequent-Gen SIEM. CrowdStrike and Cloudflare are leveraging channel partnerships to ship a totally built-in resolution to international prospects from a single API. The aim is to ship the full-scope capabilities SOC groups have to detect and reply to assaults throughout community, gadgets, endpoints, cloud, identification, knowledge, and functions.
8. Zscaler: Zeroing in on zero belief
Why they’re right here: A frontrunner in Gartner’s newest Magic Quadrant for safe service edge, Zscaler is an innovator within the second wave of vendor cybersecurity — an organization that doesn’t construct its personal firewalls, however constructed a cloud-based platform designed to safe enterprise site visitors. The corporate’s Zero Belief Alternate protects customers, workloads, and gadgets by making use of zero belief ideas together with superior machine studying and AI. The platform additionally now extends to IoT gadgets, in addition to OT techniques.
Energy strikes: Purchased startup Avalor. The seller’s knowledge material permits security groups to mixture, normalize, deduplicate, and observe threat knowledge from discovery to remediation. Additionally purchased AirGap Networks, which permits Zscaler to introduce zero belief community segmentation inside branches, campuses, and factories for servers and IoT/OT gadgets.
By the numbers: 2 billion: Variety of phishing makes an attempt that Zscaler’s platform blocked in calendar 2023.
Outlook: Zscaler Chairman and CEO Jay Chaudhry says the corporate’s benefits are its cloud-based structure, the way in which its choices are continually evolving, and its velocity of innovation. Alongside these strains, Zscaler just lately launched its Zero Belief SD-WAN, an providing that applies genAI to software security, and is increasing AI performance into risk-based enterprise insights and unified vulnerability administration.
9. Netskope: Leveraging AI and genAI
Why they’re right here: Netskope is a frontrunner within the 2023 IDC MarketScape for community edge security-as-a-service (NESaaS) and ZTNA, and is cited as a frontrunner within the 2024 Forrester Wave for security service edge (SSE) platforms. IDC analyst Chris Rodrigues says, “Our thorough evaluation of Netskope’s technique and capabilities led us to acknowledge the corporate as a Chief in each the NESaaS and ZTNA. Netskope leverages its intensive cloud structure to supply a ubiquitous, performant, edge-delivered zero belief entry mannequin throughout all customers and gadgets. Netskope’s deep degree of experience in CASB inline and API safety is a key differentiator for organizations which are involved concerning the dangers represented by managed and unmanaged SaaS functions.”
Energy strikes: Purchased digital expertise monitoring startup Kadiska.
By the numbers: $500M: On June 3, Netskope introduced that it had reached $500M in annual recurring income.
Outlook: Netskope lays declare to being the business’s first SSE vendor to leverage generative AI for SaaS security, the primary genAI-powered CASB, essentially the most superior DLP, all working on the Netskope One platform. The corporate is poised to make the most of development within the SSE and SASE markets. Says Sanjay Beri, co-founder and CEO, “Netskope was based on the concept the whole enterprise technique for shielding vital knowledge from threats relies on how nicely security and networking adapt to a cloud-first, AI-ready world. As cloud and SaaS app adoption soared, companies started altering their unreliable legacy expertise stacks to cut back dangers, decrease prices, and implement trendy structure. We accurately anticipated {that a} converged, optimized platform strategy can be wanted to perform this, a possibility now often known as SASE.”
10. Wiz: Startup with a whizbang cloud security platform
Why they’re right here: Wiz addresses a key ache level for CISOs: With every part transferring to the cloud, how do I maintain observe of it and safe it? The Wiz cloud security platform gives prevention, detection, and response for knowledge, workloads, software growth environments, containers, Kubernetes, and so forth, throughout multicloud environments. The Wiz providing has created fairly a buzz: The corporate raised $1B in 2024 alone, at a valuation of $12B.
Energy strikes: Purchased startup Gem Safety, which makes a speciality of real-time cloud detection and response.
By the numbers: $350M: Based in 2020, privately held Wiz reported that it achieved $350M in annual recurring income in 2023.
Outlook: Wiz is sizzling. No query about it. The corporate has burst on the scene with a daring technique of promoting to the biggest enterprises. The query is whether or not the corporate can proceed its torrid development charge. Assaf Rappaport, co-founder and CEO, isn’t missing in confidence. He says, “Consolidation is the way forward for the security business. With cloud infrastructure rising at an accelerated tempo, to not point out the broad adoption of AI functions, the world’s largest organizations require consolidated, cloud-native security platforms to successfully deal with a large and ever-changing vary of security wants. We’re creating a robust real-time resolution for SOC and Cyber Protection groups to fight rising threats and constructing the world’s main cloud security platform.”
