Security vendors need to work together to beat the attackers

By on
Security vendors need to work together to beat the attackers

As one of the hottest markets in IT, security also proved to be one of the most competitive. At the same time, however, success depends on the cooperation of all players - large and small, legacy and startup.

"This security industry needs to come together," said Michael DeCesare, chief executive of ForeScout Technologies.

That won't happen by big players like Symantec, Cisco Systems, McAfee or IBM buying up large swaths of the security market, DeCesare said. Customers are demanding innovative, best-of-breed startup solutions, as well as legacy platforms, he said. That means both sides of the market need to work together, and integrate with one another, for the ultimate benefit of the customer.

"It has to be done by collaboration," DeCesare said. "We have to figure out some way for there to be some level of collaboration."

Cupertino, California-based ForeScout integrates its products with a number of security vendors. George Kurtz, chief executive of Crowdstrike, one of the companies whose products integrate with ForeScout, said integration such as this is key because a single vendor can't own every piece of the security puzzle on its own. Instead, security vendors need to specialise in what they do best, whether it's one product line or a collection of them, in the same way doctors specialise in different practice areas, he said.

"My selling point to a customer is: I don't want to be your single pane of glass. … In today's environment, we realise that we're one piece of the security ecosystem. … We think we're an important piece, but we want to be able to work with that entire ecosystem," Kurtz said.

It's the customers themselves that are demanding integrated offerings, said Haiyan Song, senior vice president of security markets at Splunk. That's a shift that has caused Splunk to adapt the way it goes after the security space, rolling out what it calls Adaptive Response, a framework with a common interface for security data and response in multivendor environments.

But integration isn't just for startups. It's also a necessity recognised by the large, legacy vendors. Executives from legacy players Symantec and McAfee said the need for industry integration and collaboration is driving their push to establish themselves as security platform players, enabling their own offerings to integrate with third-party vendors in a way that adds value above and beyond the parts alone.

"The cybersecurity problem is bigger than any one company," McAfee chief executive Chris Young said. That's why McAfee has chosen to pursue an open platform approach that acts as a "connective tissue" for third-party vendors and its own technologies, he said.

"We believe as an industry we've got to come together to solve the problem. There are areas where we compete, but there needs to be more cohesiveness," Young said.

"One thing I love about our industry is that, yeah, there are a lot of companies and there's a lot of competition, but generally speaking people believe in the mission of cybersecurity and what we're trying to do here that's bigger than any individual company. It's bigger than any individual person. That's a shared goal, that's a shared mission from any of us," he said.

Symantec president and chief operating officer Michael Fey said an integrated approach is something all security companies need to get on board with because, ultimately, the competition is the attackers - not each other.

"Unlike the rest of IT, where you see companies competing against themselves driven by innovation and ROI, we're driven by innovation and ROI in the attack landscape. [That] measure for us really creates an interesting dynamic.  … I think about the attackers a whole lot more than I think about my competition. At the end of the day, if I don't do a good job beating them, then it doesn't matter what my competitors do," Fey said. 

For solution providers, this move toward integrated security presents a significant opportunity, vendor executives and solution providers agreed. Vendors can provide the building blocks, but the solution providers and the systems integrators are the ones who will help customers piece those solutions together, Splunk's Song said.

"I think the channel partners are going to play a big role in delivering that last mile to the customers," Song said.

This article originally appeared at crn.com

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © 2018 The Channel Company, LLC. All rights reserved.
Tags:

Most Read Articles

You must be a registered member of CRN to post a comment.
| Register

Log In

Username / Email:
Password:
  |  Forgot your password?