• 0Shopping Cart
Avasant
  • NEW TO AVASANT?

    Sign Up
  • Management Consulting
    • Strategic Sourcing
    • Digital
    • IT & Business Transformation
    • Software Selection
    • Governance, Risk & Compliance
    • Global Development
    • Avasant Law
  • Industries
    • Aerospace & Defense
    • Banking, Financial Services & Insurance
    • Energy & Resources
    • Healthcare & Life Sciences
    • High Tech & Telecommunications
    • Media & Entertainment
    • Private Equity
    • Public Sector
    • Retail & Manufacturing
    • Social Impact Institutions
    • Travel & Transportation
  • Research & Data
    • Access Reports
    • RadarView™ – Market Assessments
    • Computer Economics™ – IT Metrics
    • Global Equations™ – Country Data and Index
    • Avasant Beyond
    • Coronavirus Resource Center
    • Avasant Labs
    • AvaMark™
    • AvaSense™
    • Strativa®
  • Benchmarking
    • IT Spending Benchmark
    • TCO and Spend Transparency Analysis
    • Staffing and Salary Benchmark
    • IT Infrastructure Services Benchmark
    • Digital and Application Services Benchmark
    • BPO Services Benchmark
    • Cloud Enterprise Agreements Benchmark
    • IT Software License Benchmark
  • Events
    • Event Calendar
    • Empowering Beyond Events
    • Empowering Beyond Summit 2020
    • Partner With Avasant Events
  • Why Us
    • Vision and Values
    • Industry Recognition
    • Avasant Global Team
    • Avasant Fellows
    • Corporate Social Responsibility
    • Press Releases and Media
    • Avasant Foundation
  • Contact
  • Column 1
    • What We Do
      • Strategic Sourcing
      • Digital
      • IT & Business Transformation
      • Software Selection
      • Governance, Risk & Compliance
      • Global Development
      • Benchmarking
      • Avasant Law
    • Avasant Research & Data
      • Access Reports
      • RadarView™ – Market Assessments
      • Computer Economics™ – IT Metrics
      • Global Equations™ – Country Data and Index
      • Videos
      • Avasant Beyond
      • Coronavirus Resource Center
  • Column 2
    • Who We Serve
      • Aerospace & Defense
      • Banking, Financial Services & Insurance
      • Energy & Resources
      • Healthcare & Life Sciences
      • High Tech & Telecommunications
      • Media & Entertainment
      • Private Equity
      • Public Sector
      • Retail & Manufacturing
      • Social Impact Institutions
      • Travel & Transportation
    • Powered by Avasant Labs
      • AvaMark™
      • AvaSense™
      • Strativa®
  • Column 3
    • Why Us
      • Corporate Overview
      • Vision and Values
      • Industry Recognition
      • Avasant Global Team
      • Avasant Fellows
      • Corporate Social Responsibility
      • Press Releases and Media
      • Avasant Foundation
  • Column 4
    • Contact
      • Submit RFP
      • Regional Contacts
      • Careers
    • Event Calendar
      • Empowering Beyond Events
      • Empowering Beyond Summit 2020
  • LinkedIn
  • Twitter
  • Youtube
  • Facebook
Login
Login to get free content each month and build your personal library at Avasant.com

Forgot your password?
Reset Password
Enter email address to reset your password.

Back to Login
New to Avasant?
Click on the button below to Sign Up

Sign Up

Contact Us

  • Home
  • Access Reports
  • RadarView™
    Market Assessments
  • Computer Economics™
    IT Metrics
  • Strativa®
    Analytics
  • Global Equations™
    Location Intelligence
  • Avasant Distinguished Fellows
  • Request a Consultation
  • My Account
Back

Enterprise Security Orchestration Platforms – Gravitating Towards AI-Enabled Tools and Contextual Indicators

October, 2020

The traditional enterprise security platform is evolving. They now incorporate more capabilities into a single enterprise SOAR (security orchestration, automation, and response) platform. The SOAR value proposition has become more evident during the COVID-19 pandemic, because organizations require multi-functional capabilities to secure themselves against new threats. These tools help solve security challenges resulting from a distributed workforce, more BYOD devices, and cloud solutions.

This trend is examined in Avasant’s new report, Enterprise Security Orchestration Platforms 2020 RadarView™, a comprehensive study on the security orchestration platforms marketplace. It features industry-first insights, analysis, and a close look at the leaders, disruptors, innovators, and challengers in this market.

This report helps enterprises identify the right enterprise security orchestration platform for their needs. It assesses platform providers based on their automation capabilities, number of predefined playbooks, built-in integrations, flexibility in pricing models, efforts to reduce TCO, maturity, and scale of operations. It also highlights the key market trends and Avasant’s view of the enterprise security orchestration platform providers over the next 12 to 18 months.

We evaluated 20 providers of enterprise security orchestration platforms, using a rigorous methodology across three dimensions (product maturity, enterprise adaptability, and innovation roadmap). The report recognizes 14 providers that brought the most value to the market over the last 12 months. These are presented against key metrics to help buyers differentiate between market products and find the right solution to fit their needs.

The report recognizes tool vendors in four categories:

  • Leaders: IBM, LogRhythm, RSA, Splunk
  • Innovators: Microsoft, Palo Alto Networks, Rapid7
  • Disruptors: AT&T Cybersecurity, Exabeam, FireEye
  • Challengers: Fortinet, Micro Focus, Securonix, Siemplify

Figure 1 from the full report illustrates these categories:

Figure 1 - Enterprise Security Orchestration Platforms – Gravitating Towards AI-Enabled Tools and Contextual Indicators

“During a year of radical change, companies should be prepared to address changes in how both employees and customers engage with businesses, driving further digital transformation,” Avasant’s Associate Director Mark Gaffney said. “While technologies such as mobility, virtualization, cloud, and collaboration tools are transforming many enterprises, they have also expanded the risk perimeter security threats. With many more devices connected to the network, the security team needs to automate the incident response processes and integrate disparate security tools into a single enterprise SOAR platform.”

The report also highlights other trends, including the following:

  1. Tools are maturing from SIEM (security incident and event management) to SOAR and utilizing centralized tools:
    • The rise in the threat landscape has led to a greater need for SIEM providers to expand the scope from a few data sources, such as firewalls and intrusion detection systems, and enhance interoperability with new security tools. These include endpoint detection and response (EDR), user and entity behavior analytics (UEBA), and network traffic analysis (NTA) tools.
    • Many cybersecurity providers have also jumped on the SOAR bandwagon via acquisitions.
  2. Focus on a cloud-first approach toward business models and product strategy:
    • Seeing the rising demand for SaaS-based solutions, all the major security platform providers have introduced cloud-based versions of their platforms. This brings the functionalities of on-prem solutions and reduces the time to deploy along with ease of administration and maintenance of the platform.
    • As firms modernize their IT infrastructure or migrate apps to the cloud, security platform providers have started offering unlimited data plans, allowing users more flexibility.
  1. Providers are deploying an ecosystem and service-centric approach:
    • As part of the larger ecosystem strategy, some of the leading platform providers introduced free community edition, free foundational training courses, online community and marketplace to enable their customers and partners to experiment and start small.
    • These providers are also offering customized implementation support, architecting, and configuration, and enabling Centre of Excellence development on request basis.
  1. Roadmaps are focused on playbooks, built-in integrations, and AI-driven engines
    • Security platform providers continue to augment their portfolios, focusing on efficient threat remediation. This includes building structured and dynamic incident response playbooks to support customized workflows and help reduce mean time to resolution (MTTR).
    • SOAR providers have also been expanding with newer integrations with the leading security providers to deliver end-to-end security. Lastly, they are developing AI-enabled tools for improved threat remediation.

“Data theft and ransomware are becoming significant threat vectors,” Avasant’s Research Leader Gaurav Dewan said. “Because of that, a proactive security approach that includes measures such as threat hunting, threat deception, threat prevention, and threat intelligence becomes imperative. Security platform providers, understanding the evolving security landscape, have augmented their platforms to deal with the new realities.”

The report features RadarView profiles of the top 14 platform providers and their security orchestration solutions.

 


This Research Byte is a brief overview of the full Enterprise Security Orchestration Platforms 2020 RadarView™ report. The full report is available at no charge for Avasant Research subscribers, or it may be purchased by non-subscribers directly from our website (click for pricing).


 

Related Reports

  • image 2019 04 24T15 11 21 438Z2 600x400 - Cybersecurity: From Reactive Defense to Proactive Digital Enablement

    Cybersecurity: From Reactive Defense to Proactive Digital Enablement

  • communication 1927697 1920 600x400 - Enterprise Internet of Things Trends Shaping the Market

    Enterprise Internet of Things Trends Shaping the Market

  • Hybrid IT Environments The New Normal for Enterprises Infographic 600x400 - Hybrid IT Environments: The New Normal for Enterprises

    Hybrid IT Environments: The New Normal for Enterprises

  • MoneyShot DigitalMasters2019 600x400 - Avasant’s Digital Masters RadarView™ - Recognizes Leading Service Providers with the Most Comprehensive Digital Transformation Offerings

    Avasant’s Digital Masters RadarView™ – Recognizes Leading Service Providers with the Most Comprehensive Digital Transformation Offerings

DISCLAIMER:

Avasant's research and other publications are based on information from the best available sources and Avasant's independent assessment and analysis at the time of publication. Avasant takes no responsibility and assumes no liability for any error/omission or the accuracy of information contained in its research publications. Avasant does not endorse any provider, product or service described in its RadarView™ publications or any other research publications that it makes available to its users, and does not advise users to select only those providers recognized in these publications. Avasant disclaims all warranties, expressed or implied, including any warranties of merchantability or fitness for a particular purpose. None of the graphics, descriptions, research, excerpts, samples or any other content provided in the report(s) or any of its research publications may be reprinted, reproduced, redistributed or used for any external commercial purpose without prior permission from Avasant, LLC. All rights are reserved by Avasant, LLC.

 

Avasant Companies

  • Avasant LLC
  • Avasant Law LLP
  • AvaSense Inc.
  • Avasant Beyond

Contact

  • Contact
  • Privacy Policy
  • Terms of Use
  • LinkedIn
  • Twitter
  • Youtube
  • Facebook
Footer Logo
© Copyright 2021 - Avasant and affiliated companies
Next Generation Financial Management Suites for the Intelligent Finance Fun... MoneyShotFMsuites2020 - Enterprise Security Orchestration Platforms – Gravitating Towards AI-Enabled Tools and Contextual Indicators artificial intelligence 3382507 1920 - Enterprise Security Orchestration Platforms – Gravitating Towards AI-Enabled Tools and Contextual Indicators Artificial Intelligence: Should Robots Have Rights ?
Scroll to top