51 posts categorized "MandA"

February 22, 2012

What The WAF? Alert Logic Acquires ArmorLogic

I guess it was just too logical not to happen. Seriously, very happy for my friends at Alert Logic on their acquisition of ArmorLogic which was announced this morning. ArmorLogic has built a good reputation with a quality WAF product called Profense.

Web App Security is a huge issue right now. In spite of the fact that WAF and other web app security has been around for a while now, we have not seen the critical mass of uptake that we would expect. That’s what I think is the special sauce in the Alert Logic acquisition. In speaking with Gray Hall, Urvish Vashi and the rest of the Alert Logic team they believe that taking their Security-as-a-Service formula (which includes SaaS security solutions wrapped with a managed service option manned by an expert security team) the WAF will be more accessible, affordable and manageable than any WAF on the market today.  If they can pull that off, combined with their strong channel of hosting and cloud providers, it could be a game changer in the WAF market.

Of course I do consulting work for Alert Logic, so want to make that disclosure clear.  However, I agree with the AL team’s view of this.  I think WAF like much security technology today is beyond the grasp for several reasons of the average organization. It is too complex, too expensive and just plain too hard.  Alert Logic has a good record of taking care of security for their partners and customers. It is that Security-as-a-Service model again that I think is the special sauce that will ignite WAF.

So congrats to my friends at Alert Logic on the acquisition. Looking forward to more announcements next week at RSA from them as well.

Related articles
Enhanced by Zemanta

Posted at 04:15 PM in MandA, MSSP, outsourcing security, the security industry, virtualization, vulnerability management | | TrackBack (0)

May 10, 2011

Microsoft buys Skype, why buy the cow when the milk is free

Image representing Skype as depicted in CrunchBase

Image via CrunchBase

The big news today is of course the 8.5 Billion big ones that Microsoft laid out for Skype.  While I love Skype and use it a lot, I am reminded of something my Grandmother used to tell me, “why buy the cow when the milk is free”.

I understand that Steve Ballmer is feeling vulnerable. After all Microsoft is not in the “cool boys club” with Google and Apple. But is going to the mall and spending 8.5 billion dollars going to make you cool? I don’t see how this is going to make Microsoft more relevant?

Everyone uses Skype on computer to computer calls and I bet there are some people who use it as their primary phone option, but 8.5 billion worth? I don’t think so.  This buy just stinks of desperation to me. But what do I know?

Will be interesting to see if we there will be any new Skype clients for iPhone or Android  in the not to distant future though.

Related articles
Enhanced by Zemanta

Posted at 01:40 PM in General Background, MandA, network convergence | | TrackBack (0)

May 06, 2011

Sophos Moves Beyond The Endpoint With Astaro Buy

Image representing Astaro as depicted in Crunc...

Image via CrunchBase

Saw the news today about Sophos buying Astaro.  My initial reaction was “is this good for Jack Daniel”.  But beyond that I think it is a good move for Sophos. For years they have successfully been competing with Symantec and McAfee in the endpoint security game. But they needed to move beyond the endpoint.

Sophos has been known to been lighter and more nimble than some of their bigger competition. But what the bigger guys had was more than the endpoint. They had network security as well.  Other than NAC, Sophos had nothing to compete.  If they were truly going to compete with the bigger companies in the security space they had to move to the network too.

In Astaro they picked up a good one. Astaro has quietly become a player in the UTM market. Their growth has been steady and considerable. They were out in front with virtual appliances. They are a solid company in the network security market with a diverse customer base.  I think it is a perfect fit for Sophos.

Now the important stuff, what does this mean for Jack? I hope they continue Astaro’s practice of letting Jack run community and continue the support of B-sides events.

Congratulations to all of my friends at Astaro and to all of the great bloggers at Sophos. I think together, this will be a new powerhouse in security.

Related articles
Enhanced by Zemanta

Posted at 07:40 AM in General Security, MandA, UTM | | TrackBack (0)

April 19, 2011

FireMon Leapfrogs Competition In Risk Analysis

FireMon (formerly Secure Passage) today announced the acquisition of a company called Saperix Technology. Saperix Technology’s major asset it seems is some patented risk analysis technology that was developed by the MIT Lincoln Labs over the last 10 years.

Of course FireMon is in the firewall/security device management space that I follow pretty closely.  I wrote about the space last shortly after RSA. At the time I noted that some of the players in the space had moved into risk analysis, while others actually came from the risk analysis space into device management (Skybox Security, Red Seal).

At the time I though that FireMon had not kept pace with the others on that front. With today’s move and from what I have seen and been told, it would seem FireMon may have in fact leapfrogged the competition with this smart buy.

I had a chance to sit down and talk with Jody Brazil, President of FireMon last week about the acquisition.  Jody wrote a great blog on the details behind the deal on the FireMon blog today too.

Suffice to say that according to Jody the real thing holding back wider adoption of this type of risk analysis at the enterprise to this point was that frankly it didn’t scale. It wasn’t fast enough or scalable.  That is where this government lab developed technology is different. According to Brazil this technology is enterprise ready in terms of scalability and responsiveness.

The FireMon folks say they have really got something here and will be integrating it into the FireMon product line in a very short time (read that in weeks, not months).

Gary Fish of Fishnet Security is the CEO of FireMon and Gary knows a thing or two about acquiring companies. He says that he is not done yet with acquisitions.  He thinks the future of FireMon is to continue to grow organically, as well as by strategic acquisition. Gary is pretty pumped up about this acquisition as well. 

It sounds like FireMon is going to reassert itself as the leader in this space. With Gary Fish behind it and a solid technology base that they are adding to, it might be a wise bet to bet on FireMon.

Related articles
Enhanced by Zemanta

Posted at 09:34 AM in General Security, MandA, other security companies | | TrackBack (0)

March 23, 2011

Intel Acquisition Doesn’t Stop McAfee From Innovating

Intel’s security division announced it was buying database security firm Sentrigo. I guess McAfee’s acquisition by Intel will not stop its innovation by acquisition strategy.

While I don’t know what the terms of this deal are, McAfee has been reselling the Sentrigo product for some time.  With data and database security so hot, McAfee needed a product line in this space.  Congrats to my friends at Sentrigo!

This could signal a new round of consolidation around database security. How can Symantec, IBM, EMC, etc. stay pat.  Anyone want to speculate on who could be next in this space?

Related articles
Enhanced by Zemanta

Posted at 09:04 AM in MandA | | TrackBack (0)

February 24, 2011

Network Security Management–A Snapshot

The information security marketplace is one where several large vendors are household names. Cisco, Symantec, McAfee, Checkpoint, etc.  But there also lots of other outposts and pit stops on the road. Some are sleepy and dreary with little changing, others are dynamic and vibrant, with innovation bursting out all over.  One of these areas is one that I have been following for several years. It is the security and network appliance management space.

This is an area that many of us don’t hear a lot about. You don’t see magic quadrants, you don’t see a lot of reviews. But it is an important and evolving piece of the puzzle.  Part of the reason you may not be familiar with this segment is people don’t know what to call it.  It used to be called firewall management, then security appliance management, security lifecycle management and so on. If you can’t name it, you don’t talk about it I guess.

What I am talking about though are those companies who are helping enterprises manage dozens of firewalls at a time. That is where this market started. Enterprises who had 10’s if not hundreds of firewall and routers.  Not all of them from the same vendor either.  How could you see where the risk was? How could you see what would happen if a change was made? What was the current posture? What would be the right configuration changes to make?

That is what drove this market. Firewall change management.  Since then the players in this market have moved into risk management, managing other devices besides firewalls, compliance factors and MSSP features.

This is a market that is focused almost by definition on the large enterprise and has several successful, profitable companies.  It is a market you should be aware of and familiar with its leaders. 

So who are the leaders in the security device management space:

1. Tufin Technologies – I have followed and spoken to Ruvi Kitov, the CEO and Reuven Harrison, the CTO of Tufin for years. Tufin is an Israeli based company and is venture funded. They are a powerhouse in both EMEA and the US market.  As far as I know they were the first to move into what they call “lifecycle management” of security devices.  They have an excellent compliance management feature set. They also recently announced support for next gen firewalls like Palo Alto Networks.

Like some of the other leaders in the space, Tufin’s solution breaks down into a workflow and analysis module. Their workflow is open and a center piece of what they are working on. Their business is split about 50-50 between US and Europe, predominantly large enterprise with a strong presence in the financial sector.  Profitable since 2005, they are a leader in the space.

2. AlgoSec – I recently became aware of AlgoSec and had a chance to meet with their CEO and VP of marketing at RSA.  Just because I was unaware of AlgoSec doesn’t mean they are unknown though. Like Tufin they have over 700 customers, with a sizeable presence in the Fortune 500. Unlike Tufin they never took VC money and so are totally bootstrapped. They have been profitable for a long time. In fact their profits have fueled their recent expansion.

AlgoSec also originally founded in Israel, but is now HQ’ed and based here in Atlanta. They have offices throughout EMEA and the US.  The customer base breaks down to about 50-50 to US and Europe.  They also offer an analyzer and workflow solution in their product.

AlgoSec is an up and comer in the market and is probably 1-2 with Tufin in this space.

3. Firemon – Originally Firemon, then Secure Passage and now Firemon again, this was the first company/product I became familiar with in this space.  Jody Brazil, Firemon CEO was the CTO for Gary Fish at Fishnet. Going back to 1997, FishNet needed a tool to manage some of their large customers firewalls. They developed Firemon in house, where it remained for many years.

Finally in 2004, Firemon was spun out as a separate company. They changed the name to Secure Passage, but have recently returned to the Firemon name. More than the previous two companies, Firemon has stayed loyal to the original mission of managing firewalls. Their feature set is really about change management and they don’t seem to be following some of the others in terms of expanded features.

Rumors are also rife that with Fish behind them, Firemon might be looking to acquire some technology to give them a competitive advantage versus some of the other companies.

4. Skybox Security – My old friend Gidi Cohen co-founded and still leads Skybox. Skybox like Tufin and AlgoSec was started by Israeli based entrepreneurs, but like AlgoSec is now I believe based in the US. Since Gidi started the company in 2002, the mission has changed. But the basic technology of Skybox is the same. They had great technology that would draw a 3d map of your network and show you where your risk was.  That is still the heart of Skybox. Unlike the previous companies they come to this space from the risk management side. Showing where the risk is, is what they do best. Then managing the chances and policies are put into play.

For anyone who has not seen Skybox map your network it is a pretty cool thing. But probably AlgoSec and Tufin coming from the appliance management  side of the house offer a little bit more of a full featured solution.

5. Red Seal – probably the company I know least about in the space, since 2004 Red Seal has raised more than 30 million dollars in VC money. Like Skybox they come from the risk management space but are putting a big push into the space. They don’t seem to have the strong workflow that AlgoSec and Tufin do. It is about monitoring and analysis for Red Seal.

6. Playbook by Matasano – How can I not mention the open source alternative? Playbook was developed by Matasano Security. It doesn’t have the bells and whistles of some of the others. It is about firewall rule sync and empowering your firewall engineers to do their job easier.

So that is my take on this space. If you are familiar with any of these companies, I am interested in your take. I think overall the space is really coming into its own and we will see some of the big household names  snapping some of these players up soon.

Related articles
Enhanced by Zemanta

Posted at 10:45 AM in General Security, MandA, open source, the security industry | | TrackBack (0)

January 11, 2011

Mike Rothman and Ashimmy on Dell-Secureworks and more

rothmanMike Rothman has been appearing as a guest on my podcast for 5 years or so now. It is always a pleasure to have him on.  To kick off the new year Mike weighs in on the Dell-Secureworks deal.  Who would have though Mike would have something to say about it?  Of course Mike has something to say on just about everything, but it is always fun and interesting.

Besides the Dell deal, Mike and I talk about security incidents and brand damage in reply to an article George Hulme had in Infoweek yesterday. We also touch on RSA Conference coming up in about a month and what Mike and the rest of the Securosis team will be doing there.

One place they will be is at the Security Blogger Meet up where the Social Security Blogger Awards will be handed out. Mike is a nominee for most entertaining security blog for his weekly incites. If you haven’t already voted, head over to this link and vote!

In the meantime enjoy the podcast!

Related articles
Enhanced by Zemanta

Posted at 12:42 PM in awards and PR, links and appearances, MandA, podcasting, rich mogull, Security Incite | | TrackBack (0)

January 04, 2011

Dell Buys SecureWorks – Primetime for MSSPs or Catch up to IBM and HP?

Image representing Dell as depicted in CrunchBase

Image via CrunchBase

M&A in the security market got off to a big start this morning with news of Dell buying Atlanta based MSSP Secureworks. While it is certainly vindication of the importance of security to the big IT companies, make no mistake about it, Secureworks is a very different buy than HP buying TippingPoint or Arcsight. 

Secureworks is an MSSP. This deal is about managed security as a business, not about security products. Not even the IBM/ISS deal a few years back was so clearly focused on the MSSP side of the house. This is really a huge vindication of the MSSP business model and notice that it has come of age. Not to be an I told you so, but I thought that the MSSP model was catching on years ago when I helped StillSecure acquire ProtectPoint. Today a large part of the StillSecure business is based on the MSSP model.

Why MSSP? Why not? Security is too hard and beyond the bulls eye for many business. It is critical for reasons such as regulatory compliance, but not core to the business expertise. It is a perfect candidate therefore for outsourcing.

Also with the move to the cloud, companies will want security built into their cloud offering. This is where I disagree with some of the analysis of the Dell-Secureworks deal. I don’t think Secureworks was a player in the cloud. I don’t even think they were really much of an SaaS player either. In fact what I know of the Secureworks business, they derived a substantial part of their revenue from one off consulting in conjunction with on premises appliances managed via their SOC.

In many ways that is a generation behind where many of the advanced MSSPs are today. Many MSSPs today are offering SaaS based services, cloud based and cloud security is where the MSSP of tomorrow wants to be.

Dell has been trying to move beyond selling boxes for some time. They have spent billions in recent years moving into IT services to challenge IBM and HP.  I think this deal is more about that for them. They can now offer security services, both traditional consulting and managed security. I don’t think it measures up to the IBM or HP offerings yet, but it is a start. With Dell’s sales force pushing it, I am sure we will see big numbers pile up.

According to the release Secureworks had about 120 million in revenue last year. The question is: How much did Dell pay?  My guess is about 500m. If anyone knows, please do tell.

Enhanced by Zemanta

Posted at 12:16 PM in MandA, MSSP, outsourcing security | | TrackBack (0)

November 23, 2010

Novell: What might have been

Many folks are sad to see Novell being sold off to Attachmate yesterday. I have to admit, that when I first read this I thought Attachmate was the company that makes those faux leather calendar and appointment systems. But I was wrong. It appears to be a vessel that a bunch of private equity firms are using to amass what looks like random assets in IT. Besides the Attachmate core business which is something about secure transfer, they also bought NetIQ which had a pretty decent security business.

Of course you need a scoreboard to keep it straight on which private equity firm owns who in IT and security these days. But I digress. While some are lamenting Novell’s demise, lets not forget that it sold for 2.2 billion dollars. That ain’t chump change. That doesn’t even begin to beg the question of what exactly did Microsoft buy for 450 million out of this estate sale and how was that figured in to the pie. But Novell was still doing almost 200 million a quarter. That is a business.

But I am sad to see Novell go for another reason. To me Novell has been a dead man walking for many years.  The Novell I will always remember was the Titan of the tech world. Back when I started playing around with computers Novell was it. 

Most computers in those days were running DOS.  Windows 3.0, IBMs OS/2 were options for the daring. I don’t think Apple had released Mac yet. Steve Jobs had not left the first time.  All of these were fine if you were fooling around at home as a computer hobbyist. But if you were running computers in your office it was over a Novell network.  There was no higher calling than being a certified Novell technician.

When you wanted to communicate via electronic mail (it wasn’t even email yet) or share documents, you did it over Netware.  Combining sort of what Cisco has on the software side and Microsoft’s networking, Novell did it all.  On top of this they practically invented the whole Groupware category, as well as LDAP. They seemed invincible.

So how did they let that all slip away? I remember talking with Microsoft guys when NT and Windows for Workgroups first came out (raise your hand if you remember Windows for Workgroups. It was the Windows ME of its day). They admitted after several drinks and off the record that the Windows stuff couldn’t compete with the Novell product.  But it kept getting better and Microsoft pushed harder and it eventually replaced Novell. 

It is easy to blame Microsoft for Novell’s failure. It seems that at every turn Microsoft was beating them to the punch, out marketing and even yes out muscling them.  But Novell has to share the blame too. While Bill Gates and Microsoft were lambasted for missing the Internet Wave, Novell played Rip Van Winkle and slept through the IP/Internet tsunami.

Novell bought Word Perfect for crazy money after MS Office has already made stand alone word processing obsolete.  They then tried to cobble together an Office suite with Quattro Pro and Word Perfect, but it was too little, too late at that point.

Finally figuring out that open source might be a way to compete, they made a huge investment in SuSe. While it enjoyed a level of success under Novell, over all it could have been so much more.  The groupware stuff never seemed to break out beyond the old Netware crowd. Even the security IP they bought just seemed to die on the vine once it was grafted onto the Novell tree.

So cry not for Novell. 2.2 billion dollars is still a lot of money.  But seeing how the mighty have fallen should serve as a lesson and wake up call to today’s tech giants that it can happen to you too!

Posted at 12:17 PM in Current Affairs, General Background, MandA | | TrackBack (0)

September 28, 2010

The End of Stand Alone Security, The Podcast

A while back I wrote a blog article about all of the recent M&A activity in security. I speculated that we might be seeing the end of the stand alone security company. This prompted a flurry of twitter activity. So I invited Martin J. Fisher of the Southern Fried Security Podcast and Michael Monticiello from IBM on to the show to share their views and talk about what is driving all of these dollars being spent buying security companies. We have about a half hour conversation which I think you will enjoy.

Posted at 11:54 AM in MandA, podcasting | | TrackBack (0)

Next »
My Photo

Subscribe to my blog

Enter your email address:

Delivered by FeedBurner

Lijit Search

Blog Networks

Creative Commons License
This work is licensed under a Creative Commons Attribution-Share Alike 2.5 License.

Search

Lijit Search


Attend a Computer Forensics Boot Camp to better your skills and become a better worker

Categories

Blog powered by TypePad
Member since 10/2005

About