Skip to main content
close search
site logo
Dive Brief

Security tool consolidation boosts efficiency, threat mitigation

A study from IBM shows the controversial shift to platformization can pay off for enterprises.

Published Jan. 31, 2025
David Jones's headshot
Reporter
Digital cloud and network security. 3D computer hardware illustration.
solarseven

Dive Brief:

  • Organizations that have consolidated security spending into integrated platforms have experienced improved cyber resilience and stronger operational efficiencies, according to a study released Tuesday by IBM and Palo Alto Networks
  • Managing security stacks has been a struggle for organizations, which juggle an average of 83 different security tools from 29 different vendors, according to the study.
  • More importantly, the “platformization” model reduces the time it takes to identify and mitigate security incidents by an average of 74 days and 84 days, respectively, the study found.

Dive Insight:

The report takes a close look at a controversial push in recent years to consolidate security spending toward platforms that integrate multiple tools. The tradeoff is that this typically entails working with a single vendor. Enterprise security teams have increasingly complained of tool sprawl, where dozens of security tools are deployed across corporate IT networks and deluge security staff with false alerts as the volume of malicious cyberattacks become more powerful and harder to detect. 

Best of breed and integrated should not be mutually exclusive, noted Karim Temsamani, president, next generation security at Palo Alto Networks. Both CIOs and CISOs are in alignment that companies need better and faster security outcomes, he said. 

“It’s under-appreciated how much complexity the number of disparate tools and vendors puts on a security team to fully deploy, integrate and operationalize all of these capabilities, without having gaps,” Temsamani said via email.

The study also showed that organizations that platformized their spending generated four times greater ROI than non-adopters, even though the consolidated users spent less overall. 

“In addition, the study noted security complexity and concerns can hamper an organization’s digital transformation efforts, often deterring innovation and experimentation,” Mark Hughes, global managing partner for cybersecurity services at IBM, said via email. 

The IBM Institute for Business Value conducted the study with Oxford Economics, surveying more than 1,000 executives across 21 industries and 18 countries.

Major security firms such as Palo Alto Networks, CrowdStrike, Microsoft and others have found themselves increasingly competing for large enterprise customers, in a bid to get them to ditch more specialized vendors and instead consolidate their global security spending to a single security provider. 

The competition spiral became an industrywide concern in 2024, as Palo Alto Networks aggressively pursued a strategy by offering deferred payments and other incentives to customers who consolidated their business on its platforms.

Filed Under: Strategy

Editors' picks

Company Announcements

View all | Post a press release
Americans Growing More Dependent on Digital Services, but Trust in Data Privacy Remains Low, N…
From Upwind
January 28, 2025
Moving On IT Gears Up for Explosive Growth in 2025
From Moving On IT | Tomorrow's Technology. Today.
January 22, 2025
c/side's New PCI DSS Dashboard Covers Third-Party Web Script Security
From c/side
January 29, 2025
DNS4EU Achieves 2024 Milestones in EU Cybersecurity, Public Resolver Launch Set for 2025
From Whalebone
January 21, 2025
Editors' picks
Latest in Strategy
Industry Dive is an Informa TechTarget business.
© 2025 TechTarget, Inc. or its subsidiaries. All rights reserved. | View our other publications | Privacy policy | Terms of use | Take down policy.
Cookie Preferences / Do Not Sell
This website is owned and operated by Informa TechTarget, part of a global network that informs, influences and connects the world's technology buyers and sellers. All copyright resides with them. Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. TechTarget, Inc.'s registered office is 275 Grove St. Newton, MA 02466.