You are on page 1of 51

2017-6-26 Gartner Reprint

  (https://www.gartner.com/home) LICENSED FOR
DISTRIBUTION

Magic Quadrant for Unified Threat Management (SMB Multifunction
Firewalls)
Published: 20 June 2017 ID: G00316047
Analyst(s): Jeremy D'Hoinne, Rajpreet Kaur, Adam Hils

Summary
SMB multifunction firewalls, or UTM, provide SMBs and distributed enterprises with multiple
security functions in a single appliance. Network security leaders should use this research to
evaluate performance, security, ease of use, local support and technology's ability to handle new
SMB practices.

Strategic Planning Assumptions
Through at least 2020, the firewall markets for SMBs and enterprises will remain distinct for
deployment scope and depth of security.

By 2022, more than 50% of new SMB firewall deployment will tunnel web traffic to a cloud-based
secure web gateway, up from less than 10% today.

By 2022, 25% of SMBs will use multifunction firewall as an on-premises monitoring and access
broker to inventory and control SaaS usage, manage mobile devices, or assess endpoint security
posture, up from less than 2% today.

By 2022, 10% of new distributed branch offices' firewall deployment will switch to firewall as a
service, up from less than 1% today.

Market Definition/Description
Gartner defines the unified threat management (UTM) market as multifunction network security
products used by small or midsize businesses (SMBs). Typically, midsize businesses have 100 to
1,000 employees (see Note 1). UTM vendors continually add new functions on the UTM
platforms, and therefore they encompass the feature set of many other network security
solutions, including, but not limited to:

Enterprise firewall
Intrusion prevention systems (IPSs)

Remote access

Routing and WAN connectivity

Secure web gateway

Secure email gateway

https://www.gartner.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 1/51

2017-6-26 Gartner Reprint

While consolidation of security controls in a single "appliance" comes with compromises in
performance, security efficacy and capability, these are compromises that many SMBs are willing
to accept (see "What You Should Expect From Unified Threat Management Solutions" ). Browser-
based management, short learning curve for security policy configuration, embedded reporting,
and localized software and documentation don't specifically appeal to large enterprises, but are
highly valued by SMBs in this market.

Gartner sees very different demands from the large-enterprise and branch office firewall markets
(see "Magic Quadrant for Enterprise Network Firewalls" and "Next-Generation Firewalls and
Unified Threat Management Are Distinct Products and Markets" ). These generally require more
complex policy management workflow and network security features, and are optimized for very
different selection criteria and price points.

The branch offices of larger companies often have different network security demands than
midsize businesses, even though they may be of similar size. Large enterprises often use low-end
enterprise products at their branch offices to ensure interoperability and to take advantage of
economies of scale in getting larger discounts from their firewall vendors, and use the same
management console for the headquarters and for the branches. For these reasons, Gartner
allocates branch office firewall revenue to the enterprise firewall market, not the UTM market.

Small businesses with fewer than 100 employees have even more budgetary pressures and much
lower risk awareness than larger organizations. Most security procurement decisions are driven
by nontechnical factors, such as brand awareness, and rarely by competitive feature
comparisons. Therefore, this Magic Quadrant focuses on the UTM products used by midsize
businesses. Midsize organizations frequently manage the technology with in-house IT staff, or
use a managed security service provider (MSSP) to handle the operational maintenance of the
appliance, manage the configuration or handle the security monitoring.

Distributed organizations with highly autonomous offices, such as retail franchises, might total
more than 1,000 employees, even if only a portion of these employees are connected to the IT
infrastructure. Similar to SMB organizations, these organizations often have constrained budgets
due to the large number of branches and often small IT security teams. Many UTM vendors have
added features for this use case, with some vendors even focusing more on distributed
organizations than on traditional SMBs.

SMBs and organizations with a large number of autonomous branches should be skeptical of the
aspirational message from UTM vendors about the frequently exaggerated benefits of feature
consolidation.

Magic Quadrant
Figure 1. Magic Quadrant for Unified Threat Management (SMB Multifunction Firewalls)

https://www.gartner.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 2/51

2017-6-26 Gartner Reprint

Source: Gartner (June 2017)

Vendor Strengths and Cautions
Barracuda Networks
Barracuda Networks is a Niche Player. It lacks visibility outside of the EMEA region and has
relatively small market share. However, the vendor demonstrates continued growth and has
made good strides in advanced threat detection and ease of deployment, and shows
improvement in its product strategy.

Barracuda Networks, headquartered in Campbell, California, is a large vendor that delivers
network security, backup and infrastructure solutions. Barracuda NextGen Firewall X-Series
(NGX) comprises six models, including three desktop models. It embeds a web interface
designed for simpler use cases. Barracuda Cloud Control (BCC) is the cloud-based centralized
management portal for the X-Series. Barracuda offers another line of firewall products, the
NextGen Firewall (NGF) F-Series, targeting larger enterprises.
https://www.gartner.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 3/51

2017-6-26 Gartner Reprint

Recently, Barracuda announced the introduction of an F-Series firewall for Google Cloud, making
it one of the only third-party firewalls to support Google Cloud. During the evaluation period for
this Magic Quadrant, the vendor also released Zero Touch Deployment service for the F-Series to
eliminate deployment complexity. No new X-Series models were recently introduced.
Barracuda Networks is a good candidate for SMBs looking for good total cost of ownership, or
that require ease of deployment and high quality of support.
STRENGTHS
Marketing and sales execution: Barracuda has been effective in building sales channels that
understand smaller midmarket customers, and continues to invest in its channels. Surveyed
partners like the recent changes to the partner program. Barracuda has a growing visibility in
SMB multifunction firewall client shortlists observed by Gartner, demonstrating particular
strength in the education vertical. Barracuda is profitable, and its 2016 firewall revenue grew
more than this market's average.
Capabilities: Surveyed clients mention advanced threat defense capabilities, ease of
installation and management as product strengths.
Geographic strategy: Barracuda has a growing channel presence across North America,
Europe and Asia/Pacific (APAC). Vendor support centers are available in several countries, and
its support centers are conversant in numerous languages. In addition, the management
console is available in 13 languages, and QuickStart guides are available in six.
Market understanding: With its simplified Cloud Control management console and its Zero-
Touch CudaLaunch capabilities for simplified Client-2-Site VPN rollout, Barracuda X-Series
appeals to smaller midsize businesses and MSSPs targeting SMBs that value simplicity in their
firewall deployments.
Customer experience: Surveyed customers and resellers mention top-notch support as a
primary reason to continue using Barracuda for SMB multifunction firewalls.
CAUTIONS
Capabilities: Despite its enterprise firewall (F-Series) having broad deployment in the public
cloud (most notably in Microsoft Azure, and it became one of the first firewalls to offer a
Google Cloud version), Barracuda X-Series still does not offer a virtual appliance, making it
unusable for smaller midsize companies that wish to deploy resources to the public cloud.
Capabilities: Barracuda firewalls lack canned report for SaaS discovery and do not integrate
with cloud access security brokers (CASBs). Barracuda does not offer endpoint solutions, and
its firewalls cannot integrate with third-party endpoint protection solutions.

Market segmentation: The vendor does not offer a fully featured multifunction firewall
appliance model under $500, as some of its competitors do.

Customer experience: Surveyed customers and Gartner clients note that the Barracuda
firewalls have a slow web interface and lack management sophistication.

Product strategy: As they mature, midsize customers are unable to address more
sophisticated use cases with X-Series; instead, they must graduate to F-Series, which has a
different management console, and a different look and feel.

https://www.gartner.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 4/51

2017-6-26 Gartner Reprint

Sales strategy: Barracuda is not visible in Gartner clients' shortlists from South America, the
Middle East and APAC. Barracuda does not have a mature channel structure or support centers
in South America, making it difficult for prospects and customers in that region to receive
effective service.

Check Point Software Technologies
Check Point Software Technologies is a Leader. The vendor continues to win SMB multifunction
firewall selections based upon its enterprise-quality security features, ease of management and
intuitive graphical user interface (GUI). Gartner believes Check Point has strengthened its vision
via its product enhancements and innovations in ransomware protection.

Co-headquartered in Tel Aviv, Israel and San Carlos, California, Check Point is a large pure-play
security vendor with more than 1,300 employees in R&D. Its product lines include SMB and
enterprise firewalls (Security Gateway), endpoint protection against advanced threat (SandBlast
Agent), mobile security (Sandblast Mobile) and virtual firewalls (vSEC for private and public
cloud). Its SMB multifunction firewall line includes the 700, 1400, 3100, 3200, 5100, 5200, 5400
and 5600 lines of appliances, all introduced in 2016 or 2017.

Recent news includes the introduction of vSEC for the Google Cloud Platform and the availability
of the R80 and R80.10 versions, with several improvements to the management console, better
VPN performances and new endpoint protection against ransomware.
Check Point is a good shortlist candidate for midsize enterprises that require very good security
with robust management interface.
STRENGTHS
Market understanding: Check Point continues to make investments to address SMB clients
and MSSP requirements. Its recently announced Check Point Infinity relies on principles that
appeal to smaller organizations with multifunction platforms, a block-first strategy and intuitive
management for small teams.
Management console: Check Point's reporting and management console and on-device GUIs
are consistently rated very highly by midsize companies that need to handle complexity. R80
introduced integrated application control directly in the access policy. A SaaS discovery report
is available.
Capabilities: Check Point's UTM solutions benefit from its enterprise-level security features,
such as the Anti-Bot option, threat intelligence feeds and credible intrusion prevention system
(IPS), backed up by a robust threat research team. Its solutions consistently get high scores in
independent testing for threat detection rate. Check Point's sandboxing solution is now
available for all of its firewall models.

Capabilities: Check Point provides a strong set of network options to protect against custom
malware with its sandboxing subscription (SandBlast Emulation Service), a variety of threat
intelligence feeds (ThreatCloud IntelliStore) and a feature that can automatically remove
suspected harmful content from downloaded files (Threat Extraction).

Customer experience: Partners and customers note that creating and using objects easily is a
particular strength. Some clients report that the compliance blade can facilitate audits of
configuration in regulated environments. Client feedback on the new software versions in the
R80.x family has been positive.

https://www.gartner.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 5/51

This is confirmed by Gartner clients who still cite price as the primary reason for not selecting Check Point solutions. Check Point Security Gateways do not directly integrate with CASB vendors or leverage SaaS APIs for increased visibility or additional control options. Marketing strategy: Gartner still sees Check Point mostly selling to its existing client base. Cisco is a large network infrastructure and security vendor. Capabilities: Check Point's web management interface is a trimmed-down version of the centralized management console. https://www.000 employees. without any integration. the vendor has doubled down on cloud and security investments. Check Point can decrypt HTTPS only. Cisco demonstrates continued innovation for a segment of the market with its Meraki MX product line. In recent years. Check Point firewalls lack enough performance capacity to compete with lower- priced solutions. but are both needed to address some customer needs. or are often unaware that Check Point has a line of multifunction firewalls with enterprise-quality features that could address their high security use cases. AnyConnect) and Cloud (Cisco Umbrella) solutions. CAUTIONS Sales strategy: Check Point is priced higher than its competitors. Cisco Cisco is a Challenger. Gartner analysts noticed undersizing of the firewall appliance in many of these situations.gartner. Unlike many of its competitors that support decryption for multiple protocols. It has a global presence and employs more than 73.2017-6-26 Gartner Reprint Marketing and sales execution: 2016 saw a clear uptick of SMBs opting for NGTP and NGTX feature bundles. Meraki MX and the traditional Firepower offering are developed in silos. Market responsiveness: Check Point can be slower than its competitors to release or improve features that appeal only to SMBs. and Gartner clients and surveyed customers and partners still note a relative lack of satisfaction with Check Point because of its high subscription renewal price. Announcements relevant to SMB organizations include the release of the Firepower 2100 Series. and updated its cloud- based management console. However. California. Its security portfolio includes firewalls (Firepower and Meraki MX). network traffic analysis (Stealthwatch) and CASB (Cloudlock). the NGTX feature package has generated more interest among non-Check Point SMB customers. The firewall still lacks a user quarantine for email. Marketing execution: The abundance of branded names for features is confusing. a continuation of Cisco's effort to update its entire product line with preinstalled Firepower software. IPS (Firepower). as they have conducted competitive evaluations. allowing these organizations to utilize advanced security features without the complexity of having to buy and deploy eight to 10 software blades individually. headquartered in San Jose.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 6/51 . Cisco also made network sandboxing available on Meraki MX. Cisco security solutions also include endpoint (AMP. Prospective midsize clients can't figure out the features behind the names. Capabilities: Some Gartner midsize clients report that.

firewall. CAUTIONS Product strategy: The Meraki MX product line does not fully address all the use cases for SMB network security needs. Capabilities: Cisco's SMB clients like the ability to get enterprise-class security features with AMP. Improvements: Cisco has released several features to offer integration between its security solutions.S. threat intelligence from the large Talos threat research team and IPS inherited from the Sourcefire acquisition (full IPS on Firepower. Meraki lacks email security and does not inspect http files for viruses. Meraki's cloud-based management console might not be a desirable option.2017-6-26 Gartner Reprint Cisco is a good shortlist contender for all SMBs and distributed organizations. In some industries (public sector.S. Meraki MX visibility. has always been the most vocal complaint from Cisco ASA clients. Cisco still offers Cisco ASA appliances.K.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 7/51 . particularly in the retail industry. while still mostly limited to the U. and the U. Customer experience: Clients and prospects often describe Cisco as a trusted brand and trusted partner. as no Firepower product is available yet for this segment. Cisco Firepower is a good choice for midsize businesses. and is now considered frequently even when not the incumbent solution. STRENGTHS Marketing execution: Cisco is a ubiquitous brand in network and security worlds. Cisco released Firepower Device Management. Market responsiveness: Gartner analysts see Meraki MX's recent release of Threat Grid sandboxing. as an indication that Cisco's investment in Meraki is limited. an embedded web interface. which appeals to SMB customers. In late 2016. especially those with 10 to 100 offices. Cisco is one of the most visible vendor in UTM shortlists. but with noticeable performance impact.. Several U. and Cisco Meraki is a good shortlist contender for distributed organizations. has also improved. and lacks a zero-touch deployment option. which can be upgraded to use the Firepower firmware.gartner. clients gave Cisco good scores for client support. and it continues to be developed as a separate effort from Cisco's corporate strategy. site-to-site VPN and mobile device management. switches. This dual-product-line offering available to SMB clients from Cisco often creates product management complexity and buying confusion. but it is not yet full-featured. https://www. compared with leading solutions. but sends file hashes to the Advanced Malware Protection (AMP) cloud infrastructure. Centralized management: Distributed organization clients like the ability to use Meraki's unified management and monitoring solution for wireless. when the relevant skills are available from the selected channel partner. Sourcefire signatures on Meraki MX). months after most of its competitors. For smaller organizations. finance) and some European and Latin American countries. Management console: Inferior management console quality. Meraki's users are strongly positive on ease of deployment and implementation. Cisco Cloud Defense Orchestrator and Meraki MX provide overlapping options for cloud-based centralized management. It also continues to invest in improving its management with new versions of on-premises and cloud management console for Firepower. Capabilities: All Meraki MX firewalls and the smaller Cisco Firepower appliance lack Transport Layer Security (TLS) decryption to inspect employee browsing over HTTPS.

named Fortinet Security Fabric. and for distributed offices with simple management needs or working with an MSSP. Market understanding: Fortinet offers integration between many products in its portfolio. California. including more than 1. Fortinet has more than 4. STRENGTHS Geographic strategy: Fortinet has the largest channel presence across all regions. Outside of North America. gives customers willing to invest in multiple Fortinet solutions a unified view of their infrastructure and the ability to manage AP and switches directly from the Fortigate console. wireless access point and switches. which help make it a frequent choice for UTM. creating situations where Firepower must replace Meraki for targeted use cases. Recent news includes the latest generation of hardware models (E Series) and tighter integration between the different products of its portfolio (Fortinet Security Fabric). as using the new features delivered on the latest version often creates support issues. Headquartered in Sunnyvale. channel awareness and expertise on the Meraki MX solutions are scarce. including firewalls. Meraki MX clients with a large number of offices note that ease of use suffers with scale. It has strong presence in SMB shortlists and a strong feature/price/performance offering. Capabilities: Fortinet's security services are driven by a large threat research team. the vendor announced the opening of a European data center. It is the most visible vendor in SMB multifunction firewall client shortlists observed by Gartner. They also complain about accelerating product life cycles in recent years. relative to those of some competitors. Fortinet is profitable. and its 2016 revenue grew almost twice as fast than the market average.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 8/51 . and are frustrated with the limited access they have to diagnostic tools. Its portfolio of network and endpoint security solutions includes SMB and enterprise firewalls (Fortigate). In 2016. It also allows integration with Fortinet's endpoint solution (FortiClient) to perform a health check before authorizing a connection to the network. based in Germany. and its customer base is vastly distributed. It is also the vendor most frequently cited as being the strongest competitor in this market by surveyed resellers. CAUTIONS https://www. The concept. Dedicated application profiles for SaaS visibility and control are also available. Customer experience: Fortinet provides very good performance and pricing to its SMB customers. for its FortiCloud and FortiSandbox features. Results from survey and Gartner client inquiries are consistent in highlighting this. Sales execution: Several clients complain about increased costs and price list complexity. Marketing and sales execution: Fortinet is the clear leader in this market. Fortinet is also the most frequently shortlisted vendor for SMB and distributed-office use cases.gartner.600 employees globally. endpoint protection platform (FortiClient) and web application firewall (FortiWeb). endpoint. Fortinet is a good shortlist candidate for all SMBs. We believe its product vision quality has declined somewhat.2017-6-26 Gartner Reprint Customer experience: Clients mention that the quality of Firepower firmware updates could be better. Fortinet Fortinet is a Leader.000 employees in R&D. Vendor support centers are available in 10 countries.

Sales strategy: Gartner has observed that list prices in proposals outside of North America can be significantly higher than in the U. with regional headquarters in Sunnyvale. Malware prevention: Fortinet has a small base of customers using its cloud-based network sandboxing feature. Its product strategy is more focused toward carrier and enterprise use cases. as its UTM is missing features such as email security and endpoint security. In 2016. Capabilities: The advanced monitoring feature of VPN tunnels in Hillstone UTMs makes it a good candidate for distributed branch offices connected through site-to-site VPN tunnels. Hillstone is a good shortlist candidate for organizations in China. even for nonsecurity experts.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 9/51 . and lacks focus toward all SMB use cases. Hillstone also offers enterprise firewalls (T-Series and X-Series). but lacks fully featured centralized management of the configuration. especially where there is a need for a unified console for managing hybrid networks with a mix of cloud and on-premises firewall appliances. Customer experience: Surveyed clients and resellers expressed concerns about the lack of intuitiveness of the management console. Other than UTMs. Gartner also observed similar issues with clients managing distributed offices with a small in-house team. It also gets a low satisfaction score for the quality of its HTTPS decryption feature. Fortinet clients outside of North America should verify competitive pricing propositions and not rely only on Fortinet's reputation for good pricing.gartner. responsive support from the Fortinet ecosystem. Its portfolio also includes Network Intrusion Prevention System (NIPS. Customer experience: Fortinet customers have reported difficulty in obtaining easy. The centralized management and monitoring offers features such as VPN topology monitoring. It integrates FortiView. or where skilled channel partners are available. FortiCloud is Fortinet's first step in providing centralized management from a cloud portal. It is visible mostly in China and South East Asia. but is slowly growing in Latin America. such as retail and education. https://www. It also offers Hillstone Security Management Platform (HSM) and Hillstone Security Audit Platform (HSA) for centralized management and audit. such as Cloud Sandbox and HTTPS decryption. multiple device status and traffic monitoring. Surveyed resellers report the lowest deployment rate of network sandboxing for vendors evaluated in this research. While a small uplift is expected.S. China.2017-6-26 Gartner Reprint Capabilities: Fortinet lags behind its direct competitors in cloud-based management that appeals to distributed offices in cloud enthusiast industries. California. which helps the administrator understand the branch device status and VPN connection to headquarters. I-Series) and cloud security solutions (CloudHive and CloudEdge). Hillstone introduced a few major features. Hillstone is an established network security player in South East Asia and trying to expand in other regions. Server Breach Detection System (sBDS. Hillstone Networks Hillstone is a Niche Player in the UTM Magic Quadrant. S-series). STRENGTHS Capabilities: Clients report that the real-time monitoring dashboard provides useful features to easily investigate incidents. Hillstone Networks is headquartered in Beijing.

including UTM and enterprise firewall (Hillstone E-series next- generation firewall [NGFW] and T-series intelligent NGFW [iNGFW]). CAUTIONS Product strategy: Hillstone's strategy is focused on enterprise and carrier use cases. such as virtualization and support for software-defined networks (SDNs). Headquartered in Shenzhen. Geographic strategy: Since Hillstone is targeting markets outside China. AliCloud and other global public clouds. It has limited presence outside of China. China. Huawei has a large portfolio of infrastructure and telecom products operating under multiple divisions. Gartner believes the vendor shows greater vision thanks to its increased focus on SMB needs. features like a cloud- based management portal and advanced malware prevention need more granularity to compete with Leaders in the market. and also lack support for any third-party EPP. It also lacks integration with Office 365 to provide additional visibility and control for the service. The vendor is making progress in other regions. Huawei Cloud. citing quick resolution and turnaround time. such as Latin America and Middle East. They do not offer any specific reports for SaaS applications. Jindong Cloud. At present. such as Amazon Web Services (AWS) and Microsoft Azure. which typically look for multiple easy-to-use security features in their UTM. Capabilities: Hillstone UTMs do not offer any inbuilt endpoint protection platform (EPP). Huawei Security is part of its networking and security division. which offers firewalls and application security products along with distributed denial of service (DDoS) appliances. Capabilities: Hillstone firewalls lack SaaS monitoring and control functionality. including carrier cloud (China Unicom. Capabilities: Hillstone UTMs lack email security features. This makes Hillstone a good shortlist candidate for organizations that want to secure their cloud network with the same on-premises UTM vendor. This feature provides centralized monitoring capabilities to clients using multiple Hillstone product lines.gartner. CloudView is only offered in China. and only offers monitoring and reporting capabilities. but has its own security sales team and dedicated channel partners to sell them. China Mobile). Infrastructure as a Service (IaaS): Hillstone's virtual CloudEdge firewalls support all the major regional local cloud platforms in China. However. which remain an important feature for SMBs and a shortlisting criteria. offering security and data communication solutions for enterprise and carrier networks. prospective clients should be cautious of the experience of Hillstone's partners. https://www. Technical support: Surveyed clients and resellers give high scores to technical support. CloudView offers basic capabilities with strong monitoring and reporting features. lacks any centralized configuration and deployment capabilities. Huawei is a global information and communication vendor.2017-6-26 Gartner Reprint Technical architecture: The cloud-based management portal CloudView provides support for multiple Hillstone product lines.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 10/51 . giving higher priority to features relevant to this market. because the firewall may be a new solution for them. China Telecom. This diverts some of its R&D investment from SMBs. but still has most of its firewall sales in China. Huawei Huawei is a Niche Player.

Huawei's customers that are using its various security and data communication product lines can thus easily manage the different products. which provides organizations with more visibility and control over their cloud- based SaaS applications. all of which fill in feature gaps. It released features including network sandboxing. Centralized management: Huawei has developed a centralized software-based management platform. and better channel training and support to compete in those regions. such as multiple distributors. It offers third-party endpoint integration only with McAfee solutions. In China. which makes it a good contender for organizations that look to maintain single vendor relationship. Sales execution: Surveyed resellers and clients report that Huawei's USG UTM offers good value for the price. Capabilities: Huawei USG's quota-based user traffic management feature has been mentioned as one of the strongest features of the product. as well as a dedicated regional channel market and sales strategy for its security solutions in regions outside China. and backup and rollback. Huawei's Unified Security Gateway (USG) UTM is a good shortlist candidate for SMBs that are already using other Huawei product lines. which is capable of managing its security and data communications product lines.gartner. policy provisioning and synchronization. it strongly competes with leading vendors. This includes such features as SaaS application and behavior recognition. as compared to other international vendors available in the region. Marketing execution: Huawei lacks strong marketing messaging around security. both by surveyed clients and resellers. and those that are looking for basic UTM features at a good price. Customer experience: Customers report that Huawei's documentation and brochures in regional languages other than Chinese are not updated regularly and can be outdated. it still lags behind in terms of control and management features that can be centrally applied on the UTM devices. leading organizations using Azure to look to different vendors. eSight. and login blocking.2017-6-26 Gartner Reprint In 2016. STRENGTHS Platform: Huawei has a broad network. Technical architecture: Huawei USG UTMs do not provide an EPP feature for antivirus and anti- malware on the endpoints. Capabilities: The vendor has developed Cloud Access Security Awareness (CASA) for monitoring and controlling SaaS applications over the cloud.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 11/51 . eSight. local sales engineers. security and data communications product portfolio. Huawei introduced four new appliances and two virtual appliances for AWS and Xen. CAUTIONS Capabilities: Although Huawei provides a cloud-based management portal for its Agile Controller UTMs. Juniper Networks https://www. such as Europe and South East Asia. IaaS: Huawei USG UTM is not yet available on Azure. where the vendor has a good UTM presence. cloud-based management portal of UTMs and enhancements to its centralized management tool. Regional value-added resellers (VARs) struggle to promote Huawei against other international vendors with very strong regional teams and regional market strategies. such as file blocking. SaaS behavior control. especially in China and Latin America. The recent enhancements to eSight include a drag-and-drop feature.

applications. Improvements: Juniper has enhanced the firewall management interface and the logging and reporting capabilities in Junos Space Security Director by making it more interactive. 345. The vendor has struggled with its sales execution. Sky ATP. which uses cloud-based Websense Master Database URL. STRENGTHS Technical support: Juniper's technical support is always rated highly by both VARs and end users. Juniper Networks is a global network infrastructure vendor. with a network of channel partners and technology integration partners in various regions. including SRX340. Juniper has made enhancements to its advanced cloud-based malware prevention service. which is offered free of charge. Junos Space Security Director also supports automated actions from event view. Security Director. 550M and other enterprise firewall models. It has also introduced four new SRX UTM models. slipping customer satisfaction and lack of SMB-focused product strategy. Based in Sunnyvale. Its SRX series has strong integrated routing and switching capabilities from the MX-Series routers and EX-Series switches. and plans to extend this support further to third-party switches. In 2016.2017-6-26 Gartner Reprint Juniper Networks Juniper Networks moved from the Challenger to the Niche Players quadrant. Tagalog. Juniper is a good shortlist contender for upper-midsize organizations already using other Juniper products. California. Technical architecture: Juniper has designed Juniper's Software-Defined Secure Networks (SDSN) Platform to equip its customers with centralized policy. Juniper offers three different web-filtering licenses: the Local Web Filtering option. Russian. Korean and Mandarin.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 12/51 . CAUTIONS https://www. Geographic strategy: Juniper Networks has a strong worldwide presence. private clouds and public cloud (AWS). Serbian- Croatian. German. SDN and enterprise firewalls (SRX series firewalls). as well as enhancements to its centralized firewall management. Over the past year. Juniper also offers support in multiple regional languages. including Arabic. switches. Polish. Japanese. routers. French. Capabilities: Juniper Networks is known for providing good-quality hardware appliances. including single- click blocking options for users. which resulted in a drop in their UTM market share. Its broad product portfolio includes a range of network edge and management devices.exe files for web traffic over HTTP and HTTPS. Spanish. detection and enforcement across various Juniper platforms. Ukrainian. and Websense Redirect. geographies or threat events. Enhanced Web Filtering. Sales strategy: Juniper Networks offers a free Sky ATP subscription on SRX platforms.gartner. Capabilities: Customers and VARs have reported the web-filtering capabilities of Juniper SRX through Websense as one of best product features. They often cite the technical support team as being friendly and offering quick response. such as routers. Other than offering support in English. it extended the SDSN Policy Enforcer feature with automated enforcement on EX/QFX switches. switches and firewalls. This basic subscription only scans . which redirects the web traffic to an on-premises Websense appliance.

and has 450 employees. Capabilities: Juniper SRX still lacks features desired by SMBs. Juniper security information and event management (SIEM) supports many third-party endpoint solutions. https://www. acquired in 2017. stability of its firmware updates and the quality of its app control feature. Technical architecture: Juniper lacks an EPP offering. It lags behind other vendors in terms of execution. Customer experience: Juniper receives below-average scores for ease of initial deployment. especially around market responsiveness.2017-6-26 Gartner Reprint Product strategy: Juniper's product strategy lacks focus for SMB security use cases. The vendor has only released support for SMTP in March 2017. such as retail and education. but there is not yet any integration between SRX firewalls and third-party endpoint protection platform vendors. The vendor is quickly losing market share. Its product strategy and roadmap are more focused toward enterprises and carrier-class requirements. and endpoint security management. and expressed customer satisfaction has slightly declined over the evaluation period. the Extended and the Specialized Lines. Rohde & Schwarz Cybersecurity Rohde & Schwarz Cybersecurity is a Niche Player. includes the ability to build and visualize a network topology map of the filtering policy. Its firewall product line now comprises the Unified. Recent news includes a refresh of the gateprotect appliances and a rebranding of the firewall and UTM portfolios. end-user quarantine for spam. STRENGTHS Organization: Rohde & Schwarz continues to invest in cybersecurity. gateprotect (named after a company acquired in 2014).com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 13/51 . Sales execution: Juniper is hardly visible in SMB multifunction firewall client shortlists observed by Gartner. It primarily serves German customers and has limited reach in the upper-midsize market segment. It has just released SSL encapsulation of IPsec traffic for remote hosts as a work-around for its lack of native SSL VPN capabilities. It also offers several encryption management products. which can be an important feature for cloud enthusiast industries. Advanced malware prevention: Juniper's advanced malware prevention subscription known as Sky ATP is not available on smaller UTM models SRX 110 and SRX 220d 200. Sky ATP can inspect HTTP and HTTPS. It is already one of the larger European vendors for network security. Its portfolio includes a multifunction firewall product line. Capabilities: eGUI. Rohde & Schwarz Cybersecurity is a good shortlist candidate for German SMBs and for small organizations in other EMEA countries where certified gateprotect channel partners are available. The vendor does not offer cloud-based management of Juniper SRX. mobile VPN clients. and a web application firewall. Rohde & Schwarz is a Germany-based electronics group that has acquired several vendors to build its cybersecurity division. but does not support IMAP. DenyAll.gartner. the management console for gateprotect firewalls. The vendor has recently announced an API and partnerships to integrate with third-party endpoint vendors in the future. such as strong.

SonicWall has been late in introducing new features such as advanced malware protection. especially when defining a security policy. The small and lower-midsize organizations from Europe are where most of the vendor customer base is deployed. CAUTIONS Marketing strategy: Rohde & Schwarz Cybersecurity is hampered with the required investments to merge its firewall product lines and to migrate to the web version of its management console. and still lacks a cloud management portal and a virtual appliance offering. and its legacy of being a strong SMB and network security brand. This appeals to local resellers and to a portion of the European market. It also has a relatively small sales and presales team to address this market. The vendor successfully markets its German R&D and "no backdoor" policy as competitive advantages against its U.2017-6-26 Gartner Reprint Sales execution: Several clients cite that they selected Rohde & Schwarz because it is a German vendor. Organization: Some gateprotect resellers cite negative consequences of the Gateprotect acquisition and product line refresh. Customer experience: Gateprotect gets low scores for its high rate of false positives. Its strategic vision is slowly moving away from SMBs to target larger organizations. reflecting its poor market execution. but the vendor is not visible in Gartner client shortlists for this segment. and the more recent web version for midsize products. It benefits from its remaining market presence. The gateprotect management console is also available in Italian.S. price list changes and lack of flexibility. French and Turkish. including new rules. French and English.gartner. The gateprotect product line includes models to serve larger organizations. and too-fast end-of-life of legacy products. both of which have been offered for some time by other UTM vendors in the market.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 14/51 . Organizations with multiple offices might have to juggle between the two flavors of eGUI management console that exist: the Windows software for smaller appliances. Geographic strategy: The management interface and documentation are available in German for all the firewall product lines. its centralized management and the poor number of available security reports. Several differences in capabilities exist between the Unified and Extended Lines. Legacy centralized management and monitoring solutions are still available for the unified line only. Capabilities: Gateprotect lacks network sandboxing and threat intelligence feeds. and there are no centralized monitoring and reporting solutions yet. Support is available in German. Market segmentation: Rohde & Schwarz Cybersecurity solutions will not be appropriate for upper-midmarket organizations that have enterprise-class requirements. and where its channel has experience. especially small government agencies. Its product strategy has also impacted its vision. promoting enterprise features higher in the roadmap priority. The vendor is less visible with Gartner clients in recent UTM deals.-based competitors. https://www. Its centralized management (Command Center) is in beta only. Spanish. with a global presence through a long-established channel. SonicWall SonicWall is a Challenger. Customer experience: Customers score gateprotect very highly for the ease of use of the eGUI management console.

SonicWall was under Dell as Dell SonicWALL. Marketing execution: Gartner less frequently sees SonicWall being shortlisted by clients. SonicPoints (access points).gartner.0+. Dell Networking X- series switches and WAN Acceleration Appliance (WXA) series devices. STRENGTHS Market segmentation: SonicWall UTMs have a good presence among more than 50 distributed-office use cases. SonicWall communicates its product strategy and roadmap to them on a regular basis. and Chrome OS 45+. It is a favorable vendor for SMBs that offer wireless access in their organizations. Windows 10 and Windows 10 Mobile devices. Gartner attributes many of these issues to the succession of ownership changes and subsequent disruption to the company. Capabilities: Surveyed SonicWall customers and channel partners have given high ratings to the TLS inspection engine (Deep Packet Inspection of Secure Sockets Layer. especially organizations that want to offer cost-effective integrated wireless access managed centrally from within the UTM. Marketing strategy: SonicWall has a strong network of loyal channels across the globe that are pleased about SonicWall becoming an independent vendor again. SonicWall offers solid IPsec site-to-site VPN tunnels that can be scaled very easily to multiple sites.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 15/51 . Android 4. including iOS 7. The vendor has recently experienced a decline in revenue. with site-to-site IPsec VPN connectivity. therefore it has no presence over the public clouds. SonicWall firewalls use a multiengine cloud-based sandbox. SonicWall remains a good candidate for most SMB use cases. which offers a SSL VPN mobile app for various mobile clients.200 employees. It did not release any new UTM models in 2016. CAUTIONS Market segmentation: SonicWall lacks a virtual appliance offering for its firewalls and UTMs. This approach makes it a good shortlist candidate for SMBs looking for a strong advanced malware protection cloud service. The majority of its customers utilize this feature.2017-6-26 Gartner Reprint SonicWall. https://www. and also offers good sales and technical support. nor during the first half of 2017. Centralized management: SonicWall Global Management System (GMS) offers a centralized management solution for SonicWall firewalls. California. Capabilities: SonicWall offers multiple wireless AP management and control features within its firewall portfolio. The SonicWall portfolio includes network security. This helps the clients to centrally enforce the endpoint platforms. This offering is useful for SonicWall customers that are using multiple product lines.1+. This forces organizations with hybrid networks to consider another vendor for their cloud networks.9+. In May 2017. It also offers integration capabilities with SonicWall Mobile Connect. it is an independent vendor company. headquartered in Santa Clara. is a long-established network security vendor. It employs more than 1. access control and email security product lines. DPI-SSL) for its ability to limit throughput degradation. macOS 10. SonicWall has launched its cloud management portal (Cloud GMS). and after the split. Until last year. Technical architecture: SonicWall offers integration with Kaspersky and McAfee for enforcement of their endpoints through SonicWALL UTMs.

Headquartered in Abingdon. the recently added capability to isolate endpoints missing a heartbeat. all of which were introduced in 2015 and refreshed in 4Q16. Capabilities: Sophos customers and partners cite on-box UI quality and the ease with which they can interact with it as strong positives. It continues to gain market share due to ease of use. SonicWall has not integrated all those features in the inbuilt email security UTM feature. which is useful in making Sophos UTM increasingly relevant to public cloud deployments. security features and firewall/endpoint integration. Sophos Sophos is a Leader in the UTM Magic Quadrant.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 16/51 . Technical architecture: With Security Heartbeat. Continued execution on an aggressive roadmap has strengthened prospective buyers' view of Sophos UTM as a security leader. and the legacy Sophos SG Series. Surveyed clients have also reported that the wireless AP management feature has not been enhanced to offer more unique capabilities. The SG line has an integrated Web Application Firewall feature. an integration between its UTM and Sophos Endpoint product. Sales execution: Sophos has a significant IaaS presence relative to most UTM competitors. especially from upper-midsize organizations. STRENGTHS Capabilities: A majority of surveyed customers and partners mention security feature richness and breadth as a reason for the selection of Sophos.gartner. especially those that value ease of use. Sophos has Synchronized Security. U. Capabilities: SonicWall has just released the first version of its cloud-based management portal.2017-6-26 Gartner Reprint Market responsiveness: SonicWall has been slow in providing new features and enhancing its existing capabilities. which includes 19 models. Its portfolio includes a mix of network and endpoint security solutions. Sophos has more than 3.000 employees globally. Customer satisfaction: Gartner continues to receive mixed feedback on SonicWall customer support. security feature richness and successful integration with its endpoint product. The feature is tightly integrated in the management interface and https://www. Sophos offers a number of other security solutions.. Endpoint security products include Sophos Endpoint and Intercept X. Its firewall product line consists of Sophos XG Series. and still lacks zero-touch deployment. Capabilities: Despite having a separate product line for email security and encryption. Sophos Synchronized Security is maturing and has become a recognized differentiator. relative to those of some competitors. and the acquisition of Invincea. Sophos is a frequently shortlisted vendor for lower-midsize business and distributed-office use cases. including mobile security and encryption. an advanced-threat- focused endpoint vendor. Massachusetts. Sophos UTMs are available as virtual appliances with integration on the AWS and Azure IaaS platforms.K. and in Burlington. Sophos is also a good shortlist contender for SMBs. Recent news includes the introduction of a new set of XG firewalls that support Sophos Sandstorm and Synchronized Security. It demonstrates strength in its product vision and roadmap execution.

CAUTIONS Product strategy: Although Sophos says that it will support the two UTM product lines for an undisclosed period. but shows increasing promise in enhancing the security posture of midmarket organizations willing to make the effort to integrate firewall and an endpoint. The vendor also regularly updates its European certifications and ensures that it offers dedicated features for regional regulations and compliance requirements. It employs more than 200 employees. and it has a large installed base of European SMBs. the tools provided by the vendor and the channel experience with the XG software. the addition of an automated risk score for hosts. Product strategy: Although the XG platform has recently added support for network sandboxing and Synchronized Security. Stormshield is a subsidiary of Airbus Defence and Space.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 17/51 . Stormshield portfolio includes firewalls (Stormshield Network Security). Capabilities: Sophos lacks SaaS discovery reports. based in France. Customer experience: Gartner clients and surveyed Sophos stakeholders mention occasional issues with customer support in terms of response time and ability to access expert resources to solve complex issues. Customer experience: Sophos is the only UTM vendor to offer three months of free support. Former Cyberoam channel partners might still have limited experience with Sophos products.2017-6-26 Gartner Reprint provides a unified dashboard. Prospective customers should confirm the roadmap and support services' long-term availability for the SG Series. Gartner has observed that adoption for the new platform is slow. Existing Cyberoam customers should carefully evaluate the cost of migrating from the CR Series to the XG platform. It is still evolving. the vendor focuses its roadmap on the XG Series. with a strong regional focus. Stormshield is a good shortlist contender for EMEA organizations with a few locations when local skilled channel support is available. the release of a new centralized management solution. and real-time monitoring features embedded on the web management function. STRENGTHS Geographic strategy: Stormshield's dense channel coverage in Europe makes it a frequent contender on SMB shortlists. https://www. and does not offer on-device CASB features or integration with CASB vendors for improved visibility and better control of SaaS activity. Customer experience: XG Series is a completely new solution when compared to the Cyberoam CR Series. It has demonstrated recent product improvements. Recent news includes several product improvements: a refresh of the low-end appliances and new models with integrated Wi-Fi. EPP (Stormshield Endpoint Security) and data encryption (Stormshield Data Security). along with a one-year warranty for customers that want to try Sophos UTM before committing to paying for a support contract. Stormshield Stormshield is in the Niche Players quadrant. it is still not at feature parity with SG.gartner.

similar investments are being made in support and R&D. Channel partners report that they don't find what they need from the available tools. nor the zero-touch deployment features that distributed organizations prefer. and has limited market reach outside of the U. Capabilities: Surveyed customers give poor scores to the email security features (anti-spam quality and lack of user quarantine). its centralized reporting solution. Customers would like further improvement in the real-time monitoring after the release of the version 3. Despite expected short-term interferences. The vendor is committed to serve lower-midsize businesses first. including North America. as well as to the basic URL filtering and antivirus modules (Stormshield is also offering a premium subscription for antivirus and URL filtering). Improvements: Stormshield has released entry-level appliances with integrated wireless. Untangle Untangle is in the Niche Players quadrant. Product strategy: Innovations often lack sufficient polish and continued investment after first release to clearly impact user experience. The vendor does not offer a cloud-based centralized management console. The performance degradation when enabling IPS is one of the lowest for vendors evaluated in this research.2017-6-26 Gartner Reprint Customer experience: Several customers and resellers gave excellent scores and described the security policy as combining intuitive controls for most use cases and more advanced capabilities when needed. Surveyed customers point out that it is difficult to find relevant step-by- step technical documentation. Marketing strategy: Stormshield invests significantly less of its revenue in marketing compared to the Leaders evaluated in this research. Gartner notes a renewed ambition following its recent acquisition. but the large amount of false alerts when deploying the firewall has been a consistent subject of feedback over the recent years from end users and resellers. Centralized management: Stormshield's centralized reporting and management receive lower scores than similar offerings from its direct competitors.gartner. False positives: The Stormshield IPS engine is in prevention mode by default. is still unproven and far from feature parity with the solutions from its competitors. The vendor continues to receive marks of high customer satisfaction. To support this expansion. Stormshield Management Center. Capabilities: Stormshield integrates a vulnerability detection engine and offers the ability to adapt the security policy for vulnerable hosts directly from the monitoring console. Hardware quality also received a good average score. https://www. Operations: Stormshield continues to invest in developing its sales workforce in countries where the vendor previously had minimal involvement. CAUTIONS Customer experience: The recent feedback on Stormshield support has declined. compared with previous years. and improved user access management and integration with the user directory in the latest version of Stormshield Visibility Center.S.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 18/51 . Customers cite good integration of the IP reputation feature in the security policy. This is good for security. it is also beginning to target new regions. Its latest attempt to solve this issue.

2017-6-26 Gartner Reprint Untangle is a U. vendor. Its dynamic community also provides useful resources for newcomers. interface flexibility and the quality of the numerous embedded reports as the key reasons to work with Untangle. which prevents Untangle from addressing distributed organizations and large MSSPs. with the recent addition of a first version of its cloud-based global control. which started with centralized device monitoring. California.-based. delivered as a software appliance. Improvements: Untangle has improved its user interface with its latest version. to be installed on standard hardware. Its value proposition for central management is progressing. Its products have not received any certifications. including security features. Its approach of cloud-centralized management is promising. Untangle has less experience with hardware appliance sales than its direct competitors. especially in North America.gartner.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 19/51 . The vendor has also released a threat intelligence service (ScoutIQ). with fewer than 100 employees. Every application. which is popular among the smaller offices and for remote workers. based in San Jose. A first version of a cloud-based centralized management solution was launched in February 2017. In September 2016. Upper-midsize organizations should evaluate their functionality and scaling needs against Untangle's capabilities. Customer experience: As in previous evaluations. Untangle is a good candidate for small and lower-midsize organizations. vendor support gets great scores and some of the most positive comments from customers and resellers surveyed for this research. The availability of a threat intelligence service is a good addition for Untangle's target customers that are concerned about malware campaigns. It also lags behind its competitors for advanced networking features. CAUTIONS Market segmentation: Gartner estimates that more than 90% of Untangle's UTM customers have fewer than 500 employees. STRENGTHS Sales execution: Untangle offers a free version of its UTM. A large majority of its clients are U. but the endpoint solution (Total Defense) acquired in 2014 by Untangle was not part of this acquisition. Organization: Untangle remains one of the smallest vendors evaluated in this research.S. nor other enterprise-class support options that upper-midsize organizations and large resellers want. but it is not yet feature-complete. Untangle was acquired by an equity firm. Capabilities: Several clients and resellers cite ease of implementation. https://www. Capabilities: Untangle's largest physical appliances offer a throughput of 2 Gbps only. It serves its channel of smaller resellers and is useful for organizations willing to evaluate the product. This can impact the vendor's ability to devote resources to grow and innovate with market needs. Marketing execution: Untangle does not offer 24/7 support. Its product portfolio includes software and appliance versions of its firewall solutions.S. is available for a 14-day trial. A new CEO has been named. It has limited policy verification features and lacks role-based management. Marketing execution: Untangle can be offered as software.

It does not offer any dedicated monitoring for SaaS inventory and monitoring. Headquartered in Beijing. Venustech Venustech is a Niche Player. It also offers outbound email encryption. The majority of customers opt for direct vendor support and are very satisfied with it. Venusense UTM is a good candidate for existing Venustech customers in China. except for a limited presence in Japan. It offers its software subscription free of charge for the first year. but has some gaps to fill compared with its competitors. Capabilities: The application control feature has a large database of applications. The cloud-based sandboxing is unproven and has not yet been part of any independent test.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 20/51 . Venustech is a long-established security player in China and offers the foundational UTM features in its UTM series. along with firewalls for SMBs and enterprises (Venusense UTM). SIEM. and for SMBs that are looking for a good local vendor with strong regional support in China as well as a cost- effective UTM offering. and mention it as one of the top features. vulnerability scanner and IDS.2017-6-26 Gartner Reprint Capabilities: Untangle lacks cloud-based sandboxing. Venustech addresses this use case by hosting virtual appliances of its centralized management software. Technical support: Vendor technical support has received positive reviews and is cited as responsive. https://www. Sales strategy: The international version of its low-end Venusense UTM is priced significantly higher than the competition. Capabilities: Venusense UTMs cannot decrypt HTTPS or other TLS-encrypted traffic. which is not offered by many UTM vendors in the market and strengthens its email filtering feature. including Chinese applications such as Youku. STRENGTHS Capabilities: Venustech is one of the few UTM vendors offering granular DLP for both email and web traffic. TongHuaShun and LeTV. Sales strategy: Venustech licensing is pretty straightforward and follows a bundled pricing model for both support and maintenance. CAUTIONS Geographic strategy: Venustech does not have any presence outside China.gartner. especially for a distributed-office use case. China. Technical architecture: The vendor lacks a cloud-based management portal for managing multiple UTMs. which includes web application firewall. which makes it a desirable vendor as compared to other international vendors that lack local applications in their databases. Capabilities: Surveyed VARs and clients highly rate the IPS feature of Venusense UTM. Venustech has a large product portfolio. It has dedicated firewall models for China and other models for the international market. endpoint security. Its visibility in SMB shortlists is limited to China and Japan.

CAUTIONS Product strategy: WatchGuard has lagged behind competitors in public cloud firewall development and deployments. ease of policy setup and a low rate of false positives as examples. secure email gateways. it will potentially benefit limited- budget midsize customers looking to detect and stop active threats in the network.gartner. Geographic strategy: WatchGuard has a global presence across regions and continues to grow its already-large channel presence. the WatchGuard Dimension reporting tool includes an interactive heat map view (FireWatch) that is useful for quickly identifying network issues created by a specific user or application. Washington. The endpoint presence is enabled by the WatchGuard Host Sensor. Capabilities: Venusense UTMs lack support for monitoring and managing SaaS applications. FireboxV and Firebox Cloud. which compels organizations to go with a different UTM vendor for their cloud environments. technology which came from the acquisition of Hexis HawkEye. They cite ease of implementation. While the offer is still new. The Firebox UTM product line includes 15 physical appliances. WatchGuard WatchGuard is in the Visionaries quadrant. WatchGuard is a good shortlist candidate for SMB organizations and distributed enterprises in need of a broad set of security and infrastructure features. WatchGuard is a privately held network security vendor that is over 20 years old. for public cloud deployment. Based in Seattle. which uses a cloud-based threat scoring engine to correlate events seen in the network or on the endpoint. and wireless APs. It provides SMB and enterprise firewalls. It continues to drive an ambitious roadmap while growing its customer base at pace with the overall market. The vendor released Firebox Cloud for AWS in the first quarter of 2017. some of which with embedded wireless capabilities. Capabilities: WatchGuard's customers and resellers report that WatchGuard UTM performs well under load with all features enabled.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 21/51 . Capabilities: WatchGuard customers and partners value highly the simplicity and depth of the reporting and analysis capabilities of WatchGuard Dimension. Customer experience: Overall ease of use is an oft-cited positive attribute noted by WatchGuard stakeholders. has more than 500 employees and is well-established in the multifunction firewall market. but has yet to release a version for Microsoft Azure. endpoint security. https://www. WatchGuard offers virtual appliances. WatchGuard's product vision and roadmap execution have slightly improved relative to those of some competitors. including XTMv. For example. or a cloud-based visibility and management console. STRENGTHS Product strategy: Midmarket customers like the free endpoint threat detection software packaged with the Firebox UTM.2017-6-26 Gartner Reprint IaaS: Venusense UTM is not available as an instance on any public clouds. which is provided by some of Venustech's competitors and is a desirable feature for SMBs that are adopting more SaaS applications. Recent WatchGuard news includes the introduction of the Threat Detection and Response (TDR) capability.

exclusive of managed security service (MSS) revenue. therefore. The vendor does most of its business in Brazil.2017-6-26 Gartner Reprint Sales strategy: The WatchGuard channel comprises a lot of smaller resellers. The vendor can provide at least three reference customers willing to talk to Gartner. Prospective clients should ensure that the appropriate technical expertise for WatchGuard is available. A vendor's appearance in a Magic Quadrant or MarketScope one year and not the next does not necessarily indicate that we have changed our opinion of that vendor. the mix of vendors in any Magic Quadrant or MarketScope may change over time. and the local currency negatively impacted the vendor's ability to meet the criteria. Exclusion Criteria https://www. Inclusion and Exclusion Criteria Inclusion Criteria UTM companies that meet the market definition and description were considered for this report under the following conditions: They shipped UTM software and/or hardware products — targeted to midsize businesses — that included capabilities in the following feature areas at a minimum: Network security (stateful firewall and intrusion prevention) Web security gateway Remote access for mobile employees (VPNs) Email security They achieved UTM product sales (not including maintenance or other service fees) of more than $9 million in 2016. Added No vendor was added. They also achieved this revenue on the basis of product sales. It may be a reflection of a change in the market and. Sales execution: Gartner midsize clients do not mention WatchGuard in their shortlists as frequently as they mention Leaders. changed evaluation criteria. and within a customer segment that's visible to Gartner.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 22/51 . Dropped Aker Security Solutions did not meet the revenue criteria. or Gartner has had sufficient input from Gartner clients on the product. Product execution: WatchGuard customers report that Threat Detection and Response is not fully integrated with WatchGuard Dimension. Vendors Added and Dropped We review and adjust our inclusion criteria for Magic Quadrants and MarketScopes as markets change. Dell SonicWall is now SonicWall. or of a change of focus by that vendor. after the split from Dell. Customer experience: Some surveyed WatchGuard stakeholders mention longer-than-average time lags between the time an issue is reported and the time they receive a response.gartner. As a result of these adjustments.

and skills. and remote access) Overall Viability: This includes a vendor's overall financial health. GajShield. Sales Execution/Pricing: This includes. Gartner tracks other vendors that did not meet our inclusion criteria because of a specific vertical market focus. These vendors include Aker Security Solutions. UTM revenue and/or competitive visibility levels. Endian. Pricing is compared in terms of a typical midsize business deployment. Buyers want value more than they want bargains. competitive wins versus key competitors (which is compared with Gartner data on such competitions held by our clients) and devices in deployment. North Coast Security Group. quality. to the extent that product sales did not reach the $9 million threshold. My Digital Shield. internet-facing firewall (for example. prospects for continuing operations. integrated Wi-Fi support. Smoothwall and ZyXEL. The total cost of ownership during a https://www. such as multifunction firewall revenue. the number of deals. SaaS and mobile device management. Secucloud. Quick Heal. company history.2017-6-26 Gartner Reprint There was insufficient information for assessment. we consider the use of these firewalls and the features deployed to protect the key business systems of Gartner midsize business clients. Products aren't usually deployed as the primary. and the company didn't otherwise meet the inclusion criteria or isn't actively shipping products yet. Low pricing won't guarantee high execution or client interest. The number of multifunction firewalls shipped isn't a key measure of execution. Cato Networks. support. Secui. and the strength of sales and distribution operations in the vendors. including the cost of all hardware. Netgear. host-based firewalls. integration with endpoint. Solutions are typically delivered as a managed security service (MSS). feature sets.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 23/51 . This includes current product and service capabilities. In addition to the vendors included in this report. All vendors are required to disclose comparable market data. Evaluation Criteria Ability to Execute Product or Service: Core goods and services that compete in and/or serve the defined market. maintenance and installation. Key features that are weighted heavily include: Ease of deployment and operation Console quality Price/performance Range of models The ability to support multifunction and distributed organization deployments Secondary product capabilities (such as logging. Products are built around personal firewalls. and demonstrated commitment to the multifunction firewall and network security market. Growth of the customer base and revenue derived from sales are also considered. the installed base. Instead.gartner. Sangfor Technologies. ilem Group. proxy servers and IPS solutions). although low price is often a factor in building shortlists. SecPoint. visibility in shortlists. Presale and postsale support are evaluated. host-based IPSs and web application firewalls — all of which are distinct markets.

as well as quality and responsiveness of the escalation process. The greatest factor in these categories is customer satisfaction throughout the sales and product life cycle. Market Responsiveness/Record: Ability to respond.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 24/51 . skills. Factors include quality of the organizational structure. increase awareness of products and establish a positive identification in the minds of customers. Customer Experience: Products and services and/or programs that enable customers to achieve anticipated results with the products evaluated. promotional. Also important is ease of use. service-level agreements and so on. competitors act. the cost of refreshing the products is evaluated. change direction. Gartner analysts also monitor repeated release delays. and transparency. Marketing Execution: The clarity. availability of user groups. referrals and sales activities. This criterion also considers the vendor's history of responsiveness to changing market demands. Specifically. systems and other vehicles that enable the organization to operate effectively and efficiently. This may also include ancillary tools. technical support or account support. thought leadership. We also recognize companies that are consistently identified by our clients and often appear on their preliminary shortlists. Table 1. customer support programs. Operations: The ability of the organization to meet goals and commitments. social media. and the depth of staff experience — specifically in the security marketplace. programs. this includes quality supplier/buyer interactions. quality.gartner. as is the cost of replacing a competing product without intolerable costs or interruptions. These also include management experience and track record. promote the brand. as is the pricing model and bundling approach for adding security safeguards.2017-6-26 Gartner Reprint typical multifunction firewall life cycle (which is three to five years) is assessed. be flexible and achieve competitive success as opportunities develop.   Ability to Execute Evaluation Criteria Evaluation Criteria Weighting Product or Service High Overall Viability Medium Sales Execution/Pricing High Market Responsiveness/Record Medium https://www. frequent changes in strategic directions and how recent organizational changes might influence the effectiveness of the organization. overall throughput across different deployment scenarios and how the firewall fares under attack conditions. creativity and efficacy of programs designed to deliver the organization's message in order to influence the market. experiences. In addition. customer needs evolve and market dynamics change. This "mind share" can be driven by a combination of publicity.

expertise. Building loyalty through credibility with a full-time midsize business security and research staff demonstrates the ability to assess the next generation of requirements. Credible. and communication. As threats change and become more targeted and complex. and positioning statements. understand customer demands. technologies. including interaction with vendors in briefings and feedback from Gartner clients on information they receive concerning roadmaps. marketing. too" roadmap and an overall understanding and commitment to the security market (specifically the SMB network security market). and against future trends identified in Gartner research. such as Common Criteria. Sales Strategy: A sound strategy for selling that uses the appropriate networks. services and their customer base. including indirect sales and channel management. differentiated messaging consistently communicated internally. Gartner makes this assessment subjectively by several means. Vendors can't merely state an aggressive future goal. rather than an "us. leading-edge capabilities. In addition. We look at partners that extend the scope and depth of market reach. Offering (Product) Strategy: The emphasis is on the vendor's product roadmap. These include providing a track record of delivering on innovation that precedes customer demand. independent third-party certifications. are included. deep-packet inspection techniques. value for pricing. virtualization and performance. Incumbent vendor market performance is reviewed yearly against specific recommendations that have been made to each vendor. They must enact a plan. This also includes preproduct and postproduct support. and can shape or enhance market changes with their added vision. current features. We consider how vendors show a clear vision of their market — listen. and clear explanations and recommendations for detection events and deployment efficacy. channel and customer programs. we weight vendors that add mobile device management to their offerings and are looking to support SMB organizations that use cloud-based services. as well as product integration with other IT systems.gartner. Marketing Strategy: Clear.2017-6-26 Gartner Reprint Evaluation Criteria Weighting Marketing Execution Low Customer Experience High Operations Low Source: Gartner (June 2017) Completeness of Vision Market Understanding: Ability to understand customer needs and translate them into products and services. we weight vendors highly if they have roadmaps to move beyond purely signature-based. The quality of the security research labs behind the security features is considered. Integration with other security components is also weighted. advertising. show that they're following it and modify the plan as they forecast how market directions will change. https://www.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 25/51 . service. externalized through social media.

virtualization.gartner. such as R&D. skills and offerings to meet the specific needs of geographies outside the "home" or native geography. or operations that are difficult to configure or have limited reporting. Solving customer problems is a key element of this category. offering interproduct support and beating competitors to market with new features are most important. such as distributed multinational organizations deployments and MSSPs. The more a product mirrors the workflow of the midsize-business operations scenario. Reducing the rule base. and integration with other security products. quality differentiators.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 26/51 . Table 2.   Completeness of Vision Evaluation Criteria Evaluation Criteria Weighting Market Understanding High Marketing Strategy Medium Sales Strategy Medium Offering (Product) Strategy Medium Business Model Medium Vertical/Industry Strategy Not Rated Innovation High Geographic Strategy Low Source: Gartner (June 2017) Quadrant Descriptions Leaders The Leaders quadrant contains vendors at the forefront of making and selling UTM products that are built for midsize-business requirements. logic and execution of the organization's business proposition to achieve continued success. This includes the process and success rate of developing new features and innovation. either directly or through partners. such as performance.2017-6-26 Gartner Reprint Business Model: The design. and a https://www. the better the vision. as appropriate for that geography and market. are scored accordingly. These include the ability and commitment to service geographies. Innovation: This includes product innovation. and R&D spending. Geographic Strategy: The vendor's strategy to direct resources. Products that aren't intuitive in deployment. a management interface and clarity of reporting. The requirements necessary for leadership include a wide range of models to cover midsize-business use cases. support for multiple features. channels and subsidiaries.

https://www. The market growth is leveling out and becoming closer to the other network security markets. For 2016. and because of their strength in execution. Common characteristics include reliability. Although the branch offices of some larger enterprises have requirements that are similar to midsize businesses. Savings and high-touch support can be achieved for organizations that are willing to update products more frequently and switch vendors. due to different threat environments.gartner. different business pressures and different levels of staffing. this is not always the case. but businesses need to make their decisions by mapping their threat and deployment patterns to optimal offerings. if required. Market Overview The market for multifunction SMB firewalls (still also known as UTM) is mature and sees heavy competition regardless of region. and products that are intuitive to manage and administer. Challengers' products are often well-priced.2017-6-26 Gartner Reprint management and reporting capability that's designed for ease of use. Challengers The Challengers quadrant contains vendors that have achieved a sound customer base. These vendors also have a good track record of avoiding vulnerabilities in their security products. Some Niche Players focus on specific vertical industries or geographies. rather than the product. Vendors in this quadrant lead the market in offering new safeguarding features and in enabling customers to deploy them inexpensively without significantly affecting the end-user experience or increasing staffing burdens.7% to reach a total of approximately $2. strategy or financial means to compete globally with Leaders and Challengers. The UTM market consists of a wide range of suppliers that meet the common core security requirements of SMBs. Where security technology is a competitive element for an enterprise. but they aren't leading with features. Gartner estimates that the UTM market grew at 12. Visionaries are shortlist candidates. then Niche Players can be shortlisted. Many Challengers have other successful security products in the midsize world and are counting on the client relationship or channel strength. consistent throughput. If SMBs are already clients of these vendors for other products. but lack the sales base. Many Challengers hold themselves back from becoming Leaders because they're obligated to set security or firewall products as a lower priority in their overall product sets. to win deals. but lack the performance capability and support network.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 27/51 . Visionaries Visionaries have the right designs and features for the midsize business. Niche Players Most vendors in the Niche Players quadrant are enterprise-centric or small-office-centric in their approach to UTM devices for SMBs. these vendors can offer economical product bundles that others can't. Most Visionaries' products have good security capabilities.3 billion. Context SMBs have significantly different network security requirements from those of large enterprises.

allowing SMB to inventory unmanaged SaaS. positioned at the edge of the corporate network. the most common features deployed on a UTM are: Firewall (90% — however. and only then evaluate the benefits of the integrated approach. The CASB market is quickly growing. but tightly integrated with other security solutions and cloud services. Prospective customers of the integrated approach should conduct a separate evaluation of each considered technology. to align publication date with the enterprise network firewall Magic Quadrant. Direct integration with a CASB could be another option.and resource-constrained SMBs. Midsize organizations have smaller teams. https://www. based on inquiry. They use channel partners more frequently for implementing security solutions. see Note 3).2017-6-26 Gartner Reprint Fortinet continues to own the largest market share in the UTM market (see Note 2) — with more than twice the revenue of its closest competitors. extending visibility to the wireless networks. such as Office 365 or file-sharing services. to improve monitoring and control options. The next step is tighter integration between the firewall and the SaaS offerings frequently seen in SMBs. and the panel of features that CASB vendors offer larger enterprises is more comprehensive than what UTM vendors can easily provide (see "Market Guide for Cloud Access Security Brokers" ). with the promise of a unified monitoring dashboard and flexible security policy based on endpoint posture assessment. often limited to the solution from the firewall vendors. More vendors have added a SaaS discovery report. SonicWall. 2016" ). and therefore face lower organizational friction than larger enterprises. we observe a number close to 100%) URL filtering (77%) IPS (70%) Web antivirus (51%) IPsec (63%) and SSL (46%) VPN Application control (46%) User control (41%) Anti-spam (41%) Quality of service (41%) Will UTM Become a Meta-Security Platform? Leading vendors create new marketing messages after they attempt to convert a point product into a meta-security platform. Based on the customer research survey for this Magic Quadrant (which aligns with Gartner inquiry except for firewall features. This combination of criteria makes it easier to envision the integration of multiple security solutions. Worldwide. The last Magic Quadrant for UTM was published in August 2016. This evaluation period for this research was a bit shorter. However. Midsize organizations will often trust their channel partner. These more complex evaluation procedures are often out of reach for budget.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 28/51 . First integrations are with endpoint solutions. Check Point Software Technologies and Sophos— and grows much faster than the market average (see "Market Share Analysis: Unified Threat Management (SMB Multifunction Firewalls). Some vendors offer integrated management of wireless access points.gartner.

only 32% of the respondents answered that they were decrypting HTTPS traffic. more than 60% of organizations will fail to decrypt HTTPS efficiently. They invest more in cloud-based centralized management consoles. Most clients and resellers continue to understand UTM as SMB multifunction firewalls.2017-6-26 Gartner Reprint channel partners have already built a portfolio of security solutions from different vendors. despite the self-evaluation bias that generally results in inflated numbers. ease of use and the ability to run multiple security features on a single platform. By 2020. This could create issues. for example. leading to blocked traffic. missing most targeted web malware. but also try to identify the resellers' biases. Some vendors already offer zero-touch deployment. whereas the channel partner also sells third-party solutions. more than 80% of enterprises' web traffic will be encrypted. such as ensuring an employee's right to privacy. Consequently. Ransomware and Encrypted Traffic Are Top Challenges for SMBs SMB organizations face a growing need for SSL decryption. and technical challenges. and the fact that references provided by vendors tend to use more features than the market average. relying on firewall appliances in default factory settings' ability to touch base with cloud management to get its prepared configuration. as explained in "Next-Generation Firewalls and Unified Threat Management Are Distinct Products and Markets. such as franchises. a firewall vendor may start to promote integration with its own endpoint. SMBs remain focused on total cost of ownership. Some application traffic cannot be decrypted. but a majority of vendors have stopped using the UTM name to highlight their platform concept instead. principally to enforce web-filtering policies and to prevent malware infection. Decrypting SSL/TLS on a UTM creates organizational issues.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 29/51 . With a few exceptions." Gartner anticipates that through 2019. such as performance issues and product sizing difficulties for the firewall channel. a growing number of malware attacks. Midsize organizations should assess the level of expertise of their channel partners on all the considered solutions. SMBs and enterprises continue to have different expectations for their perimeter gateway. https://www." Many vendors evaluated in this research continue to focus more on distributed organizations made of autonomous offices. End-user experience is likely to be affected. These differences are one of the major reasons why many of firewall vendors that sell successfully to the enterprise and SMB markets develop specific features for each market. multifunction SMB products and larger enterprise firewalls might compete for the same budget. the term "unified threat management" was used by vendors and channel partner to convey the notion of good price for value. including ransomware. will move to use HTTPS to covert initial infection and command and control communications. Ease of Use and Price Continue to Drive SMB Purchases In previous years. and firewall vendors do a poor job at providing an up-to- date list of exceptions. However. aimed at serving MSSPs and channel partners looking to automate repetitive provisioning and deployment tasks.gartner. In "Predicts 2017: Network and Gateway Security. too. In our client reference survey for this Magic Quadrant (see Note 3).

and both markets could ultimately merge." (https://www. but end-user organizations should evaluate whether hosting their firewall configuration. cloud plus on-premises appliances). utilizing a cloud management solution should at least minimize management costs. MSSPs like the turnkey solution. The promise of automated quarantine of infected hosts triggers additional interest from SMBs to integrate the endpoint with the network firewall. The End of the Thick "All-in-One" Physical Appliance Era Is Slowly Approaching More UTM providers now target distributed organizations that have needs similar to those of midsize organizations. The promise of FWaaS is to provide simpler and more flexible architecture by leveraging centralized policy management.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 30/51 . but not exclusively. in the cloud is acceptable.gartner. Gartner analysts hear more frequently from distributed organizations. From an economic perspective. each office is similar to an autonomous organization. Placing the management and monitoring consoles fully in the cloud is generally a first step. when asked about future scenarios for their UTM purchase: 29% are likely (15%) or very likely (14%) to consider a cloud-based management console 15% are likely (11%) or very likely (4%) to consider a cloud-based secure web gateway 14% are likely (8%) or very likely (6%) to consider moving all the security features to a firewall as a service (FWaaS) solution Due to the increasing share of encrypted traffic. These thinner on-premises approaches could increasingly compete with UTM vendors' offerings. healthcare organizations and small government agencies.gartner. multiple enterprise firewall features and traffic tunneling to partially or fully move security inspections to a cloud infrastructure. Gartner first added firewall as a service to the "Hype Cycle for Infrastructure Protection.2017-6-26 Gartner Reprint The fear of ransomware infection drives the adoption of cloud-based sandboxing subscriptions. https://www. In Gartner client surveys (see Note 3 consideration about self-evaluation bias). Reporting and log retention are well-suited to the cloud. even if the privacy and residency challenges could slow down adoption in some regions. with the growth of SD-WAN and virtualized customer premises equipment (vCPE) platforms in branches (see "Market Guide for WAN Edge Infrastructure" ). with security workloads transferred to a cloud infrastructure.com/document/3367417) Gartner defines FWaaS as follows: Firewall as a service (FWaaS) is a firewall delivered as a cloud-based service or hybrid solution (that is. but also from upper-midsize organizations. that they consider shifting and lifting web security features from the edge firewall to a cloud-based secure web gateway to reduce their dependency on the appliance. or one from a third-party vendor. WAN edge infrastructure is also changing rapidly. This includes MSSPs for SMBs and distributed enterprises such as retailers. As more vendors will offer direct integration with their own cloud-based secure web gateway. Despite centralized purchase and maintenance centers. including the filtering policy. this will become a valid option for most organizations. 2016. More frequent user interface updates are also a real advantage to the cloud.

while midsize businesses are usually defined as companies with between 100 and 1. Evaluation Criteria Definitions Ability to Execute Product/Service: Core goods and services offered by the vendor for the defined market. especially for distributed organizations and MSSPs. it is because they accurately reflect how the different answers rank. Typically. Small businesses are usually defined as those with less than $50 million in annual revenue. Note 2 UTM Revenue Differentiation Gartner does not include branch office firewall revenue as UTM revenue. and revenue of $100 million to $500 million (see "Gartner's Small and Midsize Business Market Definition. while midsize businesses are defined as those with less than $1 billion in annual revenue. The primary attribute used most often is the number of employees. Gartner surveys its clients.gartner. 2013 Update" ). Self-evaluation surveys tend to give inflated numbers compared to reality.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 31/51 . limited trust in a foreign supplier and other privacy concerns would be additional reasons to avoid the cloud model. whether offered natively or through OEM agreements/partnerships as defined in the market definition and https://www. Gartner believes that. a portion of the SMB market will not accept this exclusively cloud model due to latency and the need to access the console when under attack. The secondary attribute used most often is annual revenue. It took eight years for cloud-based secure web gateways to represent 27% of the total market. When results are included in this research. 80% of the companies that Gartner analysts speak with have between 100 and 999 employees.000 employees. the transition to the cloud could take more time for UTM. feature sets. skills and so on. The market size and growth are estimated compared with numbers from the previous UTM Magic Quadrant. In some regions and industry verticals. Based on today's level of interest. Note 1 Small or Midsize Business Market Definition Gartner generally defines SMBs by the number of employees and/or annual revenue they have. and the general trends. Note 3 Customer and Reseller Survey In addition to hundreds of end-user inquiries about firewall that Gartner analysts conduct every year. quality. This includes current product/service capabilities. although it's convenient for the vendors to do so. Small businesses usually have fewer than 100 employees. is to better manage complexity and reduce dependency on thick on-premises hardware such as UTM.2017-6-26 Gartner Reprint The promise. and numbers should not be taken literally. but also end-user references and reseller references submitted by vendors.

systems and other vehicles that enable the organization to operate effectively and efficiently on an ongoing basis. service-level agreements and so on. increase awareness of the products. experiences. quality. including skills. Marketing Strategy: A clear. https://www. word of mouth and sales activities.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 32/51 .gartner. the financial and practical success of the business unit. service. and establish a positive identification with the product/brand and organization in the minds of buyers. expertise. and can shape or enhance those with their added vision. This "mind share" can be driven by a combination of publicity. differentiated set of messages consistently communicated throughout the organization and externalized through the website. customer needs evolve and market dynamics change. marketing. products and services/programs that enable clients to be successful with the products evaluated. customer support programs (and the quality thereof). availability of user groups. Marketing Execution: The clarity. Sales Strategy: The strategy for selling products that uses the appropriate network of direct and indirect sales. This includes deal management. and the overall effectiveness of the sales channel. methodology and feature sets as they map to current and future requirements. will continue offering the product and will advance the state of the art within the organization's portfolio of products. Customer Experience: Relationships. programs. advertising. thought leadership. customer programs and positioning statements. this includes the ways customers receive technical support or account support.2017-6-26 Gartner Reprint detailed in the subcriteria. Offering (Product) Strategy: The vendor's approach to product development and delivery that emphasizes differentiation. services and the customer base. Business Model: The soundness and logic of the vendor's underlying business proposition. technologies. be flexible and achieve competitive success as opportunities develop. This criterion also considers the vendor's history of responsiveness. Completeness of Vision Market Understanding: Ability of the vendor to understand buyers' wants and needs and to translate those into products and services. competitors act. Specifically. skills. change direction. Sales Execution/Pricing: The vendor's capabilities in all presales activities and the structure that supports them. presales support. promotional initiatives. Factors include the quality of the organizational structure. Market Responsiveness/Record: Ability to respond. This can also include ancillary tools. Overall Viability: Viability includes an assessment of the overall organization's financial health. Operations: The ability of the organization to meet its goals and commitments. and communication affiliates that extend the scope and depth of market reach. creativity and efficacy of programs designed to deliver the organization's message to influence the market. promote the brand and business. Vendors that show the highest degree of vision listen to and understand buyers' wants and needs. pricing and negotiation. functionality. and the likelihood that the individual business unit will continue investing in the product.

expertise or capital for investment. This publication consists of the opinions of Gartner's research organization and should not be construed as statements of fact.jsp) IT Glossary (http://www. complementary and synergistic layouts of resources. Inc.com/technology/site-index. or its affiliates. Gartner research is produced independently by its research organization without input or influence from these firms. Inc. your use of it is subject to the Usage Guidelines for Gartner Services (/technology/about/policies/usage_guidelines. Gartner disclaims all warranties as to the accuracy.gartner. see "Guiding Principles on Independence and Objectivity.gartner. Gartner is a public company. and its shareholders may include firms and funds that have financial interests in entities covered in Gartner research. This publication may not be reproduced or distributed in any form without Gartner's prior written permission.com/newsroom/) Policies (http://www.gartner. and derive revenues from. manufacturers and sellers. omissions or inadequacies in such information.com/technology/contact/contact_gartner.com. (/technology/about/ombudsman/omb_guide2. and/or its affiliates.gartner. including vertical markets. and may have client relationships with.jsp) Privacy (https://www. Although Gartner research may include a discussion of related legal issues. All rights reserved. companies discussed herein. channels and subsidiaries as appropriate for that geography and market.jsp)" About (http://www.gartner.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 33/51 .gartner.com/technology/careers/) Newsroom (http://www.jsp) https://www. (https://www.com/technology/about/policies/guidelines_ov. Gartner is a registered trademark of Gartner. skills and offerings to meet the specific needs of individual market segments. Gartner provides information technology research and advisory services to a wide range of technology consumers.com/technology/about. Gartner does not provide legal advice or services and its research should not be construed or used as such. Innovation: Direct. related.jsp) Careers (http://www. For further information on the independence and integrity of Gartner research.com/technology/contact/become-a-client. The opinions expressed herein are subject to change without notice. funds or their managers. defensive or pre-emptive purposes. The information contained in this publication has been obtained from sources believed to be reliable. either directly or through partners.2017-6-26 Gartner Reprint Vertical/Industry Strategy: The vendor's strategy to direct resources. completeness or adequacy of such information and shall have no liability for errors.gartner. Gartner's Board of Directors may include senior managers of these firms or funds.gartner. If you are authorized to access this publication.gartner.jsp?cm_sp=bac-_-reprint-_-banner) © 2017 Gartner.jsp) posted on gartner.com/it-glossary/) Contact Gartner (http://www. Geographic Strategy: The vendor's strategy to direct resources. skills and offerings to meet the specific needs of geographies outside the "home" or native geography.com/privacy) Site Index (http://www. consolidation.gartner.

gartner.2017-6-26 Gartner Reprint https://www.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 34/51 .

gartner.2017-6-26 Gartner Reprint https://www.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 35/51 .

com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 36/51 .gartner.2017-6-26 Gartner Reprint https://www.

2017-6-26 Gartner Reprint https://www.gartner.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 37/51 .

com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 38/51 .2017-6-26 Gartner Reprint https://www.gartner.

com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 39/51 .gartner.2017-6-26 Gartner Reprint https://www.

com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 40/51 .2017-6-26 Gartner Reprint https://www.gartner.

com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 41/51 .gartner.2017-6-26 Gartner Reprint https://www.

2017-6-26 Gartner Reprint https://www.gartner.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 42/51 .

com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 43/51 .2017-6-26 Gartner Reprint https://www.gartner.

gartner.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 44/51 .2017-6-26 Gartner Reprint https://www.

gartner.2017-6-26 Gartner Reprint https://www.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 45/51 .

com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 46/51 .2017-6-26 Gartner Reprint https://www.gartner.

2017-6-26 Gartner Reprint https://www.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 47/51 .gartner.

2017-6-26 Gartner Reprint https://www.gartner.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 48/51 .

2017-6-26 Gartner Reprint https://www.gartner.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 49/51 .

2017-6-26 Gartner Reprint https://www.gartner.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 50/51 .

gartner.com/doc/reprints?id=1-43R5S9W&ct=170621&st=sb 51/51 .2017-6-26 Gartner Reprint https://www.