The security configuration management market appears to be in flux in the last year or so. Vendors in this market provide tools to enforce compliance policies against check security configurations.
In a study conducted last year by Cambridge, Mass.-based Forrester Research, Altiris and BindView, security vendors that were both acquired by Symantec, were identified as the leaders in the market, followed by LANDesk Software.
But there are a few vendors that remain in the space and are trying to differentiate themselves from the big players. Configuresoft, which competed against Altiris and BlindView is making itself stand out by trying to capitalize on organizations upgrading systems to a service oriented architecture and those that are using server virtualization.
One of the gaps identified by Forrester was on reporting, risk and trend analysis. Configuresoft seems to have addressed that in its recent product.
The company just released its Configuration Intelligence platform, which integrates with BMC Remedy, Microsoft SMS provisioning software, and EMC VMware virtualization software. The software uses business intelligence to provide a level of analytics to give an indicator of system changes and security event issues.
In a briefing I had recently with George Gerchow, Configuresoft technology strategist, Gerchow said that Configuresoft is seeing an increase in businesses choosing security configuration management software as part of their compliance initiatives. Whether it’s PCI DSS or Sarbanes Oxley, companies are finding that they may be in the dark when it comes to the number of configuration issues that exist in their environment, he said. Also, becoming compliant means having knowledge about how a configuration change affects the company’s entire IT environment.
Do you believe there is room in the security market for vendors in this niche or are larger vendors such as Symantec now providing security configuration management features that are needed?
Technorati Tags: security+configuration+management