Open XDR , Security Operations , Video

How to Overcome Practitioner Concerns Over Cisco-Splunk Deal

Forrester's Allie Mellen on Issues Posed by Cisco's M&A Track Record, Splunk's Cost
Allie Mellen, principal analyst, Forrester (Image: Forrester)

Security practitioners are skeptical of Cisco's proposed $28 billion Splunk purchase given the networking giant's track record around funding and investing in previous acquisition targets.

See Also: XDR and the Benefits of Managed Services

Forrester principal analyst Allie Mellen expects many practitioners to try out other SIEM offerings given Cisco's heritage in hardware and reputation for being "a case study in acquisitions that don't always live up to the hype." Mellen urged Cisco to maintain some level of independence for Splunk while boosting investment in emerging technologies and providing guidance around operating in a down economy (see: Artificial Intelligence and the SOC: A Match Made in Heaven).

"Splunk has a very flexible, very easy-to-use offering, which is a great addition for Cisco," Mellen said. "But customers are really frustrated with the cost. There are all these users that are now considering, 'Well, we were making the case for using Splunk given the cost before. But now that it's transitioning under a new brand, perhaps it's time to look at alternatives.'"

In this video interview with Information Security Media Group, Mellen also discussed:

  • How Cisco should bring its XDR and Splunk's SIEM technology together;
  • The impact of the Cisco-Splunk deal on SIEM rivals such as Microsoft and Google;
  • Whether large enterprises will consider replacing SIEM with XDR.

Mellen supports security executives and professionals in building and maturing their threat detection and response strategies. Her coverage includes people, processes and technology in security operations.

About the Author

Michael Novinson

Michael Novinson

Managing Editor, Business, ISMG

Novinson is responsible for covering the vendor and technology landscape. Prior to joining ISMG, he spent four and a half years covering all the major cybersecurity vendors at CRN, with a focus on their programs and offerings for IT service providers. He was recognized for his breaking news coverage of the August 2019 coordinated ransomware attack against local governments in Texas as well as for his continued reporting around the SolarWinds hack in late 2020 and early 2021.

Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing, you agree to our use of cookies.