The 2023 Security 100
The 2023 CRN Security 100 highlights channel-friendly cybersecurity vendors across a number of market segments, ranging from the largest and best-known players to some of the small-but-promising startups.
While cybersecurity has always been complex, the need to choose from a vast array of security vendors only adds to the challenge. To help solution providers navigate the industry, the CRN Security 100 highlights channel-friendly cybersecurity vendors across a number of market segments, including Endpoint and Managed Security, Identity Management and Data Protection, Network Security, Security Operations, Risk and Threat Intelligence, and Web, Email and Application Security.
Our list includes companies old and new, ranging from the largest and best-known players to some of the small-but-promising startups. Key themes include a growing focus on helping to secure organizations in a perimeter-less world in which workforces continue to be distributed, the attack surface is expanding and hackers are finding new ways to exploit the situation. Offerings focused on enabling a zero trust security posture, leveraging cloud-native technologies and providing more comprehensive detection capabilities are among those being featured prominently on our Security 100 list for 2023.
Without a doubt, security tools focused on prevention are not enough today, said Rocco Galletto, a partner and national cybersecurity leader at solution provider BDO Canada in Toronto.
While prevention is still important, businesses also need to think about how to achieve “cyber resilience”—recognizing that breaches are inevitable and that the key now is “to ensure that we respond, remediate and recover as quickly as possible to limit the damage,” Galletto said. Ultimately, “the days of monitoring that one firewall or that one choke point for the organization—those days are gone.”
When it comes to zero trust, the effort to offer products that enable a zero trust posture—which can involve deploying steeper requirements for user access to data and giving greater control to organizations—is now essentially an industrywide initiative.
Within Endpoint and Managed Security, among the vendors CRN is highlighting is Austin, Texas-based CrowdStrike, which recently unveiled its Falcon Insight XDR offering. The platform enables the company’s endpoint detection and response customers to “easily activate XDR capabilities” to bring together telemetry from both CrowdStrike and third-party security tools, empowering security analysts to create “a detailed storyline on how an attack develops and progresses.”
Within Identity Management and Data Protection, one key vendor on the list this year is Austin-based SailPoint, which recently updated its Identity Security Cloud platform. The enhancements use AI to accelerate the measurement of risk around user access and bring greater automation to critical processes.
In Network Security, among the vendors on the list is Santa Clara, Calif.-based Palo Alto Networks, which recently released its PAN-OS 11.0 Nova software update. Among the more than 50 updates in the product is a new service, Advanced WildFire, which adds enhanced mitigations for attacks involving evasive malware.
Within Security Operations, Risk and Threat Intelligence, CRN is highlighting Mountain View, Calif.-based Google Cloud, which has been making a big bet on cybersecurity with the major acquisitions last year of Mandiant and Siemplify. Their technologies have been utilized in the recent launch of Chronicle Security Operations, a cloud-native alternative to traditional security information and event management tools that are often run by security teams in on-premises environments.
In Web, Email and Application Security, among those on this list is Boston-based Snyk, which offers developer-focused security tools that aim to make it easier to fix code security issues early in the software development process.
Following is the full list of vendors with details on key product offerings.
From vendors providing endpoint detection and response tools to companies offering managed detection and response services, here’s a look at key endpoint and managed security companies.
From vendors offering robust identity security capabilities to those focused on securing the data itself, here’s a look at 20 identity management and data protection companies to watch.
From vendors offering SASE platforms to those focused on securing IoT assets, here’s a look at 20 key network security companies.
From vendors that provide cloud-native SIEM to those offering threat intelligence to stay ahead of the hackers, here’s a look at 20 top security operations, risk and threat intelligence companies.
From vendors offering developer-friendly code security tools to those protecting websites against cyberattacks, here’s a look at 20 key web, email and application security companies.