Gartner Magic Quadrant 2018: Endpoint Protection Security Platforms

Welcome to page three of five for the next five companies in the 2018 Magic Quadrant for Endpoint Protection Security Platforms … and their implications for MSSPs.


  • Quadrant: Niche players
  • Gartner says: Fortinet is a network security suite vendor that sells enterprise firewalls, email security, sandbox, web application firewalls and a few other products, including its FortiClient endpoint security software. The vendor is a new entrant to this Magic Quadrant. FortiClient is not well-known to most Gartner clients inquiring about endpoint security, and we see little adoption of it outside of Fortinet’s client base. FortiClient is becoming more focused on the enterprise space, but its current installed base is mostly in the SMB space, and about half of its customers have less than 1,000 seats installed. In 2017, FortiClient generated less than 1% of the vendor’s revenue. Its track record of endpoint- focused third-party testing is poor, and this impacts its execution and vision in this assessment.
  • MSSP Alert says: Fortinet helped to pioneer MSSP-related partner programs and security consumption models. True believers include ePlus, which now supports Fortinet’s security gear within an MSSP push.  The company’s 2018 partner and customer conference is set for February.


  • Quadrant: Visionaries
  • Gartner says: In 2017, F-Secure continued with its long track record for high-accuracy, lightweight and low-impact anti-malware detection with its cloud-based F-Secure Protection Service for Business (PSB) offering and on-premises solution F-Secure Business Suite. F-Secure added an integrated password manager with password protection capabilities and improved device control management to PSB and Business Suite. F-Secure also added ML capabilities to its Rapid Detection Service, which is its managed EDR solution. Over the past 12 months, F-Secure further enhanced its product deployment and management capabilities, making it a good choice for larger, more complex enterprises. F-Secure is focusing its investments in its managed service offerings, and has added product enhancements with a specific focus on preventing ransomware attacks.
  • MSSP Alert says: F-Secure acquired Digital Assurance in May 2017. F-Secure is a UK based security consultancy firm offering information security assessment services to governments and companies in the financial, petrochemical, retail, communication, and defense industries. For some MSSPs, that may be a warning sign that F-Secure plans to sell more directly to customers. Still, the company has more than 6,000 reseller partners worldwide.

Kaspersky Lab:

  • Quadrant: Visionaries
  • Gartner says: Kaspersky Lab’s “built not bought” approach has provided good integration and allows for a strong approach to managed services. The vendor is late to market with EDR capabilities, and has no vendor-managed, SaaS-type cloud-based management options for organizations with more than 1,000 endpoints to manage. The vendor’s research team makes up one-third of the organization, and is well-known for its accurate malware detection and in-depth investigation and analysis of many sophisticated attacks. Kaspersky Lab has been the subject of media scrutiny, citing unnamed intelligence sources, claiming that Kaspersky’s software was being used by the Russian government to access sensitive information. Kaspersky denies the claims.
  • MSSP Alert says: Despite U.S. government scrutiny, Kaspersky’s revenues grew roughly 8 percent in 2017. The company has a large partner program, and MSP-related relationships with companies like Kaseya continue. However, MSSPs that have any U.S. federal government relationships will likely shy away from Kaspersky, since the U.S. government has barred the company’s software on agency networks.


  • Quadrant: Visionaries
  • Gartner says: Malwarebytes continues to gain momentum, using its experience as the incident response tool of choice by organizations of all sizes, and has doubled its seat count in the past 12 months. In 2017, Malwarebytes delivered cloud-based management, and added mainstream and advanced EDR capabilities to its single agent, which includes the breach remediation tools for remediating infections. It is one of the few vendors in this space that can roll back the changes made by ransomware, including restoring files that were encrypted in the attack. This ransomware remediation can be performed remotely from the cloud management console up to 72 hours after the attack, without the need for any local access to an endpoint. For organizations with small IT or security teams, Malwarebytes provides strong protection capabilities and some advanced EDR capabilities, all at an attractive price point. For larger organizations, or organizations with a mature security team, there are some missing enterprise features that make it a challenge to incorporate into an existing SOC workflow.
  • MSSP Alert says: Malwarebytes, ranked number 847 on the Inc. 5000 list for 2017. Revenue grew 532 percent, reaching $98.3 million, over a three-year period, the report said. The company in May 2017 expanded its partner program across EMEA.


  • Quadrant: Visionaries
  • Gartner says: Intel completed the sale of 51% McAfee to TPG in April 2017 and, as a stand-alone company, McAfee hopes it can now refocus its efforts on the core aspect of its business: endpoint protection. McAfee remains one of the top three incumbent EPP vendors by market share, and its execution issues over the past three years make it the top competitive target for displacement by other vendors in the EPP Magic Quadrant. Specifically, Endpoint Security (ENS) version 10.x (v.10.x) upgrades remained a very challenging adoption cycle for most McAfee clients. While the feature set and protection capabilities included in the most recent release are quite compelling, and public test scores have improved over the past year, McAfee’s execution assessment is hampered by organizations continuing to be hesitant to adopt the latest version, leaving them vulnerable to commodity malware as well as more advanced threats. Gartner client inquiry data identified McAfee as the single most-quoted EPP vendor that clients were planning to replace. Customer satisfaction scores were low again for 2017.
  • MSSP Alert says: McAfee has taken multiple steps to strengthen its business, including a free trial of a virtual Network Security Platform on AWS; some new SOC offerings; and the Skyhigh Networks acquisition.

Continue to page four of five for the next five companies in the 2018 Magic Quadrant for Endpoint Protection Security Platforms … and their implications for MSSPs.

Return Home

No Comments

Leave a Reply

Your email address will not be published.