Techaisle Blog

The cybersecurity landscape is a relentless storm. For Small and Medium Businesses (SMBs) and Midmarket enterprises, navigating this storm is becoming increasingly complex. Limited resources, widening attack surfaces due to digital transformation, and a sheer volume of sophisticated threats create a challenging environment. Historically, many businesses adopted a "best-of-breed" approach, selecting individual point solutions for specific security tasks – a firewall here, an endpoint protection tool there, perhaps a separate email security gateway. While logical on the surface, this strategy is showing its age and limitations.

New Techaisle survey data (Techaisle SMB & Midmarket Security Adoption Trends) reveal a significant and growing trend: a clear shift in preference towards end-to-end security platforms, particularly as businesses scale. While the smallest companies still lean towards point solutions, the momentum across the broader SMB and Midmarket segments is undeniably moving towards integrated platforms. This shift isn't arbitrary; it's a strategic response to the operational realities and escalating security demands these businesses face.

This post delves into the Techaisle data, explores the compelling reasons driving this platform preference, and highlights how leading vendors, such as Palo Alto Networks and Cisco, are addressing this need with their evolving platform strategies.

Decoding the Data: A Clear Trend Emerges

The Techaisle SMB & Midmarket survey data paints a nuanced picture, directly correlating company size with security solution preference:

• The Smallest Businesses (1-9 employees): These micro-businesses exhibit the strongest preference for task-specific, best-of-breed solutions, with 56% favoring this approach, compared to 44% who prefer end-to-end platforms. This often reflects simpler IT environments, potentially tighter budgets favoring incremental purchases, and perhaps a perceived ease of managing distinct, single-function tools when the overall infrastructure is limited.
• The Growth Transition (10-99 employees): As companies enter the core small business segment, the preference for point solutions remains dominant, peaking at 74% for the 50-99 employee bracket. However, the foothold for platforms is strengthening, indicating that even at this size, the complexities prompting platform consideration are beginning to surface for over a quarter of businesses.
• The Midmarket Shift (100-999 employees): This segment marks a significant inflection point. While core midmarket (100-999 employees overall) still shows a majority (62%) leaning towards point solutions, the preference for end-to-end platforms rises substantially to 38%. Within this, the preference for platforms increases steadily with size, ranging from 32% for 100-249 to 40% for 250-499 and 42% for 500-999. The demands of managing a more complex infrastructure are clearly pushing businesses towards integration.
• Upper Midmarket & Beyond (1000+ employees): Here, the preference decisively tips towards platforms. In the 1000-2499 employee range, 46% prefer platforms, rising to 52% (a majority) for the 2500-4999 bracket. Aggregated, the Upper Midmarket (1000-4999) sees 49% favoring platforms. For these larger organizations, the benefits of integration, visibility, and centralized management become paramount.
• Overall View: While the overall SMB segment (1-999 employees) technically shows a 65% preference for point solutions due to the weight of the smaller company brackets, the Midmarket segment (100-4999 employees) demonstrates a much stronger inclination towards platforms, nearing parity and showing a clear preference in the upper tiers.

The overarching narrative is clear: as organizations grow in size and complexity, the perceived value and practical necessity of an integrated security platform increase significantly.

Why the Pivot to Platforms? Drivers of the Shift

Xerox, synonymous with photocopying, has embarked on a bold transformation to remain relevant in the digital age. From its humble beginnings as a copier manufacturer to its status as a diversified technology services company, Xerox's journey is a testament to its resilience and adaptability. Groundbreaking innovations punctuate Xerox's history. The introduction of the plain paper copier in the 1950s revolutionized document reproduction, and the company's subsequent development of the graphical user interface (GUI) and computer mouse laid the foundation for modern computing. The laser printer, another Xerox invention, further cemented its position as a technology pioneer. However, the rise of digital technology and the decline of traditional printing posed significant challenges to the company.  Xerox began a strategic shift towards IT Services with the 2010 acquisition of Affiliated Computer Services (ACS), rebranded as “Conduent” and spun off as a separate business services division in 2016.  The COVID-19 pandemic accelerated the shift towards remote work and digital document management.  While Xerox saw a decline in traditional office printing, it also identified new opportunities in emerging segments, demonstrating its agility and forward-thinking approach, which should give us all optimism about its future. 

It was my great pleasure to speak with John G. Bruno, Xerox's President and Chief Operating Officer. The conversation covered a broad array of subjects, focusing on Xerox's strategy for Reinvention. 

The traditional office environment has undergone a seismic shift with the rise of remote and hybrid work models. Once synonymous with physical document management, Xerox is adapting to this new reality by strategically balancing the preservation of its core print business with a bold venture into Digital Services and IT Services. While print remains a critical component of Xerox's operations, the company recognizes the growing demand for digital tools. It is investing heavily in technologies that can extract value from documents in a digital format. 

Xerox's foray into digital services is driven by the understanding that information is increasingly digitized. The company is developing services to capture, process, and analyze content from various sources, including physical documents. By doing so, Xerox aims to position itself as a trusted partner for businesses seeking to optimize their document workflows and extract valuable insights from their data. 

Furthermore, Xerox is expanding its service offerings to include IT services, particularly for small and medium-sized businesses. By providing a comprehensive suite of IT services, including managed security and cloud solutions, Xerox is addressing the growing technology needs of this market segment. This strategic move diversifies the company's revenue streams and strengthens client relationships. In essence, Xerox is evolving from a hardware-centric company to a technology-driven organization that empowers businesses to navigate the digital landscape. 

The company's Reinvention strategy is threefold. This three-pronged approach demonstrates Xerox's commitment to preserving its core print business, simplifying its operations to improve the client and employee experience, and capitalizing on the opportunities presented by the digital revolution. 

1. Strengthening the Core Print Business:

Xerox aims to maintain its leadership in the print industry by focusing on efficiency and productivity, reducing costs, and capturing growing segments like home office printing and production print. Despite the rise of digital platforms, print remains a significant market, and Xerox is determined to solidify its position as a leader in this space. As remote work and hybrid work models become the norm, the demand for home printers is expected to rise. Xerox is positioning itself to capitalize on this trend by offering high-quality, user-friendly printers to address the evolving needs of hybrid workers.   On the other end of the spectrum, Xerox also focuses on production print. This segment caters to businesses with high-volume printing needs, such as publishing houses, advertising agencies, and direct mail companies. Xerox aims to increase its market share in this lucrative sector by investing in advanced printing technologies and workflow solutions. 

2. Driving Efficiency and Growth through Global Business Services:

A key component of the Xerox Reinvention is the formation of a new Global Business Services organization. By centralizing internal processes and leveraging shared capabilities, Xerox aims to simplify operations, reduce costs, and improve the overall client and employee experience. This, in turn, frees up resources for investment in growth areas, such as emerging technologies and digital services. As Xerox continues to evolve, the Global Business Services organization will play a pivotal role in ensuring the company's long-term success. 

3. Expanding into Digital Services and IT Services:

Recognizing the digital transformation, Xerox is investing heavily in digital services, including intelligent document processing, content management, and data capture. The company also sees significant potential in IT services, particularly for small and medium-sized businesses. Recognizing the inevitable shift towards digitalization, Xerox is increasingly investing in digital services. At the heart of this strategy is intelligent document processing, which involves extracting valuable information from physical and digital documents. This technology is crucial for businesses looking to automate workflows, improve efficiency, and gain insights from their data. In addition to document processing, Xerox is focusing on customer engagement services, whereby Xerox helps companies utilize proprietary content to more effectively target and communicate with their customers, even designing and implementing omnichannel marketing campaigns. Xerox entered the IT services market to expand its digital footprint, particularly targeting small and medium-sized businesses (SMBs). By offering a range of IT services, including managed security, cloud solutions, and technical support, Xerox aims to become a one-stop shop for SMBs' technology needs. 

Techaisle's study on SMB and Midmarket Security Adoption Trends projects that IT security spending by small and mid-sized businesses worldwide is expected to reach US$90 billion in 2024, showing a 9.4% increase from the previous year. In the US alone, the market expenditure is set to rise by 8.3%. Significant investments will concentrate on Endpoint Protection, Network Security, and Identity and Access Management, with MDR (Manage, Detect, Respond) services seeing the most rapid growth in the SMB and midmarket sectors.

A significant increase in funding for IT security is projected among high-growth SMBs. Notably, 21% of rapidly growing small and medium-sized enterprises (SMBs) and 26% of mid-sized companies are forecasting a minimum growth of 15% in their IT security budgets for 2024. Highly innovative organizations are committed to improving security measures as well, with 18% of SMBs and 21% of midmarket companies planning to boost their spending by 12% compared to the previous year.

Techaisle's data also reveals a concerning cybersecurity preparedness gap among small and medium-sized businesses, with 42% having no cyber incident response plan. Despite nearly half experiencing security breaches, often going unnoticed, only 40% are confident in their recovery capabilities, likely downplaying the risks. These cyberattacks come at a high cost, with SMBs' average annual losses reaching $1.4 million. Contributing to this issue is the fact that 46% of these businesses lack formal risk assessment methods, indicating a serious underestimation of online threats.

Addressing SMB and Midmarket security issues can be done through various lenses. Segmenting security adoption into four categories—Prevent & Protect, Detect & Respond, Adapt & Comply, Restore & Recover—provides an understanding of preferred solutions and areas poised for growth. This framework helps clarify how these companies prioritize and distribute funds for cybersecurity strategies.

The cybersecurity landscape is undergoing a significant shift, driven by a surge in spending across all business segments. According to Techaisle SMB and Midmarket Security Adoption Trends research, the combined IT security spending (excluding managed security services) for global SMBs and Midmarket companies is projected to reach a staggering US$90 billion in 2024, reflecting a healthy 9.4% increase from 2023. This data paints a clear picture: businesses of all sizes are prioritizing cybersecurity and investing heavily in defense mechanisms.

Interestingly, the growth in spending is not uniform across the board. The most significant increases are anticipated from high-growth, highly innovative companies. A striking 21% of high-growth SMBs and 26% of high-growth midmarket firms are expected to bolster their IT security budgets by at least 15% in 2024. These figures underscore these companies' unique challenges and the need for tailored cybersecurity strategies. Very innovative businesses are also demonstrating a strong commitment to security, with 18% of SMBs and 21% of midmarket companies in this category planning to increase their spending by 12% compared to the previous year.

At the core of an SMB's resilience lies cyber resilience, the nexus that links cybersecurity, business continuity, and overall preparedness. It's not just about defense; it's about bouncing back from any crisis, whether a cyberattack, natural disaster, or economic downturn. Cyber resilience ensures operations continue smoothly even in turbulent times by encompassing prevention, response, and recovery. This comprehensive approach not only ensures business continuity and protects sensitive data but also plays a pivotal role in fostering customer trust. Techaisle survey data reveals that 35% of SMBs and 46% of upper midmarket firms view the shift from cybersecurity to cyber resiliency as not just important but crucial.