It is an entirely different problem with almost nothing in common with their existing product, and there are a ton of incumbents, some of whom are even quite good (Carbon Black, SentinelOne, etc)
You’re trying to prove a point with no point. Yes, anyone can build anything. There is always room for more contenders when there are existing incumbents. The sky is still blue, and the grass is still green.
But it would make no sense for Wiz to do that, as they don’t have any “secret sauce” as it comes to endpoint security. They haven’t solved the problems that took Crowdstrike down.
It is not in their wheelhouse. It would be a waste of money and time.
Could they? Sure. Should they? Definitely not. It’s a commoditized space at this point, unless they have some new ideas which, if they did, they’d have already begun discussing.
Carbon Black did well because it turned endpoint security on its head. Not because it was a “better AV”
I work for a smaller player and we have solved the problem that took crowdstrike down from the get go agent will rollback to previous content version if it crashes on the content related steps. That had 0 value for marketing till now. Crowdstrike has never being at the top of the pile on efficacy of detection either so your idea that market position is even remotely related to some secret sauce is a fantasy.
Hang on, please don’t misread what I wrote as implying that Crowdstrike had some “secret sauce.” They suck, so much. I have been beating that drum for the better part of a decade. (My former boss founded Carbon Black, and my background is in vuln RE and exploit dev/weaponization)
I agree - them being at the top of the market implies exactly nothing about whether their product is any good or has any special moat or differentiator.
All I am saying is to beat them, you’d need something new. “The same as Crowdstrike but we use 2-stage recoverable updates” is fine, but not enough of a compelling pitch to swap vendors en masse. Not even now.
And given that it’s a pretty commoditized space (to which I think you’d agree, at least for “classic” tools), it may not be worth beating if you don’t have anything new.
They’d be competing with Crowdstrike, SentinelOne, Microsoft Defender, and Trend Micro not to mention existing CNAPP/CSPM offerings that have an agent for cloud runtime security as well as other cloud runtime security focused startups.
Adding a runtime security and EDR offering is not going to get them to a $23B valuation.
Honestly you just need to have good marketing and a passable product. The "secret" none talks much about all top tier APT groups run labs and test their exploit families agains all top tier Endpoint solutions. So none of them can stop a determined well resourced adversary but that not in any of the marketing booklets.
Oh, of course. I was that well-resourced adversary (through the USG) for some time. :)
I just mean that if you want to own the market, you will not be able to do that unless you provide something fresh, and it will be a race to the bottom otherwise, in the long run. The same as dynamic web app scanning is today.
At Wiz's valuation, if they were to enter that space, they couldn't be 'just another player.' They'd have to own the space. And I don't think they can do that purely through marketing, as others are already much more entrenched.