kuechenserver.org

Prelude:

I wanted to blog more in my native language, but this blog post will be written in English. Inconsequent? Rather audience-oriented 😉 Also, I almost never blog about things that have to do with my job, but since this is a rather big thing and there are a few voices out there claiming that this was a bad thing happening to Astaro employees, I wanted to give an insight perspective (+ a view from somebody who has also worked for a system integrator in the past).

So, what happened? Well, Friday was a big day for everybody involved in the Astaro microcosmos (partners, resellers and the like) and medium-important day for the whole IT Security industry. At that day, Sophos and Astaro announced publicly that Sophos is planning to acquire Astaro in the very near future. Bottomline: Astaro as a company will not officially exist anymore, but everybody working for Astaro today will turn into a Sophos employee and also every asset in the company will turn into Sophos property.

This at first might be a bit frightening, but if you have had a bit more time to think about it (we Astaronians had a small heads-up), this seems to be a good thing. So, nobody who has heard about this should be frightened or feel somewhat sorry for me / us. Rather the opposite is true.

Astaro has been the 4th largest vendor – by sellout – in our space (UTM, basically a “Firewall + many other cool things”), privately owned, has ~ 220 employees and has been profitable since a couple of years.

So, it is nice to work for this rather small and cozy company. You could feel that we didn’t realize only a 0,3% – 1% profit from the money that we earned (such as my former employer did) and the overall feeling was very relaxed. Many people have been with the company since the very beginning, many people in key positions haven’t had another job before. The company is still rather young (11 years old) and we’ve recently moved to new, shiny offices in Karlsruhe.

It feels like your word and your opinions are valued, the founders know everybody working for them by name and greet them on the floors and there is an overall open door / everybody talks to everybody mentality that I didn’t feel in larger organization.

And suddenly, the acquisition was announced.

This was rather a shock for people outside of Astaro; they fear that the product will be let down, that support will suffer and that this will have some negative consequences.

I don’t think that those people are right. There are a few good reasons why I personally do believe strongly in the merger and those I’d like to share with you (and also do calm down my friends and family and convince them that I’ll be alright):

In fact, I wished to be bought by Sophos if that had to happen one day. I personally like them technologically very much and I think that their way of doing business is very similar to ours.

• No direct competitor:
  Sophos is not a direct competitor to Astaro. They are not the No.1 UTM vendor out there and they don’t have similar products. So they don’t buy Astaro just to get rid of competition, letting the product and the people involved with it die afterwards. This is not only good for our customers and partners that can be sure that the product line will continue to be developed and sold, but also for us, since our jobs are pretty safe.
• European company, focussed on the professional market:
  Just as Astaro, Sophos is a European company. This reflects I think on their way of doing business, on their view on the world, on their ethics and ideas about how to do business. And most importantly: The network division of Sophos (which Astaro will turn into) will not be far away in another continent, having little influence on the overall company.
• Great products
  The Sophos guys have built clever products and are in my opinion close to McAfee when it comes to cool Endpoint security products. If you’ve followed my bio a bit, you will know that I have good reason to call myself an expert in that field, and I think that they are No. 2 worldwide when it comes to technology (unfortunately not yet sellout).
• Astaro complements their portfolio:
  The product range that Astaro stands for (Gateway security products) is something that Sophos lacked over the last years. Rumor has it that they also launched their own Mail- and Web Gateways, but they are not industry-widely known for these kind of products. So, similar to what McAfee did with the Secure Computing acquisition they seemed to have checked the market for a solution that fits and stumbled upon Astaro. Fortunate for everybody!
• Expertise that is unique within Sophos:
  Given the fact that Sophos has little to no knowledge in this particular security area, our expertise and our understanding in how to sell and run the gateway business is needed by them. They saw that the business is done a bit differently and are planning to let Astaro as a sub division act rather  than integrating them directly.
• No direct changes
  This will also result in business not changing directly. The Astaro partner model, the margins, the criteria to classify as an Astaro partner will remain unchanged. There won’t be 100s of new partners overnight that will kill our established partners’ business.
• Higher visibility
  Mid-term however, the visibility and status that Sophos has will bring a completely new group of partners and customers to us. Very large system integrators who have focussed on bigger companies will be interested in looking at us and consider to include us actively in their portfolio rather than just sell us if the customer explicitly asks for it.
• We’re No.1 UTM now
  No need to explain who Astaro is anymore. The brand name “Sophos” will give our business a huge boost outside the German-speaking regions. Sophos is known in the IT industry, Astaro is still somewhat unknown as a brand. So, doors will open for us that wouldn’t have opened before. And immediately we are one of the big 10 players in Security. Cisco, Symantec, Juniper, Mc Afee, Check Point, Trend Micro and F5 (probably a few more) are bigger than the merged Sophos/Astaro team, but the joint company is bigger than better known players such as Fortinet (largest UTM-only vendor in regards to sell out) or Kaspersky.
• Focus on Network Security
  Astaro or the new Network Security division of Sophos or however you’ll call us now, can focus on Network Security again. We have presented this great Security Wall vision a couple of months ago that basically covers all security aspects out there. But, we don’t have to build everything on our own anymore. We don’t have to deliver an endpoint security product, there already exists one in the company (and a pretty good one, BTW). Whether we will continue these product lines or not however is something that I’m not aware of. And some other aspects of the product that we were lacking are now covered as well.
• Cool OEM components to integrate in our product
  Astaro has always either built (own technology), borrowed (open source technology to which we actively commit code to drive it further) or bought (OEM components) technology for our product. Now that Sophos e.g. offers some great Antivirus components that run under Linux and has some offerings when it comes to Threat or Spam databases, the number of OEM components that we have to license from 3rd parties will be reduced in mid-term. This means that we’ll have better control over the product and will be able to fix bugs even faster than before.
• Being back in known waters
  Last but not least: I’ve worked in the endpoint security part of the IT Security industry for 5 years before I joined Astaro. So, for me this merger is perfect: I’ll still continue to work in the Network branch of Sophos, but the knowledge about the other side of the company and their products will hopefully be beneficial in many ways.
• Many new trips and challenges
  Though nothing will change immediately the additional sales personnel within Sophos and the existing Sophos channel will probably bring some boost to the things I have to do: give trainings, give Pre-Sales presentations, teach the Sophos colleagues about our products.
• Strong presence in Germany
  I love working in a multinational company. But I also love communicating in German, as it speeds up things. And luckily, Sophos has a very large presence in Germany now + many product parts are developed here (the SafeGuard product line done by Ex-Utimaco and also our network security products). So I’ll be able to communicate with many new and old German colleagues.

So now that I predicted the Sophos thingy properly 2 weeks before at InfoSec, it’s time to have a look into my crystal ball once again and predict what products Sophos is going to buy next. If you compare the McAfee offering, including Vulnerability Management and Patch solutions and maybe what Symantec has (managed Mail filtering), some SaaS providers and something in the VM / patch management space sound like a good fit.

Qualys fits perfectly from its size into the company, Secunia might also be an option. For the SaaS part, Webroot would be a nice addition. And, just to mess with McAfee’s mind, Bit9 would be nice to have in the portfolio….

For all of you security geeks out there: what do you think about the acquisition? And, more importantly, which company do you think will / should be bought by Sophos next?

Wie einige von Euch vielleicht wissen, sind wir mit unserer aktuellen Wohnsituation seit ca. 6 Monaten unzufrieden. Durch einen unglücklichen Zufall ist das auch ungefähr die Zeit, die wir in unserer frisch gebauten, neu bezogenen, uns als supertoll verkauften Wohnung leben. Und ja, es mag den Anschein haben, als wäre das alles Jammern auf hohem Niveau. Ist es aber leider nicht.

Deswegen haben wir – auch angesichts des Hamburger Wohnungsmarkts – beschlossen, ein wenig kreativ zu werden; oder genauer: ohne Angst vor Patentanwälten andere Ideen ebenfalls zu nutzen. Ideengeber waren Eike und Daniel, die auf Facebook für Köln eine Wohnung suchen. Und, mal ehrlich, was der Ruhrpott kann, dass können wir Nordlichter doch schon lange. Also, bis auf Geographie. Und so ist dann unsere Wohnungssuchanzeige auf Facebook entstanden.

Wir hoffen, dass dieser virtuelle Flyer durch Freundesfreunde vielleicht zum erhofften, mindestens 3 Zimmer großen bebadewannten Ergebnis führt. Denn sind wir doch mal ehrlich: ne freie Wohnung in Hamburg, das ist ungefähr so häufig wie der Aufstieg eines Teenagers mit Ambitionen und Webcam zum Youtube Star. Und auch da hilft ja dieses Internet ganz gut.

Also, wir würden dann jetzt gern mal Euer virtuelles Netzwerk ohne Hemmungen ausnutzen. Dafür gibt es den twitterfreundlichen Shortlink http://fret.de/g4Xe2H, die Facebook Box rechts und für die Stadtverschönerer unter Euch sogar einen wunderbaren neuen Bemperl unter http://bit.ly/g4Xe2H.qrcode, den Ihr auch und insbesondere gern an leerstehende Bürogebäude pappen könnt. Natürlich nur, wenn Ihr vorher den Eigentümer gefragt habt. Und Ihr das schriftlich habt. Und so.

Danke dafür!

Auf Wunsch einer einzelnen Dame jetzt übrigens wieder auf Deutsch und mit Zusammenfassung. So wie früher halt.

[As some of you might know, we’re not very happy with the place we’re currently living in. So, we are again looking for a new place, barely 6 months after the last time we’ve packed our stuff in a moving truck. We’ve started the experiment of empowering Facebook to do so. If you want to participate, just “Like” us on facebook – see the right hand side widget for that. If you happen to know a place and don’t have a Facebook account, nevermind. We also plan on accepting normal hints 🙂 ]

Some of you – especially those following me on only Twitter and not Facebook – might have wondered why I was so quiet for the last couple of days: The reason for that is pretty simple – I haven’t been around. And, as there is an agreement between Inka and me to not publish when I’m not around and reveal that she’s home alone, I kept my mouth shut. But, since I’m back in Germany since hopefully about half an hour (this post is scheduled), I can finally talk about what I found to be one of my Top 5 destinations in the world.

I took an occasion I couldn’t let pass by to finally get my ass up and into a plane to visit a good old friend of mine and the beautiful city of San Francisco.

Probably the things that I experienced are way too much to put into a single blog post, however I’d like to at least notice the most impressive things I whitnessed. Just take it as a conversation starter next time we’ll meet.

– Many dogs
– Great weather
– 45° steep roads
– One of the best public transportation systems I know
– a very logical numbering concept for houses
– Great weather
– great people, old and maybe new friends to come
– Affordable hotels
– Not-so-affordable mobile phone fees
– Chaotic driving
– Very nice neighborhoods without too many skyscrapers
– A great amount of fresh, organic, beautiful produce just waiting for you to cook with it.
– And oh: what a view!

Do’s:
– Use Public Transport
– Just walk around
– Make sure to maybe not book a hotel, but a flat instead. At least make sure that you can cook your own meal after shopping at the Ferry Building.
– Take a guided tour
– Plan your trips using BART and CalTrain
– Visit Flight 001
– Stay at the Hotel Vertigo (not just because of the song that will be stuck in your head for the whole time you’re in SF)

Don’t:
– Rental car. It’s more of a burden than a release when being in Downtown SF
– Expect to see everything – the city is just too big for that
– Have bad sushi. Life’s too short for bad sushi.
– Visit the Apple Flagship Store. Better visit the nice and cozy Company Store (http://www.apple.com/companystore/) in on 1 Infinite Loop, Cupertino, CA.

And one thing is sure: I’ll be back. With a little more time, hopefully my significant other and an empty agenda to be filled.