There’s been constant discussion about business transformation since I started my professional software and services career going back to the transition from mainframes and minis to client-server environments quite some time ago. Within the last decade there’s been more talk of Digital Transformation and in some respects Cloud Transformation, as cloud infrastructures, global connectivity, and mobility have begun to influence how we interact and behave with digital assets every day.
In the spirit of transformation, IBM Resilient is making changes to its packaging and pricing to better respond to our customer needs, and these changes are reflected in our new branding: IBM Resilient SOAR Platform (security orchestration, automation, and response).
New Packaging
IBM Resilient is transitioning to an a-la-carte offering structure with a portfolio of add-on capabilities that plug into a common SOAR platform, and away from the larger install package design. This gives customers greater flexibility to expand or introduce new capabilities as they advance their scope, maturity, and processes/practices.
New Pricing
IBM Resilient is introducing two new licensing/pricing meters which incorporate volume discounting, so customers benefit as their organizations scale and mature
1) A required Per User pricing for both on-premises (perpetual or term) and SaaS on-cloud (subscription) that will enable both the core SOAR Platform and any associated Add-Ons. This Per User pricing is based on either Authorized Users (sometimes referred to as Named), or Concurrent Users (often associated with MSSP deployments requiring around the globe SOC coverage). Note: currently, all users must be licensed for the same packages.
2) An optional Actions per Month pricing that is a usage-based component influenced by the level of automation. Note: this license metric is similar to the existing IBM Monthly API Call metric.
How do the IBM Resilient offering capabilities align to the new SOAR Platform packaging?
|
Offering
|
Description
|
|
SOAR Platform
|
Collect, enrich, and share information related to an ongoing investigation, building evidence to support the analysis and intelligence required to decide on and execute a course of action
|
|
Actions
|
Push requests to external systems in order to collect and process information, as well as to execute remediation actions
|
|
Privacy Add-On
|
Ensure compliance with regulations in the event of data breach, and ensure organizational readiness with tabletop exercises
|
|
Team Management Add-On
|
Simplify team queues and restrict the flow of information on a need-to-know basis
|
|
Non-Production Add-On
|
Build and test automations and process flows prior to pushing changes to a production environment
|
|
Disaster Recovery Add-On
|
Rapidly fail over to a secondary data center, ensuring that mission-critical teams remain capable and coordinated in times of distress
|
|
MSSP Add-On
|
Coordinate work and simplify workflow management across multiple environments or end customers
|
How this may impact you as a Customer
Product capacities will be preserved. While the existing customer entitlements will change, existing capabilities will carry through in the transition. What this means long-term is that customers will have greater flexibility to add new capabilities based on their needs at a price more aligned to the value they derive.
For On-Premises Perpetual customers, we will go through a process of modifying your entitlements and reviewing license agreements over the next 60-90 days to ensure we align the new offering packages to your original purchases, and position customers to save on new or additional capabilities in the future.
For Subscription customers, whether SaaS or On-Prem Term, you will undergo this migration of your entitlements at your next renewal cycle.
For further information about these changes, please review the Frequently Asked Questions and visit the Discussion forum thread devoted to answering your questions.
#Resilient