July 2021

The Partner Opportunity Around Microsoft Security, Compliance, And Identity Solution

A Total Economic Impact™ Partner Opportunity Analysis

Microsoft logo

A Forrester Total Economic ImpactTM Study Commissioned By Microsoft, July 2021

Table Of Contents

Over the past year, Microsoft has made substantial investments in the security, compliance, and identity space. This includes bolstering the solutions it brings to market and the support it provides to partners. This has resulted in a much larger opportunity for partners to expand their solutions portfolio and increase revenues. Synergies across Microsoft Modern Workplace security, cloud security, compliance, and identity create more strategic and profitable relationships with customers and improve customers’ security.

Forrester analyzed the partner opportunity across various Microsoft solution areas for the past 10 years. As part of restructuring their partner organization to consolidate all security-related practice areas, Microsoft commissioned Forrester Consulting to conduct a Total Economic ImpactTM (TEI) study to examine how partners can benefit from building security, compliance, and identity (SCI) practices. The security component now includes Modern Workplace and cloud.

“Because Microsoft is doing a very good job marketing their security and compliance story, there are a lot of customers buying services from qualified partners.”

Co-founder and CEO

The purpose of this study is to provide potential and existing partners with a framework to evaluate the business opportunity associated with delivering deployment and advisory services, creating business solutions, and providing managed services to enterprise customers.

The COVID-19 pandemic dominated the 2021 fiscal year. There was much uncertainty around how the pandemic will affect Microsoft partners when Forrester spoke with them in the spring of 2020. Now, partners generally report that their organizations have fully recovered in terms of revenues. The rush to get knowledge and frontline users working from home as quickly as possible, which many partners saw at the beginning of the pandemic, has resulted in new security- and compliance-related opportunities to put proper safeguards in place. Partners are delivering this demand now and expect it to grow throughout 2021.

Last year’s partner opportunity analysis only included the SCI opportunity related to Modern Workplace. Therefore, year-on-year comparisons exclude cloud security, which was added to this year’s analysis. The total Modern Workplace security, compliance, and identity opportunity for a Microsoft partner based on the full catalog of a typical portfolio of offerings is $69.50 per user per month for a three-year, 5,000-user customer journey. This is up 8.6% from the previous year. However, the increase is much larger when applying attach rates to calculate the most likely revenue opportunity.1 Because attach rates increased from last year, the expected revenue opportunity is $24.25. This is an 82% improvement from the previous year’s analysis.

Consulting Team:
  • Mbenoye Diagne, Jonathan Lipsitz

Key Statistics

  • Total monthly opportunity:
    $90 per user
  • Expected monthly opportunity (with attach rate applied):
    $30 per user

*For a new enterprise customer with a 36-month journey

TEI Framework And Methodology

Forrester interviewed partners of various sizes from across the globe. From the information provided in the interviews, Forrester took a multi-step approach to construct a Total Economic ImpactTM framework to evaluate the security, compliance, and identity opportunities.
  • DUE DILIGENCE

    Interviewed Microsoft stakeholders and Forrester analysts to gather data relative to the opportunity to deliver security, compliance, and identity services and solutions.

  • PARTNER INTERVIEWS

    Interviewed 13 decision-makers at nine partner organizations with existing security, compliance, and/or identity practices.

  • FINANCIAL MODEL FRAMEWORK

    Constructed a financial model representative of the interviews using the TEI methodology. It normalizes all results as a per user per month opportunity over 36 months.

  • CASE STUDY

    Created a case study that explains the benefits and investments a partner can expect when building SCI practices. The case study also explores the best practices partners have identified, which have made them successful.

Interviewed Partners

Partner Interviewees Employees in relevant practice areas
Partner #1
  • Senior managing director
 80
Partner #2
  • Security architect
  • Global Modern Workplace and security lead
  • Business operation manager
 10,000
Partner #3
  • Director of security
 500
Partner #4
  • Senior director of strategic alliances
  • VP of global professional services
 25
Partner #5
  • Senior director of Microsoft channel
 500
Partner #6
  • Co-founder and CEO
 180
Partner #7
  • Partner
 155
Partner #8
  • Global digital identity lead
  • Security practice lead
 2,500
Partner #9
  • CEO
 250

DISCLOSURES

Readers should be aware of the following:

This study is commissioned by Microsoft and delivered by Forrester Consulting. It is not meant to be used as a competitive analysis.

Forrester makes no assumptions as to the potential benefits that other organizations will receive. Forrester strongly advises that readers use their own estimates within the framework provided in the study to determine the appropriateness of an investment in creating security, compliance, and identity practices.

Microsoft reviewed and provided feedback to Forrester, but Forrester maintains editorial control over the study and its findings and does not accept changes to the study that contradict Forrester’s findings or obscure the meaning of the study.

Microsoft provided the partner names for the interviews but did not participate in the interviews.

NEXT SECTION: Market Trends

Customers’ Perspective

Forrester Analytics’ Global Business TechnographicsTM surveys thousands of technology purchasers and decision-makers from around the world. This data set reveals macro trends that drive customers’ decisions concerning security and compliance solution adoption and selecting partners. In the 2020 Forrester Analytics Global Business Technographics Security Survey, 1,104 security decision-makers, who are managers or above, said that 35.5% of their organizations’ IT budget is spent on security.2 This is split evenly between products and services, representing a very large opportunity for Microsoft partners.

Software-as-a-service (SaaS) adoption is another big driver of security-related services adoption. In the same survey, 1,186 software decision-makers (30%) said that “data security and protection against cybercrime” was their organizations’ biggest concern with using SaaS solutions. Related to this is the view of 1,481 security technology decision-makers (31%) who said that their organizations’ top reason for adopting SaaS security offerings is to “improve quality of protection.”

As to why organizations are interested in outsourcing security services, 1,565 survey respondents said that their organizations’ top reasons are to improve quality of protection (35%), support a large number of mobile and remote users (32%), have greater competency or specialized skills (31%), and improve speed of implementation and deployment (31%). When it comes to selecting a security partner, the top criteria were expertise in new technologies (25%), industry expertise (24%), end-to-end capabilities (24%), and process and technology expertise (24%).

Within the IT security space, 1,493 security technology decision-makers selected their organizations’ top priorities over the next 12 months. Microsoft’s solutions, and the related partner opportunities, play across most of the top 10 priorities.

Top IT Security Priorities For The Next 12 months
Improving application security capabilities and services 29%
Improving threat intelligence capabilities to proactively identify security threats targeted to your organization or industry 25%
Improving identity and access management tools and policies 24%
Improving mobile security capabilities and services 23%
Securing internet of things (IoT) within the enterprise 23%
Implementing Artificial Intelligence (AI) technologies to improve security 22%
Build security into development processes 22%
Improving security analytics capabilities (e.g., SIM, SIEM, NAV, SUBA) 21%
Implementing security automation and orchestration (SAO) technology to improve security operations 21%
Establishing and/or enhancing eDiscovery practices 21%
Source: Forrester Analytics Business Technographics Security Survey, 2020

Lastly, the reasons 754 security decision-makers purchased identity and access management technologies over the past 12 months represent a large opportunity for partners to deploy and manage solutions. They also tie in the broader security and compliance opportunities. The top four drivers were regulatory compliance (43%), cloud migration requiring new IAM solutions (34%), reduced administrative and overhead costs (27%), and lack of skilled resources (23%).

“We are planning to double our business this year and the security, compliance, and identity practice is growing the fastest. It is much easier to sell Microsoft security than [it was] a year ago, and we are developing a very strong brand in the space.”

Senior managing director

Partners’ Perspective

Interviewed partners provided their views on the high-level trends driving their security, compliance, and identity opportunities. These included:

  • Expanded Microsoft capabilities.

    Microsoft’s security (Modern Workplace and cloud/Azure), compliance, and identity offerings have grown in breadth and depth, especially with the E5 SKU. This has had two effects that expand partners’ revenue opportunities. Providing more solutions translates to more ways to create service wrappers and related intellectual property (IP).

    Microsoft Azure Sentinel was one of the most cited growth areas to implement the solution, integrate it with other systems, and create managed services around ongoing threat detection and remediation. Secondly, Microsoft’s investment in solutions development and marketing means that they are now seen as a more credible IT security vendor. This makes it easier for Microsoft’s partners to win and deliver deals in this space.

  • Increased adoption of Microsoft Teams.

    Use of Microsoft Teams has exploded during the COVID-19 pandemic. Microsoft’s most recent announcements puts total engagement at 145 million daily active users. Since Teams is where many companies get work done, Office 365 is central to their security posture. It also creates an opportunity for more generalist Modern Workplace partners to move into the security and compliance space, helping them differentiate from competitors and create more value for their customers. For existing security and compliance partners, Teams is a way to broaden their traditional security audiences and engage with line-of-business leaders to expand awareness and opportunities.

  • Postponed security-related work after the rapid move to homeworking.

    Last year was all about getting knowledge and frontline workers up and running using new technologies as part of the mass transition to working from home due to COVID-19. This meant that in-depth planning and implementation for security, compliance, and identity was greatly reduced. There is now a pent-up demand from most companies to go back and put the proper governance and controls in place. This has created an extremely large opportunity for partners to advise and implement these protections for existing and new customers.

  • Managed services is becoming the new normal at many companies.

    With the increasing complexity of vulnerabilities and solutions, companies find it harder to manage a full security stack and monitor and respond to threats in-house, resulting in an increased attach rate for managed services. This is very appealing to partners because it creates recurring revenue, which helps inform financial projections and increases the valuation when looking to sell the company. It also creates longer more strategic relationships with customers and often leads to identifying other project opportunities.

“When we onboard a Teams customer, there is almost always a parallel security and compliance workstream.”

Global Modern Workplace and security lead

“During the rapid digitalization at the start of the pandemic, many customers put security on the back burner because they didn’t have time. Now that they are preparing for more permanent remote and hybrid working models, security — especially Zero Trust — is getting pushed to the top of the agenda.”

Security architect

“I don’t believe security is an unsourceable service. Maybe 5% percent of companies can do it very well in-house.”

CEO

NEXT SECTION: Microsoft Security, Compliance, And Identity Partner Opportunity

This year’s research showed an acceleration in customer adoption of Microsoft solutions and associated partner services. This has resulted in an increase in deployment activities, reversing an opposing trend over the past couple of years. Deployment project work margins range between 30% to 40% for most partners. Advisory services around improving security and compliance postures and driving better adoption make up a small part of most deployment projects; the margins for this work range from 30% to 45%.

Business solutions, which include custom development, system integration, and repeatable IP, have become more important as partners tie together disparate systems and signals to improve customers’ security and layer on their own IP to make their operations more efficient and deliver better outcomes to customers. For resalable IP, margins can be as high as 80% (the standard for SaaS software), but the average hovers around 70%. For other systems integration-type work, the margins are between 40% to 50%. Another big trend this year is the increase in managed services, with partners selling a lot more of their existing offerings as well as bringing new ones to market. Security operations center (SOC)-type service margins are low right now at 25% to 35%; this is because it is a new and emerging space and has yet to reach economies of scale. Fully-outsourced security partners are reporting margins up to 50%.

Partner offerings have become more sophisticated in terms of integrating security, compliance, and identity offerings to increase their market opportunity and to improve customers’ security. Overall, the partner opportunity breaks out as roughly 40% Modern Workplace security, 20% cloud security, 20% compliance, and 20% identity. Partners expect the cloud security opportunity to grow significantly in 2022 with greater adoption of Azure and with customers looking for more security- and compliance- related services.

Security, Compliance, And Identity Opportunity Mix
figure

Base: 13 decision-makers at Microsoft-partner organizations with existing security, compliance, and/or identity practices
Source: A commissioned study conducted by Forrester Consulting on behalf of Microsoft, July 2021

One additional area of growth is around frontline workers. Providing them with digital identities, including features such as multifactor authentication, is the usual starting point. Partners are also seeing more opportunities around securing Teams, other applications, and devices frontline workers use.

These opportunities usually begin in later phases of the customer journey after addressing the most pressing needs of knowledge workers. Additionally, frontline workers could be included in legal discovery compliance work. The opportunity varies greatly by industry, but partners estimate that layering on frontline worker offerings boosts the total, three-year journey value by 5% to 10%, and are not included in the opportunity estimates described below.

Forrester discussed with partners the likelihood of customers buying any given offering; this is referred to as the “attach rate." For previously existing services and solutions and foundational work, attach rates have improved. Newer services, such as SOC-as-a-service deployment and managed services are attaching at lower rates but seeing strong growth. Identity has the highest overall attach rate, as it is a typical entry point for partners. Specialized partners, such as those focused on legal compliance, have higher attach rates than the more generalized attach rates included in this study. Partners should take their areas of specialization and existing attach rates into consideration when thinking about their opportunities.

Forrester looked at a range of outcomes based on the partner interviews and calculated the most likely offering portfolio and financial outcome for a partner that is focused on building out security, compliance, and/or identity practices. The financial opportunity is based on signing a new customer with 5,000 users and embarking on a 36-month journey to adopt Microsoft and partner services and solutions and to utilize managed services.

Microsoft SCI Partner Opportunity*
figure

Base: 13 decision-makers at Microsoft-partner organizations with existing security, compliance, and/or identity practices
Source: A commissioned study conducted by Forrester Consulting on behalf of Microsoft, July 2021

Partner Service Total $ / User / Month Attach Rate Expected $ / User / Month
Deployment $13.00 48% $6.25
Advisory and adoption services $3.75 53% $2.00
Solutions development $35.50 28% $10.00
Managed services $37.75 31% $11.75
Total: $90.00 33% $30.00
Solution Area Total $ / User / Month Attach Rate Expected $ / User / Month
Security
Modern Workplace Security
Cloud Security		 $55.75
$35.75
$20.00
 28%
29%
28%		 $15.75
$10.25
$5.50
Compliance $15.25 26% $4.00
Identity $19.00 54% $10.25
Total: $90.00 33% $30.00
“We are seeing an uptick in frontline work. It is becoming a bigger part of our overall work but remains small overall. It probably adds up to 10% to an opportunity.”

Senior managing director

Modern Workplace Security

Modern Workplace security is about activating Microsoft 365 workloads. Partners have seen more customer interest in moving to the E5 SKU, although most customers are still on E3, sometimes with the security add-ons. Partners are keen to move their customers to E5 because it improves customers’ security and also increases revenue opportunities. One partner that specializes in security requires all of their customers to be “all in on Microsoft security solutions” and on E5 to provide managed services. The Modern Workplace partner solution and services portfolio represents approximately 40% of the total SCI opportunity, or $35.75. The overall attach rate is 29% because newer solutions, such as SOC as a service, are bringing down the average but are expected to attach at much higher rates in the coming year.

Core deployment services around implementing the Microsoft 365 security workloads and E3-to-E5 migrations attach at 85% or higher. This is a typical starting point in a customer journey, along with strengthening identity, which is discussed later.

Partners often start engagements with an assessment phase, and a general rule of thumb is that deployment projects should be 10 times the initial planning phase price. Sentinel deployments is one of the largest growth areas in the past year. They are quick, concentrated efforts and are currently attaching at around 25%. This is expected to continue to grow rapidly, and these deployments often result in managed services.

Modern Workplace Security Opportunity
figure

Base: 13 decision-makers at Microsoft-partner organizations with existing security, compliance, and/or identity practices
Source: A commissioned study conducted by Forrester Consulting on behalf of Microsoft, July 2021

Advisory services are usually bundled in as part of upfront deployment work and generally equates to a 10% to 20% uplift on deployment revenues. Most of the effort is working with the IT and security organizations to define and plan the adoption, although there can be some end-user change management consulting. Distinct advisory efforts are included in around 60% of all projects.

There is sometimes custom development and integration work as part of business solutions to tie together different systems for requirements such as ingesting signals. Partners that support multiple vendor solutions are also integrating them with Microsoft solutions. There are very large opportunities around creating and selling IP to improve customers’ security. Partners shared many examples, such as discovery and migration tools, device management/IoT, and monitoring and remediation tools. The various business solution opportunities attach at 25%.

Managed services opportunities have grown significantly, due in large part to the adoption of Azure Sentinel. The types of opportunities vary depending on whether the partner is a more traditional Modern Workplace partner moving into the security space or a security partner moving into the Modern Workplace space. Partners have created a wide range of offerings from point solutions from endpoint management to fully outsourced security. SOC-as-a-service offerings have expanded and attach at higher rates. Some partners who have fully retained their system integration business models, rather than moving to recurring revenue models, sell bundled consulting days as a form of managed services. The overall attach rate for managed services is 30%.

“Deals around Sentinel integration, configuration, and managed services is one of the top three opportunities we are seeing these days.”

Security practice lead

Cloud Security

Cloud security includes the services and solutions partners offer around Azure and other public clouds running Microsoft solutions. For many Modern Workplace partners, this is a new and expanding area. Because of the breadth of Azure’s services, there are numerous opportunities to deliver security services, such as data, virtual server, networking, and applications. There are also emerging security opportunities around advanced workloads like AI and machine learning. The total cloud security opportunity is approximately 20% of the overall SCI opportunity, or $20. The current attach rate is 28% because it is a new area for many partners. However, partners expect this space to grow rapidly in terms of total opportunity and attach as they build out expertise and offerings.

Cloud Security Opportunity
figure

Base: 13 decision-makers at Microsoft-partner organizations with existing security, compliance, and/or identity practices
Source: A commissioned study conducted by Forrester Consulting on behalf of Microsoft, July 2021

For the financial analysis, Forrester included the most common deployment areas, such as server and application migration. These are huge opportunities with application migration programs at a 5,000-user organization running into millions of dollars over multiple years. Across the board, security work is estimated to be 20% of a full cloud migration journey. Usually, these projects begin with assessments and planning workshops, which are Microsoft sometimes funds. Deployment attach rates range between 25% and 50% across partners, although more specialized partners can expect higher attach rates similar to the Modern Workplace security deployment attach rates.

Advisory services fall into two broad categories: 1) cloud-related planning and governance and 2) change management consulting. The former category, which focuses on how to securely move to and operate in the cloud, is the much larger category. These activities add approximately 20% to the deployment costs and attach at 50%.

Partners create IP around cloud security for migrating and operating securely in the cloud. Sometimes, partners charge separately for these solutions and other times these solutions are provided without additional charge because they can significantly reduce delivery effort, improving margins. There is also security-related custom development and integration work that is often required, especially for hybrid and multi-cloud environments. Currently, business solutions attach at 20%, but partners reported fast growth in this area.

Managed services represents a large opportunity as customers look to outsource capital expenditures and labor. Additionally, many customers lack the expertise to manage security in the cloud. The most common services are outsourced security management for VMs and cloud-based security appliances, as well as SOC as a service incorporating cloud infrastructure and data. Despite this space being new for many partners, the attach rate is already at a healthy 31%.

“We have created many new security offerings around Azure, including defining migration strategies and doing that work, doing ongoing management, and handling change tickets. We do these as a percentage add on to their Azure consumption. We can also get consumption payments from Microsoft. In the future, we expect this to be more profitable than consulting revenues.”

CEO

Compliance

Microsoft has invested heavily in their compliance solutions, methodologies, and go-to-market messaging over the past year. The rapid adoption of Teams during COVID-19 means that most companies are now playing catchup in ensuring that their deployments and usage are compliant with internal policies and regulations. This all translates into more opportunities for partners and more success in selling. Compliance areas include information protection and governance, insider risk management, communications compliance, advanced eDiscovery/legal hold, and advanced audit. Specialized partners still mainly undertake these last two, and many Modern Workplace partners are moving into the more IT-centric compliance areas. The total compliance opportunity makes up approximately 20% of the overall SCI opportunity, or $15.25. The attach rate is 26%, although specialized compliance partners’ services attach at much higher rates.

Compliance Opportunity
figure

Base: 13 decision-makers at Microsoft-partner organizations with existing security, compliance, and/or identity practices
Source: A commissioned study conducted by Forrester Consulting on behalf of Microsoft, July 2021

For the majority of Modern Workplace partners, information protection is the first deployment opportunity, and it is usually related to Teams. These journeys often begin with educational workshops and proofs of concept, which Microsoft sometimes funds. Partners described a wide range of project sizes and durations, ranging from ten-week, Teams-specific deployments to end-to-end IT compliance and governance programs. Partners look for the deployment program to be 10 times the upfront assessment and planning work. Specialized compliance partners have very high-value deployment opportunities. For example, eDiscovery data migrations into Microsoft 365 can easily cost anywhere from $100,000 to $1,000,000 for a large enterprise. The overall deployment attach rate is 30% as more partners move into this area.

Advisory services are extremely important when it comes to governance because it is new to many customers who lack the necessary skills and experience to define their requirements and successfully roll them out to IT, legal, audit, and end users. There is often a lot of business process work undertaken, and upwards of half of the total opportunity is involved with change management. Advisory services often cost nearly as much as deployment services, and they attach at 67%.

Partners are building business solutions for both compliance related to information protection as well as more specialized advanced eDiscovery. Some examples included tools for the effective governance of unstructured data, connectors for different repositories and systems, and process automation tools for governance management and reporting. Often, there is no standalone charge for these solutions as they make deployment and managed services more profitable. The current attach rate is 24%.

Compliance-related managed services is the most nascent opportunity for partners. However, partners view this as a good opportunity for future growth and to deliver more strategic services to customers. The most common offerings are related to information protection, outsourced eDiscovery, and ongoing compliance audits. Much of the work is done as part of a retainer model. Some more advanced partners have recently built out compliance-as-a-service offerings analogous to SOC-as-a-service offerings and believe they can charge from 50% to 100% of their SOC-as-a-service prices for compliance. The overall compliance attach rate is 22% with outsourced eDiscovery being much lower at around 10% and ongoing compliance audits/retainer contracts being around 30%.

“We are investing heavily and growing our compliance practice because compliance is a real gap for all of our customers. They really need these services, and we expect the business to grow quickly.”

Director of security

Identity

Identity is at the core of Modern Workplace partners’ security-related offerings. The widescale adoption of Azure AD is creating many new identity-related opportunities. Additionally, the Zero Trust security approach expands the total opportunity size as customers adopt multifactor authentication, single sign-on, and passwordless authentication as part of identity journeys. Identity is also the most common starting point for selling services related to a customer’s frontline workers. It is approximately 20% of the total SCI opportunity and worth $19 per user per month. Its overall attach rate is 54%.

Partners described multiyear identity deployment journeys that can run into the millions of dollars for companies with more than 10,000 users and consisting of up to 15 distinct projects. After the upfront assessments and planning, Azure AD migrations are the most common starting point. Partners also see many opportunities to migrate customers to Microsoft’s MyApps portal from competing solutions. A full identity journey ranges in price from $1 to $5 per user per month and attaches at 65%.

Advisory services are critical to successful identity projects, since it affects all users and many processes. There is also a lot of education and training that needs to take place to successfully implement a multiyear journey with the in-house IT organizations. Partners said that advisory services typically added 10% to 20% onto deployment services costs and are included in just about every deployment project.

Identity Opportunity
figure

Base: 13 decision-makers at Microsoft-partner organizations with existing security, compliance, and/or identity practices
Source: A commissioned study conducted by Forrester Consulting on behalf of Microsoft, July 2021

There is often a lot of integration work required as part of identity journeys and successfully implementing a Zero Trust security approach. Partners also create their own IP to make migrations more efficient and profitable, as well as ongoing management and monitoring tools. Some form of these solutions are attached to every deployment project.

Partners create a wide range of managed services around identity from simple management of Azure AD to full identity-related outsourcing, including multifactor authentication, endpoint management, ongoing change management, and tier-one helpdesk. Some partners also amortize the deployment costs over the first year of managed services to make it easier to onboard new customers and get them to sign up for managed services. Managed services had a higher attach rate when there was a big identity governance component as part of the initial advisory work, and the current attach rate for some form of managed services is 40%. This opportunity should continue to grow as the Zero Trust approach becomes more widespread.

“Zero Trust messaging around identity is landing very well with our customers, especially the passwordless journey. We are seeing much more buy-in and success since December.”

Global digital identity lead

NEXT SECTION: Partner Investments And Best Practices

“We are investing large amounts in training because the space is moving so fast. This includes consulting, project management, and technical training.”

Partner

To achieve the discussed revenue opportunities, partners are investing in several areas: acquiring required skill sets through new hiring and training, creating compelling offerings, increasing sales and marketing, and strengthening Microsoft relationship management. Forrester discusses these investments in general terms below but did not quantify them because they vary from one partner to the next, depending on size, maturity, and whether they come from a general Modern Workplace or specialized SCI background.

Every partner stressed that the main reason they have succeeded is an investment in their people, ensuring that they have the necessary skills to deliver better security and compliance. This is especially true for Modern Workplace partners who are entering into these spaces. New hires include practice leads, highly specialized delivery resources, and salespeople with experience selling security and compliance solutions. Upskilling existing resources is important to achieving scale because of the tight labor market for security professionals. This is especially so for staffing up a SOC. Achieving relevant Microsoft certifications is a big part of most training programs.

Partners are also investing in creating new services and solutions. This includes methodologies and templates, best practices, and repeatable IP that is either sold as an add-on or included to improve profitability. SOC-as-a-service offerings are one of the biggest investment areas.

Partners are making sizeable investments to increase sales and marketing commensurate with the perceived SCI opportunity. Some partners are moving existing marketing dollars, but most are increasing their total spend as a percentage of revenues. Partners believe there is a landgrab opportunity, so they are increasing their sales and efforts to attract new customers and send the proper messages to existing customers, so another partner does not take them away.

Interviewees said that one of the most important investment areas is relationship management with Microsoft. This is important for new offering creation and go-to-market activities. This investment includes hiring one or more alliance manager, conducting bilateral solution briefings, and engaging Microsoft field sellers.

In addition to these investments, partners shared best practices that have made them successful. These include:

  • Creating offerings and solutions that improve customers’ security.

    Partners stressed that, at the end of the day, the most important thing is to do what is right by their clients and empower secure collaboration. Doing this allows the partners to be viewed as trusted advisors who add value, resulting in larger and more profitable customer journeys.

  • Having credibility in the space.

    Partners need to be credible across all stages of the customer relationship from initial prospecting through ongoing managed services. To achieve this, partners must identify where they can legitimately play based on their skill set and competencies. Many partners lack the resources to cover all SCI opportunity areas, so they need to focus on limited areas. They should make ongoing investments to go deeper and broader across the entire range of opportunities.

  • Investing in the Microsoft relationship.

    Interviewees said that the more they put into the Microsoft relationship, the more they got out of it. Being fully aligned with Microsoft helps partners identify the whitespaces around Microsoft’s products and services where they can create value and niche positions.

  • Leveraging Microsoft funding.

    Microsoft has various programs that partners can tap into for marketing activities funding and delivery accelerator workshops. Partners are constantly looking for new and innovative ways to access these funds, which can be used to increase the marketing pipeline and convert prospects into new customers.

“Our biggest investment is in the manages services space. We are always working to improve automation.”

Cofounder and CEO

“We are spending a lot more money on marketing. Sometimes, we get matching marketing funds from Microsoft.”

Senior director of strategic alliances

“Microsoft leads are critical to our business. We have worked hard to develop relationships with their field.”

Partner

“We have a lot of credibility and knowledge in the spaces we work. We are seen as adding a lot of value. That requires us to focus on the lanes we play in and not get distracted.”

VP of global professional services

NEXT SECTION: Conclusion

The 2021 fiscal year saw Microsoft focus heavily on the security, compliance, and identity space. This included bringing many new solutions to market, increasing training and certifications, and reorganizing to provide better end-to-end support for partners in this practice area. This study looked at the partner opportunity to make money in the Modern Workplace security, cloud security, compliance, and identity spaces.

The COVID-19 pandemic has accelerated partner SCI opportunities for several reasons. The rush to work from home meant that many companies quickly rolled out Modern Workplace collaboration solutions without the full security and compliance rigor they would have under normal circumstances. This has created a backlog of opportunities to help customers put in place the necessary controls. With more than 145 million active users on Teams daily, Office 365 is where companies get work done. That means it is central to a company’s security and compliance stack. Additionally, the newly emerging hybrid-working models, such as hoteling, require companies to rethink how they tackle security and adopt a Zero Trust approach.

Excluding cloud security, which was not included in the SCI analysis in last year’s Microsoft 365 partner opportunity study, the total opportunity has increased by 8%. Looking at the SCI opportunity in its entirety, a new customer with 5,000 users could be worth $90 per user per month if a customer bought all the typical offerings in a partner’s SCI portfolio as part of a three-year journey. The overall attach rate across all solution areas and services is 33%, so the expected revenue opportunity is $30 per user per month. The revenues are approximately split 40% for Modern Workplace security and 20% each for cloud security, compliance, and identity. Forrester expects cloud security and compliance opportunities to make up a greater share in the future as more partners invest in these areas.

To achieve these benefits, partners are making investments in acquiring critical skill sets through new hiring and training, creating valuable offerings to improve customers’ security and compliance, expanding sales and marketing, and strengthening Microsoft relationship management. Through its analysis, Forrester has concluded that partners that make these necessary investments can achieve the results described in this study and grow them in the future.

1Attach rate is the percentage of all customers who purchase any given service and can be thought of the likelihood of selling a particular service that is part of a partner’s offering portfolio.

2 Source: Forrester Analytics Global Business TechnographicsTM Security Survey, 2020.

About Forrester Consulting

Forrester Consulting provides independent and objective research-based consulting to help leaders succeed in their organizations. Ranging in scope from a short strategy session to custom projects, Forrester’s Consulting services connect you directly with research analysts who apply expert insight to your specific business challenges. For more information, visit forrester.com/consulting.

Forrester Research, Inc.© All rights reserved. Unauthorized reproduction is strictly prohibited. Information is based on best available resources. Opinions reflect judgment at the time and are subject to change. Forrester®, Technographics®, Forrester Wave, RoleView, TechRadar, and Total Economic Impact are trademarks of Forrester Research, Inc. All other trademarks are the property of their respective companies. For additional information, go to forrester.com.

Cookie Settings