Analytics // Security Monitoring
3/21/2014
09:50 AM
Connect Directly
RSS
E-Mail
50%
50%

Symantec Fires CEO In Surprise Move

Analysts question security and storage giant's turnaround after the board fires its second CEO in two years.

In a surprise move, Symantec's board of directors announced Thursday that CEO Steve Bennett had been terminated, effective immediately. In his place, board member Michael Brown has been installed as interim president and CEO. "This considered decision was the result of an ongoing deliberative process, and not precipitated by any event or impropriety," according to a statement released by Symantec.

A number of information security industry watchers reacted with surprise to Bennett's ouster after just 18 months on the job, not least because in recent quarters Symantec's revenue has often exceeded expectations.

Steve Bennett

"I was very surprised by this," said Forrester analyst Rick Holland, speaking by phone. "I just don't think it's the right time for a company that's not seen as innovative, that's been struggling to rebound, to have a leadership change. If you count the interim CEO, this makes three CEOs in less than two years' time. That has an impact on morale."

Furthermore, the company appeared to be making good progress with its turnaround, which has included consolidating products and reorganizing sales teams. "I've heard positive things officially and unofficially from Symantec employees -- you can even tell the difference from Symantec employees' demeanor," Holland said. "The restructure and eliminating operational friction: The employees thought that was the right move."

[In security, technology is the easy part. See Target's Weak Points, Examined.]

In recent years, antivirus giant Symantec has struggled to reinvent itself as a modern and innovative information security player. Last year, for example, the company's image suffered after Chinese attackers hacked The New York Times, using malware that bypassed Symantec's signature-based antivirus software. Of course, signature-based products can only spot malware that's already been seen before, and the Times failed to tap technology for blocking unknown threats.

But that situation speaks to the real-world security demands that have lead many businesses to use technology from newer players such as FireEye, which recently bought Mandiant for $1 billion, and Palo Alto Networks. Both sell technology that helps spot and block unknown malware, and many would-be buyers have come calling. "What I can tell you anecdotally is that if they had the chance to meet with Palo Alto Networks, FireEye, or Symantec, my suspicion is that Symantec would be last on the list of who you'd take a meeting with," said Forrester's Holland.

Other analysts have long argued that Symantec can only save itself by choosing to focus on either security or storage. "I have thought the same thing: spin off one of those businesses so there's more of a focus in each area, the buyers are completely different -- infrastructure and operations, versus security people," said Holland.

A year ago, Bennett had acknowledged some of these challenges. "We've had to reprogram the brains of our employees because they thought about our company as 150 different point solutions," he said in an interview, noting that he was trying to reposition the company's products as ways to "solve a higher-level problem."

In fact, some market watchers think Symantec's continuing woes date to its $13.5 billion acquisition of storage vendor Veritas in 2005, which was championed in part by then-Symantec consumer business president Enrique Salem, who later served as CEO before being fired by the board in July 2012. He now sits on FireEye's board of directors. Meanwhile, Symantec's new interim chief, Michael Brown, cut his teeth in the storage sector, having come to the Symantec board from the board of Veritas. He previously served as the CEO of backup-technology vendor Quantum.

If Symantec continues to struggle, its next step might not just be a new CEO, but -- following in the footsteps of Blue Coat, Websense, and McAfee -- either to go private or get acquired. "If you're trying to rebuild, if you need to reset, going private is not a bad idea," said Holland.

Next-gen intrusion-prevention systems have fuller visibility into applications and data. But do newer firewalls make IPS redundant? Also in the The IPS Makeover issue of Dark Reading Tech Digest: Find out what our 2013 Strategic Security Survey respondents have to say about IPS and firewalls. (Free registration required.)

Mathew Schwartz is a freelance writer, editor, and photographer, as well the InformationWeek information security reporter. View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Mathew
50%
50%
Mathew,
User Rank: Apprentice
3/24/2014 | 7:29:29 AM
Re: Wrong CEO blamed for the Veritas aquisition
Thanks for the catch. Yes, Salem was group president at the time of the Symantec Consumer Business Unit, although he reportedly also backed the Veritas acquisition, and of course did later become CEO. 
Madhava verma dantuluri
50%
50%
Madhava verma dantuluri,
User Rank: Apprentice
3/24/2014 | 12:50:22 AM
Is it?
Surprise move and wonder whats ahead for Symantic now.
danielcawrey
50%
50%
danielcawrey,
User Rank: Apprentice
3/23/2014 | 7:36:12 PM
Re: Symantec Inovation
Information security is incredibly important, which is why I think that Symantec can turn things around. 

Sure, the New York Times story is not positive. But companies that can face up to challenges like this are the ones that come out stronger in the end. I can't speculate as to why Symantec decided to get rid of its CEO, but the consensus must have been that it would be for the best. 
LibertySure
50%
50%
LibertySure,
User Rank: Apprentice
3/22/2014 | 5:57:00 PM
Symantec fires CEO
Given that we don't know the exact reason why the umpteenth CEO was fired, I do not understand some of the reasons purported here, especially that the company would have its attention diverted because it's in both the storage and the security business.

The security that Symantec provides automatically translates to a higher confidence when one uses their storage ware. I see that as a huge plus factor and something that should increase the scope for market penetration, not hinder growth or market cap, if handled correctly.

Surely, a company as prominently within the data universe as Symantec is, shouldn't suffer attention deficit because it uses the same platform for data storage as it does for security. What are they? Single cell organisms?

In my (not always) humble opinion, this dismissal is more indicative of a personality problem with the ownership or the Board, than the business end of the company, especially since Bennett has been making money for the owners.

Something doesn't smell right.
Stratustician
50%
50%
Stratustician,
User Rank: Strategist
3/22/2014 | 11:58:32 AM
Simplify!
Coming from the IT security world, it doesn't seem like that long ago that Symantec had quite the positive reputation in IT security.  I think the big issue really comes down to the lack of focus, the storage move, while it makes sense in some cases, really confused folks in trying to figure out what Symantec is trying to achieve.  Is it meaning to become a large, all things to everyone, or are they really that endpoint security company who expanded to offer some core security solutions for enterprises.  I think marketing has some work to do to really refine the value proposition or we will see them get pushed aside from the other security companies who are tighter in scope.
Alison_Diana
50%
50%
Alison_Diana,
User Rank: Moderator
3/21/2014 | 4:09:02 PM
Re: Too bad you can't fire the owner
It's not a good sign when a company goes through so many top-level executives in such a short time period, although it may not have longterm reperucssions. I'd love to know whether Bennett disagreed with the board's possible wish to spin-off either the security or the storage side of the business. And does the board have a replacement in mind?

If morale was improving, it's hard to imagine it's very good right now. People always feel shaken when things like this happen, especially when there's talk about sell-offs and all that implies about job security.
arocek84001
50%
50%
arocek84001,
User Rank: Apprentice
3/21/2014 | 3:27:09 PM
Wrong CEO blamed for the Veritas aquisition
A correction to your statement that Enrique Salem was the CEO at the time of the Veritas aquisition. The Veritas aquisition was driven by then CEO John Thompson. 

 
Andrew Binstock
50%
50%
Andrew Binstock,
User Rank: Apprentice
3/21/2014 | 3:02:19 PM
Symantec's many businesses
It's hard to believe now, but at one time Symantec was even in the business of selling software development tools. In the 1990s, they sold a rather well-respected C++ compiler and IDE.
DDURBIN1
50%
50%
DDURBIN1,
User Rank: Apprentice
3/21/2014 | 12:45:16 PM
Too bad you can't fire the owner
The problem with Symantec and a lot of other publicly traded IT corporations are their board of directors whom sit at the grace of the ownership or whom are owners of the corporation themselfes.  Like a professional sports team, a revolving coaching team means poor ownership.  I'm sure the next CEO at Symantec will be the same penny pinching wall street type (or GE type) that runs things by the numbers not by industry knowledge.
proberts551
100%
0%
proberts551,
User Rank: Apprentice
3/21/2014 | 12:24:42 PM
Symantec Inovation
I like the Symantec software better than McAfee.  The problem I found with both of these products is that I tested both with an infected thumb drive.  When inserted to either of these products, the computers were infected instantly.  There were no warnings, nothing.  McAfee never did detect the viruses even when scanned.  Symantec detected and quarenteened them only when I scan for viruses.  MS Security Essentials which is a free product, stopped the viruses before the got to the computer. 

I was shocked.  I expected that the "World class" products would have been able to do the job of the free antivirus.  A 3 year old, not updated version from a stand alone computer of NOD32 caught them as well. 

The genuis of Peter Norton is not reflected in the current product when compared to the competition.  It used to be that nothing could compare to the Norton products.  The CEO's even though they can get fired, are doing just fine floating down gracefully in the golden paracutes.  Should they have no paracutes?
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading, September 16, 2014
Malicious software is morphing to be more targeted, stealthy, and destructive. Are you prepared to stop it?
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-2886
Published: 2014-09-18
GKSu 2.0.2, when sudo-mode is not enabled, uses " (double quote) characters in a gksu-run-helper argument, which allows attackers to execute arbitrary commands in certain situations involving an untrusted substring within this argument, as demonstrated by an untrusted filename encountered during ins...

CVE-2014-4352
Published: 2014-09-18
Address Book in Apple iOS before 8 relies on the hardware UID for its encryption key, which makes it easier for physically proximate attackers to obtain sensitive information by obtaining this UID.

CVE-2014-4353
Published: 2014-09-18
Race condition in iMessage in Apple iOS before 8 allows attackers to obtain sensitive information by leveraging the presence of an attachment after the deletion of its parent (1) iMessage or (2) MMS.

CVE-2014-4354
Published: 2014-09-18
Apple iOS before 8 enables Bluetooth during all upgrade actions, which makes it easier for remote attackers to bypass intended access restrictions via a Bluetooth session.

CVE-2014-4356
Published: 2014-09-18
Apple iOS before 8 does not follow the intended configuration setting for text-message preview on the lock screen, which allows physically proximate attackers to obtain sensitive information by reading this screen.

Best of the Web
Dark Reading Radio