According to new research from ESG and the Information Systems Security Association (ISSA) 58% of organizations are consolidating or considering consolidating the number of security vendors they do business with. It\u2019s simply too hard to manage an army of disconnected security point tools, each requiring its own training, implementation, administration, and ongoing support.This means that organizations will buy more products from fewer vendors, and big cybersecurity tech kahunas like Check Point, Cisco, Crowdstrike, Fortinet, Palo Alto Networks, Trellix, and Trend Micro understand this. Thus, they are weaving together cybersecurity technology \u201cplatforms\u201d as a one-stop-shop for security technology product needs. But do the vendors\u2019 plans line up with customers\u2019 expectations?ESG and ISSA asked security professionals their definition of a cybersecurity technology platform.29% of respondents said it is a proprietary suite of security products offered by a single vendor;67% of respondents said it is an open suite of heterogeneous security products integrated using APIs based on open standards.4% of security professionals responded \u201cother.\u201dAs a proponent of industry cooperation and open standards, I\u2019m pleased that two-thirds of security pros are in this camp. While I believe this is a bit optimistic, it sets the stage for an interesting dynamic as the platform approach takes shape.With that in mind, ESG and ISSA dug deeper, asking security professionals to identify the most important attributes of different types of platforms, including extended detection and response (XDR), zero trust, cloud-native application protection platforms (CNAPP), and secure access service edge (SASE).Here is what the security professionals we surveyed said they\u2019re looking for in an XDR platform:43% of security professionals want an XDR platform to provide threat prevention, detection, and response capabilities, including controls, analytics, and response playbooks.42% of security professionals want an XDR platform to provide coverage across the entire attack surface\u2014the whole hybrid IT infrastructure enchilada including endpoints, networks, data centers, cloud-based workloads, SaaS, identities, IoT devices, you name it.35% of security professionals want an XDR platform to provide central management and administration\u2014in other words, no more \u201cswivel chair\u201d management from tool to tool.30% of security professionals want an XDR platform to provide advanced analytics consisting of things like modern data pipelining, stream processing, easy detection rules engineering, and backend machine learning capabilities.26% of security professionals want an XDR platform to include threat intelligence management capabilities for alert enrichment and an \u201coutside-in\u201d perspective. In other words, they want better alignment between internal network behavior and the tactics, techniques, and procedures used by cyberadversaries. (Sounds like MITRE ATT&CK framework support to me.)It's worth adding that many organizations want all these capabilities and a partner that can offer managed services to make everything work well in their environment. As previous ESG\/ISSA research has greatly detailed, most organizations have a staff and skills shortage and need managed services to help them bridge the personnel gap.Yes, there\u2019s still lots of disagreement and bantering over what is and isn\u2019t XDR and what a security technology platform should be, but while vendors and pundits engage in endless, mind-numbing debate, cybersecurity professionals have a thorough understanding of their challenges, shortages, and requirements.\u00a0 And the data indicates that they would prefer solutions based on open standards. Hmm, maybe we should listen to what they have to say.More on other platforms soon.