ExtraHop named a leader in the Gartner® Magic Quadrant™ for Network Detection and Response

Search
  • Platformchevron right
  • Solutionschevron right
  • Modern NDRchevron right
  • Resourceschevron right
  • Companychevron right

The ‘More is Less’ Imperative: Takeaways from the Gartner Security and Risk Management Summit

Share blog icon

Back to top

Back to top

July 1, 2025

The ‘More is Less’ Imperative: Takeaways from the Gartner Security and Risk Management Summit

At the Gartner Security and Risk Management Summit in early June, speakers and participants consistently emphasized a core theme: security leaders must do more with less. As a former senior leader in the Air Force, I take this challenge personally.

Leaders across every sector – whether in government, finance, healthcare, manufacturing, or tech – are contending with the same struggle: modernizing network security and increasing efficiencies despite shrinking budgets and reduced personnel.

The expectation to optimize resources makes every decision a risk decision.

This pervasive challenge is compelling IT and SOC professionals to urgently reevaluate their networks security tools. For instance: 

  • Healthcare CISOs must determine how to better secure sensitive patient data while containing costs.
  • Financial leaders are juggling complex compliance requirements while aiming to reduce spend.
  • Manufacturing executives are negotiating increasingly complex operational technology systems despite flat or shrinking budgets.

Government Sector Challenges and Solutions

For me, the government sector conversations were particularly insightful. Federal leaders discussed how recent personnel reductions have reshaped their priorities and amplified the urgency attached to their initiatives. Agencies are now prioritizing security purchasing decisions for solutions that improve operational efficiency. Given recent personnel cuts, agencies are actively seeking tools that can offset insufficient human resources and that offer robust fiscal benefits.

At the same time, government agencies are reporting a surge in both the volume and sophistication of cyberattacks. As adversaries escalate their efforts, security teams face increasing workloads.

The two parallel pressures – achieving more with fewer resources and a growing number of intense cyber threats – essentially create a mandate for government sector cybersecurity professionals: They need to implement security solutions that deliver maximum value per dollar invested and operate at machine speed.

AI as a Force Multiplier for Resource-Constrained Teams

At the Summit, analysts and leaders consistently pointed to AI as a pivotal tool for achieving more with less. Three specific areas of strategic AI application frequently surfaced in conversations.

  • Automation. AI-driven automation significantly accelerates threat detection, incident triage, and dynamic response workflows. In turn, human capital becomes available for higher-level initiatives.
  • Efficiency. AI optimizes resource utilization by significantly reducing manual effort and enabling large-scale data processing. This means that teams can gain deeper insights and cover more ground with existing resources.
  • Consolidation. Discussions also focused on how AI can drive tool consolidation, through which security professionals can more quickly gain insights and make confident threat response decisions, all while reducing complexity and cost.

The recognition of AI as a force multiplier is fundamentally reshaping the security market. As organizations increasingly come to see that network security demands a multi-faceted approach, they are actively seeking tools that can address multiple security priorities and objectives concurrently.

Operationalizing Summit Priorities with Network Detection and Response

Network detection and response (NDR) platforms are emerging as a prime example of such a tool. Modern NDR solutions powerfully address the three key AI applications – automation, efficiency, and consolidation – that were top of mind for leaders at the Gartner Security & Risk Management Summit. More broadly, for organizations that are striving to achieve more with less, advanced NDR solutions can optimize for efficiencies and deliver tangible value. These quantifiable gains include accelerated time-to-threat-resolution, reduced management overhead (single platform vs. multiple tools), and cost optimization through license consolidation and a reduction in infrastructure requirements.

The Path Forward: Scaling Security, Not Costs

Ultimately, the path to achieving expanded security coverage with fewer resources – or scaling sophisticated security without scaling costs, as highlighted by leaders at the Gartner Security & Risk Management Summit – hinges on embracing solutions that deliver efficiency, automation, and consolidation. Organizations, from federal agencies to private enterprises, are increasingly looking for strategic cybersecurity tools that align with these objectives. If this sounds like your organization, learn more here.

blog image
Blog author
Sarah Cleveland

Senior Strategic Advisor - Public Sector

Colonel Sarah Cleveland, USAF (Ret.), serves as Senior Director of Federal Strategy at ExtraHop Networks and brings more than 30 years of cyber operations, communications, and national security experience spanning military and federal missions.


Throughout her 26-year career in the United States Air Force as a Cyber Operations Officer, Sarah held leadership positions at the Squadron, Group Command, and Joint Directorate levels (J6, G6, and A6), leading communications, cyber operations, and mission-critical infrastructure supporting both garrison and deployed operations in disadvantaged, denied, degraded, intermittent, and limited (DDIL) environments.


Her operational experience includes deployments supporting combat operations in Iraq, Afghanistan, and across the Middle East, as well as training Colombian and Polish Special Operations Forces on communications tactics, techniques, and procedures. In her final Air Force assignment, Sarah led the global NC3 (Nuclear Command, Control, and Communications) sensor network for the Air Force Technical Applications Center (AFTAC), overseeing operations, sustainment, continuity planning, and global infrastructure supporting nuclear treaty monitoring and strategic national security missions.

Sarah advises the Department of Defense and Federal agencies on Zero Trust, cyber resilience, network detection and response (NDR), and the modernization of security operations in increasingly contested digital environments. She is a frequent speaker at cybersecurity and defense conferences, including Black Hat and NATO-related cyber defense exercises.

Share
LinkedIn logoX logoFacebook logo
Key Takeaways
  • Security leaders across government, finance, healthcare, and manufacturing are facing the same mandate: modernize network security and increase efficiency despite shrinking budgets and reduced personnel.
  • Federal agencies are reporting a surge in both the volume and sophistication of cyberattacks while simultaneously managing significant personnel reductions.
  • Government agencies are actively prioritizing security tools that can offset insufficient human resources and deliver robust fiscal benefits.
  • At the Summit, AI consistently surfaced as a force multiplier in three areas: automating threat detection and triage, optimizing resource utilization, and driving tool consolidation.
  • Organizations are seeking tools that address multiple security priorities concurrently, reducing complexity without sacrificing coverage.
  • Modern NDR directly addresses Summit priorities by delivering accelerated time-to-threat-resolution, reduced management overhead, and cost optimization through license consolidation.

Explore related articles

Experience RevealX NDR for Yourself

Schedule a demo