Erosion risks

• Best-of-breed point solutions regain share
• Cloud-native security reduces on-prem appliance demand
• Platform sprawl increases complexity and security bugs

Leading indicators

• Attach-rate of subscriptions to product sales
• Multi-product adoption per customer
• Competitive win/loss rates in large enterprise deals

Counterarguments

• Large enterprises may prefer specialist vendors for specific controls
• Security teams can maintain multi-vendor stacks despite platform messaging

Erosion risks

• Shift to virtual/cloud firewalls reduces ASIC differentiation
• Competitors narrow performance gap with their own silicon or DPUs
• Foundry/supply disruptions constrain availability

Leading indicators

• Independent performance benchmarks vs peers
• Product gross margin trend
• Mix shift toward software/SaaS form factors

Counterarguments

• Cloud-delivered security shifts value from appliance throughput to SaaS controls
• Software optimization on commodity hardware can reduce the need for custom ASICs

Erosion risks

• Large integrated codebase increases vulnerability blast radius
• Competitors match breadth via acquisitions and partnerships

Leading indicators

• Major CVEs affecting FortiOS and patch cadence
• Release frequency and feature parity across form factors

Counterarguments

• Other major vendors also run unified platforms across product families
• Breadth does not guarantee best-in-class outcomes in each workload

Erosion risks

• Aggressive competitor discounting in refresh cycles
• Hardware commoditization in lower-end segments

Leading indicators

• Average selling price trends for FortiGate
• Competitive discounting intensity reported by channel partners

Counterarguments

• Customers often benchmark firewall pricing aggressively across vendors
• Refresh timing can increase buyer leverage on pricing

Erosion risks

• Customers migrate to cloud-native SASE/SSE vendors at refresh
• Lower subscription attach rates on new product sales
• Budget pressure reduces renewal scope or tiers

Leading indicators

• Deferred revenue balance and growth
• Service revenue growth rate vs installed base growth
• Subscription attach rate to product billings

Counterarguments

• Renewal events create natural switching moments if value perception declines
• Some customers outsource security and standardize on different platforms

Erosion risks

• Shift toward shorter-term or usage-based contracts in cloud services
• Partner-led deals reduce vendor control over renewals

Leading indicators

• Mix of contract duration (1-year vs multi-year) in billings
• Renewal timing concentration and churn around major refresh cycles

Counterarguments

• Multi-year terms do not prevent switching at renewal, only delay it
• Competitive bundling can pull customers away at contract expiration

Erosion risks

• Standard APIs and orchestration reduce vendor-specific lock-in
• Managed security services shift control away from customer tooling choices

Leading indicators

• Customer adoption of centralized management (e.g., FortiManager/FortiAnalyzer) features
• Churn around major platform transitions (cloud vs on-prem)

Counterarguments

• Security teams can decouple operations by using third-party SIEM/SOAR tooling
• Many organizations accept multi-vendor complexity to optimize security outcomes