Wrong! In theory, API connectivity sounds good, but it is extremely limited in practice. For it to work well, vendors have to open their APIs to other vendors. Sometimes they do, opening some APIs and not others, sometimes they refuse to do so. Even if they open their APIs, there are still problems.

Suppose a customer wants their vulnerability management vendor to integrate with endpoint detection and response (EDR) tools, and they have a mix of Crowdstrike, SentinelOne, and Trend Micro EDR installed. The VM vendor would then need to work with all three vendors and integrate with three different API sets. Lots of work for a common goal.

Cybersecurity technology has a connector problem

As I see it, cybersecurity technology at large has a fundamental connector problem that boils down to an industry conflict between altruism and capitalism. Unfortunately for all of us, capitalism is winning by a large margin as vendors protect their technologies for competitive advantage.