Why Market Researchers and Financial Analysts Often Disagree About Trends

On the surface, it might seem logical that artificial intelligence, as a tool to automate threat detection and replace manual security processes could displace some functions of current threat protection apps, including SASE (Secure Access Service Edge). 

On the other hand, it is pretty hard to find any major industry analyst report that supports that line of thinking. AI represents new attack surfaces, for example, arguably increasing the need for SASE. 

On the other hand, financial analysts seem to universally believe the AI danger to enterprise software is significant. And there’s no absolutely-clear way to know which view is correct. 

There are pros and cons to the argument, as you would guess. 

Pro/Con	Argument	Evidence / Detail	Source
PRO ↓	AI automates threat detection, potentially reducing reliance on sprawling toolsets	AI-powered security reduces mean time to detect (MTTD) and mean time to respond (MTTR) significantly. 96% of cybersecurity professionals agree AI can meaningfully improve speed and efficiency, led by anomaly detection (72%) and automated response (48%).	Innov8World, 2026 Kiteworks AI Report, 2026
PRO ↓	AI enables platform consolidation, shrinking the number of security tools needed	55% of enterprises will accelerate consolidation driven by security drift and rising overheads. Integrated GenAI could cut employee-driven incidents by 40% when paired with a platform approach. 93% of security pros now favor integrated platforms over point products.	Computer Weekly, 2026 Kiteworks AI Report, 2026
PRO ↓	AI can close the cybersecurity skills gap, reducing need for expansive managed services	67% of organizations report a moderate-to-critical cybersecurity skills gap. AI-driven automation could partially compensate by handling routine monitoring, freeing teams from needing as many dedicated security platforms.	Hughes / WEF Outlook, 2026
PRO ↓	`	AI is enabling "architecture-level redesign" of security. As AI-native platforms mature, functions like Zero Trust enforcement, traffic inspection, and policy management — core to SASE — could be absorbed into unified AI-first systems.	Innov8World, 2026
CON ↑	AI dramatically expands the attack surface, requiring more security coverage	AI agents act across systems, manage non-human identities, and make changes at machine speed — they "do not fit neatly into traditional access models." In 2026, machines and agents already outnumber human employees by an 82-to-1 ratio, all requiring governance.	CSA / Cloud Security Alliance, 2026 HBR / Palo Alto Networks, 2025
CON ↑	AI-powered attacks are outpacing defenses, making SASE more critical, not less	72% of organizations report increased cyber risk since 2024. Ransomware appeared in 44% of breaches in 2025 — a 37% increase year-over-year. AI-driven attacks adapt in real time, meaning fragmented stacks "simply can't keep up."	Hughes / WEF, 2026 Computer Weekly, 2026
CON ↑	"Shadow AI" usage by employees creates new data governance gaps SASE must fill	SASE is now positioned as a control point for governing AI usage — whitelisting approved tools, blocking risky ones, applying prompt-level DLP. Employees using "hundreds of long-tail niche AI services" and AI features embedded in approved SaaS apps cannot be governed without SASE-like brokering.	SC World / Check Point, 2026
CON ↑	SASE market is growing strongly, not contracting — AI is a driver, not a disruptor of demand	SASE is growing at a solid double-digit rate. Security SaaS overall is expected to grow from $17.4B in 2025 to $33.8B by 2030. Dell'Oro expects enterprises to budget more for SASE/SSE and less for legacy appliances through 2026 and beyond.	Network World / Dell'Oro, 2026 GII Research, 2026
CON ↑	AI agents require new SASE capabilities, expanding rather than replacing the platform	Cisco announced "AI-aware SASE" in February 2026, adding MCP visibility, intent-aware inspection of agentic interactions, and AI traffic optimization — none of which existed in traditional SASE. AI is forcing SASE to grow, not shrink.	Cisco Live EMEA, Feb 2026
CON ↑	Organizations are already breached at near-universal rates despite having 13+ tools — AI raises stakes further	99.4% of CISOs reported at least one SaaS or AI security incident in 2025. Organizations average 13 dedicated security tools yet feel unprotected. 86.8% plan to increase SaaS security budgets and 84.2% plan to increase AI security budgets in 2026.	GlobeNewswire / Vorlon, Mar 2026

As sometimes happens, market analysts and financial analysts tend to disagree, for reasons related to business models. 

Large market researchers are paid by vendors and suppliers who buy research subscriptions, commission custom reports, and pay for placement in analyst programs. 

Enterprise buyers also subscribe, but vendors are typically the bigger revenue source and the more active relationship.

The resulting biases:

• Market size inflation. A large total addressable market forecast makes a vendor's pitch deck look compelling, justifies investment in the space, and makes the analyst firm look like it spotted a major trend early. There is almost no commercial downside to a bullish forecast, as nobody fires their Gartner subscription because a market grew slower than predicted. Forecasts are inherently unauditable in the short run, and by the time they're proven wrong, a new forecast has replaced them.

• “New” markets and categories create buyer demand. When a vendor wants to differentiate their products, they often work closely with analyst firms to define and name a new category. The vendor gets a category it conveniently leads; the analyst firm gets cited as the authoritative source of the framework. The bias is toward proliferating categories rather than consolidating them, because each new category is a new revenue opportunity.

• Optimistic adoption curves. Researchers consistently underestimate the friction of enterprise adoption. Their models tend to treat "total addressable market" as if it were "realistically serviceable market in the next three years," producing forecasts that flatter suppliers' sales projections.

• Vendor-funded research. Commissioned studies. where a vendor pays for research that it then cites, are structurally compromised. The findings rarely bite the hand that feeds. 

Financial analysts (Sell-Side and Buy-Side) have different revenue models. Sell-side analysts at investment banks are ultimately paid through trading commissions and investment banking relationships (equity research is largely a loss leader that supports deal flow). 

The resulting biases:

• Structural bullishness on covered stocks. Issuing a Sell on a company damages the relationship with that company's management, threatens future access to executives, and risks losing investment banking business. This means technology assessments of publicly traded companies are systematically skewed upward.

• Recency and momentum bias. Analysts are rewarded for being right in the near term. A technology with strong recent earnings will get upgraded; one stumbling will get downgraded.

• Narrative over fundamentals during hype cycles. Missing a major rally in a sector you cover is more career-damaging than being wrong alongside everyone else. This produces herd behavior..

• Coverage selection bias. Analysts choose what to cover, and they tend to cover companies where there's trading volume and banking opportunity. Small, potentially disruptive competitors often go uncovered until they're large enough to matter.

Market researchers inflate the supply-side opportunity (how big is the market, how fast will it grow). 

Financial analysts inflate the demand-side story (which incumbent captures value). 

Market researchers tend to see AI as an unambiguous expansion of the enterprise technology market. Their instinct is additive and are structurally inclined to frame AI as a rising tide.

Financial analysts face a much harder problem, because AI introduces several simultaneous dynamics that are deeply ambiguous for incumbent valuations:

• Commoditization risk: If AI compresses the differentiation between enterprise software products, then the moats that justified premium multiples erode

• Capex displacement (some categories might shrink as others grow)

• Margin uncertainty

• Value uncertainty (will value for app-layer firms be threatened by alternatives?)

Market researchers tend to view AI as more incumbent friendly, where financial analysts see more threats to traditional seat license revenue models, for example. 

So one might argue market researchers are looking at “how much is being spent” where financial analysts are looking at “who captures the value?”

Either way, there is huge uncertainty about the “right” level of valuation for enterprise software firms.

Diversity Means "Cognitive Diversity" (Diversity of Thought)

Matthew Syed's book Rebel Ideas Matthew Syed’s Rebel Ideas is a really clear explanation of why, when we emphasize the importance of “diversity” for problem solving, cognitive diversity is what we are after.

Most people simply assume “demographic” diversity (race, gender, class, university affiliation or class rank) does the trick.

It does not, if the demographically-diverse individuals all were trained the same way; in the same disciplines; by the same teachers.

And, to elaborate, the advantages of “people who think differently” is important for tackling complex problems, not every problem.

Sometimes such diversity is not necessary. When attempting to deliver humans safely to Mars and getting them back just as safely, there likely are limits to even cognitive diversity, as arbitrary diversity of thought might not actually help with the collective solutions we need. Building a hadron collider with cost constraints might not benefit at all from arbitrarily adding team members who are skateboarders, with or without demographic diversity. The diversity has to be relevant to the problem space! Still, when trying to solve complex problems that are not heavily social (where demographic diversity might actually be relevant), cognitive diversity (thinking differently) is expected to be helpful.

Government Shutdowns Inconveniencing the Public are Risky for Politicians

The effort to force reforms of the Immigration and Customs Enforcement department by not funding the Department of Homeland Security is an example of using disruptive tactics to create pressure for change.

In this case, disrupting the lives of air travelers trying to get through security checks is the “stick” supporters hope will force changes. But there are always risks when using such strategies. 

The tactic is not new. Strikes, road blockages, legislative brinkmanship, coordinated “sick-outs” impose costs on the public to force attention, reframe urgency, or shift bargaining leverage. 

Whether they “work” or not depends less on the mechanics of disruption itself and more on public reaction. If opponents can successfully reframe the protesters as selfish or extreme, or if the “broad middle” of the public becomes alienated (even if they might agree with the goals). 

Perhaps the classic examples are labor strikes shutting down production lines. The pain is the point. 

But not all disruption arguably is equally viewed as “legitimate:” 

• Labor union strikes tend to have high legitimacy and are often effective

• Road blockages that cause public disruption carry a high backlash risk

• Legislative disruption (shutdowns, refusal to fund) are high stakes, polarizing and can damage institutional trust.

The calculation of legislative disruption effectiveness always turns, to some degree, on “who gets blamed” for the inconvenience. Government shutdowns provide a prime example. Who gets blamed: the governing party or the obstructionists?

Study / Source	Case	Short-Term Effects (Leverage)	Short-Term Backlash	Long-Term Effects	Key Takeaway
Pew Research Center (2019 shutdown analysis)	2018–2019 US shutdown	Raised salience of border/security debate	58% called shutdown a “very serious problem” (Pew Research Center)	Reinforced partisan divides	Disruption increases attention but deepens polarization
AP-NORC Center for Public Affairs Research (2025 poll)	2025 shutdown	Forces issue visibility across electorate	~90% say shutdown is at least a problem; ~50% call it major (AP-NORC)	Broad erosion of trust	Public overwhelmingly dislikes shutdowns as a tactic
Ipsos (2025 polling)	2025 shutdown	Limited evidence of clear “winner”	“Everyone gets blamed” across parties (Ipsos)	Diffuse accountability weakens gains	Hard to convert disruption into political advantage
ABC News / Washington Post polling	2025 shutdown	Can shift blame temporarily (45% blamed one side) (ABC News)	75% concerned; concern rises over time (ABC News)	Blame stabilizes along partisan lines	Early narrative matters, but effects plateau
Navigator Research (2025 report)	Ongoing shutdown	Awareness jumps dramatically (87% aware) (Navigator Research)	85% concerned by week 6 (Navigator Research)	Fatigue and frustration increase	Prolonged disruption erodes tolerance quickly
Partnership for Public Service (2025 survey)	Early-stage shutdown	Immediate visibility of impact	48% report local community effects (Our Public Service)	Normalizes expectation of dysfunction	Even short disruptions are widely felt
Gallup (post-shutdown 2025)	After shutdown resolution	—	Congressional approval ~17% (Gallup.com)	Sustained institutional damage	Shutdowns depress trust in government broadly
Brookings Institution analysis	General shutdown effects	Short shutdowns create bargaining pressure	Undermine confidence in governance (Brookings)	Limited macroeconomic damage if brief	Political damage > economic damage (short-term)
J.P. Morgan (2025 economic analysis)	43-day shutdown	Can influence policy expectations (Fed, markets) (JPMorgan Chase)	Disrupts data, services, workers	Effects largely temporary economically	Economic harm is real but mostly reversible
Quinnipiac University (2025 poll)	During shutdown	Can shift electoral preferences marginally	High disapproval of both parties (Quinnipiac University Poll)	Weakens incumbents broadly	Political risk is symmetric, not targeted
Americans for Prosperity polling	Shutdown as tactic	—	Voters broadly oppose shutdowns as leverage (Americans for Prosperity)	Incentivizes “governing” over brinkmanship	Public rejects tactic even if issue support exists

The attempt in 2026 to force ICE reforms by causing airport security screening delays has so far resulted in:

• Severe service disruption (airport delays, staff quitting) (Reuters)

• Worker hardship and absenteeism spike (People.com)

• Political stalemate persists despite disruption (The Guardian)

• Tactical “workarounds” (e.g., redeploying staff) fail to resolve underlying conflict (The Washington Post)

At least so far, disruption has created pressure in the form of public inconvenience. But the research suggests the risk. 

Short-term: disruption works, but mostly on attention, not outcomes:

• Awareness jumps dramatically (often >80%)

• Media coverage spikes

• Negotiations may accelerate

• Public concern rises quickly

• Blame is diffuse or unstable

• No consistent evidence of clear “winners”

 Attention is gained, but often not control.

Short-term backlash will be immediate and measurable:

• Large majorities view shutdowns as harmful (often ~75–90%)

• Communities feel impacts within days

• Concern intensifies over time. 

When does winning become losing?

Long term, such disruptions are a negative:

• Trust in government declines (e.g., ~17% approval post-shutdown) (Gallup.com)

• Both parties tend to lose standing

• Polarization increases rather than resolves

Durable support is questionable, as is the longer-lasting political or institutional damage. 

Government shutdowns and similar legislative disruptions force attention and urgency, but are unreliable at producing favorable outcomes in the short term. 

The long-term effects are largely negative, eroding trust in institutions and leaders, increasing future brinkmanship as a negotiating tool and possibly damaging both sides to the disputes.

Legislative disruption is a blunt instrument (raises pressure, but spreads political damage widely and unpredictably). It keeps getting used but rarely produces clean victories.

Some of us might argue that the stakes grow when the pain is caused either by government workers or the government itself. 

It might be one thing for private employees to bargain with private employers using any available means (strikes, boycotts, picketing). In principle, government employees work for the citizenry at large, as their wages and benefits are paid by taxpayers (business and personal payers).

Legislative disruptions might be intended to create political pressure. They do so, but only by causing inconvenience for citizens supposedly served by their government. And there lies the danger.