Why do we care?
I want to highlight two elements to NinjaOne’s moves here. First, a portion of this is facilitating the acquisition of DropSuite. I’m reading that to say that some of that money is spent.
Second, NinjaOne has a gaping hole in their cybersecurity play as an MSP platform. The Dropsuite acquisition brings SaaS backup, but backup is not cybersecurity—it’s a reactive layer. No clear EDR, MDR, or SOC direction means MSPs using NinjaOne must bolt on security solutions themselves—unlike competitors offering an integrated approach. Cybersecurity differentiation is becoming a selling point for MSP platforms, and NinjaOne risks becoming just another RMM tool in an era where RMM is table stakes.
Consider this – why leave this open? Is the funding to plug that hole further via acquisition, or are they positioning to be acquired by a security player?

