Barracuda's platform covered email protection, backup, extended detection and response, and zero trust network access. It did not own the identity layer underneath. A managed service provider selling BarracudaONE had to add privileged access management from a separate vendor. With the acquisition of Evo Security, an identity and access management provider built specifically for managed service providers, Barracuda brings that layer inside the platform.
Barracuda frames this as complete identity resilience for the AI era. The deal lands on two sets of customers, and each faces a different decision.
The Evo MSPs inherited a new owner
Evo built one agent and one dashboard that folded multi-factor authentication, single sign-on, RADIUS, help desk verification, and privileged access management into a single multi-tenant console. Its customers chose an independent, identity-first vendor. That vendor is now part of Barracuda, owned by KKR and selling a full security portfolio into the same MSP budget. The identity tool an MSP picked for its neutrality now sits inside the stack it was meant to stay independent of.
Barracuda says Evo's technology will be embedded into BarracudaONE and that existing Evo MSPs will keep their support as the platform expands. The announcement does not address whether the standalone Evo product keeps its own roadmap, pricing, and release cadence, or becomes a module that works only once an MSP owns the rest of BarracudaONE. For an MSP running Evo across a few hundred clients, that distinction determines the next few years of their identity strategy.
Two acquisition playbooks are running across security right now, and Evo could go either way. In one, the acquirer folds the product into its platform within months and the brand disappears. KKR-owned Barracuda has done this before, absorbing SKOUT into its managed detection and response and Fyde into its zero trust access. In the other, the acquirer keeps the product running as a standalone unit, usually when it reaches a channel or market the parent does not want to disturb. That pattern has grown more common, and an MSP-first identity tool is the kind of channel-specific product it tends to protect. Barracuda's own track record points toward integration. The standalone path is plausible enough that an Evo MSP should not assume a permanent independent product without asking.
The Barracuda MSPs gained a layer they now have to evaluate
The larger customer group is the existing Barracuda partner base. They wake up with privileged access management inside a platform they already sell. Nobody has to migrate anything today. The decision they face is whether to adopt the new identity layer or keep running whatever PAM tool they already stitched in.
The channel economics decide this one. In March I wrote that Barracuda's real customer is the MSP, not the organization being protected, and that when the partner program creates friction the loss is quiet and at scale. Identity is the stickiest thing an MSP can add to that relationship. Half of an MSP's help desk tickets are access-related, password resets, account lockouts, elevation requests. Just-in-time privileged access and automated elevation pull that load off the partner's own support desk. Barracuda is selling those MSPs lower services cost on work they already do.
Consolidating identity into the console the technician already uses retires a separate vendor and a separate bill, and it reduces the busiest ticket queue an MSP runs. Rising credential attacks make the case for the budget. The operating cost savings make the case for adoption.
What Barracuda said about openness, and what to watch
CEO Rohit Ghai described the combined platform as complete, intelligent, easy, and open. Openness is the claim that matters most to a customer with a mixed environment. That customer needs the identity layer to authenticate and govern users across tools Barracuda does not sell, including a Microsoft Entra ID tenant the customer already owns. Evo was built to operate across a partner's whole environment. The open question is whether that neutrality holds once the discovery and elevation engine becomes an integration point for the rest of BarracudaONE.
For a customer deciding today, three things separate marketing from delivery. Start with pricing: the standalone Evo product either keeps independent pricing or its value only appears once you buy the bundle. Then coverage: the identity layer either governs non-Barracuda tools as first-class citizens or thins out at the edge of the portfolio. Last, ownership: an incident that crosses identity, endpoint, and email at once forces the question of who owns the response, the MSP or the platform. That last one tells you more about integration maturity than any architecture diagram.
If your MSP runs Evo today, ask one question before your next renewal: eighteen months out, is this a product you can still license on its own, or does its pricing and roadmap assume you are buying the rest of BarracudaONE?
Barracuda Networks. "Barracuda Acquires Evo Security: Advancing Complete Identity-Driven Cyber Resilience for the AI Era." blog.barracuda.com, 7 July 2026.
Help Net Security. "Barracuda adds PAM and identity protection with Evo Security acquisition." helpnetsecurity.com, 7 July 2026.
KKR. "KKR Completes Acquisition of Barracuda from Thoma Bravo." barracuda.com, 16 Aug. 2022.
Bellamkonda, Shashi. "Barracuda's Channel Bet: Why the Partner Program Restructure Matters More Than the Platform Update." shashi.co, 30 Mar. 2026.
