Broadcom Software Licensing in Banking: Managing the Portfolio After Acquisition

Broadcom's software portfolio now spans VMware virtualisation, CA Technologies mainframe and infrastructure software, and Symantec enterprise security products. Financial institutions that use products from any of these portfolios face a unified Broadcom commercial strategy characterised by aggressive pricing, reduced product flexibility, and increased audit activity. This guide covers how banks should manage licensing across the full Broadcom portfolio.

The Broadcom Portfolio Impact on Banking

Most banks run products from at least two of Broadcom's three major software portfolios. VMware provides virtualisation infrastructure, CA Technologies products handle mainframe management (CA7 job scheduling, CA Top Secret security, Endevor change management), and Symantec delivers endpoint security and data loss prevention. The combined licensing exposure across these portfolios is substantial for the average financial institution.

Broadcom applies a consistent commercial strategy across all three portfolios: consolidate products into fewer, higher-priced bundles; convert perpetual licences to subscriptions; reduce the support and investment in products that do not align with their margin targets; and use audit rights to drive compliance-based revenue. Banks that managed these vendors separately before consolidation now need a unified approach to Broadcom licensing management.

The financial services sector is disproportionately affected because banking infrastructure relies heavily on all three technology areas: mainframe computing (CA Technologies), virtualisation (VMware), and enterprise security (Symantec). Each product area has deep integration into banking operations, making migration away from Broadcom products costly and time-consuming.

Our Broadcom advisory practice provides unified licensing management across all three portfolios, ensuring that banks achieve consistent commercial terms and avoid being played against themselves during negotiations.

CA Technologies Licensing Changes for Banking Mainframes

Banks running IBM mainframes almost universally use CA Technologies products for job scheduling, security, and systems management. Broadcom's acquisition of CA Technologies introduced pricing changes and product rationalisation that directly affects banking mainframe operations.

The most significant change is Broadcom's shift to Broadcom Value Units (BVUs) as the standard licence metric for many CA products. BVUs replace the various metrics previously used by CA Technologies (MIPS, MSUs, named users) with a normalised unit that can be more or less favourable depending on the specific product and environment. Banks should validate that the BVU conversion of their existing CA entitlements is accurate and fair.

Broadcom has also discontinued several CA products that banks have used for decades. Products that do not meet Broadcom's margin thresholds are being end-of-lifed, forcing banks to migrate to alternative tools or accept reduced support. For mission-critical mainframe management tools, this creates operational risk that must be managed alongside the licensing transition.

Banks with IBM mainframe environments should conduct a comprehensive inventory of their CA product usage, validate licence entitlements under Broadcom's new metrics, and develop a migration plan for any products that Broadcom has marked for end-of-life. Our IBM Knowledge Hub and Broadcom Knowledge Hub both cover these intersecting licensing issues.

Symantec Enterprise Security Licensing in Banking

Symantec enterprise security products remain widely deployed in banking for endpoint protection, data loss prevention (DLP), email security, and web gateway services. Broadcom's management of the Symantec portfolio has been marked by reduced investment in some product areas and aggressive pricing for others.

Banks relying on Symantec Endpoint Protection (SEP) should be aware that Broadcom has shifted focus toward the cloud-delivered SEP Mobile and Carbon Black products. Traditional on-premises SEP deployments continue to receive support, but the product roadmap clearly favours cloud-delivered security. Financial institutions with regulatory constraints on cloud security tools may find that their preferred deployment model receives diminishing investment.

DLP is a critical control for banking compliance (PCI DSS, GLBA, GDPR), and many banks have built their data classification and protection programmes around Symantec DLP. Broadcom's pricing for DLP has increased significantly since acquisition, and the alternatives (Microsoft Purview, Forcepoint, Digital Guardian) require meaningful migration effort. Banks should evaluate the total cost of Symantec DLP renewal versus migration, factoring in both licensing costs and the operational cost of changing a deeply embedded security control.

Web and email security products from the Symantec portfolio (ProxySG, Messaging Gateway) face similar dynamics. Banks using these products should plan for either continued Broadcom engagement at higher pricing or migration to alternatives such as Cisco Umbrella, Zscaler, or Microsoft Defender for Cloud Apps.

Unified Negotiation Strategy Across Broadcom Portfolios

Banks that negotiate VMware, CA Technologies, and Symantec licences separately with Broadcom consistently achieve worse outcomes than those that adopt a unified negotiation approach. Broadcom's account teams share internal data about customer spending across portfolios, and they adjust their pricing strategies accordingly.

A unified negotiation strategy starts with a comprehensive view of your bank's total Broadcom spend across all three portfolios. This includes subscription fees, maintenance and support costs, professional services, and any pending compliance liabilities from recent audits. The aggregate spend number is your primary leverage point: it represents the total revenue at risk if your bank decides to reduce its Broadcom dependency.

Banks should negotiate across portfolios simultaneously rather than sequentially. When VMware renewal negotiations happen in January and CA Technologies renewals happen in June, Broadcom can optimise each negotiation independently. By consolidating renewal timelines (or at least negotiating as a package), banks gain the ability to make cross-portfolio trade-offs that benefit their overall position.

Multi-year commitments across the full portfolio typically unlock the best per-unit pricing, but banks must ensure these commitments include flexibility provisions for workload migration, product substitution, and estate reduction. Our Broadcom advisory team structures these agreements to balance cost optimisation against future flexibility.

Download our VMware Negotiation Playbook for detailed guidance on commercial negotiation with Broadcom.

Regulatory Implications of Broadcom Licensing Decisions

Banking regulators increasingly view software vendor concentration as a risk factor. OCC, FFIEC, FCA, and ECB guidance all address technology vendor risk management, and Broadcom's consolidation of multiple critical technology portfolios under a single vendor creates concentration risk that institutions must document and manage.

Banks should update their vendor risk assessments to reflect the changed risk profile of Broadcom as a consolidated supplier. The risk register should address pricing risk (Broadcom's track record of aggressive pricing post-acquisition), product continuity risk (end-of-life decisions for products the bank depends on), and operational risk (reduced support quality or response times).

Regulatory expectations around exit planning also apply. Banks should maintain documented exit strategies for each Broadcom product area, demonstrating that the institution can migrate to alternative providers if commercial terms become untenable or product quality deteriorates. These exit plans should include realistic timelines, cost estimates, and identified alternative providers.

Our assessment services include vendor concentration risk analysis and exit planning for banking Broadcom estates. The resulting documentation supports both regulatory compliance and internal governance requirements.

Building a Broadcom Portfolio Management Programme

Effective management of the Broadcom portfolio requires a structured programme that covers all three product areas with consistent governance, monitoring, and commercial management.

Establish a single point of ownership for the Broadcom relationship within your bank. This role should have visibility across all Broadcom products (VMware, CA, Symantec) and authority to coordinate procurement, renewal, and compliance activities. The fragmented approach where IT infrastructure manages VMware, mainframe operations manages CA, and information security manages Symantec consistently results in suboptimal commercial outcomes.

Implement continuous licence monitoring across all Broadcom products. Automated discovery and compliance tools should track deployments against entitlements in real time, alerting the management team when usage approaches or exceeds licensed quantities. This proactive monitoring prevents audit surprises and supports informed procurement decisions.

Conduct annual strategic reviews of your bank's Broadcom dependency, evaluating the commercial trajectory of each product area, the viability of alternatives, and the total cost of ownership compared to market benchmarks. Benchmarking data is particularly valuable in these reviews, as it provides objective evidence of whether your bank's Broadcom pricing is competitive.

Consider Vendor Shield for ongoing Broadcom portfolio management, including licence monitoring, renewal strategy, and audit readiness across all three portfolios. For an initial assessment, speak with our advisory team.