I'm sorry to tell you, but I am one of those people who frequently argue against a small less established vendor, at least for anything really important.

Why? I've been burned a few times. New (< 5 years) small companies can disappear overnight. If they don't simply disappear and have a bit of revenue then they often get acquired by one of the big players. Those players either:

1) don't know how to properly manage this new product and it stagnates, the 75% of account managers are fired and support goes to shit. Or:

2) the company has no intention of keeping the product, and despite initial assurances to the contrary a year goes by and I get a notice that they're shifting all customers of the acquired product to their own competing version. Sometimes this comes with a very sneaky hard sell to re-up on a long term contract before the announce the product EOL.

I've worked at startups and and big services companies. At startups, we've gone out of business in the middle of projects, or decided "we don't do that anymore" while we're doing it, and abandoned clients. As the lead of a small provider, I'm always a few screwups away from not being able to make payroll and losing all my staff, and if I'm hit by a bus or have a personal emergency, there is no backup.

At a big company, we had actual continuity plans, a diverse business that was not going to unravel over some minor thing, and thousands of employees that would be able to fill in if needed.

There are lots of exciting reasons to work with startups, or small providers, but there is a reason whi big companies exist and can charge a premium that covers their higher overhead

ohh sure they do not go out of business, but they do other things like killing off products, versions, features, etc... that will burn you

No, the answer to buy vs. build is always to buy if you can -- building is a lot like buying from a startup, which one wouldn't do, only you own the startup and you won't be selling its products. You'll spend a few years looking for a product that exists, has a track record, and can be integrated into your environment with not that much effort. And buzzwords -- the product has to have those in its marketing, because you too have to sell it: internally. Oh, and it has to not be too expensive. I've seen godsends get adopted then dropped and replaced with a hodge-podge of in-house + cloud solutions just because the godsends turned out to cost way too much as deployed. Meanwhile the companies that would exist and have such products for you don't exist because no one wants to buy from startups (because probably fly-by-night), but also the bigger players won't build niche products either. Mostly you'll make do with whatever you have already in place, no matter the suckage. Then some day there will be an open source version of the product you wanted, and you'll still wait a year or three before you decide to use it, and you'll have to put a decent bit of effort into integration and maybe even participation in the upstream community.

This stuff ain't easy. Anything that is infrastructure is just hard to monetize. There's a tragedy of the commons sort of thing going on.

Capital-intensive infrastructure (i.e., tied to hardware) is easier: you up-charge on the HW. Think storage, where you can charge a pretty penny for chassis and drives (SSDs, whatever) and backup solutions, but the real hard and expensive part is in the software (it'd better not fail). It's like paying very little for a printer but being locked into unnaturally expensive ink, except backwards.

Of course, some places do end up doing all the in-house building because they are too dynamic to do anything else and they can't afford to wait. We call these places FAANGs (or is it MAANAs?).

good insights :-)

It's like all the silly legal disclaimers you see on... docs, email footers, etc. -- these all represent ways in which some lawyer's customers got burned once. You can't win this game. There's no real reason to think that because you got burned by option A once you always will, especially when you can get burned with all options. But we humans don't work that way. Traumatic experiences tend produce lasting negative responses.

There is just no substitute for understanding the technologies and the people involved. The problem with vendors is that they keep you from really knowing what's going on inside them. One problem with internal dev teams is that they can fall apart.

It's all just hard, and management just has to be very good.

Probably better that way, since the contractor takes all the risks that are associated with smaller orgs. But, you would be surprised how many large contractors are bidding with absolutely no delivery capability. It's routine.

Government software procurement is broken.

Source code escrow is an option, at least for proprietary software products.

There is risk. There is always risk. Risk has little to do with size. It has a great deal to do with management, capital, ability to acquire and keep customers, etc.

As a "startup", we were in business for a decade with revenues of several million per year and growing around 30% YoY, successful/stable products proven in the field in which we were selling them. Dominating in most of the technical and support aspects compared to competitors.

What I found was that the people claiming "too small" were simply conflating larger/well known brand name with reduction of risk. This bias exists throughout this industry, and has for a while. The old "nobody ever gets fired for buying IBM" is a historical example of this.

Yet, when the market feces hit the fan, IBM was infamous for leaving the very markets that they had troubles in.

Google is infamous for its killing off things, effectively at random.

I could go on, but the point is that large well known brand is not synonymous with low risk. Rather the opposite.

But, I'm out of that market and that chapter of my life has been completed. Now that I'm in a small but growing company, it helps that I can see things from this side, in that I still see reluctance to consider worthy technology. Risk aversion takes many forms, and often the decisions made do little to mitigate the risk. Rather, I've seen it concentrate/increase said risk.

Then yours is not a company I would be concerned with. < 5 years and the leadership may still be looking for their lucrative exit. At 10 years I'm convinced that an easy exit isn't the short term goal and the business is somewhere near self-sustaining. I could be wrong, but there's always risk. Recently (well, 3 years ago) my workplace went best bread for a specific need and the vendor was about 6 years old. But in that time they'd grown so much by having an truly fantastic product that I was convinced that even if they were acquired, it would be for the acquiring company to adopt a truly superior product rather than convert customers to their own mediocre offering. Which turned out to be correct: they were acquired, but by a private capital group looking to pump $$$ into them to facilitate more growth & either flip/ipo them. Though to be fair, feature growth had slowed too, but it's also a mature product now so to much growth there would be bloat. Either way, it's an example of a relatively young & small vendor that had the characteristics needed to make me comfortable in their selection.

The workaround is to sell your stuff through a larger company that's complementary.

Universities are almost a separate reality. Unless you happen to be dealing with someone who has prior experience in the private sector, they will have no idea how businesses operate or how money is earned. It's typical to be dealing with someone who has been doing the same job for 20 years and never worked anywhere else.

A different university had a policy to prefer orders from small businesses for just the same reason. The local suppliers knew that, on any given job, there was about a 10% chance the university would never pay up. They could sue, but a) the legal department had handle thousands of these cases and had gotten pretty good at it, and b) they would be banned from any future bids. One percent of the time, some one would get stiffed twice in a row and go under, but, hey, if you aren’t okay with risk, then maybe the public sector isn’t the place for you.

Anyway, that’s the prevailing attitude that I encountered. They are ACUTELY aware of how money is earned and will do everything in their power to stop you from earning it.

How on earth does a legal department win cases where they simply do not pay for what they are contractually obligated to pay for? Sounds like a dystopian system.

Never, ever, ever in my life have I seen so much ego paired with such little decision making authority.

Pair that with an incredible lack of communication across each hospital group, jaded IT workers who see innovation as a threat to their jobs, and a sales cycle that can sit around 12 months on average, and voila: I present to you hell on earth.

This is still somehow ignoring how each hospital asks for insane amounts of personal customization on the product, development of features that aren't even on your roadmap, and accounting departments that consistently choose to ignore invoices.

Never again.

Which isn't too surprising.

He's exclusively been in classrooms since he was 4 years old.

- I try really really hard not to have a preferred vendor. Hilariously, a lot of companies ask me who my preferred vendor is... which makes it rough to do this. I list off a couple companies I've bought from and inevitably they go through one of those.

- The fact that manufacturers give preferred pricing to the first reseller to register the deal with them renders almost all competitive bidding kind of moot at this point for a lot of things. Basically means whoever I reach out to in order to get the ballpark numbers for budget purposes will win.

- Almost every time a third party comes in cheaper, they did something wrong. Literally once had a smaller party come in drastically cheaper than... the manufacturer of the products in question. Obviously, they misread what they were bidding on, it cost them time and money, us time and money, etc.

I never give any of them a discount, in fact I'd love to be able to charge them more because they always require more administrative work. Sometimes I'll offer the end customer a discount to try and route around them.

Recently one reseller became particularly agitated about this. After several emails he asked to speak to my manager (I own the business). The amusing thing was that he had lost the bid. I already had an order from one of his competitors.

I should add that I do have some resellers who actively promote my products, they are worth the effort and a discount.

That is just a pointless law, if it requires 3 bids, but you can ignore them.

Mind you, fixing that isn't trivial either; the EU has very strict rules on government procurement, where the government organisation has to write down very detailed rules on how the procurement will work and will be evaluated, and then they have to follow those rules. Of course that has lead to companies gaming the bidding system: they design their bid to win, but it exploits all the holes in the rules; either it will be lacking in quality in an area the customer failed to specify, or it will go way over budget and the customer will be responsible for those costs, etc.

My wife has been involved in bids like these where one bid was clearly the best one, but another was technically the winner according to the rules. So they redid the bid and rewrote the rules to better fit what they wanted, but I think that had to go to court. It's a hornet's nest, no matter how you turn it.

In a distant past, I worked for a small web development company with a pretty good open source CMS, and we were hired to do a few government websites. The actual bidder wasn't us; it was one of those big companies that specialised in winning those bids. We just did all of the actual work. We probably didn't get all of the actual money. It's a weird market.

Whenever taxpayer money changes hands it is very political. You elude to that a little bit in another paragraph, but governments can't just go out and buy things - their decisions will be held responsible politically so everything has do be done by the book. If someone goes off the rails, it potentially represents favoritism and people will protest. I see a lot of this happen in some of the more local politics I am involved in rather than the more routine world of software procurement, but people in my hometown are getting into quite an uproar over the local government trying to give tax incentives to develop an empty lot that costs millions in municipal taxes for yearly upkeep and appraisal.

This presents an inherent conflict of interest, because the RFP process is insane. Therefore there is always a compromise that needs to be made for government workers to investigate and decide on project requirements in a fluid manner, and the need to document those requirements, set them in stone, and allow bidders to respond to them in an impartial way. The compromise is that there is usually an RFI stage where the procurement officers are "gathering information" but that is where they are really deciding what they are going to buy before they formalize the RFP. I think this is fundamentally broken - we need to recognize that procurement involves some deferment to experts who know what they are doing, and we need to trust them to make good decisions about how to do their jobs and get the software they need. But there is still a huge skills gap in a lot of governments over technology expertise, so the more a beaurocracy leans on responses to prescribe solutions, the slower this will be solved.

> We just did all of the actual work. We probably didn't get all of the actual money.

Idk about your personal situation, but a lot of these times when you look at the RFP, there is a usually a clause to provide documentation, and training, and helpdesk support in perpetuity. Consulting and contract work is a field unto itself, and the big players are big precisely because they can organize large multiyear projects that will fulfill these requirements that cannot fail. I help run a partnership program at a software vendor, and we tell the smaller companies the same thing - don't market yourself to the government, market yourself to the consulting companies because that is who will be paying you at the end of the day.