Buy commodity capabilities, build differentiating ones. The textbook answer is clean. The actual decision is entangled with vendor risk, integration complexity, and organizational honesty.
"Should we build it or buy it?" is a question that gets asked constantly in IT strategy conversations and answered badly almost as often. The textbook answer is clean enough: buy capabilities that are not differentiating, build capabilities that are. If every company in your industry uses an accounts payable process that works roughly the same way, buy an AP module and configure it. If your company has a pricing algorithm that is genuinely the source of competitive advantage, build it and protect it. The principle is sound. The difficulty is in applying it honestly.
The "buy" case is strongest when speed and proven functionality matter more than customization. Software vendors have invested years and large engineering teams in their products. A best-of-breed HR platform or a cloud-native CRM represents thousands of person-years of design decisions, edge case handling, and iterative improvement that an in-house team cannot replicate quickly or cheaply. Buying gets you to a working solution faster than building from scratch. You also get someone else's customer support, someone else's engineering team fixing bugs, and someone else's product roadmap adding features. That is a real value, particularly for organizations whose IT teams are already overextended.
The "build" case gets strong when the capability is genuinely specific to your business model. If no vendor builds exactly what you need because your use case is unusual, buying the closest available option requires bending your process to fit the product. That distortion has a cost. Business processes that were designed around your specific operating model get reshaped to work within the constraints of a product built for someone else's operating model. Sometimes the distortion is minor. Sometimes it's significant enough that the organization ends up with a purchased product and a workaround infrastructure that is more complex than what they would have built from scratch.
There is a hidden third option that the "build vs. buy" framing tends to obscure. Most enterprise software purchases are not really "buy" decisions in the way the textbook describes. They are "configure" decisions: you purchase a platform and then spend months or years of effort configuring it, extending it, integrating it with other systems, and training people on it. An ERP implementation that takes 18 months and three consulting partners is not "buying" a solution in the sense of making a fast, simple choice. It is buying a platform and then building a significant amount on top of it. The total cost is not the license fee. It is the license fee plus the implementation cost plus the ongoing customization and integration maintenance, which often exceeds the license cost over the product's lifetime.
This is where honest accounting matters. Organizations that compare "build cost" against "license fee" are not doing the right comparison. The right comparison is total cost of ownership on both sides: the full development and maintenance cost of building versus the full implementation, customization, integration, and ongoing licensing cost of buying. When you do that comparison honestly, the buy option is often still cheaper, but the margin is smaller than it appears in the initial analysis. And for highly customized implementations, building sometimes wins.
Vendor viability risk is the part of the buy decision that gets underweighted in initial analyses. When you buy and become dependent on a vendor's product, you are also accepting that vendor's decisions about pricing, product direction, and corporate continuity. Vendors raise prices. Vendors acquire other companies and change product strategy. Vendors get acquired themselves and the acquirer decides to sunset the product or force migration to their own platform. Organizations that built deep dependencies on a platform sometimes discover that migrating away from it costs more than the savings they realized by not building in the first place. This is especially true for platforms that made it easy to build customizations within their ecosystem, because those customizations are often non-portable.
I've watched organizations go through this cycle. They bought a platform because building seemed expensive and risky. They customized it extensively because the out-of-the-box version didn't quite fit. The vendor got acquired five years later. The acquirer announced end-of-life for the platform. The organization now has a migration project that requires rebuilding three years of custom configuration work on a new platform, which is essentially a build project anyway, at a point when the organization is also paying the old platform's licensing fees until the migration is complete. The build vs. buy decision didn't eliminate the build work. It deferred it and added vendor dependency risk.
Gartner's guidance on build vs. buy decisions has consistently emphasized total cost of ownership and organizational capability gaps as the key decision factors (see Gartner Newsroom). According to Gartner research, organizations frequently underestimate implementation and integration costs in buy decisions, and overestimate internal build capability when assessing the build option. I'll hedge specific figures here, but the pattern they identify is real: both options tend to cost more and take longer than initial estimates, and the actual decision should be made against realistic projections on both sides, not optimistic ones on both sides.
The organizational capability question is one that's uncomfortable to ask honestly. "Can we build this?" requires an accurate assessment of what the internal team is actually capable of delivering, on what timeline, with what quality. Teams that have a strong history of shipping software on time and maintaining it well are better candidates for build decisions than teams that don't. This sounds obvious but it's frequently ignored. The build vs. buy analysis gets done against the team's theoretical capacity rather than its demonstrated delivery capability.
The "buy" option also has a capability requirement that's easy to underestimate. Implementation, configuration, and ongoing management of complex enterprise software requires its own skills. Many organizations have bought sophisticated platforms only to find that nobody in-house understands the platform well enough to configure it correctly, and they are now permanently dependent on the vendor's professional services or an external consulting partner for every change. That dependency is a form of build work that happens outside the organization, at consulting rates, without the organizational learning that internal builds generate.
The question is almost never "build or buy" as a simple binary. It is usually some combination of: what do we buy, what do we configure on top of what we bought, what do we build ourselves, and where do we accept that an imperfect solution is good enough for now? Getting to a good answer requires being honest about your organization's capabilities, your tolerance for vendor dependency, and your willingness to do the accounting on total cost rather than just the headline numbers.
About the author
Share
More notes
Related notes