SANS put's out a 'roadmap to security' (I think they call it that) every year. It covers a lot of ground regarding vendors and their 'What Works' group of products. You can probably see an image of it...it's a full color poster they mail out to students and contributors... http://www.sans.org

As for the list, there are a lot more things to look at:
Forensic investigation/recovery tools
Encryption (email, file, data archiving/storage)
etc.

This roadmap from SANS is the closest to a big picture you're going to find, I think.