Layer 04

Cloud Security

Adoption stage · scaling

Consolidation pressure
Very high
Core buyer problem

Cover posture, workload, identity, and runtime risk across multi-cloud — without a tool per slice and without missing the attack paths that chain across them.

Member categories
CNAPPCSPMCWPPCIEMKSPM
Differentiation path

runtime detection, attack-path correlation, identity context, data context

Dominant displacement role

consolidation winner — CNAPP absorbed CSPM, CWPP, CIEM as standalones

Field note

Cloud Security reads “very-high pressure” because the consolidation already happened. Funding activity has thinned — a handful of deals per quarter versus the rush of the prior cycle — because CNAPP rollups absorbed the standalone CSPM/CWPP/CIEM market. The pressure on remaining specialists isn’t “consolidate or lose”; it’s “out-differentiate the platform on attack paths, runtime, identity context, or data context, or be acquired into one.” Net-new entrants now arrive with a wedge or not at all.

Defined in the Glossary