Bundle War for CNAPP Dominance
Israel's YC of cybersecurity
The key dynamic is that cloud security is becoming a bundle war, not just a product war. Palo Alto Networks can treat CNAPP as a retention tool inside a much larger security contract, which lets it price Prisma Cloud at or near zero while still protecting an $8B revenue base. That changes the buying process from picking the best cloud tool to deciding whether a separate Wiz budget is worth the added speed, depth, and usability.
-
Wiz and Palo Alto sell into very different contract shapes. Wiz was at about $396M ARR with roughly 800 customers and about $495K ACV in April 2024, while Palo Alto was at $8B ARR with 85,000 customers and about $94K ACV. That scale gives Palo Alto room to discount cloud security heavily if it helps preserve a much broader account.
-
Incumbents did not just copy features, they bought them. In 2022 and 2023, CrowdStrike bought Bionic, Cisco bought Lightspin, and Palo Alto bought Dig Security, then folded those capabilities into broader platforms. The practical pitch is simple, one vendor, one renewal, one console, and fewer new line items for the CISO to defend.
-
Wiz is still winning where the cloud team wants the product built around cloud risk itself, not added onto an endpoint or firewall stack. Salesforce switched from Palo Alto to Wiz, and later research shows Wiz growing toward Prisma Cloud's scale, which suggests free bundling slows Wiz down but does not erase demand for a purpose built product.
This market is heading toward a split. Large platforms will keep using free or deeply discounted CNAPP to hold broad security accounts, while Wiz pushes to become important enough inside big enterprises that it survives procurement pressure as a standalone standard. The winners will be the vendors that turn cloud security from a point feature into the control plane for more of the security stack.