These are the 13 hottest companies in cloud security software, according to IT professionals


CloudFlare founders

  • IT Central Station compiled a list of the top 13 companies that provide security software as a service via the cloud.
  • These ratings are based on reviews by information technology professionals.
  • Visit Business Insider’s homepage for more stories.

Companies are increasingly looking to build out their cybersecurity arsenal.

With the threat of hackers, malware, and other cyber-threats looming, security software has become a must-have — not only for tech companies, but also for companies in retail, media, health, and more. And cybersecurity companies themselves have increasingly turned to delivering their software through the cloud.

Cybersecurity companies are becoming some of the hottest places to work and for VCs to throw their money at. However, some experts also say there’s also an overflow of security products: VMware CEO Pat Gelsinger recently advised companies to “start getting rid of products” because the growing number of options out there is introducing more complexity and more problems. 

To narrow down the best cloud-based cybersecurity products, we turned to IT Central Station — a review site where real IT professionals can leave reviews for the software they use. 

Among the companies below, valuation numbers for private companies come from PitchBook, a database that tracks such things. 

And in case you’re wondering, IT Central Station also reviewed the top 18 DevOps companies in the industry.

So which SaaS security companies are the best, according to users? Here’s a list of the top 13 cloud security companies, based on user reviews from IT Central Station.

SEE ALSO: Microsoft explains its big bet on serverless computing, the next major way that developers are going to write cloud software


Valuation: $120 million

Rating: 4.1 / 5 stars

Product: Checkmarx

RankingScore: 40

Category: Application Security

Most Compared to: SonarQube (39%), Micro Focus Fortify on Demand (18%), Veracode (13%)

Checkmarx is an Israeli cybersecurity startup. It offers a tool for developers test their code and make sure it’s free of bugs and vulnerabilities. This tool will automatically scan for security vulnerabilities early in the development process, which can save developers money and time in the long run. It can also block attacks in real time.



Valuation: $1.39 billion

Rating: 4.8 / 5 stars

Product: Netskope

RankingScore: 50

Category: Cloud Access Security Brokers

Most Compared to: Skyhigh (22%), Zscaler Web Security (21%), Microsoft Cloud App Security (9%)

This cybersecurity company helps organizations monitor and secure how employees are using cloud software such as Google Drive and Dropbox. Netskope’s cloud analytics platform can stop threats, analyze suspicious activity and respond to incidents. This helps companies guard their data from attacks.


Threat Stack

Valuation: $172 million

Rating: 4.1 / 5 stars

Product: Threat Stack

RankingScore: 51

Category: Cloud Workload Security

Most Compared to: RedLock Cloud 360 (29%), Dome9 (24%), Evident (23%)

Threat Stack develops a platform that provides insights about cloud environments and detects intrusions. Users can monitor their cloud environments for risky behavior and use the platform to make sure they’re meeting compliance requirements. This helps companies manage risk and identify threats and data loss. 



Valuation: n/a

Rating: 4.0 / 5 stars

Product: SonarQube

RankingScore: 52

Category: Application Security

Most Compared to: Veracode (26%), Micro Focus Fortify on Demand (22%), Checkmarx (19%)

SonarSource develops open source tools — where the code is free for anyone to use, download, or modify — as well as commercial tools, intended to continuously check the quality of a developer’s code. Its SonarQube tool inspects a user’s code for any vulnerabilities and bugs. That way, users can fix and improve the code to prevent future issues from happening and reduce risks.

One Identity

Valuation: n/a

Rating: 4.0 / 5 stars

Product: One Identity Manager

RankingScore: 53

Category: Identity Management

Most Compared to: CyberArk PAS (21%), SailPoint IdentityIQ (17%), One Identity Active Roles (9%)

One Identity, a subsidiary of Quest Software, provides an identity and access manager platform. It can be used for managing user access and safeguard against unauthorized users getting into the company’s system. It’s used for securing data and giving the right users access to only the data and applications they need.



Valuation: $4.13 billion

Rating: 4.2 / 5 stars

Product: CrowdStrike

RankingScore: 59

Category: Endpoint Detection and Response

Most Compared to: Cylance (20%), Microsoft Windows Defender (11%), Carbon Black CB Defense (9%)

Crowdstrike’s cloud-based cybersecurity platform prevents, detects, and responds to cyberattacks in real time using artificial intelligence and machine learning. Its product helps to stop threats and protect companies from malware, ransomware, and more. In February, Crowdstrike announced a partnership with Dell. In May, Crowdstrike filed to go public.


Skybox Security

Valuation: $29.97 million

Rating: 4.1 / 5 stars

Product: Skybox Security Suite

RankingScore: 61

Category: Vulnerability Management

Most Compared to: AlgoSec (28%), Tufin (20%), RedSeal (15%)

Skybox Security helps companies manage their cybersecurity by eliminating and containing attacks an safeguarding user data. It analyzes cybersecurity data, from sources like the firewall and network devices, to help users see where attacks may happen, prioritize security issues, and understand what ways systems may be vulnerable to threats. 



Valuation: $950 million

Rating: 4.1 / 5 stars

Product: Veracode

RankingScore: 65

Category: Application Security

Most Compared to: SonarQube (45%), Micro Focus Fortify on Demand (15%), Checkmarx (11%)

Veracode develops a cloud-based platform to find and fix security defects in web, mobile, and third-party enterprise applications throughout the development process. While building these applications, developers can use Veracode to monitor the security of their software and pinpoint specific issues as it provides tools, integrations, and tips for fixing vulnerabilities.




Valuation: $247.69 million

Rating: 4.2 / 5 stars

Product: LogRhythm NextGen SIEM

RankingScore: 71

Category: Security Information and Event Management (SIEM)

Most Compared to: Splunk (30%), IBM QRadar (17%), ELK Logstash (8%)

LogRhythm’s products are designed to detect and respond to security threats, shutting down attacks faster. Its product LogRhythm NextGen SIEM can help users understand which threats to prioritize. And with automation features, users can spend less time on on manual, repetitive tasks, focusing instead on more important thing.




Valuation: $1.8 billion

Rating: 4.2 / 5 stars

Product: Cloudflare

RankingScore: 74

Category: Content Delivery Network

Most Compared to: Imperva Incapsula (21%), Sucure (9%), Arbor DDoS (7%)

Cloudflare provides content delivery network services, which help websites and apps load faster and protect against attacks. It’s used by customers like Discord, OKCupid and PF Chang’s, and it offers networking services to help computers connect over the Internet faster. It also provides privacy services and other cybersecurity-related businesses. Previously, it was reported that Cloudflare plans to go public this year, but it just raised a major round of funding in March — making an IPO unlikely. 


Trend Micro

Valuation: $6.36 billion

Rating: 4.4 / 5 stars

Product: Trend Micro Deep Security

RankingScore: 77

Category: Container Security

Most Compared to: Trend Micro OfficeScan (24%), Symantec Endpoint Protection (16%), Microsoft Windows Defender (9%)

Trend Micro is a Tokyo-based cybersecurity company. Its product Trend Micro Deep Security can detect and protect businesses against vulnerabilities and malware for cloud environments. It uses machine learning for automatic protection and helps companies maintain compliance requirements. 


Valuation: n/a

Rating: 4.6 / 5 stars

Product: AlgoSec

RankingScore: 77

Category: Firewall Security Management

Most Compared to: Tufin (56%), FireMon (19%), Skybox Security Suite (16%)

The network security company AlgoSec is based in the U.S. and has research and development operations in Israel. Its security management software helps users see what their business applications are connected to and analyze risks. Last year, AlgoSec raised $36 million.



Valuation: n/a

Rating: 4.8 / 5 stars

Product: Keeper

RankingScore: 79

Category: Enterprise Password Managers

Most Compared to: Dashlane (45%), LastPass Enterprise (24%), 1Password (12%)

Keeper creates password management software, which allows users to access sign-ins and passwords on various devices, whether it’s computers, phones or tablets. It also helps users protect their passwords and digital assets, reduces cyber-theft and data breach risks, encrypts sensitive data and includes a secure password generator.


Here are IT Central Station’s ranking criteria, for the curious.

IT Central Station computes a RankingScore for each product based on a composite of:

  • Number of reviews
  • Average star rating
  • Number of times the product has been compared with alternative solutions
  • Number of views of reviews
  • Number of followers on IT Central Station

The total ranking of a product is based on a weighted aggregate score. The score is calculated as follows: The product with the highest count in each area gets the highest available score. (20 points for Reviews; 16 points for Views, Comparisons, and Followers.) Every other product gets assigned points based on its total in proportion to the #1 product in that area. For example, if a product has 80% of the number of reviews compared to the product with the most reviews then the product’s score for reviews would be 20% (weighting factor) * 80% = 16. For Average Rating, the maximum score is 32 points awarded linearly based on our rating scale of 1-10. If a product has fewer than ten reviews, the point contribution for Average Rating is reduced (one-third reduction in points for products with 5-9 reviews; two-thirds reduction for products with fewer than five reviews). Reviews that are more than 24 months old, as well as those written by resellers, are completely excluded from the ranking algorithm.