|
市場調査レポート
商品コード
1184281
クラウドネイティブアプリケーション保護プラットフォームの世界市場規模、シェア、産業動向分析レポート:提供サービス別、クラウドタイプ別、組織規模別、業種別、地域別展望と予測、2022年~2028年Global Cloud-native Application Protection Platform Market Size, Share & Industry Trends Analysis Report By Offering, By Cloud Type, By Organization Size, By Vertical, By Regional Outlook and Forecast, 2022 - 2028 |
||||||
クラウドネイティブアプリケーション保護プラットフォームの世界市場規模、シェア、産業動向分析レポート:提供サービス別、クラウドタイプ別、組織規模別、業種別、地域別展望と予測、2022年~2028年 |
出版日: 2022年12月30日
発行: KBV Research
ページ情報: 英文 277 Pages
納期: 即納可能
|
クラウドネイティブアプリケーション保護プラットフォーム(CNAPP)の世界市場規模は、2028年までに212億米ドルに達し、予測期間中にCAGR18.6%の市場成長率で上昇すると予測されています。
パブリッククラウドでは、変更が頻繁に起こるため、セキュリティチームは、企業全体を減速させることなく、セキュリティとコンプライアンスを管理する必要があります。そのためには、セキュリティ上の欠陥や脆弱性を開発プロセスの早い段階で発見し、迅速に修正し、常に信頼できるセキュリティと保証を提供する必要があります。残念ながら、現代の文脈では多くの相互依存関係があるため、従来の戦略でそのすべてを実現するのはかなり難しいかもしれません。
COVID-19影響度分析
COVID-19期間以降、Azure、AWS、Alibaba Cloud、Google Cloud、Kubernetesなどのクラウドネイティブ環境に対して、クラウドセキュリティとコンプライアンスの姿勢監視を提供する企業が多くなっています。また、多くの企業は、各国の不確実なロックダウンに備え、クラウド環境に移行しています。そのため、企業にとって、セキュリティ、管理、コンプライアンスを、オーダーメイドのポリシーで自動化しながら、忠実度の高い可視化と制御を行うことがより重要になります。しかし、COVID-19の発生以来、クラウドの導入が急増しており、クラウドネイティブアプリケーション保護プラットフォーム(CNAPP)市場の需要に道を開くものとなっています。
市場の成長要因
BYODやリモートワークを活用する中小企業
クラウドベースの技術やBYODのコンセプトを利用する雇用主は、労働者がオフィスのネットワークに接続しながらリモートで仕事をすることを可能にします。パブリッククラウドソリューションの普及とBYODの規制により、企業は徐々にクラウド展開のパラダイムに移行しています。企業は、在宅勤務とBYODの取り組みを急速に受け入れています。遠隔地での雇用は健康増進につながり、生産性の低下を防ぐことができます。
クラウドベースのソリューションの採用が進む
より多くの業界がクラウドベースのソリューションを利用しています。クラウドベースのソリューションは、新しい機械学習や人工知能の開発を可能にし、より生産的な仕事を促進します。従来のセキュリティ手法やソリューションは、エンドポイントやオンプレミスデータセンターを保護するために作られたものであり、クラウドネイティブのアプリケーションやサービスを保護するためのものではありませんでした。クラウド技術への移行に伴い、セキュリティチームは、開発プロセスの早い段階でセキュリティの問題や脆弱性を発見し、迅速に修正し、信頼性の高い保護を提供することが求められます。
市場の抑制要因
CNAPPを構築・管理するための技術的知識の不足
CNAPPソリューションの導入や維持管理には、技術的な専門知識や経験が必要です。しかし、近年では、必要なトレーニングや経験を持たないセキュリティ担当者を雇用する企業も出てきています。2020年のForbesの調査「The Cloud Talent Drought Continues」によると、高度なクラウドとセキュリティの能力はこれまで以上に求められていますが、特に非技術関連企業では、このシフトを支える認定された有能な人材が著しく不足しているとのことです。
オファリングの展望
クラウドネイティブアプリケーション保護プラットフォーム(CNAPP)市場は、提供内容に基づき、プラットフォーム(サービスなし)とプロフェッショナルサービスに分類されます。プラットフォーム部門は、2021年に最大の市場収益シェアを生み出しました。CNAPPは、クラウドセキュリティに対するあらゆる脅威や脆弱性の監視、特定、対応を容易にするオールインワンのクラウドネイティブソフトウェアです。複数のツールや機能を1つのソフトウェアソリューションに統合することで、CNAPPは複雑さを軽減します。開発から本番稼動までのCI/CDアプリケーションライフサイクル全体を通じて、CNAPPはエンドツーエンドのクラウドおよびアプリケーションセキュリティを提供します。
クラウドタイプの展望
クラウドタイプに基づき、クラウドネイティブアプリケーション保護プラットフォーム(CNAPP)市場は、パブリックとハイブリッドに区分されます。ハイブリッドセグメントは、2021年の市場において大きな収益シェアを獲得しました。ハイブリッドモデルは、分野横断的に最も人気のある導入手法となっています。多くの企業は、ハイブリッドクラウドモデルと巧妙な戦略の作成をより重視し、メリットを最大化しながら、ビジネスオペレーション、リソース消費、コスト効率、ユーザー体験、アプリケーションの近代化を支援しています。
組織規模の展望
組織規模に基づき、クラウドネイティブアプリケーション保護プラットフォーム(CNAPP)市場は、大企業と中小企業に分類されます。2021年の市場シェアは、大企業が高い割合を占めています。大企業は、CNAPPプラットフォームと関連するプロフェッショナルサービスの利用が進んでいます。大企業は、オンプレミスよりもクラウドベースのソリューションを頻繁に利用し始めています。BYODや在宅勤務の動向は、COVID-19の流行により、クラウドベースのソリューションの使用に伴う危険性が高まったため、より迅速に採用されるようになっています。
業界別展望
クラウドネイティブアプリケーション保護プラットフォーム(CNAPP)市場は、業種別に、BFSI、ヘルスケア、小売・電子商取引、通信、IT・ITeS、その他に分類されます。小売&Eコマース部門は、2021年の間に市場においてコンサバティブな収益シェアを占めています。これらのeコマースプラットフォームやオンライン小売店では、電子メールアドレス、電話番号、クレジットカード情報、宅配便の場合の完全な住所など、消費者の個人情報やプライベート情報を収集するために、さまざまな支払い方法が使用されています。
地域別の展望
地域別に見ると、クラウドネイティブアプリケーション保護プラットフォーム(CNAPP)市場は、北米、欧州、アジア太平洋、LAMEAに区分されます。北米は2021年に最大の収益シェアを獲得し、市場の主要地域に浮上し、予測期間中もこの傾向が続くと予想されます。運用機能、事業継続性を維持し、設定ミスを防ぐために、北米の組織はクラウド導入に複数のステップを踏み出し、データ暗号化、DLP、データ完全性監視、データ脅威保護、CSPMなどのクラウドデータ保護手法を漸進的に採用しています。
List of Figures
The Global Cloud-native Application Protection Platform (CNAPP) Market size is expected to reach $21.2 billion by 2028, rising at a market growth of 18.6% CAGR during the forecast period.
In today's highly automated, dynamic public cloud settings, a cloud-native application protection platform (CNAPP) is a security and compliance solution that aids teams in developing, deploying, and operating secure cloud-native apps. Security teams may work more efficiently with developers and DevOps owing to CNAPPs. CSPM, IAM, CIEM, data protection, CWPP, and other features are consolidated under the umbrella of CNAPP, a new cloud security platform.
Traditional security methods, techniques, and tools were created to safeguard endpoints and on-premises data centers, not cloud-native applications and services. However, these techniques are inadequate given the move to cloud-native technologies, dynamic and transient settings, rapid release cycles, and contemporary development approaches (such as infrastructure as code [IaC], containers, CI/CD pipelines, serverless functions, and Kubernetes).
In the public cloud, changes happen often, and the security team must manage security and compliance-ideally without slowing down the whole enterprise. To do this, businesses must find security flaws and vulnerabilities early in the development process, move quickly to fix them, and provide constant, reliable security and assurance. Unfortunately, it may be pretty challenging to do all of that using a conventional strategy, given the many interdependencies in contemporary contexts.
COVID-19 Impact Analysis
Many companies provide cloud security and compliance posture monitoring for cloud-native environments such as Azure, AWS, Alibaba Cloud, Google Cloud, and Kubernetes after the covid-19 period. In addition, many enterprises have shifted to cloud environments to be ready for any uncertain lockdowns in their respective countries. Thus, it becomes more critical for companies to automate security, administration, and compliance with tailored policies while providing high-fidelity visibility and control. However, since the COVID-19 outbreak, there has been a boom in cloud adoption, paving the way for the demand for a cloud-native application protection platform (CNAPP) Market.
Market Growth Factors
SMES Using BYOD and Remote Work Alternatives
Employers that use cloud-based technology and the BYOD concept allow workers to work remotely while connected to the office network. Enterprises are gradually switching to the cloud deployment paradigm due to the rising popularity of public cloud solutions and BYOD regulations. Organizations are quickly embracing Work-from-home and BYOD initiatives. Remote employment promotes general health and helps businesses avoid productivity loss.
Adoption of Cloud-Based Solutions Growing
More and more verticals are using cloud-based solutions. Cloud-based solutions allow the development of new machine learning and artificial intelligence capabilities and facilitate more productive working. Traditional security methods and solutions were created to safeguard endpoints and on-premises data centers, not cloud-native applications and services. With the move to cloud technologies, security teams must be able to spot security problems and vulnerabilities early in the development process, move quickly to fix them, and provide reliable protection.
Market Restraining Factors
Inadequate Technical Knowledge to Build and Manage CNAPP
Technical expertise and experience are needed for CNAPP solution deployment and upkeep. Nevertheless, in recent years, businesses have started employing security executives without the necessary training and experience. Advanced cloud and security capabilities are more in demand than ever, but there is a severe shortage of certified, competent workers to support this shift, particularly in non-tech-related businesses, according to a Forbes study from 2020 titled The Cloud Talent Drought Continues.
Offering Outlook
Based on the offering, the Cloud-native Application Protection Platform (CNAPP) Market is divided into Platform (Without Services) and Professional Services. The Platform segment produced the largest market revenue share in 2021. A CNAPP is all-in-one cloud-native software that makes it easier to monitor, identify, and respond to any threats and vulnerabilities to cloud security. By integrating several tools and functionalities into a single software solution, CNAPP reduces complexity. Through the whole CI/CD application lifecycle, from development to production, CNAPP provides end-to-end cloud and application security.
Cloud Type Outlook
Based on Cloud Type, the Cloud-native Application Protection Platform (CNAPP) Market is segmented into Public and Hybrid. The hybrid segment acquired a significant revenue share in the market in 2021. The hybrid model has been the most popular implementation methodology across sectors. Many businesses are emphasizing more on creating hybrid cloud models and clever strategies to help improve business operations, resource consumption, cost efficiency, user experience, and application modernization while maximizing the benefits.
Organization Size Outlook
Based on the organization size, the Cloud-native Application Protection Platform (CNAPP) Market is classified into Large Enterprises and SMEs. Large enterprises accounted for the higher share of the market in 2021. Large businesses are using the CNAPP platform and associated professional services more and more. Large enterprises are starting to use cloud-based solutions more often than on-premises ones. The BYOD and work-from-home trends have been adopted more quickly due to the COVID-19 pandemic, which has raised the hazards associated with using cloud-based solutions.
Vertical Outlook
Based on vertical, the Cloud-native Application Protection Platform (CNAPP) market is classified into BFSI, Healthcare, Retail & eCommerce, Telecommunication, IT & ITeS, and Others. The retail & eCommerce segment accounted for the consiferable revenue share in the market during 2021. Different payment methods are used by these E-commerce platforms and online retail outlets to gather consumers' personal and private information, such as email addresses, phone numbers, credit card information, and complete addresses in the event of home deliveries.
Regional Outlook
Based on region, the Cloud-native Application Protection Platform (CNAPP) Market is segmented into North America, Europe, Asia Pacific, and LAMEA. North America emerged as the leading region in the market with the largest revenue share in 2021 and is expected to continue this trend over the forecast period. To sustain operational functionality, and business continuity, and prevent misconfiguration, North American organizations have taken multiple steps forward into cloud adoption and are progressively adopting cloud data protection methods like data encryption, DLP, data integrity monitoring, data threat protection, and CSPM.
The market research report covers the analysis of key stake holders of the market. Key companies profiled in the report include Trend Micro, Inc., Check Point Software Technologies Ltd., Palo Alto Networks, Inc., Crowdstrike Holdings, Inc., Fortinet, Inc., Forcepoint LLC (Francisco Partners), Aqua Security Software Ltd., Radware Ltd., Zscaler, Inc., Sophos Group PLC (Thoma Bravo)
Recent Strategies Deployed in Cloud-native Application Protection Platform (CNAPP) Market
Partnerships, Collaborations and Agreements:
Dec-2022: Palo Alto Networks has extended its partnership with Google Cloud to bring its Prisma Access platform with BeyondCorp Enterprise of Google. This will help organizations to get benefited from the performance scale, reliability of Google Cloud, and security expertise of Palo Alto Networks. This will provide seamless Zero Trust Security for today's workforce.
Oct-2022: CrowdStrike extended its partnership with Ernst & Young, a company engaged in providing cyber risk consulting services, for offering Cloud Security and Observability Services, powered by the CrowdStrike Falcon platform, internationally. The expansion can provide joint customers the ability to safeguard their cloud workloads while also giving them real-time insight to identify and analyze problems in their infrastructure environments, with the help of CrowdStrike Cloud Security and CrowdStrike Falcon LogScale.
Sep-2022: Palo Alto Networks announced its collaboration with Wipro, a provider of information technology, consulting, and business process services. The collaboration aims to provide network transformation and managed security solutions. The combination of Wipro's offerings with Palo Alto Networks Next-Generation Security Platform would protect critical data assets by delivering comprehensive and easy-to-manage security solutions.
Jul-2022: Aqua Security partnered with CMD Solutions, a cloud technology solutions provider. The partnership aims at supporting clients in securing their cloud-native applications on AWS. Additionally, the partnership benefits CMD's clients.
Jun-2022: Zscaler extended its collaboration with Amazon Web Services for offering a unified solution to customers for simplifying and consolidating cloud security operations together with helping enterprises in advancing their security architecture from ineffective legacy models to a modern Zero Trust approach created for the cloud.
Mar-2022: Radware extended its partnership with Presidio, Inc., a provider of digital services and solutions. Presidio added Radware's application, DDoS protection, bot manager, API Security solutions, and Cloud Native Protector for its cyber security suite, to protect its hybrid, on premise, and cloud environments' customers.
Jul-2021: Trend Micro teamed up with Microsoft to create cloud-based cyber security solutions on Microsoft Azure and generate co-selling opportunities. Furthermore, the collaboration helps the joint customers in digital transformations by utilizing both Trend Micro's security expertise and Azure's cloud computing platform.
Product Launches and Expansions:
Jul-2022: CrowdStrike extended CNAPP capabilities for helping developers and securing containers. The enhancements to CrowdStrike Cloud Security broaden support for Amazon Elastic Container Service (ECS) within AWS Fargate, enable Software Composition Analysis (SCA) for open source software, and expand image registry scanning for eight new container registries. CrowdStrike customers can identify any vulnerabilities, stores secrets before they are deployed, and embedded malware, by shifting left and proactively assessing containers.
Jun-2022: Zscaler unveiled Posture Control Solution created for providing enterprises with unified Cloud-Native Application Protection Platform (CNAPP) functionality customized to secure cloud workloads. The posture control solution has been integrated with Zscaler Zero Trust Exchange and allows security and DevOps teams to prioritize and remediate risks effectively in cloud-native applications earlier in the development cycle.
Apr-2022: CrowdStrike launched adversary-focused Cloud Native Application Protection Platform (CNAPP) capabilities for expediting threat hunting for cloud environments and workloads and decreasing the mean time of responding. These capabilities combine CrowdStrike's Falcon Cloud Workload Protection (CWP) and Falcon Horizon (Cloud Security Posture Management or CSPM) modules through a common activity dashboard for helping DevOps and security teams to prioritize cloud security problems and addressing runtime threats, enabling cloud threat hunting. Moreover, the updates comprise new ways of using Falcon Fusion (CrowdStrike's SOAR framework) for automating remediations for Amazon Web Services (AWS), brand-new custom Indicators of Misconfigurations (IOMs) for Google Cloud Platform (GCP), brand-new methods to guard against identity-based threats for Microsoft Azure, and more.
Apr-2022: Sophos launched Sophos Cloud Workload Protection, comprising container security and Linux host capabilities. These enhancements advanced the detection and response of in-progress attacks and security incidents within Linux operating systems, improving security operations, and bolstering application performance.
Mar-2022: Forcepoint announced the launch of Forcepoint ONE, an all-in-one cloud-native security platform. This platform enables users to get regulated and protected access to company information in the cloud, on the web, and in the apps, for simplifying security for traditional and remote workforces.
Jul-2021: Aqua Security unveiled the new Aqua Platform. The new platform comes with a unified console, brings down the administrative burden, and features certified RedHat OpenShift operators, and Google Cloud scanning for sensitive data and vulnerability.
Jun-2021: Check Point Software announced the launch of CloudGuard Workload Protection for extending the capabilities of its unified Cloud Native Security Platform, for providing application-first workload protection. This solution helps security teams in automating security throughout applications, microservices, and Application Programming Interfaces (APIs) from development to runtime through a single interface. This solution enables the company to automate and improve its overall cloud security posture.
Feb-2021: Check Point Software launched CloudGuard Application Security (AppSec), a fully automated web application and API protection solution, to extend the capabilities of its unified CloudGuard Cloud Native Security Platform. This solution helps enterprises in securing their cloud-native applications from both zero-day and known attacks. Moreover, this solution eliminated the requirement for manual tuning and a high rate of false-positive alerts in connection with legacy Web Application Firewalls, utilizing contextual AI for preventing attacks from impacting cloud applications and allowing enterprises in taking complete advantage of cloud agility and speed.
Acquisitions and Mergers:
Feb-2022: Check Point Software took over Spectral, a startup, and innovator in developer-first security tools designed by developers for developers. Following this acquisition, the company aims to support the cloud developers' community as well as fulfill its commitment to providing cloud security automation, trust, and usability across any cloud to every enterprise. Additionally, the integration of Spectral's best-in-class security tools for developers with Check Point's threat intelligence tools and deep cloud security capabilities enables enterprises to shift-left security with tool developers and security teams trust.
Oct-2021: Forecpoint announced the acquisition of Bitglass, an information technology company that helps enterprises move to SaaS-based and mobile deployments securely. Bitglass' SSE platform is a perfect complement to Forcepoint's data-first SASE architecture and would advance the former company's efforts of making advanced data security and threat protection technologies easy for enterprises to use and deploy. The acquisition accelerated Forcepoint's capability of addressing customers' different needs for allowing hybrid workforces to access and utilizes information anywhere safely.
Jul-2021: Sophos took over Capsule8, a pioneer in Linux detection and protection. With the help of Capsule8, Sophos Partners can target additional customers who want low-impact, high-performance, and Linux offerings. Moreover, it unlocked more opportunities for attracting organizations that want best-in-class security from a single vendor throughout all their operating systems.
Geographical Expansions:
Sep-2022: Radware established a new cloud security center in UAE, Dubai. This center aims to decrease latency for in-region traffic and deliver faster mitigation response times from web application attacks, denial-of-service attacks, attacks on APIs, and malicious bot traffic, to customers. Additionally, it would mitigate compliance processes involved in offshore routing.
Sep-2022: Radware opened a cloud security center in Italy, Milan. The center protects customers from OWASP Top 21 Automated Threats to Web Applications, OWASP Top 10 Web Application Security Risks for 2021, volumetric distributed denial-of-service (DDoS), application-level DDoS attacks, and OWASP API Security Top 10.
Jul-2022: Aqua Security expanded its global footprint by launching the Aqua platform in Europe. The launch allows customers in European Union to take advantage of the SaaS service-based platform, while at the same time adhering to data privacy and residency requirements. Moreover, the geographical expansion aligns with Aqua's commitment to serving regional demands and requirements.
Market Segments covered in the Report:
By Offering
By Cloud Type
By Organization Size
By Vertical
By Geography
Companies Profiled
Unique Offerings from KBV Research