Aqua News Aqua Security Recognized as a Representative Vendor in Gartner Market Guide for Cloud-Native Application Protection Platforms (CNAPP)

BOSTON — March 20, 2023 Aqua Security, the pioneer in cloud native security, today announced that it has been named as a Representative Vendor in the Gartner® Market Guide for Cloud-Native Application Protection Platforms (CNAPP). The new Gartner report examines the extensive CNAPP market, and its growth potential, and it names representative vendors.

Gartner describes CNAPPs as “offerings that bring together multiple disparate security and protection capabilities into a single platform, focused on identifying and prioritizing excessive risk of the entire cloud-native application and its associated infrastructure.” According to Gartner: “As organizations shift to a CNAPP-based approach, the synergy of an integrated platform will provide more benefits than a best-of-breed strategy that is difficult to scale.”

“We believe the Gartner analysis of the market is similar to our approach and vision for Aqua,” said Amir Jerbi, CTO and Co-founder of Aqua Security. “We feel its emphasis on the benefits of using a vendor that provides an integrated platform further demonstrates that Aqua is on the cutting edge, leading the industry for cloud native security solutions.”

Best Approaches with Runtime and eBPF

Gartner emphasizes that security leaders responsible for cloud security strategies should: “Favor CNAPP vendors that provide a variety of runtime visibility techniques, including traditional agents, Extended Berkeley Packet Filter (eBPF) support, snapshotting, privileged containers and Kubernetes (K8s) integration to provide the most flexibility at deployment.”

In addition, Gartner states “Agentless workload scanning has become a popular approach and an expected core CNAPP capability, although in-workload approaches provide the best protection.”

Aqua’s runtime security solution was organically developed by Aqua and is integral to the Aqua CNAPP. The Aqua Platform was the first CNAPP to combine active protection with agentless workload visibility. Based on eBPF technology, Aqua’s Lightning agent is faster, lighter, and easier to manage at scale than the agents of yesterday. It complements Aqua’s agentless cloud workload scanning to provide easy, comprehensive visibility while delivering real-time, granular runtime detection and protection.  

Supply Chain Security

Regarding software supply chain security, Gartner states that the attack surface of cloud-native applications is increasing, and attackers are targeting the software supply chain itself.  According to Gartner, “Over time, these types of capabilities will be incorporated by larger CNAPP offerings.”

Aqua is ahead of the curve and has already integrated end-to-end software supply chain security into the Aqua Platform.

 One Integrated Platform

Gartner recommends that Security Leaders should “Reduce complexity and improve the developer experience by choosing integrated CNAPP offerings that provide complete life cycle visibility and protection of cloud-native applications across development and staging and into runtime operation.”

“From day one, our vision at Aqua has been crystal clear: to deliver a single end-to-end security solution for the entire cloud native application lifecycle in one holistic platform. We’ve always believed that to be a true CNAPP, a solution must include both shift-left scanning, broad visibility, and crucially strong runtime controls that can detect and stop attacks in progress,” adds Jerbi.

Access a complementary version of the Gartner full Market Guide for CNAPP or learn more about Aqua’s CNAPP.


GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally, and is used herein with permission. All rights reserved.

Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, express or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.


About Aqua Security

Aqua Security stops cloud native attacks across the application lifecycle and is the only company with a $1M Cloud Native Protection Warranty to guarantee it. As the pioneer in cloud native security, Aqua helps customers reduce risk while building the future of their businesses. The Aqua Platform is the industry’s most integrated Cloud Native Application Protection Platform (CNAPP), protecting the application lifecycle from dev to cloud and back. Founded in 2015, Aqua is headquartered in Boston, MA and Ramat Gan, IL with Fortune 1000 customers in over 40 countries. For more information, visit