# Best Cloud Infrastructure Entitlement Management (CIEM) Software

*By [Lauren Worth](https://research.g2.com/insights/author/lauren-worth)*


Cloud infrastructure entitlement management (CIEM) software, also sometimes referred to as cloud permissions management software, is a security solution that manages user privileges or &quot;entitlements&quot; in cloud environments. The software controls access to applications, infrastructure, and resources in the cloud environment using the principle of least privileges (POLP). The least privilege policy is an integral part of the zero trust policy that limits the attack surface of security threats by restricting access in the cloud landscape.

CIEM software manages user accounts, defines user roles, and provides access control to ensure only the right users have access to resources, which reduces unauthorized access. Companies with complex cloud landscapes, as well as numerous teams and users, can use CIEM software to secure their cloud environments and ensure compliance. Security and IT operations teams use this tool to control access privileges and monitor the cloud environment for unauthorized access.

CIEM solutions have some features that overlap with [identity and access management (IAM) software](https://www.g2.com/categories/identity-and-access-management-iam) as both provide authentication and access control. However, they have distinct purposes. IAM focuses on user authentication, authorization, and access control across an organization&#39;s IT systems, both on-premises and in the cloud. CIEM extends its scope to include cloud infrastructure and endpoint management, addressing the broader challenges of managing cloud resources, securing endpoints, and ensuring cloud security and compliance.

To qualify for inclusion in the Cloud Infrastructure Entitlement Management (CIEM) category, a product must:

- Provide visibility into all cloud assets and access privileges
- Remove any unused privileges
- Continuously monitor the environments, detect any violations, and perform automatic remediation






## G2 Grid® for Cloud Infrastructure Entitlement Management (CIEM) Software
![G2 Grid® for Cloud Infrastructure Entitlement Management (CIEM) Software plotting products by satisfaction and market presence](https://www.g2.com/categories/cloud-infrastructure-entitlement-management-ciem/grids.png?focus%5B%5D=146504&focus%5B%5D=123609&focus%5B%5D=20460&focus%5B%5D=20461&focus%5B%5D=112631&focus%5B%5D=4206&focus%5B%5D=151443&focus%5B%5D=118484)
Highlighted products: Wiz, Orca Security, Sysdig Secure, Cortex Cloud, Microsoft Entra Permissions Management, SailPoint, CrowdStrike Falcon Cloud Security, and Sonrai Security.
Underlying data: [Grid® JSON](https://www.g2.com/categories/cloud-infrastructure-entitlement-management-ciem/grids.json?focus%5B%5D=wiz-wiz&amp;focus%5B%5D=orca-security&amp;focus%5B%5D=sysdig-sysdig-secure&amp;focus%5B%5D=cortex-cloud&amp;focus%5B%5D=microsoft-entra-permissions-management&amp;focus%5B%5D=sailpoint&amp;focus%5B%5D=crowdstrike-falcon-cloud-security&amp;focus%5B%5D=sonrai-security)


## How Many Cloud Infrastructure Entitlement Management (CIEM) Software Products Does G2 Track?
**Total Products under this Category:** 24

### Category Stats (Jul 2026)
- **Average Rating**: 4.54/5 (↓0.01 vs Jun 2026) The average rating of products in this category, based on all submitted ratings
- **Top Trending Product**: Cortex Cloud (+0.75%) - Among all products in this category, Cortex Cloud recorded the largest rating increase compared to last month
*Last updated: July 17, 2026*


## How Does G2 Rank Cloud Infrastructure Entitlement Management (CIEM) Software Products?

**Why You Can Trust G2's Software Rankings:**

- 30 Analysts and Data Experts
- 2,200+ Authentic Reviews
- 24+ Products
- Unbiased Rankings

G2's software rankings are built on verified user reviews, rigorous moderation, and a consistent research methodology maintained by a team of analysts and data experts. Each product is measured using the same transparent criteria, with no paid placement or vendor influence. While reviews reflect real user experiences, which can be subjective, they offer valuable insight into how software performs in the hands of professionals. Together, these inputs power the G2 Score, a standardized way to compare tools within every category.


## Which Cloud Infrastructure Entitlement Management (CIEM) Software Is Best for Your Use Case?

- **Leader:** [Wiz](https://www.g2.com/products/wiz-wiz/reviews)
- **Highest Performer:** [Sonrai Security](https://www.g2.com/products/sonrai-security/reviews)
- **Easiest to Use:** [Sysdig Secure](https://www.g2.com/products/sysdig-sysdig-secure/reviews)
- **Top Trending:** [Wiz](https://www.g2.com/products/wiz-wiz/reviews)
- **Best Free Software:** [Wiz](https://www.g2.com/products/wiz-wiz/reviews)


---

**Sponsored**

### Fastly Content Delivery

Fastly is an extension of your infrastructure - speeding up and optimizing the delivery of your web apps, mobile traffic, APIs, and AI workloads, allowing you to scale globally, improve performance, and save on costs. Fastly gives you the control to serve more dynamic, personalized content and to accelerate your content delivery. Deliver your website, apps, video, downloads and more from a single, secure, high performing, global network



[Visit website](https://www.g2.com/external_clickthroughs/record?secure%5Bad_program%5D=ppc&amp;secure%5Bad_slot%5D=category_product_list&amp;secure%5Bcategory_id%5D=1006814&amp;secure%5Bchosen_at%5D=2026-07-18T11%3A10%3A19Z&amp;secure%5Bdisplayable_resource_id%5D=142&amp;secure%5Bdisplayable_resource_type%5D=Category&amp;secure%5Bmedium%5D=sponsored&amp;secure%5Bplacement_reason%5D=retargeted_product&amp;secure%5Bplacement_resource_ids%5D%5B%5D=105447&amp;secure%5Bprioritized%5D=false&amp;secure%5Bproduct_id%5D=105447&amp;secure%5Bresource_id%5D=1006814&amp;secure%5Bresource_type%5D=Category&amp;secure%5Bsource_type%5D=category_page&amp;secure%5Bsource_url%5D=https%3A%2F%2Fwww.g2.com%2Fcategories%2Fcloud-infrastructure-entitlement-management-ciem%3Fpage%3D2&amp;secure%5Btoken%5D=e7ecdd3a5226a957c71e898ffb5ed7cfbaf3b9ed0b2b46fa0712537bc2e81772&amp;secure%5Burl%5D=https%3A%2F%2Fwww.fastly.com%2Fproducts%2Fcdn%3Futm_campaign%3DEvergreen_BR_NAN_EN_NAN_2026-Digital-Brand-Campaign_Brand-Awareness%26utm_source%3Dg2%26utm_medium%3Ddisplay%26utm_term%3Dg2+listings&amp;secure%5Burl_type%5D=custom_url)

---

## What Are the Top-Rated Cloud Infrastructure Entitlement Management (CIEM) Software Products in 2026?
### 1. [Wiz](https://www.g2.com/products/wiz-wiz/reviews)
Wiz transforms cloud security for customers – including more than 50% of the Fortune 100 – by enabling a new operating model. With Wiz, organizations can democratize security across the development lifecycle, empowering them to build fast and securely. Its Cloud Native Application Protection Platform (CNAPP) consolidates CSPM, KSPM, CWPP, Vulnerability management, IaC scanning, CIEM, DSPM into a single platform. Wiz drives visibility, risk prioritization, and business agility. Protecting Your Cloud Environments Requires a Unified, Cloud Native Platform. Wiz connects to every cloud environment, scans every layer, and covers every aspect of your cloud security - including elements that normally require installing agents. Its comprehensive approach has all of these cloud security solutions built in. Hundreds of organizations worldwide, including 50 percent of the Fortune 100, to rapidly identify and remove critical risks in cloud environments. Its customers include Salesforce, Slack, Mars, BMW, Avery Dennison, Priceline, Cushman &amp; Wakefield, DocuSign, Plaid, and Agoda, among others. Wiz is backed by Sequoia, Index Ventures, Insight Partners, Salesforce, Blackstone, Advent, Greenoaks, Lightspeed and Aglaé. Visit https://www.wiz.io for more information.


**Average Rating:** 4.7/5.0
**Total Reviews:** 822

**Who Is the Company Behind Wiz?**

- **Seller:** [Wiz](https://www.g2.com/sellers/wiz-76a0133b-42e5-454e-b5da-860e503471db)
- **Company Website:** https://www.wiz.io/
- **Year Founded:** 2020
- **HQ Location:** New York, US
- **Twitter:** @wiz_io (24,733 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/wizsecurity/ (3,383 employees on LinkedIn®)

**Who Uses This Product?**
- **Who Uses This:** CISO, Security Engineer
- **Top Industries:** Financial Services, Computer Software
- **Company Size:** 54% Enterprise, 39% Mid-Market


#### What Are Wiz's Pros and Cons?

**Pros:**

- Features (110 reviews)
- Security (107 reviews)
- Ease of Use (103 reviews)
- Visibility (86 reviews)
- Easy Setup (67 reviews)

**Cons:**

- Learning Curve (34 reviews)
- Feature Limitations (33 reviews)
- Improvement Needed (33 reviews)
- Improvements Needed (28 reviews)
- Complexity (27 reviews)


### What Do G2 Reviewers Say About Wiz?
*AI-generated summary from verified user reviews*

**Pros:**

- Users commend the **capable APIs and user-friendly UI** , providing valuable insights and continuous improvements in security features.
- Users value the **unmatched security features** of Wiz, providing comprehensive visibility and proactive threat management capabilities.
- Users find Wiz&#39;s product suite **extremely easy to use** , benefiting from seamless integration and a user-friendly interface.
- Users appreciate the **visibility** Wiz offers, enhancing security posture and prioritizing critical vulnerabilities effectively.
- Users praise the **easy setup** of Wiz, enabling quick deployment and seamless integration across modules for enhanced security.

**Cons:**

- Users experience a **steep learning curve** with Wiz, making it challenging for newcomers to fully utilize the platform.
- Users find the **feature limitations** of Wiz, such as complex reporting and management, hinder user-friendliness and efficiency.
- Users highlight the need for **improvement in performance and reporting capabilities** to enhance overall usability of Wiz.
- Users note several **improvements needed** , particularly in dashboard reporting and the complexity of the pricing model.
- Users find the **complexity of the interface** overwhelming initially, requiring time to adapt and learn effectively.

#### What Are Recent G2 Reviews of Wiz?

**"[Wiz Delivers Clear Visibility Into Cloud Risks That Truly Matter](https://www.g2.com/survey_responses/wiz-review-12960477)"**

**Rating:** 4.5/5.0 stars
*— Jason I.*

[Read full review](https://www.g2.com/survey_responses/wiz-review-12960477)

---

**"[Excellent Cloud Risk Visibility and Fast Insights with Wiz](https://www.g2.com/survey_responses/wiz-review-12964571)"**

**Rating:** 4.5/5.0 stars
*— Ruben F.*

[Read full review](https://www.g2.com/survey_responses/wiz-review-12964571)

---



### 2. [Orca Security](https://www.g2.com/products/orca-security/reviews)
The Orca Cloud Security Platform identifies, prioritizes, and remediates risks and compliance issues in workloads, configurations, and identities across your cloud estate spanning AWS, Azure, Google Cloud, Kubernetes, Alibaba Cloud, and Oracle Cloud. Orca offers the industry’s most comprehensive cloud security solution in a single platform — eliminating the need to deploy and maintain multiple point solutions. Orca is agentless-first, and connects to your environment in minutes using Orca’s patented SideScanning™ technology that provides deep and wide visibility into your cloud environment, without requiring agents. In addition, Orca can integrate with third-party agents for runtime visibility and protection for critical workloads. Orca is at the forefront of leveraging Generative AI for simplified investigations and accelerated remediation – reducing required skill levels and saving cloud security, DevOps, and development teams time and effort, while significantly improving security outcomes. As a Cloud Native Application Protection Platform (CNAPP), Orca consolidates many point solutions in one platform, including: CSPM, CWPP, CIEM, Vulnerability Management, Container and Kubernetes Security, DSPM, API Security, CDR, Multi-cloud Compliance, Shift Left Security, and AI-SPM.


**Average Rating:** 4.7/5.0
**Total Reviews:** 301

**Who Is the Company Behind Orca Security?**

- **Seller:** [Orca Security](https://www.g2.com/sellers/orca-security)
- **Company Website:** https://orca.security
- **Year Founded:** 2019
- **HQ Location:** Portland, Oregon
- **Twitter:** @orcasec (4,835 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/35573984/ (515 employees on LinkedIn®)

**Who Uses This Product?**
- **Who Uses This:** Security Engineer, CISO
- **Top Industries:** Information Technology and Services, Computer Software
- **Company Size:** 51% Enterprise, 38% Mid-Market


#### What Are Orca Security's Pros and Cons?

**Pros:**

- Ease of Use (13 reviews)
- Vulnerability Scanning (13 reviews)
- Features (11 reviews)
- Visibility (11 reviews)
- Comprehensive Security (9 reviews)

**Cons:**

- Security Vulnerabilities (6 reviews)
- Dashboard Issues (5 reviews)
- Delayed Detection (5 reviews)
- False Positives (5 reviews)
- Improvement Needed (5 reviews)


### What Do G2 Reviewers Say About Orca Security?
*AI-generated summary from verified user reviews*

**Pros:**

- Users praise the **ease of use** of Orca Security, appreciating its intuitive interface and quick setup process.
- Users value the **visibility and prioritization** of vulnerabilities provided by Orca Security, enhancing their cloud security posture.
- Users praise Orca Security for its **agentless features** , intuitive interface, and effective compliance and security modules.
- Users value the **exceptional visibility** provided by Orca Security, enhancing insight into their cloud environment effortlessly.
- Users value the **comprehensive security** features of Orca Security, enhancing visibility and ease of implementation across cloud environments.

**Cons:**

- Users note that Orca Security has **security vulnerabilities** , particularly regarding API security and vulnerable package detection.
- Users experience **dashboard issues** like cluttered information and slow performance, leading to navigation challenges and bugs.
- Users experience **delayed detection** with Orca Security due to slow scans and accumulated issues affecting troubleshooting efficiency.
- Users report frequent **false positives** in Orca Security, causing confusion over actual vulnerabilities in their systems.
- Users note that **improvement is needed** in reporting, automation, and granularity for a better Orca Security experience.

#### What Are Recent G2 Reviews of Orca Security?

**"[Orca Makes Shadow AI Agents Visible and Governable Across Our Cloud](https://www.g2.com/survey_responses/orca-security-review-13119948)"**

**Rating:** 5.0/5.0 stars
*— Bilal J.*

[Read full review](https://www.g2.com/survey_responses/orca-security-review-13119948)

---

**"[Orca Makes Least Privilege Practical with Clear Permission and Usage Visibility](https://www.g2.com/survey_responses/orca-security-review-13122107)"**

**Rating:** 5.0/5.0 stars
*— Alvaro V.*

[Read full review](https://www.g2.com/survey_responses/orca-security-review-13122107)

---


#### What Are G2 Users Discussing About Orca Security?

- [Where is Orca security based?](https://www.g2.com/discussions/where-is-orca-security-based) - 2 comments
- [How much does Orca security cost?](https://www.g2.com/discussions/how-much-does-orca-security-cost) - 1 comment
- [What is ORCA platform?](https://www.g2.com/discussions/what-is-orca-platform) - 1 comment
- [What does Orca Security do?](https://www.g2.com/discussions/what-does-orca-security-do) - 1 comment

### 3. [Sysdig Secure](https://www.g2.com/products/sysdig-sysdig-secure/reviews)
Sysdig Secure is the real-time cloud-native application protection platform (CNAPP) trusted by organizations of all sizes around the world.. Built by the creators of Falco and Wireshark, Sysdig uniquely delivers runtime-powered visibility and agentic AI to stop cloud attacks instantly, not after the damage is done. With Sysdig, you can: - Stop threats in 2 seconds and respond in minutes - Cut vulnerability noise by 95% with runtime prioritization - Detect real risk instantly across workloads, identities, and misconfigurations - Close permissions gaps in under 2 minutes Sysdig Secure consolidates CSPM, CWPP, CIEM, vulnerability management, and threat detection into a single open, real-time platform. Unlike other CNAPPs, Sysdig connects signals across runtime, identity, and posture to eliminate blind spots, reduce tool sprawl, and accelerate innovation without compromise. No guesswork. No black boxes. Just cloud security, the right way. Learn more at https://sysdig.com


**Average Rating:** 4.8/5.0
**Total Reviews:** 110

**Who Is the Company Behind Sysdig Secure?**

- **Seller:** [Sysdig](https://www.g2.com/sellers/sysdig-715eaed9-9743-4f27-bd2b-d3730923ac3e)
- **Company Website:** https://www.sysdig.com
- **Year Founded:** 2013
- **HQ Location:** San Francisco, California
- **Twitter:** @Sysdig (10,284 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/3592486/ (609 employees on LinkedIn®)

**Who Uses This Product?**
- **Who Uses This:** Security Engineer
- **Top Industries:** Financial Services, Information Technology and Services
- **Company Size:** 47% Enterprise, 40% Mid-Market


#### What Are Sysdig Secure's Pros and Cons?

**Pros:**

- Security (32 reviews)
- Vulnerability Detection (31 reviews)
- Threat Detection (30 reviews)
- Detection Efficiency (29 reviews)
- Visibility (23 reviews)

**Cons:**

- Feature Limitations (10 reviews)
- Complexity (9 reviews)
- Missing Features (8 reviews)
- Difficult Learning (7 reviews)
- Feature Complexity (7 reviews)


### What Do G2 Reviewers Say About Sysdig Secure?
*AI-generated summary from verified user reviews*

**Pros:**

- Users commend Sysdig Secure for its **runtime threat detection** and comprehensive scanning capabilities across diverse environments.
- Users value the **extensive vulnerability detection** of Sysdig Secure, enabling them to effectively manage cloud security risks.
- Users value the **real-time threat detection** and extensive scanning features of Sysdig Secure for enhanced security.
- Users value the **runtime threat detection and extensive scanning** capabilities of Sysdig Secure, enhancing their cloud security efforts.
- Users value the **comprehensive visibility** provided by Sysdig Secure, enhancing security and compliance across environments.

**Cons:**

- Users note **feature limitations** in Sysdig Secure, particularly with UI quirks and incomplete functionalities such as agentless scanning.
- Users find the **complexity during initial setup** of Sysdig Secure to be challenging for those lacking technical knowledge.
- Users note **missing features** like runtime detection and logging, which limit capabilities in Sysdig Secure.
- Users find the **difficult learning curve** of Sysdig Secure challenging, especially during initial setup and configuration.
- Users find Sysdig Secure&#39;s **feature complexity** overwhelming, hindering ease of use and quick threat response.

#### What Are Recent G2 Reviews of Sysdig Secure?

**"[Excellent Real-Time Kubernetes Security Visibility and Threat Detection](https://www.g2.com/survey_responses/sysdig-secure-review-12711991)"**

**Rating:** 5.0/5.0 stars
*— Syed Shahid A.*

[Read full review](https://www.g2.com/survey_responses/sysdig-secure-review-12711991)

---

**"[Next-Level Threat Detection: Bridging Runtime Security with Compliance Excellence](https://www.g2.com/survey_responses/sysdig-secure-review-10601664)"**

**Rating:** 5.0/5.0 stars
*— Anil  Z.*

[Read full review](https://www.g2.com/survey_responses/sysdig-secure-review-10601664)

---


#### What Are G2 Users Discussing About Sysdig Secure?

- [What does Sysdig Platform do?](https://www.g2.com/discussions/what-does-sysdig-platform-do)
- [What Sysdig secure?](https://www.g2.com/discussions/what-sysdig-secure)
- [Is Sysdig free?](https://www.g2.com/discussions/is-sysdig-free) - 1 comment
- [What is Sysdig used for?](https://www.g2.com/discussions/what-is-sysdig-used-for) - 1 comment

### 4. [Cortex Cloud](https://www.g2.com/products/cortex-cloud/reviews)
Cortex Cloud by Palo Alto Networks, the next version of Prisma Cloud, understands a unified security approach is essential for effectively addressing AppSec, CloudSec, and SecOps. Connecting cloud security and SOC workflows enables teams to achieve holistic visibility, trace risk across the lifecycle, and correlate real-time threat activity with development and runtime contexts. Cortex Cloud is a unified platform built on three core pillars: data integration, AI-driven intelligence, and automation. Now you can safeguard applications, data, and infrastructure across multicloud and hybrid environments with a unified data model that consolidates telemetry from code, runtime, identity, and endpoints, all into a single data source. Empower teams with precise, AI-powered insights and 2200+ machine learning models to identify and stop zero-day threats with real-time advanced threat detection and response. And automate with 1000+ prebuilt playbooks across your cloud stack to reduce manual workloads, accelerate remediations, and cut response times tenfold. Cortex Cloud delivers more than tools—it transforms how organizations secure their cloud environments.


**Average Rating:** 4.1/5.0
**Total Reviews:** 122

**Who Is the Company Behind Cortex Cloud?**

- **Seller:** [Palo Alto Networks](https://www.g2.com/sellers/palo-alto-networks)
- **Company Website:** https://www.paloaltonetworks.com
- **Year Founded:** 2005
- **HQ Location:** Santa Clara, CA
- **Twitter:** @PaloAltoNtwks (128,951 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/30086/ (22,313 employees on LinkedIn®)

**Who Uses This Product?**
- **Top Industries:** Information Technology and Services, Computer &amp; Network Security
- **Company Size:** 38% Enterprise, 31% Mid-Market


#### What Are Cortex Cloud's Pros and Cons?

**Pros:**

- Ease of Use (49 reviews)
- Features (45 reviews)
- Security (43 reviews)
- Visibility (38 reviews)
- Cloud Integration (34 reviews)

**Cons:**

- Expensive (31 reviews)
- Difficult Learning (30 reviews)
- Learning Curve (29 reviews)
- Pricing Issues (24 reviews)
- Complex Setup (21 reviews)


### What Do G2 Reviewers Say About Cortex Cloud?
*AI-generated summary from verified user reviews*

**Pros:**

- Users find Cortex Cloud to be **extremely easy to use** , appreciating its intuitive interface and seamless integration.
- Users value **strong cloud security** and appreciate the intuitive interface and effective compliance support of Cortex Cloud.
- Users value the **ease of managing cloud security** with Cortex Cloud, enhancing focus on critical threats efficiently.
- Users value the **clear visibility** provided by Cortex Cloud, enhancing their management of cloud security and team coordination.
- Users value the **ease of integration** with operations, enhancing the management of cloud security efficiently.

**Cons:**

- Users find the **high cost** of Cortex Cloud to be a significant drawback, impacting budget for mid-sized organizations.
- Users find the **difficult learning** curve challenging, especially with complex features and insufficient documentation for beginners.
- Users find the **learning curve steep** due to time-intensive onboarding and a cluttered user interface.
- Users express concerns about **pricing issues** with Cortex Cloud, as costs can rise significantly in larger setups.
- Users find the **complex setup** of Cortex Cloud to be time-consuming and challenging to navigate effectively.

#### What Are Recent G2 Reviews of Cortex Cloud?

**"[Cortex Cloud earned it&#39;s place before every release.](https://www.g2.com/survey_responses/cortex-cloud-review-13089470)"**

**Rating:** 5.0/5.0 stars
*— Johanna K.*

[Read full review](https://www.g2.com/survey_responses/cortex-cloud-review-13089470)

---

**"[Cortex Cloud Unifies Cloud Security with Real-Time Protection and Smart Prioritization](https://www.g2.com/survey_responses/cortex-cloud-review-12997786)"**

**Rating:** 4.0/5.0 stars
*— Galateya M.*

[Read full review](https://www.g2.com/survey_responses/cortex-cloud-review-12997786)

---



### 5. [Microsoft Entra Permissions Management](https://www.g2.com/products/microsoft-entra-permissions-management/reviews)
CloudKnox Permissions Management is a cloud infrastructure entitlement management (CIEM) solution that provides comprehensive visibility into permissions assigned to all identities – users and workloads – actions, and resources across cloud infrastructures. It detects, right-sizes, and monitors unused and excessive permissions and enables Zero Trust security through least privilege access in Microsoft Azure, AWS, and GCP.


**Average Rating:** 4.3/5.0
**Total Reviews:** 16

**Who Is the Company Behind Microsoft Entra Permissions Management?**

- **Seller:** [Microsoft](https://www.g2.com/sellers/microsoft)
- **Year Founded:** 1975
- **HQ Location:** Redmond, Washington
- **Twitter:** @microsoft (13,091,739 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/microsoft/ (231,632 employees on LinkedIn®)
- **Ownership:** MSFT

**Who Uses This Product?**
- **Company Size:** 50% Small-Business, 25% Enterprise



#### What Are Recent G2 Reviews of Microsoft Entra Permissions Management?

**"[Microsoft Entra is one of the best IAM tools for manage admin and user account.](https://www.g2.com/survey_responses/microsoft-entra-permissions-management-review-8962892)"**

**Rating:** 4.5/5.0 stars
*— Kush Kumar K.*

[Read full review](https://www.g2.com/survey_responses/microsoft-entra-permissions-management-review-8962892)

---

**"[Microsoft Entra Permissions Management](https://www.g2.com/survey_responses/microsoft-entra-permissions-management-review-8956276)"**

**Rating:** 5.0/5.0 stars
*— Lala R.*

[Read full review](https://www.g2.com/survey_responses/microsoft-entra-permissions-management-review-8956276)

---


#### What Are G2 Users Discussing About Microsoft Entra Permissions Management?

- [What is Microsoft Entra Permissions Management used for?](https://www.g2.com/discussions/what-is-microsoft-entra-permissions-management-used-for) - 1 comment
- [How do you use Cloudknox?](https://www.g2.com/discussions/how-do-you-use-cloudknox) - 1 comment
- [What is cloud security?](https://www.g2.com/discussions/what-is-cloud-security)
- [What is a Ciem?](https://www.g2.com/discussions/what-is-a-ciem)
- [What does CloudKnox do?](https://www.g2.com/discussions/what-does-cloudknox-do)

### 6. [SailPoint](https://www.g2.com/products/sailpoint/reviews)
SailPoint is the leader in identity security for the modern enterprise. Harnessing the power of AI and machine learning, SailPoint automates the management and control of access, delivering only the required access to the right identities and technology resources at the right time. Our sophisticated identity platform seamlessly integrates with existing systems and workflows, providing the singular view into all identities and their access. We meet customers where they are with an intelligent identity solution that matches the scale, velocity and environmental needs of the modern enterprise. SailPoint empowers the most complex enterprises worldwide to build a security foundation grounded in identity security.


**Average Rating:** 4.5/5.0
**Total Reviews:** 175

**Who Is the Company Behind SailPoint?**

- **Seller:** [SailPoint](https://www.g2.com/sellers/sailpoint)
- **Company Website:** https://www.sailpoint.com
- **Year Founded:** 2004
- **HQ Location:** Austin, TX
- **Twitter:** @SailPoint (15,037 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/47456/ (3,642 employees on LinkedIn®)

**Who Uses This Product?**
- **Who Uses This:** Software Engineer
- **Top Industries:** Financial Services, Information Technology and Services
- **Company Size:** 76% Enterprise, 18% Mid-Market


#### What Are SailPoint's Pros and Cons?

**Pros:**

- Ease of Use (36 reviews)
- Features (30 reviews)
- Security (24 reviews)
- Identity Management (21 reviews)
- Integrations (21 reviews)

**Cons:**

- Improvement Needed (17 reviews)
- Poor Customer Support (16 reviews)
- Missing Features (14 reviews)
- Expensive (12 reviews)
- Difficult Learning (11 reviews)


### What Do G2 Reviewers Say About SailPoint?
*AI-generated summary from verified user reviews*

**Pros:**

- Users value the **ease of use** in SailPoint, simplifying access management across multiple applications effortlessly.
- Users value SailPoint&#39;s **strong identity governance capabilities** , which enhance access control and provide centralized visibility.
- Users value the **advanced security features** of SailPoint, ensuring robust protection and simplified access management.
- Users value the **automated access reviews** of SailPoint, which enhance security and simplify user permission management.
- Users appreciate the **easy integration** of SailPoint, enabling smooth access management across multiple applications.

**Cons:**

- Users find the **improvement needed** in RBAC module and support responsiveness, delaying resolutions and feature implementations.
- Users experience **poor customer support** with slow response times and difficulties in communication, leading to frustration.
- Users highlight **missing features** in SailPoint, facing challenges with complexity and delayed updates for new functionalities.
- Users find SailPoint to be **expensive** due to time-consuming reviews and costly assistance for customization.
- Users find the **difficult learning** curve frustrating, especially without a programming background or sufficient formal training.

#### What Are Recent G2 Reviews of SailPoint?

**"[Identity Governance and Compliance Visibility for Complex Enterprises](https://www.g2.com/survey_responses/sailpoint-review-13000024)"**

**Rating:** 4.0/5.0 stars
*— Chardae A.*

[Read full review](https://www.g2.com/survey_responses/sailpoint-review-13000024)

---

**"[Centralized Identity Governance with Powerful Automation](https://www.g2.com/survey_responses/sailpoint-review-13122387)"**

**Rating:** 4.5/5.0 stars
*— Soufiane C.*

[Read full review](https://www.g2.com/survey_responses/sailpoint-review-13122387)

---


#### What Are G2 Users Discussing About SailPoint?

- [What is SailPoint used for?](https://www.g2.com/discussions/sailpoint-what-is-sailpoint-used-for) - 2 comments
- [What database does SailPoint use?](https://www.g2.com/discussions/what-database-does-sailpoint-use) - 1 comment
- [How much does SailPoint cost?](https://www.g2.com/discussions/how-much-does-sailpoint-cost)
- [What is SailPoint used for?](https://www.g2.com/discussions/what-is-sailpoint-used-for) - 2 comments
- [What is SailPoint software?](https://www.g2.com/discussions/what-is-sailpoint-software)

### 7. [CrowdStrike Falcon Cloud Security](https://www.g2.com/products/crowdstrike-falcon-cloud-security/reviews)
Crowdstrike Falcon Cloud Security is the only CNAPP to stop breaches in the cloud Built for today’s hybrid and multi-cloud environments, Falcon Cloud Security protects the entire cloud attack surface - from code to runtime - by combining continuous agentless visibility with real-time detection and response. At runtime, Falcon Cloud Security delivers best-in-class cloud workload protection and real-time cloud detection and response (CDR) to stop active threats across hybrid environments. Integrated with the CrowdStrike Falcon platform, it correlates signals across endpoint, identity, and cloud to detect sophisticated cross-domain attacks that point solutions miss—enabling teams to respond faster and stop breaches in progress. To reduce risk before attacks occur, Falcon Cloud Security also delivers agentless-driven posture management that proactively shrinks the cloud attack surface. Unlike typical solutions, Crowdstrike enriches cloud risk detections with adversary intelligence and graph-based context, enabling security teams to prioritize exploitable exposures and prevent breaches before they happen. Customers using Falcon Cloud Security consistently see measurable results: 89% faster cloud detection and response 100x reduction in false positives by prioritizing exploitable, business-critical risk 83% reduction in cloud security licenses due to elimination of redundant tools


**Average Rating:** 4.5/5.0
**Total Reviews:** 123

**Who Is the Company Behind CrowdStrike Falcon Cloud Security?**

- **Seller:** [CrowdStrike](https://www.g2.com/sellers/crowdstrike)
- **Company Website:** https://www.crowdstrike.com
- **Year Founded:** 2011
- **HQ Location:** Sunnyvale, CA
- **Twitter:** @CrowdStrike (110,809 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/2497653/ (11,343 employees on LinkedIn®)

**Who Uses This Product?**
- **Top Industries:** Information Technology and Services, Computer &amp; Network Security
- **Company Size:** 51% Enterprise, 35% Mid-Market


#### What Are CrowdStrike Falcon Cloud Security's Pros and Cons?

**Pros:**

- Security (49 reviews)
- Cloud Security (37 reviews)
- Detection Efficiency (34 reviews)
- Vulnerability Detection (31 reviews)
- Ease of Use (29 reviews)

**Cons:**

- Expensive (17 reviews)
- Improvements Needed (14 reviews)
- Improvement Needed (13 reviews)
- Feature Complexity (8 reviews)
- Learning Curve (8 reviews)


### What Do G2 Reviewers Say About CrowdStrike Falcon Cloud Security?
*AI-generated summary from verified user reviews*

**Pros:**

- Users commend the **complete protection** from code to cloud offered by CrowdStrike Falcon Cloud Security, enhancing security efficiently.
- Users appreciate the **strong security and compliance features** of CrowdStrike Falcon Cloud Security, enhancing visibility and threat intelligence.
- Users commend the **detection efficiency** of CrowdStrike Falcon Cloud Security, ensuring robust protection with minimal false positives.
- Users value the **complete protection and efficient vulnerability detection** offered by CrowdStrike Falcon Cloud Security for all organization sizes.
- Users appreciate the **user-friendly interface** of CrowdStrike Falcon Cloud Security, making it easy to navigate and investigate alerts.

**Cons:**

- Users note that the pricing of CrowdStrike Falcon Cloud Security is **expensive** , making it hard for smaller organizations to afford.
- Users suggest that **improvements are needed** for better uptime and user experience in CrowdStrike Falcon Cloud Security.
- Users note that **improvement is needed** in uptime and user experience during enrollment for CrowdStrike Falcon Cloud Security.
- Users find the **feature complexity** of CrowdStrike Falcon Cloud Security overwhelming, requiring a significant learning curve to navigate.
- Users face a **steep learning curve** with CrowdStrike Falcon Cloud Security, complicating the onboarding process for new users.

#### What Are Recent G2 Reviews of CrowdStrike Falcon Cloud Security?

**"[Centralized Visibility and Real-Time Threat Detection That Simplifies Multi-Cloud Security](https://www.g2.com/survey_responses/crowdstrike-falcon-cloud-security-review-13110517)"**

**Rating:** 4.5/5.0 stars
*— Akhil S.*

[Read full review](https://www.g2.com/survey_responses/crowdstrike-falcon-cloud-security-review-13110517)

---

**"[Unified Cloud Posture Visibility with CrowdStrike Falcon Cloud Security](https://www.g2.com/survey_responses/crowdstrike-falcon-cloud-security-review-13109056)"**

**Rating:** 4.5/5.0 stars
*— Naushad T.*

[Read full review](https://www.g2.com/survey_responses/crowdstrike-falcon-cloud-security-review-13109056)

---



### 8. [Sonrai Security](https://www.g2.com/products/sonrai-security/reviews)
Sonrai Security is a leading cloud privileged access management solutions provider. With a mission to empower enterprises of all sizes to innovate securely and confidently, Sonrai Security delivers identity, access, and privilege security for companies running on AWS, Azure, and Google Cloud platforms. The company is renowned for pioneering the Cloud Permissions Firewall, enabling one-click least privilege while supporting developer access needs without disruption. Trusted by Cloud Operations, Development, and Security Teams at leading companies across various industries, Sonrai Security is committed to driving innovation and excellence in cloud security. Sonrai’s Cloud Permissions Firewall, the leading cloud PAM solution, gets cloud access under control, slashes the privileged attack surface, and automates least privilege all without impeding DevOps. The Cloud Permissions Firewall uses privileged permission intelligence and usage monitoring to determine who needs what permissions in your cloud. Then, with one-click, it eliminates all unused sensitive privileges across your entire multi-cloud estate. Just-in-time access and exceptions are granted to roles on the fly as new needs come up so development goes uninterrupted. SecOps teams spend 97% less time achieving least privilege and slash the attack surface by 92%.


**Average Rating:** 4.5/5.0
**Total Reviews:** 26

**Who Is the Company Behind Sonrai Security?**

- **Seller:** [Sonrai Security](https://www.g2.com/sellers/sonrai-security)
- **Year Founded:** 2017
- **HQ Location:** New York, US
- **LinkedIn® Page:** https://www.linkedin.com/company/sonrai-security (66 employees on LinkedIn®)

**Who Uses This Product?**
- **Top Industries:** Information Technology and Services
- **Company Size:** 42% Mid-Market, 38% Enterprise


#### What Are Sonrai Security's Pros and Cons?

**Pros:**

- Cloud Security (12 reviews)
- Security (12 reviews)
- Cloud Management (10 reviews)
- Cloud Technology (8 reviews)
- Ease of Use (8 reviews)

**Cons:**

- Complexity (3 reviews)
- Expensive (3 reviews)
- Feature Limitations (3 reviews)
- Improvement Needed (3 reviews)
- Limited Customization (3 reviews)


### What Do G2 Reviewers Say About Sonrai Security?
*AI-generated summary from verified user reviews*

**Pros:**

- Users value the **comprehensive cloud security features** of Sonrai Security, significantly enhancing control over permissions and visibility.
- Users highlight **strong security features** of Sonrai Security, enabling effective management of permissions and data vulnerabilities.
- Users appreciate the **efficient cloud management** provided by Sonrai, enabling seamless access governance and reducing manual efforts.
- Users find the **cloud permissions management** feature invaluable for enhancing security and simplifying access control in the cloud.
- Users appreciate the **ease of use** of Sonrai Security, finding the implementation and integration straightforward and efficient.

**Cons:**

- Users find the **complexity** of Sonrai Security challenging, despite helpful onboarding and support from the team.
- Users find Sonrai Security&#39;s **pricing can be high** , particularly challenging for smaller teams and startups.
- Users face **feature limitations** with Sonrai Security, including unclear licensing and a lack of automation, causing frustration.
- Users feel that **improvement is needed** in Sonrai Security&#39;s complexity and limited dashboard customization options.
- Users find the **limited customization options** frustrating, affecting their overall experience and usability of Sonrai Security.

#### What Are Recent G2 Reviews of Sonrai Security?

**"[IAM simplified](https://www.g2.com/survey_responses/sonrai-security-review-11501542)"**

**Rating:** 5.0/5.0 stars
*— Brendan P.*

[Read full review](https://www.g2.com/survey_responses/sonrai-security-review-11501542)

---

**"[Excellent Cloud Visibility, Some Learning Needed](https://www.g2.com/survey_responses/sonrai-security-review-12671110)"**

**Rating:** 4.0/5.0 stars
*— Sathish B.*

[Read full review](https://www.g2.com/survey_responses/sonrai-security-review-12671110)

---



### 9. [Saviynt](https://www.g2.com/products/saviynt-saviynt/reviews)
Saviynt helps organizations transform their organization with identity security. Our AI-first platform enables enterprises to secure every identity — human, non-human, and AI — within any application and in any environment. With Saviynt, organizations strengthen their identity security posture, streamline operations, and ensure that every user has the right access at the right time. The Saviynt Identity Platform unifies identity governance (IGA), application access, cloud security, and privileged account management into a single, end-to-end platform. And, with our AI-powered recommendation engine, application onboarding, and more, users are empowered to make faster, smarter, data-driven decisions. In turn, organizations enjoy lower risk, complete visibility and governance, reduced total cost of ownership, and much more throughout their entire identity security program.


**Average Rating:** 4.4/5.0
**Total Reviews:** 79

**Who Is the Company Behind Saviynt?**

- **Seller:** [Saviynt](https://www.g2.com/sellers/saviynt)
- **Company Website:** https://www.saviynt.com
- **Year Founded:** 2010
- **HQ Location:** El Segundo, US
- **Twitter:** @saviynt (1,242 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/saviynt (1,662 employees on LinkedIn®)

**Who Uses This Product?**
- **Top Industries:** Information Technology and Services, Oil &amp; Energy
- **Company Size:** 80% Enterprise, 5% Mid-Market


#### What Are Saviynt's Pros and Cons?

**Pros:**

- Ease of Use (23 reviews)
- Features (19 reviews)
- Easy Setup (13 reviews)
- Customer Support (10 reviews)
- Integrations (10 reviews)

**Cons:**

- Difficult Learning (9 reviews)
- Poor Interface Design (9 reviews)
- Complex Setup (8 reviews)
- Complex Usability (8 reviews)
- Complexity (7 reviews)


### What Do G2 Reviewers Say About Saviynt?
*AI-generated summary from verified user reviews*

**Pros:**

- Users appreciate the **exceptional ease of use** of Saviynt, which simplifies processes and reduces learning time significantly.
- Users appreciate the **rich feature set** of Saviynt, enabling seamless integration and effective access management.
- Users highlight the **easy setup** of Saviynt, making integration and resource access management significantly simpler.
- Users appreciate Saviynt&#39;s **exceptional customer support** , ensuring quick issue resolution and continuous assistance throughout the integration process.
- Users value the **seamless integration possibilities** of Saviynt, enhancing their identity management capabilities across various tools.

**Cons:**

- Users face **difficult learning** challenges with Saviynt, struggling with its frustrating and non-intuitive user experience.
- Users report a **frustrating interface design** in Saviynt, leading to unnecessary complications and inefficiencies.
- Users report a **complex setup** process for Saviynt, often experiencing frustrating UX and lengthy onboarding challenges.
- Users find **complex usability** a major hindrance, citing frustrating UX and challenging navigation throughout the platform.
- Users find Saviynt&#39;s **complexity** challenging, requiring extensive time and technical knowledge for effective use and integration.

#### What Are Recent G2 Reviews of Saviynt?

**"[My experience with this product is mixed, as I have observed both significant improvement &amp; some gap](https://www.g2.com/survey_responses/saviynt-review-12607406)"**

**Rating:** 4.0/5.0 stars
*— sugandh j.*

[Read full review](https://www.g2.com/survey_responses/saviynt-review-12607406)

---

**"[Most Reliable Identity and Access Management (IAM) system](https://www.g2.com/survey_responses/saviynt-review-10680565)"**

**Rating:** 5.0/5.0 stars
*— Praveen Kumar G.*

[Read full review](https://www.g2.com/survey_responses/saviynt-review-10680565)

---



### 10. [Tenable Cloud Security](https://www.g2.com/products/tenable-tenable-cloud-security/reviews)
Tenable Cloud Security is an actionable cloud security platform that exposes and closes priority security gaps caused by misconfigurations, risky entitlements and vulnerabilities. Organizations use its intuitive UI to unify siloed tools to secure the full cloud stack, achieving end-to-end visibility, prioritization and remediation across infrastructure, workloads, identities, data and AI services. Users can access the extensive knowledgebase of Tenable Research, reducing the risk of breaches with advanced prioritization that understands resource, identity and risk relationships. Tenable uses this context to pinpoint toxic combinations of risk most likely to be exploited. Take action, even if you only have 5 minutes, with guided remediations and code snippets that significantly reduce MTTR. With one click, report on compliance with industry benchmarks and regulatory requirements, e.g. SOC 2, GDPR &amp; HIPAA. TCS is part of Tenable’s AI-powered exposure management platform, Tenable One.


**Average Rating:** 4.6/5.0
**Total Reviews:** 37

**Who Is the Company Behind Tenable Cloud Security?**

- **Seller:** [Tenable](https://www.g2.com/sellers/tenable)
- **Company Website:** https://www.tenable.com/
- **HQ Location:** Columbia, MD
- **Twitter:** @TenableSecurity (87,752 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/25452/ (2,350 employees on LinkedIn®)
- **Ownership:** NASDAQ: TENB

**Who Uses This Product?**
- **Top Industries:** Information Technology and Services, Computer Software
- **Company Size:** 57% Mid-Market, 38% Enterprise


#### What Are Tenable Cloud Security's Pros and Cons?

**Pros:**

- Compliance (6 reviews)
- Detailed Analysis (5 reviews)
- Integrations (5 reviews)
- Visibility (5 reviews)
- Vulnerability Detection (5 reviews)

**Cons:**

- Complex Setup (4 reviews)
- Expensive (4 reviews)
- Difficult Setup (3 reviews)
- Implementation Difficulty (3 reviews)
- Inadequate Reporting (3 reviews)


### What Do G2 Reviewers Say About Tenable Cloud Security?
*AI-generated summary from verified user reviews*

**Pros:**

- Users value the **comprehensive compliance capabilities** of Tenable Cloud Security, effectively managing risks and misconfigurations.
- Users value the **comprehensive visibility** Tenable Cloud Security provides into misconfigurations and compliance risks across cloud platforms.
- Users value the **seamless integration with security tools** , enhancing their cloud security management and visibility.
- Users value the **unified visibility** Tenable Cloud Security provides, simplifying monitoring and managing cloud misconfigurations and compliance.
- Users value the **effective vulnerability detection** capabilities of Tenable Cloud Security for enhanced cloud environment protection.

**Cons:**

- Users find the **complex setup** of Tenable Cloud Security time-consuming and in need of technical expertise for effective use.
- Users find the **pricing structure concerning** , especially for smaller organizations and teams looking for flexibility.
- Users often face a **difficult setup** process with Tenable Cloud Security, requiring significant technical expertise for integration.
- Users find the **implementation difficulty** of Tenable Cloud Security can be time-consuming and requires technical expertise.
- Users point out the **reporting and analytics limitations** in Tenable Cloud Security, indicating a need for clearer summaries.

#### What Are Recent G2 Reviews of Tenable Cloud Security?

**"[Tenable cloud security : Powerful visibility with room to improve on usability and scale.](https://www.g2.com/survey_responses/tenable-cloud-security-review-11823999)"**

**Rating:** 4.5/5.0 stars
*— Ajay S.*

[Read full review](https://www.g2.com/survey_responses/tenable-cloud-security-review-11823999)

---

**"[Comprehensive Security Visibility with Tenable Cloud Security](https://www.g2.com/survey_responses/tenable-cloud-security-review-11791666)"**

**Rating:** 4.0/5.0 stars
*— Prathamesh K.*

[Read full review](https://www.g2.com/survey_responses/tenable-cloud-security-review-11791666)

---


#### What Are G2 Users Discussing About Tenable Cloud Security?

- [What is Ermetic used for?](https://www.g2.com/discussions/what-is-ermetic-used-for) - 1 comment

### 11. [FortiCNAPP](https://www.g2.com/products/forticnapp/reviews)
FortiCNAPP (formerly Lacework) is an AI-powered Cloud-Native Application Protection Platform that delivers unified security across your multi-cloud and hybrid environments. Built to protect the entire application lifecycle—from development to runtime—it combines posture management, workload protection, identity security, and threat detection into one integrated platform. By leveraging machine learning and behavioral analytics, FortiCNAPP helps security teams detect unknown threats, reduce noise, and accelerate response. Integrated with the Fortinet Security Fabric, it provides full-stack visibility across cloud, network, and endpoint environments—empowering teams to operate with confidence, reduce complexity, and scale securely.


**Average Rating:** 4.4/5.0
**Total Reviews:** 383

**Who Is the Company Behind FortiCNAPP?**

- **Seller:** [Fortinet](https://www.g2.com/sellers/fortinet)
- **Year Founded:** 2000
- **HQ Location:** Sunnyvale, CA
- **Twitter:** @Fortinet (151,422 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/6460/ (16,279 employees on LinkedIn®)
- **Ownership:** NASDAQ: FTNT

**Who Uses This Product?**
- **Who Uses This:** Security Engineer, Security Analyst
- **Top Industries:** Information Technology and Services, Computer Software
- **Company Size:** 62% Mid-Market, 26% Enterprise


#### What Are FortiCNAPP's Pros and Cons?

**Pros:**

- Security (8 reviews)
- Vulnerability Detection (7 reviews)
- Alert Management (6 reviews)
- Cloud Security (6 reviews)
- Ease of Use (6 reviews)

**Cons:**

- Difficult Setup (5 reviews)
- Poor Documentation (5 reviews)
- Complex Setup (4 reviews)
- Setup Difficulty (4 reviews)
- Complex Configuration (3 reviews)


### What Do G2 Reviewers Say About FortiCNAPP?
*AI-generated summary from verified user reviews*

**Pros:**

- Users favor the **robust security features** of FortiCNAPP, ensuring comprehensive protection across multi-cloud environments.
- Users value the **vulnerability detection capabilities** of FortiCNAPP, enhancing security monitoring and deployment efficiency.
- Users admire the **effective alerting for misconfigurations** and appreciate its seamless integration with Fortinet products.
- Users value the **excellent visibility and integration** of FortiCNAPP, enhancing cloud security management effortlessly.
- Users find Lacework FortiCNAPP&#39;s **ease of use** enhances their experience, making setup and navigation straightforward and efficient.

**Cons:**

- Users find the **difficult setup** of FortiCNAPP challenging, particularly for those lacking cloud security expertise.
- Users struggle with **poor documentation** , making setup and configuration difficult, particularly for new users.
- Users find the **complex setup** challenging, particularly for new users without extensive cloud security knowledge.
- Users find the **setup difficulty** of FortiCNAPP challenging due to complex configuration and insufficient documentation.
- Users find the **complex configuration** challenging due to overwhelming features and insufficient documentation for newcomers.

#### What Are Recent G2 Reviews of FortiCNAPP?

**"[Unified Cloud Security Visibility with Smart Risk Prioritization](https://www.g2.com/survey_responses/forticnapp-review-12375470)"**

**Rating:** 4.0/5.0 stars
*— Ashenafi M.*

[Read full review](https://www.g2.com/survey_responses/forticnapp-review-12375470)

---

**"[Effortless Setup with Stellar Features](https://www.g2.com/survey_responses/forticnapp-review-11878517)"**

**Rating:** 5.0/5.0 stars
*— Karan B.*

[Read full review](https://www.g2.com/survey_responses/forticnapp-review-11878517)

---


#### What Are G2 Users Discussing About FortiCNAPP?

- [How much does lacework cost?](https://www.g2.com/discussions/how-much-does-lacework-cost)
- [Who uses lacework?](https://www.g2.com/discussions/who-uses-lacework)
- [Is lacework a SIEM?](https://www.g2.com/discussions/is-lacework-a-siem) - 1 comment
- [What is lacework software?](https://www.g2.com/discussions/what-is-lacework-software)

### 12. [BeyondTrust Entitle Just-in-Time Access](https://www.g2.com/products/beyondtrust-entitle-just-in-time-access/reviews)
Entitle is a seamless way to grant employees granular and just-in-time access within Cloud and SaaS. Specializing in temporary admin escalations, break-glass access, granular access to PII, and access reviews, Entitle offers centralized entitlement visibility, self-serve access, and auto policy enforcement. Entitle serves dozens of public and high-growth companies including Starburst, Bloomreach, Appsflyer, Noname, Lemonade, and Orum. Its customers report x25 faster access to cloud resources, up to 91% reducing in standing permissions and countless man hours saved. Visit entitle.io to learn more.


**Average Rating:** 4.3/5.0
**Total Reviews:** 12

**Who Is the Company Behind BeyondTrust Entitle Just-in-Time Access?**

- **Seller:** [BeyondTrust](https://www.g2.com/sellers/beyondtrust)
- **Company Website:** https://www.beyondtrust.com
- **Year Founded:** 1985
- **HQ Location:** Johns Creek, GA
- **Twitter:** @BeyondTrust (14,335 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/294396/ (1,707 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 75% Mid-Market, 17% Enterprise


#### What Are BeyondTrust Entitle Just-in-Time Access's Pros and Cons?

**Pros:**

- Documentation (2 reviews)
- Security (2 reviews)
- Access Control (1 reviews)
- Auditing (1 reviews)
- Capabilities (1 reviews)

**Cons:**

- Complex Queries (2 reviews)
- Complex Usability (2 reviews)
- Complex Usage (2 reviews)
- Difficult Setup (2 reviews)
- Admin Management Issues (1 reviews)


### What Do G2 Reviewers Say About BeyondTrust Entitle Just-in-Time Access?
*AI-generated summary from verified user reviews*

**Pros:**

- Users find the **documentation helpful** , facilitating easy setup and efficient privileged access management with BeyondTrust Entitle.
- Users appreciate the **enhanced security** of BeyondTrust Entitle Just-in-Time Access, effectively minimizing attack surfaces and ensuring compliance.
- Users appreciate the **effective access control** of BeyondTrust, ensuring security without hindering workflow efficiency.
- Users appreciate the **detailed auditing capabilities** of BeyondTrust Just-in-Time Access, enhancing security and ensuring compliance effectively.
- Users value the **temporary access feature** of BeyondTrust Just-in-Time Access, which enhances security and compliance significantly.

**Cons:**

- Users find the **complex queries** of BeyondTrust Entitle Just-in-Time Access challenging, especially during initial setup and integration.
- Users find the **complex usability** of BeyondTrust Entitle Just-in-Time Access challenging, particularly for first-time setup and integration.
- Users find the **initial setup complexity** of BeyondTrust Entitle Just-in-Time Access challenging, particularly for new users.
- Users find the **difficult setup** of BeyondTrust Just-in-Time Access to be time-consuming and complex for integration.
- Users find the **admin management issues** challenging, citing cumbersome setup and a less intuitive admin panel.

#### What Are Recent G2 Reviews of BeyondTrust Entitle Just-in-Time Access?

**"[&quot;Seamless and secure temporary access management.&quot;](https://www.g2.com/survey_responses/beyondtrust-entitle-just-in-time-access-review-10591066)"**

**Rating:** 5.0/5.0 stars
*— Verified User in Accounting*

[Read full review](https://www.g2.com/survey_responses/beyondtrust-entitle-just-in-time-access-review-10591066)

---

**"[Best solution to securely access the target system](https://www.g2.com/survey_responses/beyondtrust-entitle-just-in-time-access-review-10714707)"**

**Rating:** 4.5/5.0 stars
*— Lokesha K.*

[Read full review](https://www.g2.com/survey_responses/beyondtrust-entitle-just-in-time-access-review-10714707)

---



### 13. [Plerion](https://www.g2.com/products/plerion/reviews)
Plerion is a cloud security platform designed to assist organizations in managing and mitigating risks within their cloud environments. Unlike traditional security tools that inundate users with alerts, Plerion focuses on actionable insights, enabling teams to address vulnerabilities effectively. By streamlining the risk management process, Plerion transforms the way organizations approach cloud security, ensuring that the most critical threats are prioritized and resolved. The platform is tailored for IT security teams and cloud administrators across various industries that utilize cloud services such as AWS, Azure, and Google Cloud Platform (GCP). Plerion’s unique approach allows users to visualize their cloud infrastructure, identities, workloads, and code as a cohesive graph. This visualization helps users identify the approximately 1% of risks that are genuinely exploitable, eliminating the noise typically associated with security alerts. By presenting a concise, ranked list of vulnerabilities, Plerion empowers teams to focus their efforts where they matter most. At the heart of the Plerion platform is Pleri, an AI-driven cloud security engineer that mimics the investigative capabilities of a human security expert. Pleri assesses findings, verifies their exploitability in context, and traces risks back to the underlying code responsible for them. This automated process culminates in the creation of pull requests or Jira tickets for remediation, ensuring that every proposed change awaits human approval. This feature not only enhances accountability through full audit trails but also allows for easy rollbacks if necessary. Plerion’s comprehensive coverage includes cloud configuration, workloads, identity and permissions, data, code, and AI workloads, making it a versatile solution for diverse cloud environments. The platform also offers compliance mapping against a wide range of frameworks, linking each identified failure to specific corrective actions rather than merely generating reports. This capability significantly reduces the time and effort required for compliance management. Organizations using Plerion have reported substantial improvements in their security operations. For instance, Deputy achieved an 80% reduction in alerts and decreased their time-to-remediation from 30 days to just 4 hours. Similarly, Basis eliminated 40 hours of manual review each week, illustrating the platform&#39;s efficiency. With ISO 27001 certification, SOC 2 attestation, and the AWS Security Software Competency, Plerion ensures a high standard of security and reliability. By deploying in minutes rather than months, Plerion allows organizations to put their cloud security on autopilot while maintaining a human touch in the decision-making process.


**Average Rating:** 4.7/5.0
**Total Reviews:** 26

**Who Is the Company Behind Plerion?**

- **Seller:** [Plerion](https://www.g2.com/sellers/plerion)
- **Company Website:** https://plerion.com/
- **Year Founded:** 2021
- **HQ Location:** Sydney, AU
- **Twitter:** @PlerionHQ (141 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/plerion (31 employees on LinkedIn®)

**Who Uses This Product?**
- **Top Industries:** Computer Software, Financial Services
- **Company Size:** 52% Mid-Market, 33% Small-Business


#### What Are Plerion's Pros and Cons?

**Pros:**

- Security (11 reviews)
- Ease of Use (10 reviews)
- Customer Support (7 reviews)
- Helpful (7 reviews)
- Prioritization (6 reviews)

**Cons:**

- Improvements Needed (5 reviews)
- Improvement Needed (4 reviews)
- Missing Features (4 reviews)
- Cloud Integration (2 reviews)
- Integration Issues (2 reviews)


### What Do G2 Reviewers Say About Plerion?
*AI-generated summary from verified user reviews*

**Pros:**

- Users appreciate the **centralized security management** of Plerion, providing clear risk visibility and actionable insights.
- Users love the **ease of use** of Plerion, appreciating its seamless integration and practical guidance for security management.
- Users praise the **exceptional customer support** of Plerion, noting their responsiveness and genuine commitment to customer success.
- Users appreciate the **immediate visibility and actionable advice** provided by Plerion, enhancing their security management efforts.
- Users value the **effective prioritization** in Plerion, allowing focus on critical security issues without distraction.

**Cons:**

- Users note that **improvements are needed** in ongoing measurement tools and Jira ticket creation for better long-term value.
- Users feel that Plerion needs **improvement in ongoing measurement** and enhanced features to maintain visible long-term value.
- Users find the **missing features** in Plerion limit customization and cloud support, impacting their overall experience.
- Users find the **limited support for Google Cloud** challenging, wishing for better integration with all cloud providers.
- Users face **integration issues** due to manual updates and deployment friction with the new features in Plerion.

#### What Are Recent G2 Reviews of Plerion?

**"[Practical Cloud Security That Cuts Through the Noise](https://www.g2.com/survey_responses/plerion-review-13058031)"**

**Rating:** 4.5/5.0 stars
*— Hieu V.*

[Read full review](https://www.g2.com/survey_responses/plerion-review-13058031)

---

**"[Cuts Through Alert Noise with Contextual Risk Insights and an AI Cloud Security Engineer](https://www.g2.com/survey_responses/plerion-review-13102366)"**

**Rating:** 5.0/5.0 stars
*— Joshua K.*

[Read full review](https://www.g2.com/survey_responses/plerion-review-13102366)

---



### 14. [CyberArk Secure Cloud Access](https://www.g2.com/products/cyberark-secure-cloud-access/reviews)
CyberArk Secure Cloud Access provisions Zero Standing Privileges (ZSP) across multi-cloud environments, scoping just enough permissions to adhere to the principle of least privilege access. CyberArk is the only Identity Security Platform to apply ZSP across a sprawl of cloud infrastructure and entitlements. Whether operating in Google Cloud, AWS, or Azure, your team can confidently secure the cloud while delivering a user experience native to developers.


**Average Rating:** 4.9/5.0
**Total Reviews:** 6

**Who Is the Company Behind CyberArk Secure Cloud Access?**

- **Seller:** [Palo Alto Networks](https://www.g2.com/sellers/palo-alto-networks)
- **Year Founded:** 2005
- **HQ Location:** Santa Clara, CA
- **Twitter:** @PaloAltoNtwks (128,951 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/30086/ (22,313 employees on LinkedIn®)
- **Ownership:** NYSE: PANW

**Who Uses This Product?**
- **Company Size:** 67% Mid-Market, 33% Enterprise


#### What Are CyberArk Secure Cloud Access's Pros and Cons?

**Pros:**

- Ease of Use (2 reviews)
- User Interface (2 reviews)
- Access Management (1 reviews)
- Easy Setup (1 reviews)
- Features (1 reviews)



### What Do G2 Reviewers Say About CyberArk Secure Cloud Access?
*AI-generated summary from verified user reviews*

**Pros:**

- Users appreciate the **ease of use** with CyberArk, enjoying seamless access and user-friendly security features.
- Users appreciate the **user-friendly interface** of CyberArk Secure Cloud Access, simplifying access and enhancing account security.
- Users value the **seamless access management** provided by CyberArk, allowing easy app integration and mobile authentication.
- Users find the **easy setup** of CyberArk Secure Cloud Access convenient, simplifying access across multiple applications.
- Users value the **single sign-on convenience** of CyberArk Secure Cloud Access, streamlining access across multiple applications.


#### What Are Recent G2 Reviews of CyberArk Secure Cloud Access?

**"[Intuitive Interface with Unmatched Security](https://www.g2.com/survey_responses/cyberark-secure-cloud-access-review-12584113)"**

**Rating:** 5.0/5.0 stars
*— Nixon L.*

[Read full review](https://www.g2.com/survey_responses/cyberark-secure-cloud-access-review-12584113)

---

**"[Good for Authentication and security Purpose](https://www.g2.com/survey_responses/cyberark-secure-cloud-access-review-10769900)"**

**Rating:** 5.0/5.0 stars
*— Lovepreet S.*

[Read full review](https://www.g2.com/survey_responses/cyberark-secure-cloud-access-review-10769900)

---



### 15. [CheckRed](https://www.g2.com/products/checkred/reviews)
CheckRed is a complete cloud security platform (SSPM/CNAPP/CSPM/CIEM/CWPP/Compliance) covering all critical SaaS apps and cloud providers – all in a single, user-friendly, and affordable solution.


**Average Rating:** 4.8/5.0
**Total Reviews:** 4

**Who Is the Company Behind CheckRed?**

- **Seller:** [CheckRed](https://www.g2.com/sellers/checkred)
- **HQ Location:** 5220 Spring Valley Rd Suite 604 Dallas,TX 75254
- **LinkedIn® Page:** https://www.linkedin.com/company/checkred/

**Who Uses This Product?**
- **Company Size:** 75% Mid-Market, 25% Small-Business



#### What Are Recent G2 Reviews of CheckRed?

**"[A comprehensive solution for modern cybersecurity challenges](https://www.g2.com/survey_responses/checkred-review-9987118)"**

**Rating:** 5.0/5.0 stars
*— Sanket S.*

[Read full review](https://www.g2.com/survey_responses/checkred-review-9987118)

---

**"[Enhanced the general security of our cloud systems](https://www.g2.com/survey_responses/checkred-review-10054446)"**

**Rating:** 4.0/5.0 stars
*— URSINO P.*

[Read full review](https://www.g2.com/survey_responses/checkred-review-10054446)

---



### 16. [Trustle](https://www.g2.com/products/trustle/reviews)
Trustle goes beyond Cloud Infrastructure Entitlement Management (CIEM) to prioritize the most over-privileged users, and easily transition your entire organization to Just-In-Time Access to everything from AWS production environments processing customer transactions to GitHub repos with valuable source code and HR platforms housing your employees&#39; personal information. Trustle takes you from questioning whether a contractor still has access to being confident that the Operations team&#39;s access was revoked immediately after the maintenance window. Your team will thank you when they see how easy it is to request and approve access through the Chat tools (Slack, Microsoft Teams) they use every day.


**Average Rating:** 4.5/5.0
**Total Reviews:** 1

**Who Is the Company Behind Trustle?**

- **Seller:** [Trustle](https://www.g2.com/sellers/trustle)
- **Year Founded:** 2019
- **HQ Location:** Boston, MA, USA
- **LinkedIn® Page:** https://www.linkedin.com/company/trustlesecurity (15 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 100% Mid-Market


#### What Are Trustle's Pros and Cons?

**Pros:**

- Cloud Services (1 reviews)
- Identity Management (1 reviews)
- Secure Access (1 reviews)



### What Do G2 Reviewers Say About Trustle?
*AI-generated summary from verified user reviews*

**Pros:**

- Users value the **cloud-based identity security** of Trustle, which enhances access management and minimizes risks effectively.
- Users value Trustle&#39;s **effective identity management** , enhancing security and access control across cloud environments seamlessly.
- Users value the **secure access** provided by Trustle, ensuring effective identity security and risk management in the cloud.


#### What Are Recent G2 Reviews of Trustle?

**"[Trustle Cloud Base Security Solution](https://www.g2.com/survey_responses/trustle-review-10722969)"**

**Rating:** 4.5/5.0 stars
*— Rehan D.*

[Read full review](https://www.g2.com/survey_responses/trustle-review-10722969)

---



### 17. [Authomize](https://www.g2.com/products/authomize/reviews)
Authomize protects organizations from identity-based cyberattacks with the first Identity Threat Detection and Response (ITDR) Platform. Authomize collects and normalizes data of identities, access privileges, assets, and activities from cloud services, applications, and IAM solutions in order to detect, investigate and respond to identity risks and threats. Customers use Authomize to gain visibility of actual access, achieve least privilege across cloud services and applications, secure their IAM infrastructure, and automate compliance and audit preparations.


**Average Rating:** 4.5/5.0
**Total Reviews:** 1

**Who Is the Company Behind Authomize?**

- **Seller:** [Authomize](https://www.g2.com/sellers/authomize)
- **Year Founded:** 2020
- **HQ Location:** Alpharetta, US
- **LinkedIn® Page:** https://www.linkedin.com/company/authomize (6 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 100% Enterprise



#### What Are Recent G2 Reviews of Authomize?

**"[Authomize has good potential to be a market leader](https://www.g2.com/survey_responses/authomize-review-6998969)"**

**Rating:** 4.5/5.0 stars
*— Jaspreet S.*

[Read full review](https://www.g2.com/survey_responses/authomize-review-6998969)

---



### 18. [Darktrace / CLOUD](https://www.g2.com/products/darktrace-cloud/reviews)
Darktrace / CLOUD is a Cloud-Native Application Protection Platform (CNAPP) with advanced real-time Cloud Detection and Response (CDR) to protect runtime environments from active threats. It secures modern hybrid and multi-cloud environments by combining posture management, runtime threat detection, cloud-native response, and automated cloud investigations in a single AI-driven platform. As organizations scale across AWS, Azure, Google Cloud, SaaS, containers, and serverless architectures, static posture checks and alert-heavy tools are no longer enough. Darktrace / CLOUD continuously understands how your cloud environment behaves and automatically stops threats as they unfold. 1. Stop Active Cloud Threats in Real Time with AI-Driven CDR Darktrace delivers true Cloud Detection and Response in live production environments. Its Self-Learning AI monitors identity behavior, workload activity, and network connections to detect the most subtle indicators of account compromise, privilege escalation, insider threats, ransomware, and novel attacks. When real threats emerge, it can take precise, proportionate action to contain them immediately, minimizing business disruption. 2. Maintain Continuous Cloud Visibility, Posture Assurance, and Risk Reduction Darktrace combines continuous cloud monitoring with Cloud Security Posture Management (CSPM) capabilities to dynamically map architecture, identities (human and non-human), services, containers, and configurations. It identifies misconfigurations, vulnerabilities, toxic combinations of privileges, and exploitable attack paths, not just static compliance gaps. This ensures organizations maintain real-time visibility and awareness of risk as cloud environments evolve. 3. Accelerate Incident Response with Automated Cloud Investigations at Scale Darktrace integrates with any detection source and your existing security stack to perform automated investigations at cloud speed and scale. When suspicious activity is detected, Darktrace automatically collects and analyzes forensic evidence across logs, configurations, disk, memory, and ephemeral workloads. Full attacker timelines are generated in minutes, enabling rapid root-cause analysis, confident remediation, and audit-ready evidence without manual data gathering. While many CNAPP solutions focus primarily on posture or fragmented point capabilities, Darktrace / CLOUD unifies prevention, real-time detection, response, and automated investigation in one continuous AI-driven workflow, delivering protection that adapts as fast as the cloud itself. AI-Driven Automation from Detection to Investigation Self-Learning AI detects known, unknown, and novel threats while autonomous response and automated investigations dramatically reduce analyst workload and stop threats automatically. Unmatched Cloud Coverage with Breadth and Depth Darktrace unifies CSPM, identity analytics, runtime CDR, and forensic depth across IaaS, PaaS, SaaS, containers, and serverless environments to deliver protection at cloud speed and scale. True Hybrid, Cross-Domain Protection The platform correlates live activity across cloud, SaaS, on-premises, and network environments to uncover and contain lateral, cross-domain attacks. Flexible Deployment for Enterprise Reality With agentless API integrations and optional agent-based telemetry, Darktrace supports SaaS, hosted, and on-prem deployments, delivering rapid time-to-value while meeting regulatory and operational requirements.


**Average Rating:** 4.5/5.0
**Total Reviews:** 1

**Who Is the Company Behind Darktrace / CLOUD?**

- **Seller:** [Darktrace](https://www.g2.com/sellers/darktrace)
- **Company Website:** https://www.darktrace.com
- **Year Founded:** 2013
- **HQ Location:** Cambridgeshire, England
- **Twitter:** @Darktrace (18,177 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/5013440/ (2,607 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 100% Mid-Market



#### What Are Recent G2 Reviews of Darktrace / CLOUD?

**"[Real-Time Cloud Visibility and Proactive Anomaly Detection](https://www.g2.com/survey_responses/darktrace-cloud-review-12659218)"**

**Rating:** 4.5/5.0 stars
*— Angel I.*

[Read full review](https://www.g2.com/survey_responses/darktrace-cloud-review-12659218)

---



### 19. [IP Fabric](https://www.g2.com/products/ip-fabric/reviews)
IP Fabric is the leading automated network assurance platform, offering a continuously validated view of cloud, network and security systems to improve stability, security and spend. Within minutes, the platform creates a unified view of devices, state, configurations and interdependencies, normalizing multi-vendor data and revealing operational truth through automated intent checks. By uncovering risks and providing actionable insights, IP Fabric empowers enterprises to accelerate IT and business transformation while reducing costs. Trusted by industry leaders like Red Hat, Major League Baseball and Air France, IP Fabric delivers the foundation for end-to-end network governance. Learn more at www.ipfabric.io and follow the company on LinkedIn https://www.linkedin.com/company/ip-fabric



**Who Is the Company Behind IP Fabric?**

- **Seller:** [IP Fabric](https://www.g2.com/sellers/ip-fabric)
- **Year Founded:** 2015
- **HQ Location:** Boston, Massachusetts, United States
- **Twitter:** @IPFabric (921 Twitter followers)
- **LinkedIn® Page:** http://www.linkedin.com/company/ip-fabric (127 employees on LinkedIn®)






### 20. [NextLabs Application Enforcers](https://www.g2.com/products/nextlabs-application-enforcers/reviews)
NextLabs&#39; Application Enforcer is a suite of enforcers that integrate seamlessly with leading enterprise applications, enhancing their native security frameworks without the need for custom coding. By leveraging built-in awareness of application data models and business workflows, Application Enforcer provides an additional layer of control, ensuring that organizations meet stringent security and compliance requirements. It enforces Policy-Based Access Control in real-time, utilizing attributes related to users, data, and environmental factors. This approach externalizes authorization through a zero trust policy engine, strengthening application security and eliminating authorization silos. Key Features and Functionality: - Externalized Authorization: Allows modification of authorization policies without altering the application&#39;s code. - Enforce Least Privilege Access: Utilizes Attribute-Based Access Control to ensure that applications and data are accessible only to authorized entities. - Data Classification: Automatically identifies and categorizes sensitive data based on the application&#39;s underlying data model. - Access Activity Monitoring: Collects and analyzes access activities across applications to detect and respond to anomalous behavior. - Native Application Integration: Understands the identity systems, object models, and security frameworks of applications for easy deployment and a seamless user experience. Primary Value and Problem Solved: Application Enforcer addresses the challenge of securing critical data across a diverse and evolving application landscape. By externalizing security controls and enforcing zero trust access policies, it automates data security and compliance procedures, enhancing business agility and competitiveness. The solution eliminates the need for costly customizations, reduces time-to-market, and streamlines compliance by automating the auditing of authorization and data access. This ensures that sensitive data is protected, access is granted based on the principle of least privilege, and organizations can adapt swiftly to changing security and compliance demands.



**Who Is the Company Behind NextLabs Application Enforcers?**

- **Seller:** [NextLabs](https://www.g2.com/sellers/nextlabs)
- **Year Founded:** 2004
- **HQ Location:** San Mateo, US
- **Twitter:** @nextlabs (402 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/nextlabs (190 employees on LinkedIn®)






### 21. [Saner Cloud](https://www.g2.com/products/saner-cloud/reviews)
Saner Cloud is an AI-fortified Cloud-Native Application Protection Platform (CNAPP) that moves beyond detection. It empowers organizations with intelligent, real-time, and automated attack prevention. Unlike traditional cloud security solutions that overwhelm security teams with alerts but fail to act, Saner Cloud automatically fixes vulnerabilities, misconfigurations, identity risks, and compliance violations across multicloud environments. Why choose Saner Cloud? - Unified dashboard with real-time updates and interactive visuals for a single source of truth - Complete asset visibility with watchlists, exposure detection, region-based categorization, deprecated services, and cost analysis - AI-driven anomaly detection with confidence levels, severity distribution, whitelisting options, and one-click remediation - Continuous posture management with built-in benchmarks, quick misconfiguration checks, trend tracking, and drift detection - Risk prioritization with scoring, top-risk lists, and context across assets, posture, and anomalies to focus on which risk to remediate first - Identity and entitlement governance with policy maps, RBAC, resource groups, excessive permission detection, and activity logging - Enhanced Remediation with scheduling and approval workflows, Top 10 patches, patch aging, most-impactful-patches charts, and grouped remediation - Multi-cloud coverage across AWS, GCP and Azure with a prevention-first workflow - Smart tagging for fast filtering across thousands of resources and audit logs with tool-specific job codes for full traceability



**Who Is the Company Behind Saner Cloud?**

- **Seller:** [SecPod](https://www.g2.com/sellers/secpod-b11d8014-d8ec-46e7-9e81-c0d14919fbfc)
- **Company Website:** https://www.secpod.com/
- **Year Founded:** 2008
- **HQ Location:** Redwood City, California
- **Twitter:** @secpod (542 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/secpod-technologies/ (168 employees on LinkedIn®)






### 22. [TENET](https://www.g2.com/products/tenet-tenet/reviews)
TENET is a risk intelligence platform purpose-built for the Microsoft ecosystem to deliver unified visibility and proactive risk assessment across Azure and M365. It serves as a single source of truth for identifying, prioritizing, and mitigating cloud risk at scale—enabling organizations to shift from reactive firefighting to continuous, intelligence-driven security operations. Key Features: - Attack surface management: Identify risky entry points, misconfigurations, and third-party exposures. Visualize attack paths, map findings to MITRE ATT&amp;CK, prioritize remediation, and manage incidents from a unified cloud risk view. - Anomaly detection: Detect issues early with real-time analysis of cloud workloads, identities, and applications, helping teams identify abnormal behaviour and mitigate risks before they become incidents. - Compliance readiness: Simplify audits with continuous compliance monitoring, guided remediation, and risk-prioritized insights. Reduce costs and manual effort while shrinking audit preparation from weeks to hours. - Microsoft 365: Gain visibility into external sharing, device risk, license utilization, and Copilot agents. Understand how identities, configurations, and data exposures combine to create risk across your cloud environment. - Access governance: Monitor human and non-human identities, analyze effective permissions across Entra ID and RBAC, and maintain clear visibility into who can access resources across your cloud estate. - AI monitoring: Discover and inventory AI models, agents, and cognitive services. Continuously monitor performance, reliability, and security posture while identifying AI-specific risks and prioritizing remediation. - Intelligent insights: Investigate and resolve issues faster with BriteAI. Transform live data into actionable insights, identify root causes through natural language queries, and receive precise remediation guidance. Core Value: TENET eliminates blind spots and reduces mean time to remediation (MTTR) through end-to-end Microsoft cloud visibility and guided remediation. It lowers compliance and audit overhead, enables teams to proactively identify and mitigate risks before they escalate, and scales security operations efficiently with AI-powered insights and autonomous remediation with full context via the TENET MCP server. For more information, visit www.aesonsolutions.com.



**Who Is the Company Behind TENET?**

- **Seller:** [AESON Solutions](https://www.g2.com/sellers/aeson-solutions)
- **Year Founded:** 2025
- **HQ Location:** Lodz, PL
- **LinkedIn® Page:** https://www.linkedin.com/company/aeson-solutions/ (1 employees on LinkedIn®)






### 23. [Uptycs](https://www.g2.com/products/uptycs-uptycs/reviews)
Uptycs unified CNAPP and XDR platform is a comprehensive security solution designed to protect the full spectrum of modern attack surfaces in your cloud, data centers, user devices, build pipelines, and containers. With a strong focus on DevSecOps, Uptycs offers a powerful combination of CNAPP capabilities, including Cloud Workload Protection Platform (CWPP), Kubernetes Security Posture Management (KSPM), Cloud Security Posture Management (CSPM), Cloud Infrastructure Entitlement Management (CIEM), and Cloud Detection and Response (CDR). With Uptycs you also get industry-leading eXtended Detection and Response (XDR) across macOS, Windows, and Linux endpoints, ensuring comprehensive protection, detection, and investigation. Uptycs delivers real-time threat detection, context-rich alerts, and maps detections to the MITRE ATT&amp;CK framework for improved security insights. Uptycs performs scanning of containers for vulnerabilities throughout the CI/CD pipeline, promoting agile DevOps workflows, and reducing risk in production environments. Uptycs seamlessly integrates with existing tools and processes, streamlining operations and improving overall efficiency. Customers also benefit from the flexibility to choose between agent-based and agentless scanning options tailored to their unique cloud workload needs. Discover how Uptycs can transform your security posture with a comprehensive, flexible, and powerful security solution designed to meet the needs of today&#39;s complex and rapidly evolving cloud environments. Shift up with Uptycs. KEY DIFFERENTIATORS: 1. Unified &amp; Comprehensive Platform: Uptycs offers a holistic security solution with CNAPP capabilities (CWPP, KSPM, CSPM, CIEM, and CDR) across data centers, laptops, build pipelines, containers, and cloud environments, reducing tool sprawl. 2. Advanced XDR: Industry-leading eXtended Detection and Response for endpoint protection across macOS, Windows, and Linux systems. 3. DevSecOps Focus: Enhanced security for container-based workloads and Kubernetes, supporting agile DevOps workflows. 4. Real-Time Threat Detection: Context-rich alerts and threat detection mapped to the MITRE ATT&amp;CK framework for improved insights. 5. CI/CD Integration: Efficiently scan containers for vulnerabilities throughout the CI/CD pipeline, reducing risk in production. 6. Both agent-based and agentless scanning. Deploy agentless scanning for rapid, friction-free coverage to keep your data secure, and gain continuous runtime security, real-time investigations, and remediation with agent-based telemetry. 7. Rich API &amp; Compatibility: Seamless integration with existing security tools and platforms, powered by osquery for broad compatibility. 8. Expert Support &amp; Flexibility: Dedicated support from security experts and the best of both worlds with agent-based and agentless scanning options tailored to your needs.


**Average Rating:** 4.4/5.0
**Total Reviews:** 13

**Who Is the Company Behind Uptycs?**

- **Seller:** [Uptycs](https://www.g2.com/sellers/uptycs)
- **Year Founded:** 2016
- **HQ Location:** Waltham, US
- **Twitter:** @uptycs (1,483 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/uptycs/ (134 employees on LinkedIn®)

**Who Uses This Product?**
- **Top Industries:** Financial Services
- **Company Size:** 54% Mid-Market, 38% Enterprise


#### What Are Uptycs's Pros and Cons?

**Pros:**

- Cloud Computing (1 reviews)
- Cloud Security (1 reviews)
- Cloud Technology (1 reviews)
- Compliance (1 reviews)
- Compliance Management (1 reviews)

**Cons:**

- Expensive (1 reviews)
- Pricing Issues (1 reviews)


### What Do G2 Reviewers Say About Uptycs?
*AI-generated summary from verified user reviews*

**Pros:**

- Users value Uptycs for its **comprehensive comparative analysis** , simplifying the selection of the best cloud security tools.
- Users value the **comparative analysis features** of Uptycs, which aid in selecting the best cloud security tools.
- Users value the **comparative analysis features** of Uptycs, aiding in selecting the best cloud security tools.
- Users value Uptycs for its **strong compliance with CIS and PCI DSS standards** , enhancing their security monitoring capabilities.
- Users value Uptycs for its **effective compliance management** with CIS and PCI DSS standards, enhancing security monitoring.

**Cons:**

- Users find the **high fees** of Uptycs to be off-putting, impacting their willingness to continue using the tool.
- Users feel that the **high pricing** of Uptycs discourages continued use despite its benefits.

#### What Are Recent G2 Reviews of Uptycs?

**"[A unified solution to improve IT management and operations – all in one.](https://www.g2.com/survey_responses/uptycs-review-10769636)"**

**Rating:** 4.0/5.0 stars
*— Rajitha A.*

[Read full review](https://www.g2.com/survey_responses/uptycs-review-10769636)

---

**"[Excellent lightweight EDR with full Mac support](https://www.g2.com/survey_responses/uptycs-review-8402333)"**

**Rating:** 4.5/5.0 stars
*— Joseph M.*

[Read full review](https://www.g2.com/survey_responses/uptycs-review-8402333)

---



### 24. [Upwind](https://www.g2.com/products/upwind/reviews)
Upwind is the runtime-first cloud security platform that secures your deployments, configurations, and applications by providing real-time visibility from the inside out. We’ve built a unified fabric that maps your environment as it runs - revealing what’s truly at risk, what’s actively happening, and how to respond quickly and effectively. With Upwind, security, dev, and ops teams move faster, stay focused, and fix risks that matter most.


**Average Rating:** 4.9/5.0
**Total Reviews:** 8

**Who Is the Company Behind Upwind?**

- **Seller:** [Upwind](https://www.g2.com/sellers/upwind)
- **Company Website:** https://www.upwind.io
- **Year Founded:** 2022
- **HQ Location:** San Francisco, California, United States
- **LinkedIn® Page:** https://www.linkedin.com/company/upwindsecurity/ (217 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 75% Mid-Market, 25% Enterprise


#### What Are Upwind's Pros and Cons?

**Pros:**

- Ease of Use (3 reviews)
- Visibility (3 reviews)
- Customer Support (2 reviews)
- Detection Efficiency (2 reviews)
- Implementation Ease (2 reviews)

**Cons:**

- Alert Overload (1 reviews)
- Compliance Issues (1 reviews)
- Data Management (1 reviews)
- Data Overload (1 reviews)
- False Positives (1 reviews)


### What Do G2 Reviewers Say About Upwind?
*AI-generated summary from verified user reviews*

**Pros:**

- Users appreciate the **ease of use** of Upwind, praising its intuitive design and quick integration capabilities.
- Users value the **excellent visibility** provided by Upwind, enhancing risk management and issue tracing effectively.
- Users commend the **exceptional customer support** of Upwind, highlighting responsiveness and dedication to resolving issues.
- Users appreciate the **fast real-time detection efficiency** of Upwind, effortlessly identifying and resolving threats.
- Users find Upwind&#39;s **implementation ease** exceptional, making deployment in AWS a seamless experience.

**Cons:**

- Users often feel overwhelmed by the **large number of vulnerability findings** due to high visibility levels in Upwind.
- Users note the need for improvement in **compliance issues** , particularly regarding NIST and GDPR reporting features.
- Users struggle with the **inability to bulk resolve or suppress alerts** , which hampers effective data management.
- Users find the **data overload** from numerous vulnerability findings to be overwhelming and hard to manage.
- Users experience **false positives** in alerts, finding it difficult to bulk resolve or suppress them effectively.

#### What Are Recent G2 Reviews of Upwind?

**"[Outstanding Visibility, But Overwhelming Volume of Findings](https://www.g2.com/survey_responses/upwind-review-11872637)"**

**Rating:** 5.0/5.0 stars
*— Jessica S.*

[Read full review](https://www.g2.com/survey_responses/upwind-review-11872637)

---

**"[Fast, High-Fidelity Cloud Risk Visibility with Upwind](https://www.g2.com/survey_responses/upwind-review-12432879)"**

**Rating:** 4.5/5.0 stars
*— Anton Paolo d.*

[Read full review](https://www.g2.com/survey_responses/upwind-review-12432879)

---




## What Is Cloud Infrastructure Entitlement Management (CIEM) Software?

[Cloud Security Software](https://www.g2.com/categories/cloud-security)

## What Software Categories Are Similar to Cloud Infrastructure Entitlement Management (CIEM) Software?

- [Cloud Workload Protection Platforms](https://www.g2.com/categories/cloud-workload-protection-platforms)
- [Cloud Compliance Software](https://www.g2.com/categories/cloud-compliance)
- [Cloud Security Posture Management (CSPM) Software](https://www.g2.com/categories/cloud-security-posture-management-cspm)



