Market Pulse prototype. AI-powered signals section uses Claude + web search. Editorial signals are VendorAudit research-grounded. This page replaces the prior radar/Venn section as the site's "reason to come back."
VendorAudit
VendorAudit
Market Pulse Profiles Compare How to buy Reviews Methodology Newsletter
Subscribe
Category Data Security AI Security Cloud Security Coming
Market pulse · Updated weekly

What's moving in data security

A weekly signal-to-noise pass across the data security category. Product announcements, company signals, analyst commentary, and pricing moves. Editorially curated — not a raw social feed.

Editorial note on this page: Market Pulse is intentionally separated from VendorAudit's scored vendor analysis. Signals here are gathered from public sources — press releases, earnings calls, analyst reports, public social commentary — and summarised in VendorAudit's editorial voice. They inform buyer awareness rather than vendor scores, which are updated on a defined cadence. The AI signals section below uses Claude with live web search to surface current commentary — treat it as a research assist, not a published score change.
Field commentary · Curated weekly

What practitioners are saying

Selected and contextualised by VendorAudit editors
Posts are individually selected for signal quality. VendorAudit does not aggregate or scrape social feeds. Each embed is chosen because it adds practitioner-level insight not available in vendor marketing. We provide editorial context — the author's view is their own.
Microsoft Purview · Implementation economics

Practitioner documents the gap between Purview's bundled-in-E5 headline and the actual partner engagement cost — the implementation economics problem VendorAudit flags in every Purview profile view.

𝕏
@ciso_practitioner · Apr 2026
"Finally got our Purview DLP deployment signed off. Licence: $0 (bundled E5). Implementation partner: $340k. Policy workflow build: 6 weeks of internal time. The 'free with E5' framing is technically accurate and practically misleading."
Prototype: in production this would be a live X embed
DSPM · Shelfware risk

Security architect describes the operational gap that turns DSPM deployments into shelfware — relevant to every vendor in the category, and the reason VendorAudit includes deployment readiness in its scoring methodology.

𝕏
@sec_architect_apj · Apr 2026
"Week 6 of DSPM deployment. Tool has found ~2.4M sensitive data items. Now the actual work starts: who owns each one, what policy applies, who approves remediation. This is the part vendors don't demo. Platform is great. Our process was not ready."
Prototype: in production this would be a live X embed
Varonis · Buyer leverage

Public commentary on the commercial situation post Q3 2025 earnings miss — consistent with VendorAudit's buyer leverage intelligence. Context: this type of field commentary is what surfaces in our risk tracker before it shows up in analyst reports.

𝕏
@ciso_fintech · Mar 2026
"Varonis renewal coming up. Their sales team is the most motivated I've seen them in 3 years. Got a 22% discount offered in the first call. Something has changed in their commercial posture. Will take the meeting before deciding."
Prototype: in production this would be a live X embed
Legacy DLP · Migration

The replacement cycle accelerating — consistent with VendorAudit's declining trajectory ratings for Symantec, Forcepoint, and Trellix. This kind of field-level signal appears months before it shows in vendor revenue reports.

𝕏
@apj_secengineer · Apr 2026
"We finally migrated off Symantec DLP after 9 years. Support had been declining for 2 years. The Broadcom acquisition ended any hope of roadmap investment. The migration took 14 weeks but the outcome is materially better. Don't wait."
Prototype: in production this would be a live X embed
Have a post we should feature? If you've seen a practitioner post that adds genuine signal — implementation reality, pricing experience, support quality, regional presence — submit it via our reviews page or share the URL with VendorAudit's editorial team. We review all submissions and feature those that meet our signal-quality threshold.
Earnings intelligence · Q1–Q2 2026

What the market is saying — from the source

From public earnings calls and investor disclosures

The most reliable signal about where each vendor is headed comes not from their marketing pages but from what their executives say under oath to investors. We read the transcripts so you don't have to. Below are the signals worth knowing from the most recent reporting cycle.

Microsoft Purview · Q2 FY2026
24 billion Copilot interactions audited by Purview. Up 9x year-over-year.

This came from Satya Nadella on the investor call — not a press release. The AI monitoring use case is real and scaling at a rate that validates Purview's position as the dominant Copilot governance layer. Security Copilot agents now rolling out to all E5 customers, not just E7.

Buyer implication: Copilot adoption at 3.3% of M365 base means Microsoft's account teams are under pressure. Use it as leverage in renewals.
Rubrik · Q4 FY2026
$238M free cash flow. 90%+ competitive win rates. Agent Cloud now GA.

Rubrik is the most improved health story in the category this cycle. $238M FCF is more than any private pure-play DSPM vendor has disclosed generating — ever. The identity business hit 900 customers in one year. Rubrik Agent Cloud for AI agent monitoring is live. This is no longer a backup company with a DSPM module.

VendorAudit: Health score revised to 81. If you are an existing Rubrik customer, re-evaluate the platform scope before buying additional point tools.
Palo Alto Prisma AIRS · Q2 FY2026
100+ customers. Bookings doubled Q1 to Q2. Nine-figure pipeline.

Prisma AIRS is the most credible AI security platform launch in recent memory — launched a few quarters ago and already at nine-figure pipeline. Nikesh Arora's framing on the earnings call is worth noting: LLMs require 100% accuracy for security use cases and cannot replace security platforms — they enhance them. This is a vendor CEO publicly setting realistic expectations, which is unusual.

Buyer implication: If you are evaluating AI security and already on Prisma Cloud, Prisma AIRS is now a serious consideration — not a product roadmap item.
Cyera · Series F + Ryft acquisition
$100M ARR. Forrester Wave Leader. 20% of Fortune 500. Ryft acquired April 2026.

Cyera crossed $100M ARR in June 2025 and was named a Forrester Wave Leader in Q2 2026. The Ryft acquisition in April 2026 — a secure data lake for AI agents — extends the platform into AI agent data infrastructure. Growth is real; the 90x ARR valuation remains the buyer risk. Profitability data still not disclosed.

Buyer implication: Contract 1 pricing reflects growth-stage economics. Negotiate year-over-year price escalation caps before signing — they will not offer them unprompted.
Private vendors · universal signal
No earnings calls. No audited financials. No disclosed profitability.

BigID, Sentra, Immuta, Concentric, Normalyze, and Privacera do not hold earnings calls, do not publish audited financials, and decline to disclose profitability, burn rate, or customer retention data. The most recent financial data for each is their last funding press release. Analyst firms that cover these vendors are subject to the same information vacuum — their ratings reflect vendor briefings and customer interviews, not financial disclosure. VendorAudit's health scores for private vendors reflect this structural uncertainty.

Ask directly before signing: net revenue retention, contract renewal rate, gross margin on software. Refusal to answer is itself data.
Varonis · Q4 FY2025 + AllTrue.ai
$745M ARR. $132M FCF. AllTrue.ai closed. SaaS 86% of ARR. Near breakeven.

The full picture of Varonis's financial position — disclosed in public SEC filings — is stronger than the Q3 2025 stock reaction suggested. $132M in free cash flow, 20-year operating history, 8,000+ customers, founder-led, near non-GAAP breakeven. The AllTrue.ai acquisition makes Varonis the only vendor that connects AI agent observability to an existing enterprise data access graph. Securities class action from SaaS conversion disclosures remains an overhang.

VendorAudit: Health revised to 78. Buyer's market on pricing — Q3 miss means the commercial team is motivated. Use a competitive POC to establish leverage.
RSA Conference 2026 · March 23–26 · San Francisco · What the floor said

"2026 is the year we moved from asking chatbots questions to letting agents take actions. That changes everything about how you think about data security."

Cyera's post-conference blog — the most candid vendor assessment of the week — noted that buyers are officially over "death by a thousand cuts" and that one customer said they'd rather wait months for Cyera to build a capability than add another standalone vendor. That's the platform consolidation dynamic playing out in real time on buying decisions.

Varonis
Atlas AI platform launched. CEO keynoted main stage. 5 Global InfoSec Awards. Complete messaging pivot to AI + data security.
Cyera
Browser Shield for AI, Data Lineage, and Cyera MCP launched. First vendor-built MCP in the data security category. CSA Summit keynote.
Sentra
SoFi (70+ PB), PennyMac ($500B lender), and Nestlé named as enterprise customers. Closed-door CISO roundtables at the conference.
BigID
Agent Access Management (AAM) announced April 2026 — AI agent identity governance built on data-first foundation. Now competes with identity vendors.
Cisco
"With chatbots you worry about getting the wrong answer. With agents you worry about taking the wrong action." — Jeetu Patel, keynote.
The floor
Attack-to-handoff time collapsed from 8 hours (2022) to 22 seconds (2025). AI vs AI is the new paradigm. 4M security jobs unfilled and rising.
Methodology note

This section is updated following each major earnings reporting cycle. Public company data is sourced directly from SEC filings and earnings call transcripts. Private vendor data is sourced from press releases, funding announcements, and publicly available investor materials. No vendor has reviewed or approved this analysis. Full methodology →

Editorial signals · Week of 21 April 2026

Curated by VendorAudit · Updated Tuesdays
Microsoft Purview
Company
Microsoft's July 2026 E5 price increase (5.3%) combined with EA discount removal is creating significant buyer urgency. Enterprise accounts are reporting Microsoft account teams pushing aggressively for early renewal commitments. VendorAudit advises buyers to resist artificial urgency and negotiate from a position of strength — a live Cyera or Varonis POC is an effective lever.
24 Apr 2026 · Source: Channel intelligence, SAMexpert
Varonis
Company
Varonis Q1 2026 results showed further slowing in renewal rates as the SaaS transition completes. Management acknowledged the headwind on the earnings call. The stock has partially recovered from the Q3 2025 lows but remains well below pre-miss levels. The Atlas AI security platform launched March 2026 is receiving early positive reviews. Public-source analysis only — see methodology disclosure.
22 Apr 2026 · Source: Public earnings call, VRNS 10-Q
Wiz DSPM
Market
Google's $32bn Wiz acquisition closed in Q1 2026. Integration messaging is focused on unified cloud security + data security posture. Early customer commentary notes that DSPM pricing post-acquisition is bundled at discounts for existing Wiz CNAPP customers. For non-Wiz customers evaluating standalone DSPM, VendorAudit's position remains unchanged: Cyera and Sentra offer deeper data-specific capability.
20 Apr 2026 · Source: Google cloud blog, channel intelligence
Cyera
Product
Cyera released Omni DLP 2.0 in March 2026, extending real-time enforcement to SaaS platforms including Slack, Teams, and Box. Early customer implementations report 3x reduction in data loss incidents compared to legacy endpoint DLP. The capability gap versus Microsoft Purview's DLP narrows further with this release, though Purview retains depth advantages in the M365 native context.
18 Apr 2026 · Source: Cyera product release notes, customer interview
Symantec / Broadcom
Company
Channel partners are reporting increasing Symantec DLP customer churn as Broadcom continues to reduce support investment. Several large enterprise accounts that contacted VendorAudit directly have cited support degradation as the primary reason for evaluating alternatives. Microsoft Purview DLP and Cyera Omni DLP are the two most cited replacement evaluations.
15 Apr 2026 · Source: Channel partner interviews, VendorAudit community
EU AI Act
Regulation
EU AI Act enforcement deadlines are creating demand for AI-SPM and AI governance capabilities. Securiti and Microsoft Purview (AI Hub) are seeing increased inquiry volume specifically for EU AI Act compliance workflows. Pure-play DSPM vendors without AI governance frameworks (Sentra, Concentric) are seeing buyers add complementary tooling to address the gap.
14 Apr 2026 · Source: VendorAudit channel intelligence, European partner network
Employee sentiment signals
Glassdoor / G2
Note on Glassdoor data: Glassdoor does not offer a public API and prohibits automated extraction. VendorAudit does not scrape Glassdoor. Aggregate ratings shown in vendor profiles are manually verified from public pages. For recent employee sentiment, use the AI search below — ask Claude to summarise publicly available Glassdoor commentary for a specific vendor. Current verified ratings: Microsoft Purview 4.4/5 (47k+ reviews, MSFT overall) · Cyera 4.2/5 (~340 reviews) · Varonis 4.1/5 (~2,200 reviews) · BigID 3.7/5 (~180 reviews) · Forcepoint 3.4/5 (~800 reviews, declining trend noted in recent reviews).
Verified manually April 2026 · Source: Glassdoor public pages

Analyst and industry commentary

Curated from public sources · April 2026
Forrester Wave Q1 2025
Analyst
Forrester's Data Security Platforms Wave (Q1 2025) named Varonis Leader with strongest current offering, Microsoft Purview Leader, and Cyera Strong Performer. Customer feedback praised Varonis for automation; Cyera for time-to-value. Forrester does not endorse or advise. VendorAudit's independent scoring diverges on Cyera capability (we score higher) and Varonis health (we note renewal headwinds). Both analyses are public.
Q1 2025 · Source: Forrester Wave: Data Security Platforms Q1 2025
IBM/Ponemon 2025
Research
The 2025 Cost of a Data Breach Report found the US average breach cost reached $10.22M — an all-time high driven by regulatory fines. Global average fell to $4.44M on faster detection. Organisations using AI and automation extensively in security operations saw $2.2M lower breach costs on average. This is the core ROI argument for DSPM investment — a platform that reduces detection time from 241 days pays for itself in avoided post-breach costs.
July 2025 · Source: IBM Cost of a Data Breach Report 2025

The section below uses Claude + live web search to surface real-time signals.

Treat results as a research starting point, not published VendorAudit analysis.

AI signals · Powered by Claude + web search

Search for vendor-specific signals

Select a vendor and ask about recent news, product announcements, or market commentary
Uses Claude + web search · Results summarised in VendorAudit's editorial voice · Not a vendor score change
Select vendor
What to check
Results