The public monthly ranking of the top 30 cybersecurity SaaS brands by citation share across ChatGPT, Perplexity, Claude, Google AI Mode, and Gemini — measured against 100 buyer-intent prompts CISOs actually use.
| # | Δ | Brand | Category | Visibility | GPT | PPLX | Claude | Gemini | |
|---|---|---|---|---|---|---|---|---|---|
| 01 | CrowdStrike | EDR / XDR | 87 | 92 | 88 | 84 | 86 | 85 | |
| 02 | 1 | Wiz | CSPM / CNAPP | 84 | 89 | 90 | 78 | 82 | 81 |
| 03 | 1 | Palo Alto Networks | Network / SASE | 82 | 88 | 79 | 80 | 85 | 78 |
| 04 | SentinelOne | EDR / XDR | 76 | 81 | 78 | 72 | 75 | 74 | |
| 05 | 2 | Snyk | AppSec / SCA | 74 | 77 | 82 | 70 | 71 | 70 |
| 06 | 1 | Okta | Identity / IAM | 73 | 78 | 71 | 72 | 74 | 70 |
| 07 | 1 | Cloudflare | Network / WAF | 72 | 75 | 74 | 70 | 72 | 69 |
| 08 | 3 | Cyera | DSPM | 68 | 70 | 75 | 64 | 66 | 65 |
| 09 | 1 | Tenable | Vuln Mgmt | 66 | 69 | 65 | 64 | 68 | 64 |
| 10 | 1 | Rapid7 | Vuln Mgmt | 64 | 66 | 63 | 62 | 65 | 64 |
| 11 | 1 | Splunk | SIEM | 63 | 64 | 60 | 65 | 67 | 59 |
| 12 | 3 | Vanta | GRC / Compliance | 62 | 65 | 68 | 58 | 60 | 59 |
| 13 | 1 | 1Password | Identity / PAM | 61 | 64 | 60 | 60 | 62 | 59 |
| 14 | 1 | Zscaler | Network / SASE | 60 | 62 | 58 | 59 | 63 | 58 |
| 15 | 1 | Datadog Security | SIEM / Observability | 58 | 60 | 57 | 56 | 61 | 56 |
| 16 | 3 | Drata | GRC / Compliance | 56 | 58 | 62 | 52 | 54 | 54 |
| 17 | 1 | Lacework | CSPM | 54 | 55 | 53 | 52 | 56 | 54 |
| 18 | 1 | Abnormal Security | Email Security | 53 | 55 | 54 | 51 | 53 | 52 |
| 19 | 3 | Island | Enterprise Browser | 51 | 53 | 58 | 47 | 49 | 48 |
| 20 | 2 | Arctic Wolf | MDR | 50 | 51 | 49 | 49 | 52 | 49 |
| 21 | 1 | Huntress | MDR | 48 | 49 | 50 | 46 | 48 | 47 |
| 22 | 1 | JumpCloud | Identity / IAM | 46 | 47 | 45 | 46 | 48 | 44 |
| 23 | 2 | Aikido | AppSec | 44 | 45 | 50 | 40 | 43 | 42 |
| 24 | 1 | Sysdig | CSPM / Runtime | 43 | 44 | 42 | 42 | 45 | 42 |
| 25 | 1 | BeyondTrust | PAM | 41 | 42 | 39 | 41 | 44 | 39 |
| 26 | Mimecast | Email Security | 39 | 40 | 38 | 38 | 41 | 38 | |
| 27 | 1 | Sumo Logic | SIEM | 37 | 38 | 36 | 37 | 39 | 35 |
| 28 | 1 | Netskope | SASE / CASB | 36 | 37 | 35 | 36 | 38 | 34 |
| 29 | 1 | Orca Security | CNAPP | 34 | 35 | 37 | 31 | 33 | 34 |
| 30 | 1 | Trellix | XDR | 32 | 33 | 30 | 32 | 34 | 31 |
Visibility = weighted citation share across 100 buyer-intent prompts on 5 engines. 100 = cited in every relevant answer.
DSPM category exploded in Perplexity citations after a wave of Reddit and G2 mentions tied to the May data-exposure incidents.
Lost ground in Claude and Gemini as comparison content from challengers (Wiz, Zscaler) overtook older PAN-authored thought leadership.
13 vendors in the top 30 score below 40. Their buyers are getting AI answers that don't include them — most don't know yet.
Built from real CISO research patterns: shortlist queries (“best EDR for mid-market”), comparison queries (“CrowdStrike vs SentinelOne”), and category education queries (“what is CNAPP”).
ChatGPT (GPT-5), Perplexity, Claude 4, Google AI Mode, Gemini. Each prompt runs in a clean session, no memory, US locale, on the 1st of each month.
A direct citation with link = 1.0. Brand mention without link = 0.5. Mentioned in comparison table = 0.7. Positioned as primary recommendation = 1.5x multiplier.
Per-engine scores rolled up to 0–100. Final visibility score is the weighted average across engines (weights reflect 2026 B2B research traffic share).
Follow us on LinkedIn for the full report 72 hours early — plus the brand-specific breakdowns we don't publish.
DM US ON LINKEDIN →Are you a vendor ranked below #20? DM us "AUDIT" on LinkedIn — we'll send a free 10-prompt teardown of why you're invisible.