This section describes the additional factors that need to be considered when selecting a solution.

CNAPP solutions are delivered as SaaS. Most vendors utilize one or more public IaaS providers across multiple data centers for scalability and performance.

APIs are the primary means by which customer security infrastructure, and third-party product or service integrations are achieved. REST APIs are ubiquitous. Other communications standards supported may include syslog and CEF for SIEM interoperability and GraphQL.

It is important to understand which are the main use cases for CNAPP in your organization. The answers to this will determine the environments with which CNAPP will need to integrate and the standards and best practices that it will need to support.

You have to consider how the solution will integrate with your target environments. Ideally, the solution should support integrations out of the box.