Truist Securities has outlined how advanced AI-native security platforms are altering the cybersecurity market, creating pressure for faster detection, automated response, and intelligence-driven vulnerability discovery. In the firm's view, frontier AI models are not diminishing demand for cybersecurity; instead, they are accelerating it by compressing attack timelines, broadening the attack surface, and making identity, data, and runtime protections essential.
Sector view and investment approach
Truist continues to prefer platform leaders and vendors that stand to benefit from growing telemetry scale and identity- and data-centric security use cases. The firm argues that platformization, the aggregation of telemetry at scale, and the emergence of agentic security requirements - where autonomous agents perform actions on behalf of users - will underpin durable share gains for select vendors capable of integrating AI-first capabilities into deeply embedded security ecosystems.
Company snapshots highlighted by Truist
CrowdStrike (NASDAQ: CRWD) - Truist maintains a Buy rating on CrowdStrike, identifying it as a top platform leader poised to benefit from the AI-driven shift in cybersecurity. The firm cites initiatives such as Project Quiltworks as evidence of CrowdStrike's move toward integrated, AI-first security environments in which access control, threat detection, and automated response increasingly rely on model-driven workflows. Truist also notes that advanced model families like Claude Mythos and Daybreak are enabling faster threat detection and autonomous defensive capabilities.
CrowdStrike reported first-quarter fiscal 2027 results that beat expectations on revenue, operating income, and free cash flow. The company was also selected by Seattle Sounders FC to bolster its cybersecurity operations ahead of the FIFA World Cup 2026.
Cloudflare (NYSE: NET) - Truist rates Cloudflare as a Buy and lists it among platform leaders prepared for an agentic future. Cloudflare has taken steps to deepen its developer and security integrations, including the acquisition of VoidZero, the team behind the Vite JavaScript build tool, to fold into its developer platform. Following its investor day, Cloudflare raised its long-term operating margin target, a move Truist views as instructive for positioning amid rising valuation dispersion in the sector.
Palo Alto Networks (NASDAQ: PANW) - Truist keeps a Buy rating on Palo Alto Networks, emphasizing that modern AI models can now identify vulnerabilities nearly in real time, turning processes that once took days into tasks measured in minutes. Truist sees partnerships between AI model providers and established cybersecurity vendors as preserving a layered enterprise security stack, where vendors retain crucial roles in orchestration, integration, compliance, and frontline defense. Palo Alto recently reported fiscal third-quarter results that beat consensus for revenue, operating income, and free cash flow, with accelerating organic next-generation annual recurring revenue growth.
Zscaler (NASDAQ: ZS) - Truist assigns a Buy to Zscaler and characterizes the company as building an AI-defensible moat for the agentic era. As agentic AI capabilities evolve, protecting autonomous agents becomes mission-critical; Truist highlights that secure data and identity frameworks form the trust backbone for agent-driven environments. Recent activity by Zscaler includes launching new security products aimed at protecting autonomous AI agents and expanding its Project AI-Guardian initiative to encompass technology partners such as AWS, Google Cloud, and OpenAI.
Commvault Systems (NASDAQ: CVLT) - Truist maintains a Buy rating on Commvault, observing that the company has repositioned itself into a cyber resilience platform that stands to directly benefit from AI tailwinds. Enterprises are prioritizing faster detection, automated response, and trimmed recovery windows, and Commvault has integrated AI-driven capabilities, including emerging agentic features that aim to autonomously orchestrate detection and recovery workflows. Commvault reported a strong fourth quarter, with subscription annual recurring revenue up 24% year-over-year in constant currency and SaaS ARR growth of 40%.
Rubrik (NYSE: RBRK) - Truist rates Rubrik as a Buy, noting the company is positioned to capture accelerating AI-driven demand for data security and cyber resilience. The firm points to Rubrik's ability to secure and manage data across hybrid environments and its expanding role in data security posture management and AI data governance. Rubrik recently launched Rubrik AI, a platform intended to deliver automated cyber resilience, and introduced new agent security tools for Anthropic's Claude.
Okta (NASDAQ: OKTA) - Truist keeps a Buy on Okta, viewing it as a leading identity platform. As organizations deploy agentic AI and manage a proliferation of nonhuman identities, Okta's Identity Security Posture Management and machine identity features are seen as critical for securing and orchestrating identity across autonomous environments. Okta delivered strong first-quarter fiscal 2027 results that outperformed consensus on revenue, current remaining performance obligations, operating margin, and free cash flow.
SailPoint (NYSE: SAIL) - Truist assigns a Buy rating to SailPoint, seeing the firm as a leader in identity governance. With agentic AI adoption on the rise and nonhuman identities proliferating, SailPoint's identity lifecycle management and machine identity controls are positioned to address the need to securely manage and audit autonomous agents at scale. SailPoint reported a solid first quarter of fiscal 2027, beating consensus on revenue and operating income, with total annual recurring revenue growing 26% year-over-year.
Analytical perspective
Truist's assessment highlights two interacting dynamics. First, frontier AI models are compressing the time between vulnerability discovery and exploitation, which raises the bar for telemetry ingestion and automated response. Second, the rise of agentic systems and nonhuman identities is creating a distinct class of security requirements centered on identity, data governance, and runtime protection. Together, these forces favor vendors that can deliver platform-scale telemetry, integrated orchestration, and AI-defensible moats.
Conclusion
Truist advocates for exposure to platform leaders and companies that benefit from identity and data security demand. The firm expects that platformization, telemetry scale, and agentic security requirements will drive durable market share shifts within cybersecurity, benefiting those vendors that can rapidly incorporate AI-native detection, autonomous defense, and automated recovery into their product stacks.