合并估值(2024 年交割) 01
>$7B [CV015] 尽调报告
Cohesity
面向混合云与多云环境的企业数据保护和网络韧性平台
Cohesity 在并入 Veritas 后已经成为有规模的网络韧性平台,官方 >$7B 价值锚点也能自洽;但在债务、所有权 waterfall 和 cohort 留存披露改善前,股权逻辑还无法按溢价承保。
封面要素
公司概况
Cohesity 是一家总部位于 San Jose 的数据安全公司,Mohit Aron 于 2013 年创立;2024 年 12 月与 Veritas 的企业数据保护业务合并交割后,公司以合并主体运营。它的平台横跨 DataProtect、NetBackup、 保险库、云备份,以及覆盖混合云、多云和 SaaS 环境的 Gaia / AI 韧性工作流。交割材料显示,合并主体备考收入超过 $1.7 billion,ARR 为 $1.5 billion,企业客户超过 12,000 家;公司当前口径则称客户数超过 13,000 家,覆盖约 70% 的 Global 500。即便规模已经很大,Cohesity 仍是一家私营且披露很少的公司:公开资料没有给出当前员工数、债务规模或交割后的确切持股条款。
- 成立时间
- 2013-06-01
- 创始人
- Mohit Aron
- 创立地点
- San Jose, CA
- 总部
- San Jose, CA
- 产品
- 网络韧性与数据保护平台,覆盖 DataProtect 备份和恢复、承接 Veritas 存量环境的 NetBackup 连续性、FortKnox / Alta 保险库、云备份服务,以及基于 Gaia 的数据激活 / AI 韧性工作流。
- 客户
- 运行混合云、多云、SaaS 和公共部门工作负载的大型企业与受监管组织,包括 Fortune 100/500 账户、政府机构、医疗服务商、金融机构和大型集中式 IT 环境。
- 商业模式
- 以订阅为主的经常性软件业务,变现来自软件订阅或定期许可、支持与维护续费、SaaS/DMaaS 产品,以及专业服务或合作伙伴交付的服务。
- 阶段
- Late Stage / Post-Merger
- 融资情况
- 2024 年 Veritas 交易由 Haveli 领投的 Series H 股权融资和 JPMorgan 安排的定期贷款工具共同支持;公开资料披露了主要投资方和滚存股东,但没有披露确切债务规模、持股比例或优先权条款。
执行摘要
主要优势
- 合并后的 Cohesity 进入 post-Veritas 阶段时,收入超过 $1.7B、ARR 达 $1.5B、客户超过 12,000 个,在数据保护领域规模罕见。
- DataProtect、NetBackup、vaulting、云服务和 Gaia 形成产品宽度,支撑公司切入混合云和多云网络韧性预算并交叉销售。
- 公开客户证据覆盖医疗、公共部门、金融基础设施、资本市场等关键任务环境,而不是狭窄 IT 细分市场。
- 官方交割倍数远低于 Rubrik 的公开市场溢价倍数,因此很难直接认定 2024 价值锚点明显高估。
主要风险
- Veritas 交易中的债务规模、定价、到期日和 covenant 细节仍未披露,真实股权价值被遮住。
- 对承接而来的 NetBackup 和 Alta cohorts,公开证据仍不足以证明续约韧性、迁移转化和支持稳定性。
- Cohesity 仍缺少公开公司级别披露:当前增长、毛利率、净留存、CAC、回本周期和员工数都不透明。
- Rubrik、Commvault、Veeam 以及云原生替代品,都可能抓住任何整合摇摆或定价摩擦。
未决问题
- Veritas 交易的债务金额、定价、到期日和 covenant package。
- 原生业务与承接业务的 ARR 和收入结构,以及 legacy Cohesity cohorts 与 inherited Veritas cohorts 的留存对比。
- 股权结构 waterfall、优先股堆叠,以及交割后精确持股比例。
- 当前员工数、现金跑道,以及并购后按细分市场划分的价格兑现情况。
目录
01公司概况
1.1 身份、平台与当前定位
Cohesity 是一家私营数据安全软件公司,总部位于加州 San Jose,成立于 2013 年。公司当前叙事围绕 Cohesity Data Cloud 展开:用一个平台保护本地、云和 SaaS 环境中的 1,000+ 个工作负载,同时让受保护数据可用于 AI。公司页面现在称拥有 13,000+ 家客户、覆盖 70% 的 Global 500,并保护 200+ EB 数据;这在方向上高于 Veritas 合并于 2024 年 12 月交割时披露的 12,000 家客户 / 数百 EB 规模。Nasdaq、Conagra 等客户案例显示,产品不只服务小型 IT 备份场景,也进入了受监管企业 SaaS 备份和运营敏感环境。2026 年的产品叙事还把故事从传统备份继续外推:Cohesity 2026 年 3 月发布 Enterprise AI Resilience,4 月拿到 Google Cloud 奖项,两者都强调受治理的企业数据、智能体风险恢复和云原生网络韧性。因此,后续章节应把 Cohesity 看作一家私营网络韧性平台商,而不是点状备份设备厂商;它正试图把受保护数据和合作伙伴集成转化为更宽的 AI 时代控制平面。[CO001, CO002, CO003, CO004, CO027, CO028]
| 指标 | 数值 / 状态 | 日期 | 置信度 | 缺口 / 限制 |
|---|---|---|---|---|
| 成立 | 2013 | 2013 / 2024 年交叉验证 | 高 | 来自 TechCrunch 对成立日期的报道,以及 2024 年 12 月交割材料中「11 年历史」的表述。 |
| 总部 | San Jose, California | 2024-12-10 | 高 | 官方交割材料明确称总部在 San Jose。 |
| 现任 CEO | Sanjay Poonen | 2026-05-19 | 高 | 创始人 Mohit Aron 是历史 CEO 参照,不是当前公开运营负责人。 |
| 平台范围 | 单一平台保护云、本地部署和 SaaS 中的 1,000+ 个工作负载 | 2026-05-19 | 高 | 营销口径,但当前官方页面直接陈述。 |
| 客户规模 | 公司页面称 13,000+;2024 年 12 月交割时为 >12,000 | 2026-05-19 | 中 | 当前数字由公司自称;2024 年交割给出最后一个有日期的官方基准。 |
| 受保护数据 | 公司页面称 200+ exabytes;交割时为数百 exabytes | 2026-05-19 | 中 | 当前数字由公司自称,未经独立审计。 |
| 2021 年独立估值事件 | 基于要约回购的 $3.7B 估值 | 2021-03-30 | 高 | 历史私人公司基准,不是当前并购后 FMV。 |
| 2024 年合并估值 | 超过 $7B | 2024-12-10 | 高 | 适用于合并后的 Cohesity + Veritas 数据保护业务。 |
| 备考 FY2024 规模 | >$1.7B 收入;$1.5B ARR;28% 调整后现金 EBITDA 利润率 | 2024-12-10 | 高 | 仅为合并实体披露;Cohesity 独立财务仍不透明。 |
| 当前员工数 | 已审阅来源未公开验证 | 2026-05-19 | 中 | 需要向管理层尽调;已审阅公开页面没有披露当前数字。 |
当前运营指标混合了有日期的官方披露与公司当前自称的网站指标。员工数仍是明确的公开数据缺口。
[CO002, CO004, CO005, CO012, CO020, CO021]产品宽度、合并后规模、生态连接和未解披露缺口, 如何交织成 Cohesity 当下的公司叙事。
[CO001, CO004, CO019, CO020, CO021, CO023]当前核心指标混合了公开官方规模数据、合作伙伴里程碑, 以及明确的公开数据缺口。
[CO004, CO012, CO022, CO027, CO028, CO030]1.2 领导层、治理与从创始人到职业经理人的过渡
领导权已经明显从创始人主导转向运营者主导。2021 年 3 月估值公告仍把 Mohit Aron 描述为 CEO 和创始人,但当前官方材料显示 Sanjay Poonen 担任 President and CEO;独立报道也把他 2022 年 8 月加入公司,与一项刻意整合碎片化数据保护市场的计划联系起来。Veritas 交易之后,治理结构也扩容。官方合并材料称 Greg Hughes 将继续以董事和战略顾问身份参与,Brian Sheth(Haveli)、Patrick McCarter(Carlyle)和 Sandesh Patnam(Premji)获得董事会或观察员席位。当前领导层页面还显示 Kevin Mandia 担任独立董事,并强调董事会由独立代表和投资方代表共同组成。这种组合给 Cohesity 带来规模化治理的好处,但也暴露了关键人依赖。公开发布、合作伙伴公告和整合信息仍围绕 Sanjay 与少数具名高管展开。如果增长、整合或 IPO 准备失速,即便第三方名录暗示内部梯队比官网逐一展示的更宽,公司的领导层叙事在公开层面仍缺少冗余。[CO005, CO006, CO007, CO008, CO009, CO010]
| 人物 | 当前 / 相关角色 | 有来源支持的背景 | 治理意义 | 依赖 / 备注 |
|---|---|---|---|---|
| Sanjay Poonen | 总裁兼 CEO | CRN 称其曾任 SAP 总裁和 VMware COO;现任官方 CEO | 负责并购后整合和 AI 韧性叙事 | 公司与交易逻辑的关键公众面孔 |
| Mohit Aron | 创始人;2021 年估值公告中的 CEO | 2021 年 3 月流动性事件中的创始人兼 CEO;当前材料仍提及创始人 | 创始人连续性仍在,但不再是公开的日常运营负责人 | 领导权交接已完成,外部看创始人影响力更偏象征性 |
| Kevin Mandia | 独立董事 | 当前领导层页面列名 | 增加独立网络安全可信度 | 有用的外部治理信号 |
| Greg Hughes | 交割后董事 / 战略顾问 | Veritas 前 CEO;角色随交易宣布 | 连接 Veritas 产品与客户连续性 | 整合联络人,而非运营负责人 |
| Brian Sheth | 与 Haveli 相关的董事 | Haveli 创始人兼 CIO;作为 Series H 领投方代表被引用 | 代表主要融资发起方 | 董事会影响力与新资本提供方绑定 |
| Sandesh Patnam | Premji 观察员 / 董事会参与者 | Premji 管理合伙人;当前观察员,且出现在 2024 年新增董事会公告中 | 代表长期投资者声音 | 投资者监督与后续资本信号 |
| Patrick McCarter | Carlyle 委派董事 | 合并公告中点名的 Carlyle 科技 MD | 代表 Veritas 滚存股东利益 | 对并购后治理对齐很重要 |
公开名单聚焦 CEO、创始人连续性、具名董事和投资者观察员。它不是完整内部组织架构图。
[CO005, CO006, CO008, CO009, CO010, CO011]1.3 资本基础、股东信号与披露边界
Cohesity 的资本故事分成两个阶段。第一阶段,公司在 2021 年 3 月通过 STEADFAST 领投的 $145 million 非稀释性要约收购达到 $3.7 billion 估值;当时披露的年同比 ARR 增长接近 90%,净扩张率超过 130%,客户数超过 2,300 家。Reuters 相关报道后来称,公司已于 2021 年 12 月秘密提交美国 IPO 申请,但软件市场环境转弱后,上市没有落地。第二阶段,Cohesity 放弃独立上市,转向并购扩规模。2024 年 2 月,公司宣布与 Veritas 企业数据保护业务合并,合并估值约 $7 billion;交易于 2024 年 12 月交割,披露的合并主体备考收入超过 $1.7 billion,ARR 为 $1.5 billion,调整后现金 EBITDA 利润率 28%。这笔交易背后的投资人名单具有战略意义:Haveli 领投 Series H,Carlyle 通过 Veritas 进入股权结构,SoftBank、Sequoia、Wing、Premji 等长期支持者仍留在故事中。缺口在于真正的股权结构数学——交割后确切持股比例、清算优先权堆叠和债务规模都没有公开披露。[CO012, CO013, CO014, CO015, CO016, CO017]
| 利益相关方 | 资本结构中的角色 | 有证据支撑的重要性 | 控制 / 影响力信号 | 尽调要求 |
|---|---|---|---|---|
| Haveli Investments | Series H 领投方 / 主要股东 | 为 Veritas 交易提供大部分新股权融资 | 通过 Brian Sheth 董事席位和领投方身份施加影响 | 要求提供准确持股比例、清算优先权和治理权利 |
| Carlyle Group | 通过 Veritas 滚存的股东 | 交易前是 Veritas 大股东;交割后成为最大股东之一 | 通过 Patrick McCarter 获得董事会代表 | 厘清滚存条款和退出期限 |
| SoftBank Vision Fund I | 存量明星投资者 | 2024 年公告和交割材料均列名;Reuters 相关报道把 SoftBank 与 IPO 叙事联系起来 | 释放长期增长资本支持信号 | 要求提供当前持股和任何老股出售意愿 |
| Premji Invest | 现有投资者;增持 | 在 2021 年估值事件和 2024 年交易材料中列名 | 通过 Sandesh Patnam 取得观察员 / 董事会影响力 | 厘清交割后稀释和按比例参与情况 |
| Sequoia + Wing Venture Capital | 存量风投 | 交易前后被列为持续持有的明星投资者 | 可能拥有长期信息权 | 确认资本重组后仍保留的任何治理权利 |
| Coatue + Sapphire + Dragon Fund | Series H 关键跟投方 | 被列为为交易提供资金的关键投资者 | 为交割后规模提供财务支持 | 要求提供优先股堆叠和信息权 |
| JPMorgan / 定期贷款方 | 债务安排方 / 贷款方 | 官方材料提及定期贷款和 JPMorgan 安排的融资 | 杠杆带来契约和利息风险 | 获取授信规模、期限、定价和契约组合 |
图谱强调具名股权出资方、滚存持有人和债务提供方;这些主体影响控制、治理和退出经济性。准确持股比例仍未披露。
[CO012, CO013, CO016, CO019, CO023, CO038]1.4 里程碑、合作伙伴势能与尽调风险
2021 到 2026 年的里程碑显示,公司从高增长私营备份厂商走向规模化平台整合者;同一组记录也暴露了尽调风险。2024 年 2 月交易逻辑建立在客户重叠度低、全球覆盖更广,以及同时保留 Cohesity 和 Veritas 产品线的路线图之上。TechCrunch 后来报道称客户重叠不足 5%,并描述了一套统一销售动作:在不立即裁撤销售团队的情况下捕捉协同。这利好交叉销售逻辑,但同一篇文章也点出经典整合副作用:竞争减少可能提高定价权,即便交割时没有宣布价格或合同变化。2026 年官方发布进一步深化战略转向,把 Cohesity 与主权云、智能体风险恢复、Google 集成和 AI 数据激活绑定起来,也解释了为什么管理层越来越多谈网络韧性,而不只是备份。即便如此,投资人面前仍有重要盲点:当前员工数没有公开验证,精确债务条款未披露,合并后定价行为也没有经过公开客户案例的压力测试。这些不是推翻投资逻辑的问题,但在把 2024 年交割指标用作估值锚之前,它们是最值得追问的尽调事项。[CO020, CO024, CO025, CO026, CO028, CO029]
| 日期 | 事件 | 类型 | 金额 / 状态 | 参与方 | 含义 |
|---|---|---|---|---|---|
| 2013 | Cohesity 成立 | 成立 | 公司设立 | Mohit Aron 与创始团队 | 2024 年交割时所称 11 年历史的起点 |
| 2021-03-30 | 要约回购将估值重置为 $3.7B | 融资 | $145M 要约回购;$3.7B 估值 | STEADFAST、Premji、员工 | 确立并购前私人市场基准 |
| 2021-12-21 | 保密 IPO 申请公开 | 反向 | 已提交但未完成 | Cohesity、SoftBank 相关支持方 | 显示早前上市雄心及后续市场撤退 |
| 2022-08 | Sanjay Poonen 出任 CEO | 治理 | 领导层交接 | Sanjay Poonen、Mohit Aron | 从创始人领导阶段转向职业经理人领导阶段 |
| 2024-02-08 | 宣布与 Veritas 数据保护业务合并 | 融资 | ~$7B 合并估值 | Cohesity、Veritas、Carlyle、Haveli | 重塑规模和治理 |
| 2024-12-10 | Veritas 合并交割 | 规模 | 12,000+ 客户;>$1.7B 收入;$1.5B ARR | Cohesity、Veritas | 形成数据保护软件市场份额领导者 |
| 2026-03-10 | 推出 Enterprise AI Resilience 战略 | 产品 | AI 韧性平台叙事 | Cohesity;Glean / 分析生态 | 把叙事从备份扩展出去 |
| 2026-03-10 | 宣布产品组合和安全增强 | 产品 | DSPM、主权云、威胁扫描、Essentials | Cohesity、Cyera、AntemetA、Singtel、Micrologic 等伙伴 | 增加监管和中型企业相关性 |
| 2026-04-21 | 获得 Google Cloud Partner of the Year 奖 | 伙伴关系 | 基础设施现代化:DR / Backup | Google Cloud、Cohesity | 验证伙伴生态和云端 GTM 动能 |
这条时间线跟踪会实质改变公司故事的主要公开成立、融资、治理、产品、伙伴关系和反向里程碑。它不包含私人董事会或整合检查点。
[CO002, CO005, CO006, CO012, CO015, CO016]公开里程碑显示,公司从私营公司估值事件, 转向 Veritas 后具备规模的 AI 韧性平台。
[CO002, CO005, CO006, CO012, CO015, CO016]1.5 图表
02市场分析
2.1 市场边界与纳入的支出
Cohesity 的市场不应被框成狭窄的备份设备小赛道。已核验证据指向一个分层市场定义:核心是数据复制与保护软件品类;其上叠加网络恢复,增加完整性和干净恢复要求;旁边还有数据安全 / 数据管理工作负载,供应商借此扩大总可用市场(TAM)。边界最清楚的一层是 IDC 的数据复制与保护软件市场;Veritas 合并材料把 2024 年厂商销售额定在约 $12.2-$12.3 billion。这个核心层明确包括企业备份、复制、恢复及相关软件收入。单靠它还无法覆盖供应商如今打着网络韧性、SaaS 保护或数据安全态势名义销售的所有相邻工作负载。 Cohesity 及同行希望投资人计入的周边支出,包括网络恢复工具、SaaS 保护广度、安全驱动的恢复工作流,以及部分托管或合作伙伴交付的服务。IDC 自身的 MarketScape 表述支持这种更宽框架:它把网络恢复与传统 DR 区分开,也把 SaaS 保护与原生应用工具区分开。与此同时,这并不意味着每一笔相邻安全或存储预算都属于 Cohesity 的真实市场。纯网络安全、端点安全、通用存储硬件和无关云管理工具,仍在本章工作边界之外。真正相关的现状替代方案,是既有备份套件、原生点状工具和 MSP 交付的恢复服务,而不是一个统一买方预算。[CM001, CM002, CM003, CM004, CM005, CM006]
| 细分 / 类别 | 纳入支出 | 排除支出 | 买方 / 付款方 | 相关性 |
|---|---|---|---|---|
| IDC 数据复制与保护软件 | 备份、复制、恢复及相关软件厂商收入 | 存储硬件、无关安全工具和通用 IT 服务 | IT 基础设施和数据保护预算负责人 | 边界最干净的核心市场,并有公开 2024 年软件估计值 |
| 网络恢复 | 备份,加上数据存活、完整性、洁净恢复和响应工具 | 缺少网络安全专项控制的传统 DR | CIO/CISO 支持的韧性项目 | 关键邻近市场,因为买家现在期待攻击后恢复,而不只是故障后还原 |
| SaaS 数据保护 | 原生工具之外的企业 SaaS 应用保护 | 作为现状方案使用的原生应用留存功能 | 管理不断扩大的 SaaS 资产组合的 IT 买家 | 解释为什么应用覆盖广度会影响采购 |
| 公共部门和受监管韧性 | 备份、恢复、GovCloud 部署、认证工作和合规运营 | 没有合规或连续性需求的非受监管商品化存储 | 联邦 / 州 / 地方机构和受监管运营方 | 证据显示一套带认证门槛的独立受监管买方动作 |
| 托管韧性服务 | MSP 交付的备份、复制、恢复、隔离库和 DRaaS 包装层 | 没有经常性保护栈的纯人力咨询 | MSP、渠道伙伴及其终端客户 | 把采用路径扩展到企业软件直采之外 |
这些行定义类别边界,而不是经审计的收入桶。纳入和排除支出保留分析师与厂商口径,让相邻的网络恢复和 SaaS 保护层可见,同时不假装它们是一个统一市场。
[CM001, CM002, CM003, CM004, CM005, CM006]2.2 规模测算视角与相互冲突的 TAM 估计
围绕 Cohesity 的公开 TAM 口径有方向价值,但内部并不一致。2024 年 2 月 Veritas 交易公告使用超过 $30 billion 的 TAM,并明确称 $12.2 billion 的 IDC 数据复制与保护软件市场只是其中一个组成部分。到 2024 年 12 月交割时,官方框架又扩到 $40+ billion,同时引用略高的 $12.3 billion IDC 核心市场估计。Rubrik 2024 年 4 月 S-1 又用了另一套视角:2024 年平台 TAM 为 $36.3 billion,到 2027 年增至 $52.9 billion。这些数字不应被压成一个“真实 TAM”。它们采用了不同的品类边界、供应商议程和时间框架。 更好的读法是:Cohesity 处在一个真实且规模可观的核心软件市场中,但管理层可投资的故事取决于向更宽的网络韧性和数据安全预算外扩。IDC 市场份额摘要和 Blocks & Files 的总结也说明,市场规模本身并不能决定投资逻辑:品类仍然碎片化且粘性强,没有单一供应商占据主导份额。碎片化支持整合上行空间,但也意味着后 Veritas 的 Cohesity 可服务市场仍受装机基础惯性、迁移风险和买方采用更宽平台套装的意愿约束。因此,公开证据足以圈定外沿范围,但还不足以拆出 Cohesity 的实际可服务市场(SAM)或近期可获取市场(SOM)。[CM007, CM008, CM009, CM010, CM011, CM012]
| 发布方 | 年份 | 地理范围 | 数值 | CAGR | 方法 | 置信度 | 局限 |
|---|---|---|---|---|---|---|---|
| Veritas / Cohesity 合并公告 | 2024 | 全球 | >$30B TAM;包含 $12.2B IDC 核心市场 | 未披露 | 围绕数据安全和管理扩张的官方合并叙事 | 中 | 公司定义的 TAM;不是标准化分析师市场 |
| Veritas / Cohesity 交割公告 | 2024 | 全球 | $40+B TAM;包含 $12.3B IDC 核心市场 | 未披露 | 交割后官方平台 TAM 口径 | 中 | 交割后边界被拓宽,无法与此前数字直接比较 |
| IDC 数据保护软件市场份额摘要 | 2024 | 全球 | 尽管有宏观压力,核心软件市场仍在增长 | 摘要未披露 | IDC 关于市场份额以及 AI / 勒索软件关联的公开摘要 | 高 | 摘要给出方向,不给完整份额表 |
| Rubrik S-1 | 2024 | 全球 | $36.3B 平台 TAM | 到 2027 年 13% | 发行人基于 Gartner 研究披露 | 中 | 同行 TAM 使用自身平台边界,不是 Cohesity 的精确范围 |
| Rubrik S-1 | 2027 | 全球 | $52.9B 平台 TAM | 自 2024 年起 13% | 同一套基于 Gartner 的同行平台方法 | 中 | 远期 TAM 不等于当前可服务市场 |
| Blocks & Files 引用 IDC tracker | 2024 | 全球 | 龙头份额仅略高于八分之一 | 未披露 | 对 IDC tracker 数据的二手摘要 | 中 | 市场结构视角,而非 TAM 数字 |
这些规模视角刻意不做标准化。它们保留相互矛盾、边界变化的市场框架,让读者看见 IDC 核心市场、官方厂商 TAM 叙事和上市同行平台叙事之间的缺口。
[CM002, CM007, CM008, CM009, CM010, CM011]与 Cohesity 相关的三层公开市场规模,从较窄的 IDC 软件市场, 到更宽的供应商声称平台 TAM 叙事。
各层相互重叠,不能相加。图中保留公开市场表述, 不断言一个标准化 TAM。
[CM008, CM009, CM013, CM041]与 Cohesity 市场叙事相关的已发布 TAM 高低表述, 不强行归一为一个标准化数字。
每行使用发布方自己的边界和日期。区间有意保持矛盾, 因为底层类别并不相同。
[CM007, CM008, CM009, CM013]2.3 买方、用户、付款方与渠道图谱
Cohesity 这类平台的可见买方仍由 IT 主导。IDC 反复描述的是“IT 买方”,而非业务职能负责人,并建议他们权衡复杂度、广度、服务、价格和既有供应商地位。Cohesity 展示的 Gartner Peer Insights 角色也强化了这个框架:备份管理负责人、银行系统工程师和 CIO 是公开可见的操作者与评估者。Rubrik 文件补充称,大型企业采购可能变成全组织决策,测试和教育周期漫长;公共部门动作则需要专门覆盖联邦、州和地方销售。实践中,用户往往是备份、基础设施或安全运营团队;买方通常是基础设施或网络安全负责人;付款方似乎也在同一技术预算体系内,但公开资料没有给出足够的分行业定价或签署人细节,无法下定论。 渠道结构重要,因为 Cohesity 不必用纯直营软件动作拿下每一个工作负载。Veritas 交割材料强调了横跨 VAR、系统集成商、云服务商、MSP 和 OEM 的庞大合作伙伴生态;11:11 Systems 则显示,这一品类也能作为托管备份、复制、恢复、DRaaS 和网络保险库服务出售。公共部门和运营精简的中端市场客户最看重这一点:合规门槛、服务深度和采购支持可能压过产品功能差异。结果是,进入市场路径设计成了产品的一部分,而不只是销售外壳。[CM014, CM015, CM016, CM017, CM018, CM019]
| 细分市场 | 买方 | 用户 | 付款方 | 工作流 | 预算负责人 | 采用触发因素 |
|---|---|---|---|---|---|---|
| 大型混合云企业 | CIO / 基础设施负责人 | 备份管理员、平台工程师、安全运营 | 企业 IT 预算 | 全组织评估、测试和分阶段部署 | 基础设施或韧性项目负责人 | 数据蔓延、勒索软件压力或工具整合需求 |
| 受监管企业(银行 / 医疗) | CISO 与 IT 平台负责人 | 安全团队、备份团队、合规利益方 | 安全与基础设施预算 | 完整性、保留和恢复保障验证更重 | 网络安全与平台共同负责 | 监管审查、干净恢复需求或审计压力 |
| 联邦 / 州 / 地方公共部门 | 机构 IT 领导层 | 机构管理员以及 SI / 合作伙伴运营人员 | 受授权周期约束的机构或项目预算 | 认证牵引采购,并验证合作伙伴和 GovCloud | 公共部门 IT 内部项目负责人 | 任务连续性、勒索软件风险和合规要求 |
| SaaS 占比较高的企业 | 关注应用资产覆盖的 IT 买方 | SaaS 平台管理员和备份团队 | 应用或基础设施支出 | 覆盖范围与原生工具对比评估 | 应用韧性负责人 | 需要超出原生 SaaS 留存工具的覆盖广度 |
| 通过 MSP / 托管服务触达的中端市场 | MSP 或渠道合作伙伴 | 托管服务运营方加精简内部 IT 团队 | 托管服务合同 | 将备份、复制、恢复和保险库打包进服务销售 | 合作伙伴主导,客户技术团队批准 | 内部 IT 带宽受限,或希望外包韧性运营 |
买方、用户和付款方角色,是基于 IDC 买方指南、监管文件、客户评论中的角色,以及合作伙伴服务描述推断出来的。 公开资料很少披露合同具体签署方或计价指标,因此付款方标签只能作方向性参考,不能视为定论。
[CM014, CM015, CM016, CM017, CM018, CM019]矩阵把 Cohesity 类买方主力细分映射到用户角色、付款逻辑、采购路径和主要触发因素。
预算所有者和合同价值逻辑只是方向性判断, 因为公开来源披露的角色和流程,比已签商业条款更清楚。
[CM015, CM016, CM017, CM018, CM022, CM024]2.4 增长驱动、采用触发点与约束
这个市场的需求驱动很具体,不是概念性想象。CISA 勒索软件指南把离线、加密且经过测试的备份列为基线控制;GAO 则记录了勒索软件对关键基础设施的影响,以及领先实践采用仍不完整。Cohesity 自身调研也指向同一方向:只有 39% 的组织表示在混合与多云环境中使用单一平台,少于一半遵循 3-2-1 或使用不可变性,只有 6% 真正达到风险就绪。IDC 摘要语言还给出宏观读法:市场保持韧性,因为它现在处在 AI 项目、勒索软件防御和基础设施优化的交汇点。公共部门需求也并非理论存在;Cohesity 政府指南称 72% 的州计划在 12 到 18 个月内升级备份和恢复,而 GAO 点名医疗、交通、能源和制造业都是活跃勒索风险行业。 同一组证据也解释了为什么采用不会自动转化为快速收入。买方面临既有供应商拖拽、复杂评估周期、认证要求、公共部门预算时间,以及许多组织尚未落地的洁净室式恢复能力。IDC 明确称价格和既有供应商地位同样重要,不只是功能;Rubrik 文件也警告,政府资金授权和认证要求可能拖慢甚至打断需求。因此,Cohesity 受益于强劲长期需求,但估值仍取决于它能否在不依赖过宽 TAM 叙事的情况下,把需求转化为更快迁移、更大交叉销售套装和可复制的渠道辅助转化。[CM026, CM027, CM028, CM029, CM030, CM031]
| 驱动因素 / 约束 | 方向 | 时间 | 影响 | 尽调问题 |
|---|---|---|---|---|
| 勒索软件指引与运营恢复要求 | 顺风 | 当前且持续 | 让备份从卫生型支出转向韧性支出,并带上测试、不可变性和离线副本预期 | Cohesity 销售管线中,有多少由网络保险、审计或董事会压力触发? |
| 混合云 / 多云割裂 | 顺风 | 当前 | 只有少数组织实现统一环境,单一平台恢复叙事因此更容易打动买方 | Cohesity 替换多个点状产品时,胜率提升多少? |
| 公共部门与关键基础设施压力 | 顺风 | 当前至多年期 | 政府、医疗、交通和能源买方有明确连续性激励和合规需求 | 预订额中,来自联邦、州、地方或关键基础设施账户的比例是多少? |
| AI 与基础设施优化预算联动数据保护 | 顺风 | 当前至多年期 | IDC 称,市场受益于 AI 和优化预算,而不只是传统备份刷新周期 | AI 相关附加率中,多少是真实收入,多少只是叙事包装? |
| 既有厂商地位与粘性备份格式 | 约束 | 持续 | 即使市场割裂且没有主导厂商,迁移摩擦仍会拖慢转化 | 竞争性胜单中,有多少比例需要多个季度共存或迁移补贴? |
| 认证、预算周期与定价不透明 | 约束 | 因细分市场而异 | 公共部门授权、付款方和价格数据不清,会拉长销售周期,也让 SAM 估算更复杂 | 索取细分市场级定价、签署人职级和公共部门授权里程碑 |
时间和方向标签综合了监管指引、分析师评论、厂商文件和调查证据。它们指向采用影响, 并不保证 Cohesity 的具体收入节奏。
[CM010, CM012, CM026, CM027, CM028, CM029]Cohesity 类平台从需求触发到持续网络恢复运营的典型路径。
流程是定性综合,来自监管指引、买方标准、申报文件和合作伙伴服务描述, 而不是单一已发布流程图。
[CM003, CM015, CM017, CM024, CM026, CM027]2.5 图表
03竞争格局
3.1 竞争版图、同行集合与替代路径
Cohesity 的竞争集合比投资人口头常提的四个直接同行更宽。独立 2025 年市场报道仍把 Rubrik、Veeam、Commvault、Cohesity、Dell 和 Druva 放在企业备份与数据保护品类第一梯队,但实际采购场还包括 Microsoft 和 AWS 原生服务、IBM 长期经营的保护栈,以及许多企业仍在运营上熟悉的 Veritas 存量。这形成了多层版图:直接平台同行争夺大型整合项目;既有供应商防守现有环境;超大规模云厂商原生替代品则能满足更窄的云内工作负载,而无需完整控制平面的推倒重来。 这种结构很重要,因为买方并不是只在两个边界清楚的产品之间做选择。大型企业可以保留 Veeam 覆盖广泛 VM,用 Azure Backup 或 AWS Backup 处理云原生工作负载,依靠 IBM 或 Dell 覆盖重留存或与现有环境绑定的用例,同时继续评估 Cohesity、Rubrik 或 Commvault 的网络恢复和编排能力。换句话说,真实替代集合既包括完整平台挑战者,也包括足够多的现状工具,让多栖部署继续存在。Cohesity 的优势在于,Veritas 之后的广度已经进入这片更宽版图的第一梯队;但同样的广度也让它同时面对更多竞争正面。[CP001, CP002, CP003, CP004, CP005, CP006]
| 竞争对手 / 替代方案 | 类别 | 规模 / 融资信号 | 部署模式 | 渠道 / GTM 信号 | 核心差异化 | 相比 Cohesity 的局限 |
|---|---|---|---|---|---|---|
| Rubrik | 直接平台同业 | 上市;FY2026 收入 $1.32B | 云原生 SaaS 控制平面 | 销售团队加合作伙伴网络;绑定 Microsoft | 以数据和身份安全为核心叙事,勒索软件恢复速度快 | 公开描述的工作负载广度不如 Cohesity 或 Commvault |
| Commvault | 直接平台同业 | 上市;2025 年 9 月季度末市值约 $8.2B | SaaS、客户自管软件、一体机、合作伙伴交付 | 云、GSI、安全、MSP、分销商生态 | 部署灵活性最广,附加恢复工具也深 | 产品组合广度带来复杂度和易用性风险 |
| Veeam | 直接平台同业 | 私有;所审阅资料披露路线图,不披露财务规模 | 既有本地部署加 SaaS 激活路径 | 大型 ProPartner 生态 | 广泛虚拟机管理程序覆盖和新的 AD Forest Recovery | 多栖部署仍常见,官方公开定价不可见 |
| Druva | 直接 SaaS 同业 | 私有;26 个区域,管理数据 450PB+ | 全托管 SaaS | 联盟主导生态,打法适配云 | 简单、没有可直接攻击的基础设施、勒索软件自动化 | 本地部署或重保留场景深度不如 Cohesity/Commvault 明显 |
| Dell PowerProtect | 既有套件 | 大型上市基础设施厂商的一部分 | 本地和公有云网络保险库选项 | 最适合以 Dell 为中心的环境 | 空气隔离保险库加机器学习辅助的干净恢复 | 独立评论称创新和云原生广度落后于领导者 |
| IBM Storage Protect + Defender | 既有 / 相邻 | 大型上市厂商的一部分;Storage Protect 声称 4PB/server 规模 | 软件套件加 Defender 叠加层 | IBM 商业伙伴渠道 | 重保留保护加持续恢复测试 | 定位更接近既有厂商 / 愿景者,而非头部领导者集群 |
| Azure Backup | 相邻原生服务 | 超大规模云厂商原生服务 | Azure 原生备份服务,支持混合工作负载 | 沿既有 Azure 客户销售路径销售 | 对 Azure 和部分本地 VMware 工作负载摩擦低 | 比异构企业控制平面更窄 |
| AWS Backup | 相邻原生服务 | 超大规模云厂商原生服务 | AWS 原生备份,带空气隔离保险库选项 | 沿既有 AWS 客户销售路径销售 | 消费型定价透明,并天然贴合云 | 更适合 AWS 环境,而非广泛跨厂商编排 |
| Veritas Alta | 存量足迹 | 传统企业装机基础现已并入 Cohesity 合并 | AI 驱动的保护平台 | 现有 NetBackup/Veritas 买方仍熟悉 | 存储无关的不可变性与干净恢复主张 | 最新领导者评论中不再独立列出 |
各行列出审阅的 2025-2026 资料中可见的主要直接同业、既有厂商和相邻替代品。 私营公司的财务规模在审阅公开材料未提供时标为未披露。
[CP001, CP002, CP003, CP004, CP005, CP006]SaaS / 控制平面简洁度与工作负载宽度、企业深度之间的主要直接同行序数定位图。
分数是 1 到 5 的证据支持序数评级,来自已审阅官方部署描述和独立 2025 年领导者评论。 x 越高,SaaS 或控制平面运营模型越简单;y 越高,工作负载宽度和企业深度越强。
[CP006, CP007, CP016, CP019, CP029, CP030]3.2 直接竞争者画像、部署模式与定价不透明
直接同行比较已经不只是备份性能。Rubrik 的主张是围绕数据和身份安全构建云原生 SaaS 控制平面,并通过先落地再扩张的 动作销售,越来越依赖生态系统杠杆。Commvault 是最接近 Cohesity 广度的类比对象,因为它明确横跨托管 SaaS、客户自管软件、集成设备和合作伙伴交付模式,并把网络恢复打包进模块化层级。Veeam 的 2026 年故事更偏路线图:更广的 hypervisor 支持、自动化 AD Forest Recovery,以及试图降低迁移摩擦的统一运营界面。Druva 走了相反方向,以完全托管 SaaS、客户无需直接保护基础设施,以及以自动化为中心的勒索响应来形成差异。 定价透明度远低于营销文案暗示。官方公开价格最容易从超大规模云厂商原生服务和 Druva 定价简报中找到;后者明确提到常见计划、企业折扣和用量折扣。Commvault 的包装页面有助于理解功能打包,但仍把买方推向销售对话,而不是公开企业价目表。已核验的 Rubrik 和 Veeam 资料同样展示了架构、路线图和生态深度,却没有给出清晰公开标价,无法让投资人或买方做苹果对苹果的经济性对标。这意味着,即便在功能比较开始之前,采购能力、折扣行为和装机基础杠杆仍是重要竞争变量。[CP013, CP014, CP015, CP016, CP017, CP018]
| 购买标准 | Cohesity | Rubrik | Commvault | Veeam | Druva |
|---|---|---|---|---|---|
| 工作负载广度 | Veritas 之后非常高 | 高,正在追赶 | 非常高 | 高 | 中高 |
| 部署灵活性 | 大型混合环境适配度高 | SaaS 控制平面适配度高 | 覆盖 SaaS / 软件 / 一体机,最高 | 混合传统环境适配度高 | 基础设施负担低,但仅 SaaS |
| 网络恢复自动化 | 高 | 高 | 高 | 2026 年显著上升 | 托管勒索软件响应能力高 |
| 身份 / AI 安全联动 | 叙事强,公开细节参差 | 身份与数据安全都强 | 身份韧性打包能力强 | 中等,但在改善 | 数字身份覆盖中高 |
| 渠道 / 合作伙伴触达 | Veritas 合并后高 | 高 | 高 | 高 | 中高 |
| 公开定价透明度 | 未知 / 低 | 未知 / 低 | 低(套餐公开,费率不公开) | 未知 / 低 | 中(定价简报公开) |
| 运营简单性 | 合并后中等 | 高 | 中等 | 中高 | 高 |
单元格是有证据支撑的序位判断,综合官方部署说明、包装页面和 2025 年独立市场评论。 公开未披露的定价标为低或未知,而不是自行估算。
[CP004, CP005, CP006, CP007, CP013, CP016]高层矩阵展示主要替代方案在部署方式、恢复、身份 / 安全、渠道力量和定价可见度上的差异。
评级是对已审阅来源表述的定性总结。未知表示公开材料没有清楚披露该项, 本身不是负面分数。
[CP017, CP018, CP020, CP022, CP023, CP025]3.3 分销能力、云相邻性与切换成本逻辑
进入市场路径是这一品类没有坍缩成纯功能对决的最大原因之一。Rubrik 强调经销商、技术伙伴、服务交付伙伴,以及在 Azure 和 Microsoft 365 环境中很重要的 Microsoft 深度绑定。Commvault 的合作伙伴语言更宽,明确点名云伙伴、全球系统集成商、分销商和托管服务商;NetApp 也把 2026 年联盟定义为联合进入市场扩张。Veeam 长期的伙伴优先动作和 Druva 的联盟生态,也从不同起点形成类似分销杠杆。渠道结构重要,因为数据保护常常与基础设施、云迁移、安全服务或托管运营一起出售,而不是作为完全独立的软件采购。 因此,切换成本并不绝对,而是很不均匀。Veeam 的混合 hypervisor 可移植性可以降低对单一虚拟化供应商的锁定,但也让 Veeam 更容易被留在其他工具旁边,而不是迫使客户完成全平台转换。Azure Backup 和 AWS Backup 制造相反动态:它们在既有云支出中很容易采用,因为定价按使用量且采购路径已存在;但它们无法解决完整异构企业控制平面问题。当客户希望延续既有留存或基础设施模式时,IBM 和 Dell 仍有相关性。对 Cohesity 而言,结论很清楚:它不只要赢功能,还要证明整合真的比保留多个专用工具更省运营时间。[CP024, CP025, CP026, CP027, CP028, CP029]
| 供应商 / 选项 | 公开定价或包装信号 | 合同模式 | 包含或强调的能力 | 已知未知项 | 含义 |
|---|---|---|---|---|---|
| Cohesity | 审阅的独立资料强调平台广度,而非公开价目表 | 企业级议价 / 审阅资料未公开列出 | 广泛工作负载支持和网络恢复编排 | 审阅资料未见公开标价或标准折扣表 | 广度可能有利于企业打包,但外部买方难以清晰对标 |
| Rubrik | 公开申报文件和官方页面描述订阅与平台范围,不给标价 | 订阅,先落地再扩张 | 数据安全、勒索软件恢复、Azure / M365 恢复 | 审阅资料未披露标价和折扣 | 销售效率和合作伙伴杠杆比公开定价透明度更关键 |
| Commvault | 官方页面披露三个套餐系列和附加项 | 对话驱动、基于套餐的企业销售 | Operational / Autonomous / Cyber Recovery,加 Cleanroom、AirGap、Threatscan、Cloud Rewind | 没有可比的公开企业级费率表 | 包装广度可见;实际经济性仍不透明 |
| Veeam | 审阅的 2026 官方路线图资料描述功能,不发布企业费率 | 版本和合同细节无法从审阅资料公开对标 | 虚拟机管理程序覆盖、AD Forest Recovery、网络安全服务 | 审阅资料未找到公开标价 | 强产品动能可与采购不透明并存 |
| Druva | 官方定价简报强调直观定价和常见套餐 | SaaS 套餐,含企业、多年期和批量折扣 | 全托管 SaaS 保护和勒索软件恢复 | 大型企业实际成交价仍取决于报价 | 审阅官方资料中,直接同业里包装最透明 |
| Azure Backup | 按用量付费,无前期成本 | 按用量计费 | Azure 和部分混合工作负载保护 | 动态定价表细节随工作负载 / 区域变化 | Azure 驻留工作负载的良好默认选择,但作为广泛平台对标锚点较弱 |
| AWS Backup | 无最低费用或设置费;存储、恢复、传输和评估按用量计费 | 按用量计费 | AWS 原生备份、恢复和逻辑空气隔离保险库经济性 | 经济性随资源、区域和恢复模式变化 | 透明的原生云定价提高了对 AWS 优先工作负载的替代压力 |
本表只比较审阅公开资料披露的内容。定价未知表示厂商未在审阅材料中提供可直接使用的公开企业价目表; 这并不意味着该厂商没有定价模型。
[CP009, CP017, CP018, CP021, CP022, CP023]3.4 护城河耐久性、多栖部署与商品化风险
独立评论指向的是高度拥挤的领导者集合,而不是一个失控领先者。Rubrik 和 Veeam 在 Gartner 主要轴线上仍略占上风,但 Commvault 和 Cohesity 距离足够近,份额变化将由执行质量决定,不只是架构。对 Cohesity 最有利的外部读法是,Veritas 合并让它拥有无可匹敌的工作负载广度,只有 Commvault 在覆盖面上接近。最不利的读法是,同一场合并会制造执行混乱风险;如果整合拖慢,同行可以乘机抢份额,而客户继续多栖部署。这个风险真实存在,因为 Blocks and Files 指出 Veeam 经常与其他备份产品共存,这正是让切换成本无法变成永久护城河的模式。 更宽地看,品类正在围绕同一组高层承诺收敛:不可变保护、干净恢复、AI 辅助运营、身份韧性,以及 SaaS 或混合控制平面。Rubrik 押注简单性和数据安全叙事,Commvault 押注广度和附加深度,Veeam 押注可移植性加身份恢复,Druva 押注 SaaS 简洁性,云原生替代品则押注低摩擦采购。这些差异有意义,但它们都处在共同的网络恢复框架中,而不是彼此隔绝的产品品类。对 Cohesity 而言,护城河耐久性取决于后 Veritas 的广度能否转化为更轻松的企业执行、更强的伙伴驱动分销,以及相对相邻云和平台同行更好的胜率;不能建立在其他厂商无法复制网络恢复功能清单这一假设上。[CP035, CP036, CP037, CP038, CP039, CP040]
| 护城河主张 | 主要威胁 | 严重性 | 威胁为何可信 | 缓释措施 / 尽调问题 |
|---|---|---|---|---|
| Veritas 之后的工作负载广度 | Rubrik 和 Commvault 继续缩小能力差距 | 高 | 独立评论已经指出,广度上只有 Commvault 接近 Cohesity,Rubrik 也在覆盖范围上追赶 | 索取按工作负载和替换对象拆分的最新赢 / 输数据 |
| 装机基础杠杆 | 多栖部署持续存在 | 高 | 客户现场仍常能看到 Veeam 与其他备份工具并存 | 衡量 Cohesity 取代既有工具与共存的频率 |
| 网络恢复差异化 | 功能正在趋同 | 高 | 不可变备份、干净恢复、AI 辅助运维和 SaaS 控制平面正成为全市场预期 | 要求提供产品级证据:恢复速度、无恶意软件恢复置信度和客户背书 |
| 合作伙伴主导分销 | 同业也有广泛生态 | 中高 | Rubrik、Commvault、Veeam 和 Druva 都明确宣传合作伙伴触达,Commvault 还在 2026 年扩大 NetApp 联盟 | 按直销、合作伙伴和云主导渠道拆分销售管线与续约 |
| SaaS 简单性 | Druva 和云原生工具可更快拿下较窄工作负载 | 高 | 在审阅的 MQ 评论中,Druva 是唯一 100% SaaS 领导者,AWS/Azure 定价也易于采用 | 核查云优先账户胜率,以及相对更简单替代品的服务支持成本 |
| 定价权 | 报价驱动采购会在领导者集群内压缩利润率 | 中 | 官方包装可见,但多数主要同业的企业实际成交价仍不透明 | 按交易规模获取近期实际成交价、折扣带和服务附加率 |
严重性是基于所审阅 2025-2026 证据作出的分析判断。威胁强调的是,即使功能广度仍强, Cohesity 在 Veritas 之后的护城河仍可能收窄的环节。
[CP036, CP037, CP038, CP039, CP041, CP043]Veritas 集成后 Cohesity 的竞争位置有多稳,用一组紧凑指标读出。
数值要么直接来自已审阅第三方数据, 要么是把更广泛证据压缩成护城河读数的分析标签。
[CP037, CP041, CP042, CP043, CP044]3.5 图表
04财务情况
4.1 原独立指标与合并备考规模
公开记录支持两套非常不同的财务视角。原独立公司视角在 2021 年最扎实,当时 Cohesity 披露年化收入运行率超过 $300 million,ARR 增长超过 70%,净扩张率超过 130%,截至 2021 年 7 月 31 日约有 2,600 家客户。2021 年 3 月要约收购公告及同期报道也显示,投资人愿意通过非稀释性员工流动性事件支撑 $3.7 billion 估值,说明软件市场重置之前,独立业务确有真实需求。但承销难点在于,这个视角基本到此为止。到 2024 和 2025 年,公司最有用的规模披露不再是独立 Cohesity 指标,而是 Veritas 合并公告和交割材料提供的合并主体备考收入、ARR 和调整后现金 EBITDA。2024 年 2 月公告把业务描述为收入超过 $1.6 billion、ARR 达 $1.3 billion、调整后现金 EBITDA 利润率 27%;2024 年 12 月交割时,这些指标更新为收入超过 $1.7 billion、ARR 达 $1.5 billion、调整后现金 EBITDA 利润率 28%。这些是很有分量的规模标记,但不能被解读为经审计的独立 Cohesity 经济性。[CI001, CI002, CI003, CI004, CI005, CI006]
| 收入流 | 有证据支撑的机制 | 当前价值 / 状态 | 收入质量 | 尽调问题 |
|---|---|---|---|---|
| 核心平台订阅 / 定期软件 | Cohesity 和同业披露将业务定位为围绕经常性订阅 ARR 和软件主导型保护合同。 | 旧有 FY2021 运行率 >$300M;交易完成时合并 ARR $1.5B。 | 经常性质量高,但独立业务组合未披露。 | 按产品族、队列和续约年份提供 ARR 桥接。 |
| Veritas 维护和支持续约 | Veritas 交易带来庞大的装机基础,以及围绕 NetBackup、设备和 Alta 产品的持续支持承诺。 | 在合并 ARR 和收入中经济意义重大,但公开资料没有单独拆出美元金额。 | 具备经常性,但对迁移敏感;继承来的续约行为可能不同于 Cohesity 原生 ARR。 | 拆出继承维护 ARR、总留存率,以及迁移至 DataProtect 的转化率。 |
| DMaaS / SaaS 产品 | 官方材料提到以服务形式交付的 DataProtect,以及托管或 as-a-service 部署路径。 | 具备战略意义和经常性,但未公开披露收入贡献。 | 如果附加率真实,可能是高质量经常性收入;公开规模未知。 | 展示 SaaS ARR、SaaS 毛利率和 DMaaS 客户数。 |
| 专业服务 / 实施服务 / 合作伙伴交付服务 | 平台可自管、按服务交付,或由 Cohesity 授能的合作伙伴交付,意味着部署周边会有服务和赋能收入。 | 公开资料只呈现为机制,没有单独拆分。 | 如果占比过大,质量低于软件 ARR,因为它更偏一次性、也更依赖人力。 | 提供服务收入占比、附加率和服务毛利率。 |
| 设备绑定或硬件相邻收入 | 对 NetBackup 设备和自管部署的支持,意味着继承组合中存在部分硬件相邻经济性。 | 没有公开拆分软件、设备支持和任何捆绑硬件内容。 | 质量混杂,因为设备占比高的收入不如纯软件 ARR 经常性强。 | 将设备相关收入和支持续约画像与软件 ARR 分开披露。 |
各行列出可由已审阅公开披露支撑的主要收入桶;确切收入流组合仍未披露,需要管理层提供底稿。
[CI001, CI008, CI009, CI013, CI014, CI038]披露的客户活动和装机基础承诺如何转化为经常性 ARR、已确认收入和现金收益。
桥接只反映公开披露;它是概念模型, 因为 Cohesity 不发布完整收入结构或递延收入桥。
[CI008, CI013, CI014, CI017, CI039]4.2 变现、定价不透明与单位经济性代理
Cohesity 的收入质量看起来好于披露质量。2021 年独立阶段和 2024 年交割的官方材料都反复强调订阅驱动的经常性模式;原主体超过 130% 的净扩张率,是公开证据中最干净的一条,说明产品历史上能在既有账户内扩张,而不只依赖新 logo。公开材料还暗示了几个变现桶:软件订阅或定期许可、支持和维护续费、DMaaS 或 SaaS 产品(例如以服务形式交付的 DataProtect),以及服务或合作伙伴交付的实施。缺口在于这些收入流之间的确切结构;这很重要,因为继承自 Veritas 的维护收入与 Cohesity 净新增软件 ARR 的经济属性不同。定价图景更不透明。已核验材料没有给出实际客户定价、折扣水平、CAC 和回本周期指标,因此最好的公开单位经济性读法只能来自代理指标和上市同行。Rubrik 的文件和业绩发布展示了网络韧性同行如何披露 ARR、毛利率、自由现金流和贡献利润率。Commvault 的年报和 2026 财年结果则展示成熟上市公司在收入、ARR、毛利率和现金生成上的披露长什么样。这个对比强化了一个判断:Cohesity 的核心引擎大概率是经常性且偏大型企业,但披露颗粒度仍不足以支持自下而上的承销。[CI003, CI008, CI009, CI013, CI014, CI015]
| 产品 / 合同路径 | 公开定价信号 | 实际成交价可见度 | 当前判断 | 来源或尽调要求 |
|---|---|---|---|---|
| 企业平台订阅 | 已审阅材料中未发现 Cohesity 公开的企业价目表。 | 低 | 公开图景主要由协商定价主导。 | 需要按细分客户提供匿名价格瀑布和折扣区间。 |
| DMaaS / 以服务形式交付的 DataProtect | 公开材料确认该产品存在,但未披露每个工作负载或每 TB 价格。 | 低 | 商业结构可见,单价不可见。 | 需要 SaaS SKU 表、打包逻辑和附加率数据。 |
| 继承的 Veritas 续约和迁移 | 公开来源讨论支持承诺和迁移激励,而不是实际续约定价。 | 低 | 很可能是 ARR 持久性和利润率的主要摆动因素。 | 需要续约价格区间、降级销售发生率和迁移激励安排。 |
| Rubrik 公开可比公司 | Rubrik 披露 ARR、收入、贡献利润率和自由现金流,但不披露可比的企业版标价。 | 中 | 即使没有标价,也有上市公司 KPI。 | 把公开 KPI 披露节奏作为披露基准,而不是价格卡。 |
| Commvault 公开可比公司 | Commvault 披露订阅收入、SaaS 收入、ARR 和自由现金流,但企业定价仍通过销售渠道完成。 | 中 | 即便实际成交价仍需协商,公开变现披露也优于 Cohesity。 | 用公开披露深度对标 Cohesity,而不是用公开价目表对标。 |
本表关注变现可见度,而不只看标价;Cohesity 的核心问题是缺少实际经济性披露,而不只是没有标价。
[CI014, CI015, CI016, CI025, CI031, CI033]| 指标 | 数值 / 状态 | 置信度 | 重要性 | 尽调要求 |
|---|---|---|---|---|
| 原 Cohesity 年化收入运行率(FY2021) | 超过 $300M | 中 | 显示独立业务在合并叙事接管前已经具备可观规模。 | 把 FY2021 独立收入运行率桥接到 FY2024 独立收入。 |
| 原业务净扩张 | >130% | 高 | 强净扩张通常说明产品使用健康、交叉销售质量不错。 | 提供原业务和继承队列的当前 NRR 与总留存率。 |
| 交割时合并备考 ARR | $1.5B | 高 | 合并公司最强的公开规模指标。 | 将 ARR 拆分为 Cohesity 原生、继承 Veritas、SaaS 和支持收入桶。 |
| 合并调整后现金 EBITDA 利润率 | 28% | 高 | 如果定义可持续,说明贡献经济性扎实。 | 提供完整 EBITDA 桥接,并与 GAAP 经营利润或现金流对账。 |
| Rubrik FY2026 毛利率 / 自由现金流 | 80.1% GAAP 毛利率;$237.8M FCF | 中 | 展示高披露度网络韧性软件在规模化后可能呈现的经济性。 | 用作 Cohesity 毛利率和 FCF 披露的同业基准。 |
| Commvault FY2026 毛利率 / 自由现金流 | 81.2% GAAP 毛利率;$237M FCF | 中 | 展示成熟公开品类的经济性和利润率透明度。 | 用作支持占比高与 SaaS 占比高组合的基准。 |
| 独立 Cohesity 的 CAC、回本周期和 FCF | 未公开 | 低 | 这些是判断资本效率和现金跑道的核心承销变量。 | 要求提供队列 CAC、S&M 回本周期、递延收入趋势和自由现金流桥接。 |
各行混合直接披露和可比公司代理指标;缺少 Cohesity 自身单位经济数据才是核心尽调卡点,不是格式遗漏。
[CI001, CI003, CI008, CI016, CI031, CI033]公开信息能从存量扩张和合并后 ARR 规模,搭到单位经济模型的大致路径;但若干关键指标缺失,完整投资测算仍被卡住。
Cohesity 未披露独立毛利率、获客成本(CAC)、回本周期或自由现金流细节,因此这里使用公开代理指标和同业披露。
[CI003, CI008, CI016, CI031, CI033, CI036]基于官方公告到交易完成披露的指标,以及公开估值视角,给出有来源支撑的低 / 高区间。
区间结合了合并后公司在公告和交割时的披露,并另纳入 Yahoo / Forge 的私募市场估值视角;这些指标并不全都属于同一期间。
[CI006, CI007, CI008, CI028, CI030, CI037]4.3 资本结构、融资依赖与 IPO 路径
资本堆叠的轮廓可见,债务细节不可见。签约时,Cohesity 和 Veritas 表示交易将由股权和债务共同融资,并明确提到与既有 Veritas 债务相关的交换要约或类似交易。到交割时,公司收窄了股权侧叙事:Haveli 领投的 Series H 提供了大部分交易股权,Coatue、Sapphire Ventures 和 Dragon Fund 也参与,Carlyle 通过 Veritas 持股进入合并公司,Sequoia、SoftBank、Wing、Premji、Madrona 等知名支持者也被点名。J.P. Morgan 安排并承诺融资,说明债务真实且来自机构;但交割公告和已核验独立报道都没有披露这笔债务的金额、定价、期限或杠杆率。这个省略更重要,因为管理层已经在引导市场思考 IPO 准备度。CRN 引用 Sanjay Poonen 称,公司推迟 IPO 是为了完成并证明 Veritas 合并;CNBC 后来报道称,Cohesity 希望在上市前拿到一整年的合并结果,时间可能在 2026 年。乐观读法是,融资买来了规模和时间。更严苛的读法是,投资人仍看不到债务负担、现金跑道,也无法判断 mid-30s 的 Rule of 40 目标是否足以抵消 IPO 窗口的宏观波动。[CI017, CI018, CI019, CI020, CI021, CI022]
| 资本项目 | 公开数值 / 状态 | 重要性 | 后续影响 | 尽调要求 |
|---|---|---|---|---|
| 股权融资 | Haveli 领投的 Series H 提供了交易所需大部分股权资金;Coatue、Sapphire 和 Dragon 也参与。 | 说明交易并非只靠债务融资,也带来新的财务赞助方支持。 | 提供整合现金跑道,但也抬高了最终流动性的预期。 | 提供股权结构表、优先权和交割后持股比例。 |
| 债务融资 | J.P. Morgan 安排并承诺提供融资;确切债务金额未披露。 | 债务规模决定杠杆、利息负担和再融资风险。 | 即使收入规模强,不透明的杠杆也会压低估值。 | 提供债务规模、定价、到期日、契约条款和摊还安排。 |
| 原 Veritas 债务置换 | 公告提到与既有债务相关的交换要约或类似交易。 | 说明这笔剥离交易除普通股权支票外,还带有融资复杂性。 | 可能改变实际杠杆和索偿优先级。 | 提供交换要约机制和交割后债务堆栈。 |
| 账面现金 / 现金跑道 | 未公开披露 Cohesity 或合并公司的数据。 | 现金和跑道决定 IPO 时点是可选项还是被迫选择。 | 投资者无法判断增长计划能否自筹资金。 | 提供交割现金、月度烧钱或 FCF,以及基准 / 下行情景下的跑道。 |
| 计划资金用途 | 公开强调增长、全球扩张、客户支持连续性和产品创新。 | 资本配置能说明交易资金用于进攻、防守,还是整合清理。 | 沉重的支持负担可能拖慢利润率扩张。 | 提供整合预算、协同计划和产品投资路线图。 |
| 下一轮融资或 IPO 触发条件 | 管理层表示,可能在取得一整年合并业绩后于 2026 年 IPO。 | IPO 窗口是新老投资者最清晰的公开流动性路径。 | 宏观时点风险仍不受管理层控制。 | 如果 IPO 市场继续关闭,提供董事会批准的融资计划。 |
大体融资结构已经公开,但债务层和现金跑道并不透明;这个缺口是资本充足性只能部分回答的关键原因。
[CI017, CI018, CI019, CI020, CI021, CI022]已披露融资来源如何流向整合、支持、增长和 IPO 准备;债务不透明仍未解决。
该图反映已披露融资结构和管理层说明的资金用途;确切债务规模和现金跑道仍未披露。
[CI017, CI018, CI020, CI021, CI022, CI025]4.4 上市公司参照、披露缺口与财务结论
上市同行让 Cohesity 的披露缺口无法被忽视。Rubrik 的 S-1 披露 2024 财年收入 $627.9 million、Subscription ARR $784.0 million,IPO 前自由现金流为负。一年后,Rubrik 2026 财年结果显示收入 $1.32 billion、订阅 ARR $1.46 billion、GAAP 毛利率 80.1%、自由现金流 $237.8 million,以及现金和短期投资 $1.68 billion。Commvault 2024 年报已经给出收入、现金和 ARR 增长;2026 财年结果进一步披露收入 $1.184 billion、总 ARR $1.122 billion、GAAP 毛利率 81.2%,自由现金流 $237 million。在这个背景下,合并后的 Cohesity 在已披露收入和 ARR 上都比任一上市可比公司更大,这有战略价值。但比较仍不完美,因为 Cohesity 的标题级盈利指标是合并备考口径下的调整后现金 EBITDA,而不是上市公司式 GAAP 或标准化 non-GAAP 桥接。财务结论因此是:规模和经常性收入质量为正,但可承销性要谨慎。投资人看不到独立财务、债务条款、定价实现和合并后留存之前,公司更容易在收入规模层面令人钦佩,而不是让人有把握地估值。[CI008, CI009, CI031, CI032, CI033, CI034]
| 缺失的私有指标 | 对承销判断的影响 | 公开可比公司披露内容 | 具体尽调路径 |
|---|---|---|---|
| 独立 Cohesity 收入、毛利率和现金流 | 阻碍把原 Cohesity 经济性与合并备考指标清晰拆开。 | Rubrik 和 Commvault 都披露收入、毛利率和现金流细节。 | 索取经审计的独立财务报表,以及进入合并备考结果的桥接。 |
| 债务金额、杠杆率和到期日 | 阻断估值、偿付能力和再融资分析。 | 公开同业在申报文件和业绩材料中披露现金和债务。 | 索取最终债务协议、贷款人演示材料和任何交换要约材料。 |
| 按软件、支持、SaaS 和服务拆分的收入组合 | 难以判断收入持久性和毛利质量。 | Commvault 公开拆分订阅、期限许可和 SaaS 收入。 | 索取按产品族和交付模式拆分的 ARR 与收入组合。 |
| CAC、回本周期和队列销售效率 | 阻碍资本效率分析和前瞻烧钱建模。 | 即使没有完整 CAC 细节,Rubrik 也给出 ARR 贡献和自由现金流披露。 | 索取队列预订额数据、S&M 支出映射和回本周期分析。 |
| 继承 Veritas 客群的留存、流失和续约数据 | 让合并后最大的收入风险无法量化。 | 公开同业每季度讨论 ARR 和客户队列。 | 索取总留存率、流失瀑布和迁移转化数据。 |
| 合并公司现金余额和现金跑道 | 让 IPO 时点在叙事上看似可选,但数字无法验证。 | Rubrik 和 Commvault 都披露现金余额和自由现金流。 | 索取交割现金、流动性预测和下行跑道情景。 |
每一行都是会直接影响承销信心的公开数据缺口;只靠更仔细阅读现有新闻稿,一个也解决不了。
[CI009, CI015, CI016, CI021, CI030, CI038]4.5 图表
05产品与技术
5.1 平台范围与产品线图谱
Cohesity 现在展示的是一套宽网络韧性栈,而不是单一备份设备故事。公开界面覆盖用于核心企业备份的 DataProtect、承接 Veritas 存量环境的 NetBackup 连续性、用于隔离恢复副本的 FortKnox 或 Alta Recovery Vault、面向 SaaS 与云原生保护的云服务,以及在备份数据之上做 AI 激活的 Gaia。产品文档索引进一步印证了这种铺开:Helios、Security Center、Threat Protection、Data Classification、RecoveryAgent、FortKnox、Gaia 和 NetBackup Web UI 都是单独记录的界面。这种广度有战略吸引力,因为 Cohesity 可以用一个组合销售备份、保险库、DSPM、身份恢复和 AI 上下文。需要注意的是,公开包装比公开可读的技术细节更宽,所以买方应承认模块数量真实存在,但不要假设每个具名界面都同样成熟。[CE001, CE002, CE003, CE004, CE007, CE012]
| 模块 / 资产 | 主要用户 | 公开成熟度 / 状态 | 差异化信号 | 尽调缺口 |
|---|---|---|---|---|
| DataProtect | 备份管理员、基础设施团队、网络恢复负责人 | 成熟核心平台 | 统一管理、不可变快照、快速搜索、即时大规模恢复、混合工作负载覆盖广 | 需要独立基准性能测试;无需登录即可查看的公开发布说明细节也要更清晰。 |
| NetBackup | 大型企业备份团队和设备占比较高的环境 | 成熟继承平台 | 设备支持、Kubernetes 备份、多云恢复、Alta 或 FortKnox 扩展、根深蒂固的企业客户基础 | 与 DataProtect 的确切功能重叠,在公开来源中仍未清晰说明 |
| FortKnox / Alta Recovery Vault | 安全、韧性和灾难恢复团队 | 成熟金库层 | 托管网络金库、恶意软件扫描、加密、干净恢复、云服务商可选 | 需要更清楚的公开指引,说明 Day-2 运维、测试节奏和按部署模式计价。 |
| Cloud Services / Microsoft 365 备份 | 云运营、SaaS 备份管理员、托管服务买家 | 成熟,并在积极拓展合作伙伴 | 全托管备份服务、SOC 2 Type II 存储声明、Microsoft 365 Backup Storage 路径、无需管理本地基础设施 | 需要公开拆解各工作负载限制、恢复 SLA,以及相较自管模式的控制差异。 |
| Gaia | 知识工作者、安全分析师、AI 平台团队 | 新兴但已有在线产品界面 | 激活不可变时间序列备份数据用于 AI、语义搜索、向量索引,并向 Copilot、Gemini 和 Glean 注入上下文 | 需要公开的护栏文档、连接器成熟度地图,以及 GA 与预览边界。 |
| Helios / Alta View 控制平面 | 平台管理员、中央运维、多集群管理者 | 已上线,但明显处于整合中期 | 单一环境可见性、NetBackup 接入路径、满足数据主权要求的区域选择 | 手动开通和多品牌命名说明控制平面仍有复杂度 |
| Marketplace / 应用平台 | 开发者、生态合作伙伴、高阶企业管理员 | 已上线的扩展层 | 基于 Docker 的 AppSpec 和 SDK 应用,加上 Cisco XDR、DataMasque 等合作伙伴附加组件 | Marketplace 应用、合作伙伴应用和官方支持集成之间的支持边界并不完全透明 |
| 安全叠加模块(DSPM、威胁防护、身份韧性、恢复编排) | CISO、安全工程、事件响应 | 已上线的组合叠加模块 | 公开的网络韧性框架把 DSPM、身份恢复、威胁狩猎、金库和自动恢复串成一个叙事 | 公开来源中的模块级技术深度不均,且常被导向解决方案页面,而不是详细文档 |
各行覆盖截至 2026-05-19 公开产品页、文档索引条目和合作伙伴列表中明确提到的主要模块与叠加能力;这不是完整 SKU 清单。
[CE001, CE002, CE007, CE017, CE025, CE028]公开可见的层次从受保护工作负载出发,经过保护引擎、隔离库和恢复控制,再接入生态系统和 AI 场景。
这些层是功能层,不是字面意义上的内部微服务。该图基于公开产品页面和合作伙伴列表,而非内部架构图。
[CE001, CE003, CE007, CE012, CE017, CE028]5.2 客户工作流与运营架构
在工作流层面,Cohesity 先捕获广泛工作负载,再加上集中化策略和搜索,最后叠加保险库和编排恢复。DataProtect 是 Cohesity 侧最清楚的表达:单一管理、不可变快照、快速搜索、即时恢复,以及可选的备份即服务。NetBackup 把同一故事延伸到继承的 Veritas 环境,尤其是设备、Kubernetes 和大规模企业恢复。合并后最重要的架构信号是控制平面叙事。Helios 配置流程显示 NetBackup 管理正在折入 Cohesity 平面,但上手顺序仍依赖人工工单,最长可能需要两个工作日。这足以证明连续性,但还不够优雅,不能消除所有整合摩擦。因此,架构可信且达到企业级,但仍明显处于整合中段,而不是完全调和。[CE003, CE004, CE007, CE008, CE009, CE010]
| 用户任务 | 当前工作流问题 | Cohesity 工作流 | 可衡量收益 / 证据 | 已知限制 |
|---|---|---|---|---|
| 保护混合工作负载 | 备份工具按本地、云和 SaaS 环境割裂 | 用 DataProtect 或 NetBackup,在更宽的 Data Cloud 控制叙事下跨环境保护工作负载 | 官方页面称 DataProtect 覆盖本地、云和 SaaS,NetBackup 覆盖云、VM、文件和 Kubernetes | 跨产品运维简化的独立公开证据有限 |
| 保留干净恢复副本 | 普通备份副本对勒索软件恢复来说可能隔离不够 | 将受保护数据复制或封存到 FortKnox 或 Alta Recovery Vault,用于隔离的干净恢复 | FortKnox 和 Alta Recovery Vault 都强调不可变性、恶意软件扫描、加密和干净恢复 | 测试节奏、恢复顺序和运维开销在公开资料中没有深入说明 |
| 管理混合的 Cohesity 和 Veritas 环境 | 既有 NetBackup 客户需要连续性,同时不能失去现代化路径 | 在保留既有环境的同时,将 NetBackup 管理开通到 Helios 或 Alta View | Helios 开通明确支持管理 NetBackup 环境,并允许按数据主权选择区域 | 开通仍似乎是手动流程,最长可达 2 个工作日 |
| 保护 Microsoft 365 和云原生数据 | M365 和云数据需要单独的留存与恢复工具 | 用 Cloud Services 和 Microsoft 365 Backup Storage 集成,更快保护云和 SaaS 数据 | Microsoft 称 Cohesity 客户很快将获得近乎即时的完整备份和恢复,并支持策略上下文恢复 | 收益时点仍是前瞻表述,不是完整历史证明 |
| 把安全上下文送入相邻工具 | 事件响应人员需要在既有平台中看到备份告警和恢复上下文 | 用 Splunk add-on、ServiceNow 自动化,以及 SOAR 或 XDR hooks,把数据和动作送入既有工作流 | 公开页面展示了 Splunk add-on,以及 Alta Data Protection 针对 SOAR 或 XDR 事件的暂停 / 恢复钩子 | 连接器覆盖真实存在,但仍依赖集成,并非纯原生能力 |
| 激活受保护数据用于 AI | 企业 AI 缺少受治理的历史上下文,且常需要昂贵 ETL 复制 | 用 Gaia 搜索和总结不可变时间序列备份数据,并把上下文注入 Copilot、Gemini 或 Glean | Gaia 页面声称可无复制激活、语义搜索、向量索引和具名智能体集成 | 护栏、预览边界和生产成熟度在公开资料中没有完整说明 |
收益单元格混合公司声称、合作伙伴描述和有限评测证据。除非明确注明,量化性能表述仍来自厂商或合作伙伴。
[CE003, CE004, CE007, CE008, CE012, CE014]| 层级 / 组件 | 在运营模型中的角色 | 关键依赖 | 技术风险 |
|---|---|---|---|
| 工作负载与数据源层 | 把来自本地、SaaS、云原生、NAS、数据库、VM 和容器的源数据送入保护环境 | 连接器覆盖、工作负载支持深度和特定来源的策略逻辑 | 公开覆盖面很强,但并非每个模块的工作负载深度都有同等文档 |
| 主要保护引擎(DataProtect 和 NetBackup) | 创建受保护副本、应用策略,并在自管和继承环境中恢复工作负载 | 跨产品一致的策略语义,以及干净的重叠管理 | Veritas 合并后,功能重叠与产品区分并不总是透明 |
| 控制平面(Helios / Alta View) | 集中整个环境的可见性、开通和管理 | 开通工作流、区域选择和管理界面收敛 | 多品牌控制平面命名和手动接入说明整合仍在推进 |
| 金库层(FortKnox / Alta Recovery Vault) | 为网络恢复和灾难场景保留隔离的干净副本 | 云服务商选择、复制路径、恶意软件扫描和不可变性控制 | 公开文档没有充分披露真实事件中的运营成本、演练或故障模式 |
| 恢复编排层(RecoveryAgent / Blueprints) | 自动安排恢复工作流的顺序、测试和执行 | Blueprint 质量、干净恢复建议和应用依赖映射 | 详细 Blueprint 机制在营销中讲得多,公开文档讲得少 |
| 集成与应用层 | 把告警、日志和工作流送入 Splunk、ServiceNow、SOAR/XDR 工具及 Marketplace 应用 | 连接器维护、合作伙伴 API 和支持归属 | 多个公开代码仓库和样例属于尽力而为,企业支持边界未必清晰 |
| AI 激活层(Gaia) | 搜索和总结不可变历史数据,并将受治理上下文注入智能体 AI 工具 | 向量索引、保留 RBAC 的检索、模型路由和合作伙伴集成 | AI 功能叙事很强,但公开证据对护栏和硬性 GA 边界仍然不足 |
本架构表把有直接证据的层级与推断出的运营依赖分开。风险部分强调公开产品叙事跑在公开技术细节前面的地方。
[CE003, CE007, CE010, CE014, CE017, CE020]公开工作流先做广泛工作负载保护,再加入隔离库和威胁检测,随后进入编排式干净恢复和下游集成。
这是基于产品页面综合出的运营流程,不是单一官方顺序图。
[CE003, CE007, CE008, CE012, CE014, CE024]Cohesity 的价值取决于控制平面收敛、云合作伙伴、生态连接器、认证文档,以及部分依靠社区支持的自动化资产。
依赖边强调外部可见的运营依赖,而不是内部工程服务拓扑。
[CE014, CE020, CE021, CE023, CE025, CE034]5.3 信任、安全与恢复控制
产品证据在韧性控制上最强。DataProtect、NetBackup、Alta Data Protection、Alta Recovery Vault 以及更宽的网络韧性框架,都反复采用同一设计模式:不可变副本、基于角色的访问、多因素控制、异常检测、恶意软件扫描、干净恢复建议和编排蓝图。Cloud Services 还加入了合作伙伴背书的信任信号,例如不可变存储、特权访问控制和 SOC 2 Type II 语言;Microsoft 则把 Cohesity 定位为 Microsoft 365 Backup Storage 伙伴,支持带策略上下文的恢复和地理冗余。这些信号有意义,但信任图景并不完全干净。NetBackup 的关键加固指南仍放在 legacy Veritas 支持站点上,DataProtect、Helios 和 NetBackup 更深层产品文档可被发现,却不能公开阅读。这意味着控制叙事可信,但详细证据基础仍分散在营销、合作伙伴和需认证访问的文档界面之间。[CE005, CE008, CE010, CE017, CE024, CE025]
| 控制项 / 信号 | 公开状态 | 范围 | 支撑什么 | 缺口或担忧 |
|---|---|---|---|---|
| 不可变快照和干净恢复声明 | DataProtect、FortKnox、Alta 和网络韧性页面均明确提到 | 核心备份和金库层 | 支撑 Cohesity 将备份完整性视为安全边界,而不只是存储功能这一说法 | 多数证据由厂商撰写,缺少独立验证 |
| RBAC、MFA、SSO 和 MPA 式控制语言 | DataProtect、NetBackup 或 Alta 界面均明确提到 | 管理控制平面和恢复敏感操作 | 显示原生和继承产品都有真实的零信任设计意图 | 每个模块逐产品的精确实现细节并不公开 |
| 恶意软件扫描、异常检测、YARA 狩猎和沙箱 | Alta 和网络韧性页面均明确提到 | 威胁检测和恢复准备 | 说明恢复工作流试图防止再次感染,而不只是恢复字节 | 扫描覆盖深度和误报处理没有公开基准 |
| FIPS、数据主权和 24+ 区域表述 | DataProtect 和云解决方案页面中明确 | 受监管及主权敏感型部署 | 支撑受监管环境定位和按区域部署云服务 | 认证范围和部署细节主要仍来自供应商自述 |
| SOC 2 Type II 合规存储声明 | AWS Cloud Services 列表中明确 | 托管云备份服务 | 为托管云服务路径增加合作伙伴背书的信任信号 | 不能自动外推到每一种自管或跨云部署模式 |
| Microsoft 365 Backup Storage 集成 | Microsoft Adoption 页面中明确 | Microsoft 365 备份与恢复流程 | 给出明确外部平台信号:Cohesity 正在加深 M365 备份能力 | 公开材料仍把这些收益写成即将推出的增强,而不是长期验证的生产结果 |
| Splunk 插件加 SOAR/XDR 对接 | Splunkbase 和 Alta 页面中明确 | 安全运营集成 | 证明告警和工作流集成已出现在真实第三方页面上 | 公开证据更能证明连接器存在,而非大规模运营成熟度 |
| 2026 年发布的 NetBackup 加固指南 | Veritas 支持站点中明确 | 继承的 NetBackup 和一体机产品线 | 证明传统栈的安全指导仍在持续维护 | 同时暴露文档碎片化,并依赖旧支持站点 |
此处列出的控制项只限公开产品、合作伙伴和文档页面上能直接看到的内容。本表不推断未公开认证或内部保障实践。
[CE005, CE008, CE010, CE024, CE026, CE027]5.4 开发者界面与生态集成
Cohesity 确实有扩展界面,但按成熟 SaaS 的标准看,它更偏集成驱动,而不是平台原生。开发者门户主推 API、自定义工作流和应用构建;应用构建文档显示,公司确有一个基于 Docker 容器、AppSpec 和 SDK 的应用框架,可以发布到 Cohesity Marketplace。2026 年 5 月 GitHub 上的社区自动化样例、Ansible collection、PowerShell module 和 Terraform provider 也证明,工程团队正在主动扩展这个平台。与此同时,多个代码仓库提醒脚本和集成属于尽力而为,并非官方支持;这对计划重度自动化的买方很重要。生态叙事在有合作伙伴分销的地方最强:ServiceNow 有上架应用,Splunk 有附加组件,Microsoft 和 AWS 提供 Cohesity Marketplace 产品,Marketplace 本身还突出展示 Cisco XDR 等伙伴开发扩展。界面是真实的,但支持边界并不总是企业级清晰。[CE016, CE017, CE018, CE019, CE020, CE021]
5.5 成熟度、迁移路径与可能的技术债
核心可承销结论是,Cohesity 有广度,也有真实产品势能,但技术一致性仍落后于组合野心。Gaia 是最好的例子:页面在语义搜索、向量索引、保留 RBAC 的上下文注入,以及与 Copilot、Gemini、Glean 的具名集成上内容充实;但它也承认 Gaia Catalog 仍即将推出。同样,合并环境显然能延续 NetBackup,但公开证据仍指向独立版本节奏、多个管理界面和原 Veritas 支持站点。单条负面客户评价不足以认定平台不可靠,却强化了一个事实:支持速度、云控制台连接性和成本仍可能让真实用户受挫。因此,Veritas 合并后的风险大概率不是能力缺失,而是把宽包装、混合品牌、受限文档和部分社区支持的自动化缝合成始终优秀的 Day-2 运营体验时,会出现运营复杂度。[CE014, CE019, CE020, CE028, CE029, CE030]
| 日期 / 时段 | 功能或里程碑 | 公开状态 | 含义 | 来源视角 |
|---|---|---|---|---|
| 2024-10-01 | Splunk 插件 1.1.1 版 | 公开列表已上线 | 安全运营集成已经足够产品化,可以作为持续维护的插件发布,并标明版本和兼容范围 | Splunkbase 列表 |
| 2026-01-14 | NetBackup 和一体机加固指南更新 | 公开支持指南已上线 | 继承栈的安全维护和加固指导一直延续到 2026 年 | Veritas 支持文档 |
| 2026 | 用于 NetBackup 管理的 Helios 开通路径 | 公开启用流程已上线 | NetBackup 延续性真实存在,但开通仍像靠工单推进,且偏手工 | Cohesity Helios 开通页面 |
| 2026 | Microsoft 365 Backup Storage 集成收益 | 公开宣布即将推出 | Cohesity 正在用 Microsoft 原生性能和冗余信号加深 M365 备份路径 | Microsoft Adoption 页面 |
| 2026 | Gaia 与 Copilot、Gemini、Glean 的集成 | 公开可见的产品声明 | AI 上下文注入是新路线图核心,并已接到具名企业 AI 平台上 | Cohesity Gaia 页面 |
| 2026 | Gaia Catalog | 即将推出 | AI 就绪数据叙事中有一部分仍在路线图上,不是当前已交付证据 | Cohesity Gaia 页面 |
| 2026 | DataProtect 7.4、Helios 2.0.0 和 NetBackup 11.1.0.2 的版本化文档 | 需要认证的文档入口已上线 | 合并后的产品版图看起来跑在不同发布节奏上,而不是一条统一软件发布线 | Cohesity 文档入口 |
行内混合了发布、更新后的指导、已上线列表和明确前瞻的路线图项目。日期仅限抓取页面文本或元数据中可见的信息。
[CE014, CE024, CE026, CE031, CE034, CE041]核心保护和隔离库看起来比 AI 与自动化界面更成熟;合并后资产里,文档透明度仍是短板。
评级是基于公开证据质量的分析判断,不是客户使用遥测或内部支持数据。
[CE006, CE014, CE020, CE027, CE029, CE031]5.6 图表
06客户情况
6.1 客户组合:广泛规模说法存在,但具名证据质量更高
Cohesity 同时有广泛数量故事和具名证据故事,二者不应混在一起。广泛数量故事来自公司材料:2021 财年约 2,600 家客户,2024 年 12 月 Veritas 合并交割后超过 12,000 家客户。这些数字对规模有意义,但不能证明每个 客户标识背后都是同一平台、同一买方或同等队列质量。本章更看重具名证据,因为它显示 Cohesity 实际在哪些场景被托付给线上工作负载。公开案例横跨儿科医疗、市政 IT、州级共享服务、日本医院系统、冰岛支付轨道、资本市场备份、食品生产运营和大型欧洲零售 IT。这个组合说明 Cohesity 能卖给保护受监管或运营关键数据的中央基础设施团队,而不只是泛化备份买方。限制在于,公开证据仍经过筛选:它更能说明垂直行业广度和工作负载严肃性,而不是收入集中度、续约深度或平均账户规模。[CU001, CU003, CU027, CU028, CU042, CU044]
| 细分客群 | 买方 / 用户 / 付款方 | 具名证明 / 规模 | 部署模式 | 收入 / 战略价值 | 缺口 |
|---|---|---|---|---|---|
| 大型企业中央 IT | 买方:基础设施或备份负责人;用户:平台管理员;付款方:企业 IT | Nasdaq、Schwarz IT、Conagra,以及历史 Fortune 500 渗透 | 混合备份加 SaaS 保护、网络韧性和云治理 | 支撑大额经常性备份合同,并带动相邻模块加购 | 公开资料未按企业客户分组拆分平均合同价值或续约率 |
| 公共部门和共享服务 IT | 买方:州或市政 IT 负责人;用户:备份团队和机构管理员;付款方:纳税人资金支持的 IT 预算 | City of Detroit、Maryland DoIT、DISA 及 AWS Gov Cloud 采购信号 | 本地部署加隔离库、Cisco UCS、共享服务备份、联邦适用性 | 能增强受监管场景证明和采购可信度,战略价值高 | 未公开披露联邦合同收入或中标率 |
| 医疗服务机构 | 买方:CIO 或 IT 负责人;用户:基础设施和合规团队;付款方:医疗机构 IT 预算 | Bethany Children’s 和 Musashino Red Cross Hospital | EMR 和患者数据恢复、业务连续性演练、基于 FortKnox 或 HPE 的部署 | 高价值受监管用例,可支撑隔离存储和恢复加售 | 公开证据偏案例研究,缺少多医院续约或分组数据 |
| 金融基础设施与服务 | 买方:基础设施或平台安全团队;用户:数据库和消息系统管理员;付款方:中央技术预算 | Reiknistofa bankanna、Nasdaq,以及历史头部银行覆盖声明 | 支付系统韧性、Oracle 恢复、Microsoft 365 与 Exchange 保护、数据驻留控制 | 宕机或合规失败高度可见,因此构成强信任信号 | 金融服务 ARR 结构和逐银行留存未披露 |
| 制造业和运营环境 | 买方:企业基础设施负责人;用户:工厂和中央 IT 团队;付款方:企业 IT | Conagra 及更广泛的工厂运营叙事 | 同时保护企业系统和运营环境 | 证明 Cohesity 可进入网络物理或对停机敏感的运营场景 | 公开结果细节少于医疗、金融或政府案例 |
| 继承的 Veritas 装机基础 | 买方:NetBackup 或 Alta 管理员;用户:备份团队;付款方:现有维护或续约预算 | 合并后客户数和路线图资料覆盖广,但具名迁移完成案例很少 | 先保支持连续性,再提供迁移选择权 | 如果续约守得住、迁移工具跑得通,这可能是最大扩张池 | 公开证据未量化继承客户分组的转化、流失或交叉销售 |
本表区分宽口径客户数声明和具名公开证明。战略价值反映可能的变现或证明价值,而不是按细分客群披露的收入。
[CU003, CU027, CU028, CU030, CU032, CU034]柱状图显示本章为每个主要客户队列或部署视角找到多少个保留公开证明点。
数值统计本章证据集中保留的证明点,不代表实际客户基数规模。该图是可见度视角,不是收入或客户标识占比估计。
[CU027, CU030, CU032, CU033, CU041, CU042]6.2 部署模式偏向受监管的混合环境和网络韧性工作流
本章公开部署集中在混合、合规敏感的环境里;在这些地方,恢复速度比备份营销更重要。Detroit 用 Cohesity 覆盖市政工作负载、Microsoft 365 和 Google 服务;Maryland 用它在 Cisco UCS 上为约 40 个机构做共享服务 NAS 备份,并采用网络保险库设计;Musashino 在日本业务连续性预期下,用它支撑患者护理和医院运营;RB 在 DORA 和 PCI DSS 下用它支撑国家支付系统;Nasdaq 用它同时保护 Microsoft 365 和剩余本地 Exchange,并让数据留在特定司法辖区。这是一种一致模式:Cohesity 进入的是恢复、不可变性和主权数据驻留控制很重要的地方,然后再叠加保险库、云或合规自动化。联邦证据也强化了这一模式。AWS GovCloud 上架、DISA 批准备忘录和 JITC 认证显示,政府适配性不只是营销页面说法。因此,公共部门渗透看起来真实存在,尽管确切联邦收入和合同流仍不透明。[CU013, CU015, CU017, CU018, CU020, CU023]
| 指标 / 信号 | 数值 | 日期 | 来源 | 置信度 | 含义 | 缺失分母 |
|---|---|---|---|---|---|---|
| 历史客户数 | 2600 | 2021-07-31 | Cohesity FY2021 业绩 | 中 | 证明 Veritas 合并前已有真实规模 | 与合并后客户数不可直接比较 |
| 历史净扩张 | >130% | 2021-07-31 | Cohesity FY2021 业绩 | 中 | 历史落地扩张信号强 | 当前合并实体的 NRR 或 GRR 未披露 |
| 交易完成时合并客户基础 | >12,000 家客户 | 2024-12-10 | Cohesity 交易完成新闻稿 | 中 | 与 Veritas 合并后规模跃升 | 包含继承基础,不只是 Cohesity 原生客户标识 |
| Gartner Peer Insights 认可 | 第 8 次获 Customers’ Choice | 2026-04-02 | 引用 Gartner Peer Insights 的 Cohesity 新闻稿 | 中 | 来自多个评论者行业的新近满意度信号 | 新闻稿本身未披露完整评论人数 |
| Capterra 评论汇总 | 总体 4.6;客服 4.8;49 条评论 | 2024-02-25 归档 | Capterra 归档 | 中 | 易用性和支持信号为正 | 评论时间和公司规模分布不均 |
| G2 评论汇总 | 评分 4.4;50 条评论;实施 1 个月;ROI 17 个月 | 2026-01-04 归档 | G2 归档 | 中 | 暗示很多买方的实施周期和回本时间可以接受 | ROI 来自自报,未经审计 |
| Maryland 共享服务规模 | 约 40 个机构共 700 TB;70% 的 NAS 实例在 10 分钟内完成备份 | 2026 年抓取 | Maryland DoIT 案例研究 | 中 | 证明公共部门运营规模和重复使用 | 未公开合同金额或年度支出 |
| Nasdaq SaaS 备份规模 | 6,000 个 M365 邮箱;45 TB OneDrive 和 Teams;约 100 个 Exchange 邮箱 | 2026 年抓取 | Nasdaq 案例研究 | 中 | 证明 Cohesity 能服务受监管 SaaS 与本地部署并存的场景 | 未公开定价或按席位经济性 |
行内混合了公司披露的数量、评论平台汇总和案例研究指标。评论平台的 ROI 和实施数值来自自报,未经审计。
[CU001, CU002, CU003, CU004, CU005, CU006]公开可见的客户旅程通常从韧性或合规痛点开始,进入以证明为核心的评估,再从核心备份扩展到隔离库、SaaS 保护或 AI 相关工作流。
旅程阶段由具名客户案例、合作伙伴材料和并购后路线图页面综合而来。它们代表公开证据中最常见的模式,不是经审计的平均销售流程。
[CU013, CU017, CU020, CU029, CU034, CU036]该漏斗把公开证据从宽泛的客户数量说法,下钻到有量化结果的具名案例,再到明显扩展出核心备份之外的例子。
阶段数值反映公开证明数量或公司客户数说法,不是经审计的内部转化数据。该图展示各阶段证据密度,而非字面 CRM 漏斗转化。
[CU003, CU027, CU029, CU034, CU044]6.3 具名客户证据在包含运营指标时最强,而不只是客户标识和引语
最好的公开证据不只是证明客户存在,还展示部署后发生了什么变化。Maryland 和 Detroit 是最干净的公共部门案例,因为它们披露了恢复时间、人工或成本改善,而不只是满意度语言。Musashino 提供最强医疗指标:在业务连续性演练中 20 秒恢复 500 GB;RB 则提供最清楚的金融基础设施证据:8 小时内恢复 30-40 TB Oracle 数据库,并自动化每周测试。Nasdaq 有价值,因为它把备份连接到大规模 SaaS 治理和数据主权工作流。Bethany 与 Conagra 即便指标较少,也补充了任务关键性;Schwarz IT 虽然量化细节较轻,却拓宽了欧洲企业相关性。换句话说,具名证据真实且跨多个垂直行业,但量化结果集中在一部分故事中。因此,选择客户访谈 很重要:有些故事证明硬运营杠杆,另一些主要证明品类契合和品牌可信度。[CU012, CU014, CU016, CU019, CU021, CU024]
| 客户 | 细分客群 | 部署 / 用例 | 生产 / 试点 | 结果 / 证明 | 局限 |
|---|---|---|---|---|---|
| Bethany Children’s Health Center 医疗客户 | 医疗服务机构 | 用本地不可变备份、FortKnox 和新兴 Gaia 用例保护儿科数据 | 生产 | 案例研究称,合规工作从数小时压到数分钟,邮箱或文档几乎即时恢复 | 供应商撰写案例;结果证明强,但仍由公司筛选呈现 |
| City of Detroit 市政府客户 | 市政府 | 用不可变备份和 AI 威胁检测备份市政工作负载、Microsoft 365 和 Google 数据 | 生产 | 案例研究称管理开销下降约 40%、每年节省约 $50k,并可直接从备份保持 VM 连续性 | 未公开合同金额或跨机构续约数据 |
| Maryland Department of IT 州级 IT 机构 | 州级共享服务 IT | 在 Cisco UCS 上为约 40 个机构保护 700 TB NAS,采用 FortKnox 支撑的 3-2-1 设计 | 生产 | 案例研究称恢复时间从 30 分钟降到 <1 分钟,70% 的 NAS 实例在 10 分钟内完成备份 | 运营层面证明很好,但仍由供应商撰写 |
| Japanese Red Cross Musashino Hospital 医院客户 | 医疗服务机构 | 在 HPE 上保护 27 个科室系统和 80+ 台服务器的 >100 TB 数据 | 生产 | 在 BCP 演练中 20 秒恢复 500 GB,并将容量需求最多降低 70% | 案例地域特定,且由公司撰写 |
| Reiknistofa bankanna 金融基础设施客户 | 金融基础设施 | 为 Iceland 实时支付系统和 Oracle 数据库运行备份与恢复 | 2018 年起生产使用 | 在 <8 小时内恢复 30-40 TB Oracle 数据库,并在 DORA 背景下自动化每周恢复测试 | 供应商撰写;财务影响和合同金额未公开 |
| Nasdaq | 资本市场 / 金融服务 | 用数据主权自动化备份 Microsoft 365 和本地 Exchange | 生产 | 一个月实施后,邮件恢复从约 4 天缩短到约 5 分钟 | 公开案例能强力证明工作流,但没有支出信息 |
| Conagra | 食品制造 | 借助网络响应支持,同时保护企业 IT 和工厂运营 | 生产 | 在供应链敏感环境中,停机减少、文件恢复更快有定性证明 | 量化披露很少 |
| Schwarz IT | 大型企业 / 零售 IT | 在复杂环境中使用统一平台,并坚持不可变与异地备份纪律 | 生产 | 证明 Cohesity 进入大型欧洲 IT 版图,覆盖现代与传统工作负载 | 与其他案例相比,结果具体性有限 |
这只是具名公开引用的部分样本,并非完整客户名单。各行强调公开证明是否显示具体生产使用和可衡量结果。
[CU011, CU012, CU013, CU014, CU015, CU016]客户证明最强的地方,是公开案例同时给出具名生产部署和具体运营指标;最弱的地方,则是证明仍停留在定性或高度策划的材料。
分数为评估者基于公开证据作出的 1-3 判断:1 = 弱,2 = 中,3 = 强。「独立性」分数奖励供应商撰写案例之外的佐证。
[CU012, CU016, CU019, CU021, CU024, CU026]6.4 耐久性信号为正但不完整;扩张可见于模块、超大规模云厂商和受监管工作负载
Cohesity 公开可见的留存韧性证据方向上偏正面,但对合并后实体仍不完整。历史上最强的信号仍是原 Cohesity 在 2021 年超过 130% 的净扩张。更新近的公开证据来自评论和客户背书平台,而不是硬性的续约披露:2026 年第八次获得 Gartner Peer Insights 认可,加上 Capterra 和 G2 整体评分普遍较强,说明客户满意度仍在。但同一批评论也暴露了培训、报表、云端恢复速度、远程接口治理和支持响应上的真实摩擦。扩张逻辑比留存数学更容易看清。公开案例反复显示,备份部署会扩到 FortKnox、Microsoft 365、Google 工作负载、SaaS 交付、Gaia,或更宽的网络韧性项目。渠道侧,AWS、Google、Microsoft、SHI、WWT 和 Presidio 都出现在近期伙伴材料里,意味着增长不完全靠直销拉动。缺失的一块是队列透明度:公开资料仍看不到合并后客户群当前的 NRR、GRR、流失或续约经济性。[CU002, CU004, CU005, CU006, CU007, CU008]
| 指标 | 数值 / 空值 | 细分客群 | 置信度 | 尽调问题 |
|---|---|---|---|---|
| 当前合并 NRR | 合并后的 Cohesity 与继承的 Veritas 基础 | 低——未公开披露 | 要求按 Cohesity 原生客户分组与继承的 Veritas 客户分组拆分交易完成后的 NRR | |
| 当前合并 GRR | 合并客户基础 | 低——未公开披露 | 要求按主要客户分组和渠道披露 GRR、客户标识流失和降售 | |
| 历史净扩张 | >130% | 2021 年 7 月时的原 Cohesity | 中——公司官方披露 | 验证合并后客户基础是否保留类似扩张经济性 |
| Gartner Peer Insights 信号 | 2026 年第 8 次获 Customers’ Choice | 企业备份终端用户 | 中 | 要求披露合并后的底层评论人数、评论新近度和评分分布 |
| Capterra 汇总 | 总体 4.6;客服 4.8;49 条评论 | 买方类型和评论年份混合 | 中 | 按企业规模、产品家族和近期评论分组切分 |
| G2 汇总 | 评分 4.4;50 条评论;实施 1 个月;ROI 17 个月 | 买方类型和评论年份混合 | 中 | 在当前大客户中验证实施时间、回本周期和治理投诉 |
| 反复出现的负面主题 | 培训、报表、设置、云恢复速度、支持响应和 Helios 治理顾虑 | 评论平台用户混合 | 中低 | 审查支持 SLA 达成率、支持工单账龄,以及围绕恢复操作的产品遥测证据 |
空值表示公开未披露,不是零。评论平台行可作为耐久性代理,但不能替代经审计的留存数据或续约分组。
[CU002, CU004, CU005, CU006, CU007, CU008]6.5 并购后的切换风险更多取决于执行与续约行为,而不是明确的强制迁移
公开的并购后材料确实压低了一个显而易见的担忧:强制迁走客户。路线图 PDF、Veritas「better together」页面、WWT 发布的公开信以及 Cohesity 交割材料都在重复同一条信息:产品会获得多年支持,迁移自愿,客户可以留在自己偏好的平台上。这降低了接手 NetBackup 和 Alta 账户的急性流失风险。但这并没有消除投资判断时最重要的执行风险。同一批材料把迁移工具描述成仍需建设和简化的东西,而不是已经在规模上公开验证过的能力。评论平台也呈现出一组会让宽产品组合续约变复杂的问题:报表不均、支持或培训缺口、设置复杂,以及围绕管理界面的治理担忧。因此结论是平衡的。Cohesity 看起来不像一家会在第一天就强推破坏性迁移的公司,但公开证据仍无法说明,当路线图承诺撞上真实运营复杂度后,接手来的客户续约、转换或扩张会有多顺。[CU034, CU035, CU036, CU037, CU038, CU039]
| 扩张驱动 / 集中度风险 | 影响路径 | 当前证据 | 规模 / 含义 | 尽调路径 |
|---|---|---|---|---|
| 继承 Veritas 装机基础的续约和迁移 | 合并后最大扩张池,也可能是最大流失池 | 路线图承诺多年支持、自愿迁移和未来工具 | 上行空间可能很大,但同一区域也是最大的续约风险盲区 | 要求继承 NetBackup 和 Alta 客户的续约分组、转化数量和价格折让历史 |
| 云和超大规模云厂商渠道扩张 | 合作伙伴可获客、部署并加售云备份、主权隔离库和 AI 工作流 | AWS SCA、AWS Gov Cloud 列表、Google Cloud 奖项和合作伙伴奖项都显示渠道动作活跃 | 有意义的增长杠杆,但合作伙伴依赖也会稀释支持责任 | 衡量合作伙伴来源渠道 ARR 和由合作伙伴牵头的支持升级 |
| 受监管账户内模块扩张 | 核心备份可扩展到 FortKnox、M365、Google 工作负载、Gaia 或合规要求重的恢复项目 | Bethany、Maryland、RB、Nasdaq 及 AWS/Google 材料均显示相邻工作流扩张 | 如果附加率真实,落地扩张逻辑为正 | 要求按装机基础分组披露 FortKnox、云服务、SaaS 备份和 Gaia 的附加率 |
| 评论平台暴露的支持和培训摩擦 | 运营摩擦会拖慢续约,并降低采用新模块的意愿 | Capterra、G2 和 PeerSpot 均暴露培训、报表、设置和支持投诉 | 中等风险:单独看不至于打破投资论点,但若叠加并购复杂性就很重要 | 审查支持 KPI 仪表盘、培训采用率,以及恢复成功相关的产品遥测证据 |
| 收入集中度不透明 | 具名客户标识未必对应收入集中度或续约时间 | 未找到公开的头部客户收入明细或续约日历 | 这是重要承销缺口,因为少数超大账户可能主导 ARR | 要求披露前 20 大 ARR、期限和续约日历 |
| 客户数观感与证明质量 | 合并后的大客户数可能夸大当前同平台部署深度 | 宽口径数量已披露,但多数硬证据来自较小一组经筛选具名引用 | 将客户标识转化为持久采用时,这是重要分析风险 | 在尽调材料中拆分 Cohesity 原生客户分组、继承的 Veritas 客户分组和可作引用的生产账户 |
本表混合上行驱动和风险。它区分公开支持承诺与实际迁移、留存和集中度结果的缺失证据。
[CU029, CU030, CU031, CU032, CU034, CU035]07风险
7.1 Veritas 合并后的整合是主风险
Cohesity 最大的风险,不在于它能不能讲出连续性故事,而在于支撑这套故事的合并后运营系统能否变得足够可靠、甚至无聊。公开证据显示公司确有进展:它推出了统一的伙伴计划,把 RecoveryAgent 包装成早期 Veritas 衍生成果,并反复强调不会让任何客户掉队。同一组证据也解释了为什么执行风险仍高。Veritas 伙伴基础设施仍出现过渡通知;独立分析称,接手客户最担心定价、支持和产品方向;公开资料仍没有披露 NetBackup 和 Alta 存量客户的转换、流失或续约行为。合并后公司体量已经足够大,普通摩擦也会很快变得重要。产品线、渠道计划、支持动作和安装基盘的合并,可能不是戏剧性失败,而是缓慢失灵。因此,本章把整合视为解读其余风险栈的中心镜头。[CR001, CR002, CR003, CR004, CR005, CR006]
| 失效模式 | 暴露证据 | 可能性 | 影响 | 缓释成熟度 | 残余暴露 | 未关闭原因 |
|---|---|---|---|---|---|---|
| 合并平台执行落后于对外叙事 | 合作伙伴迁移、早期合并产品和连续性表态已经出现,但公开证据仍更像一段旅程,而不是已完成的运营模型。 | 高 | 高 | 中 | 高 | 没有公开的转化、流失或支持 KPI 数据能证明路线图承诺已顺畅落地到一线。 |
| 支持流程迁移扰动继承用户 | PartnerNet 迁移信息和评论渠道的投诉都指向一个风险:整合期间,工单处理和赋能可能出现摇摆。 | 中 | 高 | 中 | 高 | 公开数据只能显示方向上积极的意图,而不是合并后组织可量化的支持结果。 |
| 报告和恢复摩擦拖累续约 | 评论网站反复提到报告缺口、云恢复速度、O365 工作流问题,以及错误或 UX 信息不够清晰。 | 中 | 中 | 低 | 中 | 这些投诉单独看可控,但在迁移或续约决策中会累积。 |
| 受监管客户证据负担跑在产品进展前面 | CISA、NIS2、DORA、FTC 和联邦零信任指引都在提高对可审计控制、治理和报告的预期。 | 中 | 高 | 中 | 高 | 框架对齐可见,但可供客户审计使用的证据包并未公开。 |
| 披露准备落后于可选 IPO 时间表 | 管理层表态暗示,只有拿出完整一年合并业绩并提升披露成熟度后,2026 年 IPO 才有可能。 | 中 | 中 | 低 | 中 | 闸门因素已有概念性披露,但没有成文准备清单或时间表。 |
残余暴露是在考虑公开缓释证据后的承销判断;它是分析排序,不是管理层指引。
[CR001, CR002, CR003, CR004, CR005, CR006]整合风险会传导到续约、受监管客户信任、利润率、融资准备度,并最终传到估值支撑。
该图突出公开证据中可见的因果压力点,而不是内部组织汇报线。
[CR002, CR013, CR021, CR032, CR040, CR041]7.2 网络安全、法律和主权要求会放大普通软件执行风险
Cohesity 销售进入的环境里,备份不只是基础设施管道,而是受监管的韧性基础设施。因此,监管和主权风险高于普通企业软件厂商。金融行业客户面对 DORA,关键行业运营方需要面对 NIS2,联邦买家受 OMB 零信任要求和 CISA 成熟度模型影响;一旦未来 IPO,公司还会进入 SEC 网络治理和事件披露规则之下。这些来源都没有说 Cohesity 已经踩线;风险在于,产品、支持、审计和报表成熟度必须跟上公司现在瞄准的受监管客户。DOJ 与 Georgia Tech 的和解说明,政府项目里的网络安全控制失败可能演变成 False Claims Act 事件;FTC 保障规则指南则说明,泄露报告和服务提供商监督仍在收紧。落到实务里,受监管客户胜单会把门槛抬高两次:产品要能跑,背后的证据包也要经得起采购、认证和事后审查。[CR013, CR014, CR015, CR016, CR017, CR018]
| 规则 / 案件 | 为何影响 Cohesity | 司法辖区 / 买方集合 | 当前信号 | 可能性 | 残余严重性 | 缓释证据 | 尽调路径 |
|---|---|---|---|---|---|---|---|
| SEC 网络安全披露规则 | 任何 IPO 路径都会带来强制性的事件和治理披露要求,而私营公司流程目前还不必公开暴露。 | 美国公开市场 | 四个工作日内披露事件、每年报告治理情况的要求已经明确。 | 中 | 高 | Cohesity 还未上市,因此仍可在提交监管文件前分阶段补齐准备。 | 索取内部上市公司准备方案,覆盖网络事件重大性判断、董事会汇报和披露控制。 |
| DORA | 金融行业买家越来越要求供应商对得上数字运营韧性框架,覆盖 ICT 风险、恢复和监督。 | 欧盟金融机构 | 该法规把 ICT 韧性纳入日常运营,而不是旁路控制。 | 中 | 高 | Cohesity 已销售面向受监管行业的恢复产品,可把路线图对齐金融行业的测试和证据要求。 | 索取按产品模块和云部署模式拆分的客户版 DORA 映射。 |
| NIS2 | 关键行业客户需要供应商拿出更完整的网络风险管理、报告和供应链证据。 | 欧盟关键行业 | 该指令现已覆盖 18 个关键行业,并把报告和供应链安全要求向下游传导。 | 高 | 高 | CISA / NIST 式治理和零信任表述,与 NIS2 买家会提出的要求有部分重叠。 | 索取当前欧盟合规资料包,以及按行业划分的各国扩展要求。 |
| DOJ 民事网络欺诈 / CMMC 执法 | 政府业务中,安全控制、系统计划或评估分数一旦不准确,就可能演变成法律和金钱问题。 | 美国联邦和国防承包 | DOJ 正在和解与 DoD 项目中控制缺失、虚假分数和未履行网络义务相关的案件。 | 中 | 高 | 公共部门定位、零信任对齐和现有网络韧性功能有帮助,但替代不了可审计的控制运行。 | 索取当前联邦证明、SSP 实践,以及按产品和服务范围划分的 CMMC 准备证据。 |
| FTC 保障规则与服务商监督 | 金融客户越来越需要服务商支持泄露通知,并可受控处理受保护信息。 | 美国金融机构和服务商 | FTC 指引现已列出具体安全计划要求和触发泄露通知的条件。 | 低 | 中 | 数据分类、保管库和策略控制能帮助受监管客户履行自身义务。 | 索取客户版保障措施映射,明确服务商责任和事件通知流程。 |
| OMB 零信任与 CISA 指引 | 联邦买家越来越按零信任和安全设计预期评估供应商,即使这些预期本身并不是产品认证。 | 美国联邦机构及相邻公共部门买家 | 具体联邦目标已经存在,CISA 也给出了机构评估成熟度的路线图。 | 中 | 高 | 由 AWS 托管的保管库、不可变恢复和贴近零信任的叙事,有助于采购故事。 | 索取最新联邦功能—控制矩阵,以及继承的 Veritas 产品如何对齐当前联邦预期的证据。 |
这只是对 Cohesity 当前运营环境中最相关外部法律和监管制度的部分列举,并非详尽的全球合规清单。
[CR013, CR014, CR015, CR016, CR017, CR018]整合、受监管客户的证据负担和私营公司不透明交叠,又缺少公开运营遥测时,剩余风险最高。
评级是基于保留证据集的分析判断,而非已披露的内部 KPI 阈值或管理层风险评分。
[CR013, CR016, CR021, CR030, CR039, CR043]7.3 竞争压力和平台依赖可能把小失误放大成续约流失
竞争压力在这里不是背景噪音,而是迁移和定价风险的主动来源。竞争对手公开把 Cohesity 描绘成 Veritas 之后变化中的脆弱一方。Dell 攻击横向扩展架构的经济性。Commvault 明确告诉买家,不要为了填补 Veritas 缺口而转向 Cohesity,并把这条信息和迁移服务打包。Druva 用来自 G2 的对比,论证 Cohesity 更复杂、支持更弱。与此同时,Rubrik、Commvault 和 Veeam 都在把市场领导地位绑定到网络韧性、SaaS 覆盖、AI 和懂监管的恢复工作流上。关键在于,Cohesity 的差异化越来越不只取决于核心备份软件,也取决于生态系统。AWS 托管的 DataHawk 和 FortKnox 能力显示出真实产品深度,但也暴露了对 AWS 服务、伙伴分销和云经济性的依赖。如果竞争对手在支持、洁净室恢复或低摩擦迁移上更快赢得信任,Cohesity 即便没有重大产品失败,也会丢掉续约。[CR026, CR027, CR028, CR029, CR030, CR031]
| 依赖项 | 交易对手 | 角色 | 集中度信号 | 失效场景 | 严重性 | 缓释证据 | 残余暴露 |
|---|---|---|---|---|---|---|---|
| 继承的 NetBackup / Alta 装机基础 | Veritas 来源客户 | 交易后最明显、也最大的扩张与续约池 | 高,因为交易的战略逻辑依赖守住并延展这批客户 | 如果支持或路线图信心下滑,客户可能勉强续约、推迟迁移,或接受竞争对手替换方案 | 关键 | 连续性表态很明确,合并路线图产出已开始出现 | 高 |
| AWS 云服务与控制 | Amazon Web Services | 承载并保护 DataHawk、FortKnox 周边工作流和网络韧性运营的关键部分 | 中,因为 AWS 只是一个依赖项,但已经嵌入标志性的网络韧性叙事 | 云成本、策略或服务变化削弱经济性,或让保管库和响应承诺更难兑现 | 高 | AWS 集成很深且技术上自洽,Object Lock、KMS 和 IAM 的使用路径清晰 | 中 |
| Microsoft 365 与 SaaS 生态 | Microsoft 及其他 SaaS 平台 | 贡献了相当一部分备份用例和客户证明 | 中,因为 SaaS 保护具有战略重要性,也有运营黏性 | 连接器缺口、API 变化或恢复摩擦会让 Cohesity 看起来弱于云原生或专门型对手 | 高 | 评论和案例研究证据显示,产品已部署在这些工作流中 | 中 |
| 渠道和服务合作伙伴 | 经销商、MSP、GSI 和分销商 | 在各地区承接赋能、采购和迁移能力 | 中,因为合并后 Cohesity 正在扩大而不是缩小对合作伙伴的依赖 | 计划混乱或合作伙伴经济性偏弱,会拖慢新客户获取和继承客户迁移支持 | 中 | Aspire 整合了既有计划,并增加与集成里程碑挂钩的奖励 | 中 |
| 政府和主权把关方 | OMB、CISA、DOJ、欧盟及行业特定买家 | 塑造采购语言、合规证据和事后问责 | 在受监管细分市场为高,即使并非覆盖全部收入 | 产品技术上可用,但如果支撑证据薄弱,仍可能丢单或制造法律暴露 | 高 | 零信任、安全设计和韧性框架提供了可信但不完整的叙事 | 高 |
这张台账混合了商业和政策依赖,因为 Cohesity 的风险传导既经过交易对手,也经过可能阻断、放慢或重定价客户决策的框架。
[CR002, CR019, CR020, CR026, CR027, CR028]Cohesity 当前风险面取决于能否同时对齐承接客户、超大规模云集成、合作伙伴和受监管买方要求。
该图映射保留证据中可见、最重要的外向依赖,不是公司的完整内部供应商 / 供给方清单。
[CR002, CR019, CR020, CR027, CR032, CR033]7.4 支持质量和产品迁移风险卡在路线图与续约之间
公开客户情绪并不灾难,但噪声恰好集中在大平台转换时会变危险的地方。TrustRadius 用户提到许可证可见性、错误清晰度和 O365 工作流缺口。PeerSpot 突出了报表限制、云恢复速度慢、遗留集成需求、文档缺口和支持响应不均。Cohesity 自有社区需要 MyCohesity 登录,这对企业软件很正常,但降低了外部对问题量或反复缺陷模式的可见度。这些都不能证明系统性失败。事实上,评论平台仍有不少对恢复速度、简单性和节省成本的认可。风险更微妙:当更多 NetBackup 和 Alta 客户决定留下、转换或扩张时,报表、恢复性能、文档和支持响应时间上的普通摩擦,可能叠加成续约犹豫。因此,产品支持迁移风险卡在技术整合故事和商业留存故事之间;它决定路线图承诺会落成运营事实,还是变成失望。[CR008, CR009, CR010, CR011, CR012, CR041]
| 职能 | 依赖或缺口 | 可能性 | 严重性 | 现有缓释 | 尽调路径 |
|---|---|---|---|---|---|
| 支持工程与工单管理 | 两套传统产品资产和支持动作必须让继承客户与原生客户都感到统一。 | 高 | 高 | 连续性表态、合作伙伴触达和可见的社区 / 支持渠道已经存在。 | 索取交割后按队列、地区和继承产品线拆分的支持 KPI。 |
| 产品路线图与文档领导力 | 公司必须优先推进融合,同时不能让文档、培训和操作清晰度滑坡。 | 中 | 高 | 早期合并产品产出和路线图访谈显示,公司在主动协调。 | 索取 12 个月路线图、弃用政策和产品文档权责图。 |
| 合规与公共部门一线执行 | 受监管买家越来越想要零信任、NIS2、DORA 和可审计控制叙事,而不只是功能幻灯片。 | 中 | 高 | CISA、NIST 和连接 AWS 的架构提供了起点。 | 索取具名合规负责人、当前证明,以及处理受监管客户证据请求的内部升级路径。 |
| 财务、法务与投资者关系准备 | IPO 或再融资事件会要求披露更自律、且能经得住外部检验;当前公开信息还达不到。 | 中 | 高 | 管理层明确把时间点与合并后公司的披露准备挂钩。 | 索取经审计的合并报告准备情况、董事会委员会结构,以及股权结构表或债务摘要。 |
这张表关注那些在收入、续约或公开市场结果显现前就可能悄悄失效的执行职能。
[CR004, CR005, CR008, CR010, CR019, CR020]7.5 私人公司不透明,投资者需要硬监控触发点
Cohesity 仍是一家私人公司,却要求投资者用私人公司披露去承销一个上市公司规模的故事。投资者关系页面偏宣传,甚至注明其中展示的内部数据没有经过独立验证。媒体报道显示,管理层希望在拿出合并后完整一年的业绩后,于 2026 年 IPO;公开叙事则把 Veritas 合并描述成一组有风险的搭配:Cohesity 增长快但历史上不盈利,Veritas 资产基盘更大且有利润。这可能是有力的战略组合,但公开记录里仍留下真实的股权结构、债务、再融资和所有权问题。投资者应把融资可选性视为有条件,而不是已经到手。更干净的承销做法,是锚定可监控触发点:支持信号恶化、披露准备延迟、政府合规事件转负,或有证据显示接手客户没有顺利续约或转换。如果这些触发点走错方向,就应快速重估投资逻辑,而不是靠叙事摊低成本。[CR034, CR035, CR036, CR037, CR038, CR039]
| 风险 | 可监测触发因素 | 阈值 / 事件 | 为什么重要 | 行动含义 |
|---|---|---|---|---|
| 继承客户基础迁移风险 | 转化与续约披露 | 到下一轮重大尽调周期,管理层仍无法按队列展示续约或迁移指标 | 交易中最大的价值池仍不透明,说明叙事质量跑在运营证据前面 | 在队列数据出现前,把基准情景视为更慢、价值更低 |
| 支持质量恶化 | 评论与客户背调趋势 | 两个或更多新的独立信号指向支持响应、恢复速度或报告清晰度恶化 | 支持摩擦最可能成为可避免续约流失的隐藏原因 | 升级对支持 KPI 的尽调,并假设扩张效率更低 |
| 受监管客户合规失误 | 负面政府或主权事件 | 重大合规缺口、认证问题或执法式事件公开 | 法律和主权要求能比产品营销更快关闭高价值行业;营销再重启也慢 | 暂停投资信心,重新评估受监管行业承销逻辑 |
| 竞争替换 | 替换或价格压力证据 | 竞争对手迁移活动开始拿下有名有姓的继承客户,或迫使 Cohesity 做出有意义的价格让步 | Commvault、Druva、Dell 和公开可比公司都在公开进攻,说明市场已经在争夺这一窗口 | 下调增长和利润率假设 |
| 披露或融资延误 | IPO 准备信号 | 管理层无法展示合并后公司报告准备情况,或在没有新证据的情况下推迟时间点 | 披露纪律可见前,不应把融资可选性计入 | 把 IPO 上行视为后移,继续聚焦私募市场基本面 |
| 安全事件打破投资逻辑 | 重大公开网络事件 | 公开事件或披露事件削弱公司的韧性叙事,或暴露控制缺口 | 品牌承诺建立在韧性上;一旦出现重大失误,信任、管线和估值会同时受击 | 转入防守姿态,直到根因和整改质量得到证明 |
这些是用于保持承销纪律的分析性止损标准,不是管理层指引;表格旨在让风险争论可观察,而不是停留在话术。
[CR013, CR021, CR026, CR030, CR036, CR039]7.6 附录图表
08估值
8.1 资格事件与估值重置
本章满足资格阈值,因为 2024 年 12 月完成的 Cohesity-Veritas 合并发生在 2024-05-19 之后,并且公司和 Veritas 明确称,这笔交易对合并后公司的估值超过 $7 billion。这不同于原 Cohesity 2021 年 3 月 $3.7 billion 的要约回购估值。2021 年事件反映的是一家更小的独立业务,通过非稀释性的员工流动性要约提供流动性;当时交易规模为 $145 million,收入运行率刚超过 $300 million,ARR 增长超过 70%,净扩张超过 130%。相比之下,2024 年和 2025 年的讨论对象是一家大得多的合并后公司,收入超过 $1.7 billion,ARR 为 $1.5 billion,调整后现金 EBITDA 利润率为 28%,同时继承了 Veritas 的经济性和不透明债务。因此,分析重置是必须的:相关估值问题不是 Cohesity 曾经是否配得上 $3.7 billion,而是当前合并实体在调整整合和资本结构不确定性后,是否配得上官方超过 $7 billion 的锚点。[CV001, CV002, CV003, CV004, CV005, CV006]
| 参考对象 | 日期 / 状态 | 已披露规模 | 估值或 EV 锚点 | 隐含倍数口径 | 参考价值 | 局限 |
|---|---|---|---|---|---|---|
| 旧 Cohesity 要约交易 | Mar 2021 / 已完成 | >$300M 收入运行率;2,600 家客户;ARR 增长 >70% | $3.7B 估值 | 规模更小、独立经营时的旧私募估值标记 | 说明合并前公司已能撑起数十亿美元级私募估值。 | 不能直接对比 2024-2026 年合并后公司。 |
| Cohesity-Veritas 公告 | Feb 2024 / 已签署 | >$1.6B 收入;$1.3B ARR;调整后现金 EBITDA 率 27% | 合并后公司估值 ~$7.0B | 按早期规模基数为 ~4.4x 收入、~5.4x ARR | 第一个合并后公司估值锚点。 | 交易交割前,尚未纳入最终融资和更新后的交割指标。 |
| Cohesity-Veritas 交割 | Dec 2024 / 已完成 | >$1.7B 收入;$1.5B ARR;调整后现金 EBITDA 率 28% | >$7.0B 合并后公司估值 | >=4.1x 收入,>=4.7x ARR | 本章最硬的锚点。 | 债务和分配瀑布仍未披露。 |
| Rubrik 公开市场 | May 18 2026 / 实时 | $1.32B 收入;~$1.46B ARR | $12.3B-$12.9B EV;$12.8B-$13.4B 市值 | ~9.3x-9.8x EV/收入;~8.4x-8.8x EV/ARR | 网络韧性赛道最接近的高增长上市可比公司。 | 披露质量和现金余额都远强于 Cohesity。 |
| Commvault 公开市场 | May 18 2026 / 实时 | $1.184B 收入;$1.122B ARR | ~$4.30B EV;$4.29B-$4.37B 市值 | ~3.6x EV/收入;~3.8x EV/ARR | 可作为数据保护倍数的成熟软件下限参考。 | 增长和业务组合比 Cohesity 更成熟。 |
| Yahoo/Forge 私募估值估计 | May 18 2026 / 指示性 | 页面未披露经审计规模 | $4.69B 估计估值 | 基于模型的老股市场信号,不是交易倍数 | 可作为偏谨慎的私募市场交叉校验。 | 明确不是报价,且可能依赖有限数据。 |
表格抽取企业数据保护和网络韧性估值中最能支持决策的锚点样本, 不是所有软件可比公司或私募交易的完整清单。
[CV001, CV003, CV004, CV006, CV007, CV008]基于披露的 >$1.7B 收入做收入倍数敏感性,可以看到估值从谨慎底线抬到缺少支撑的 Rubrik 式想象有多快。
敏感性分析采用披露的合并收入,未扣除债务,因此更适合当作企业价值口径的估值桥。
[CV043, CV045, CV047, CV051, CV052, CV053]8.2 上市可比公司基准与可承销性
最接近的上市锚点说明,Cohesity 不能简单继承 Rubrik 的高溢价倍数。Rubrik 的 2026 财年业绩叠加 2026 年 5 月市场数据,意味着 EV-to-revenue 约 9.3x-9.8x、EV-to-ARR 约 8.4x-8.8x;支撑因素包括 48% 收入增长、80.1% GAAP 毛利率、正自由现金流和 $1.68 billion 现金余额。相比之下,Commvault 的交易水平接近 3.6x EV-to-revenue、约 3.8x EV-to-ARR,增长较低,但毛利率相近,自由现金流可比。Cohesity 官方交割锚点,至少约 4.1x 收入、4.7x ARR,位于这两个上市标尺之间。这个位置对一家有规模但不透明的私人公司方向上合理:披露的收入规模大于两个同行,但可承销性更弱,因为投资者无法检查杠杆、优先股堆叠,或原生 ARR 与继承 ARR 的混合。正确结论是,当前官方锚点并不明显便宜;如果假设相对 Rubrik 有显著债务和披露折扣,它也不明显虚高。[CV028, CV029, CV030, CV031, CV032, CV033]
| 指标 | 当前判断 | 证据基础 | 决策含义 |
|---|---|---|---|
| 建议 | 观察 / 继续研究 | 官方 >$7B 锚点有支撑,但杠杆和分配瀑布细节缺失。 | 暂不要按溢价倍数承销。 |
| 信心 | 中低 | 规模和可比公司测算可见;债务、优先股权利和队列结构不可见。 | 在把上行视为可投资前,需要更多尽调。 |
| 估值立场 | 官方交割价合理;没有新披露时,超过 $10B 偏高 | 官方交割价意味着约 4.1x 收入、4.7x ARR;相比之下,Rubrik 接近 9x+ EV/revenue,Commvault 接近 3.6x。 | 存在上行,但前提是披露质量大幅提升。 |
| 入场纪律 | 穿透债务后,偏好 <=5x 收入或 <=6x ARR | 这样入场价更接近打折后的公开可比公司区间,而不是 Rubrik 的溢价带。 | 不要为私营公司的不透明支付公开市场溢价。 |
| 上调触发因素 | 公开市场级别的债务、队列和现金流披露 | 需要债务规模、分配瀑布、原生与继承 ARR 结构,以及留存证明。 | 只有到那时,超过 $9B 的案例才可承销。 |
| 主要下行触发因素 | 隐藏杠杆或合并后留存偏弱 | 任一问题都会把公司压向低质量软件倍数。 | 若触发,重估至 $4.5-$6B 悲观区间。 |
这份摘要带有判断色彩,因为公司披露了企业级收入规模,却没有披露把企业价值转换成股权回报案例所需的债务和优先股堆叠。
[CV043, CV044, CV045, CV046, CV051, CV057]决策流从官方规模和公开可比公司支撑出发,穿过不透明和资本结构悬念,落到观察或继续研究建议。
流程概括的是定性决策逻辑,不是精确打分模型。
[CV043, CV045, CV046, CV049, CV050, CV057]8.3 情景与区间纪律
情景分析比点估值更重要,因为资本结构藏在水下。基准情景最容易从公开证据中支撑:合并后公司价值约 $7-$9 billion,让 Cohesity 高于 Commvault 式成熟软件交易水平,但低于 Rubrik 的上市高溢价倍数。这个区间实质上是在说,官方交割锚点站得住,但并不明显便宜。乐观情景可拉到约 $10-$13 billion,但前提是投资者看到上市公司级别证据:28% 调整后现金 EBITDA 利润率可持续,合并后增长保持在十几个百分点中段或更好,继承 Veritas 队列的留存稳固,而且债务不吞掉股权上行。悲观情景约 $4.5-$6 billion;如果倍数压缩、迁移摩擦或杠杆风险把业务拖向低质量基础设施可比公司,或拖向 Yahoo/Forge 上可见的模型化私人估值,这一情景就变得可信。由于下行情景由缺失分母驱动,而不是明显产品弱点,入场纪律比叙事信念更重要。[CV043, CV044, CV047, CV048, CV049, CV050]
| 情景 | 概率信号 | 隐含价值区间 | 工作倍数逻辑 | 前置条件 | 下行触发因素 |
|---|---|---|---|---|---|
| 悲观 | 25% | $4.5B-$6.0B | 约 2.7x-3.5x 收入或 3.0x-4.0x ARR | 债务高于预期;迁移和留存表现不及预期;IPO 市场仍然关闭。 | 队列留存走弱,或股权结构表条款让普通股处于次级位置。 |
| 基准 | 50% | $7.0B-$9.0B | 约 4.1x-5.3x 收入或 4.7x-6.0x ARR | 官方交割锚点大体成立;合并后增长落在十几个点的低到中段;债务可控但并非小事。 | 新披露未能提升可见度,使公司卡在接近官方交易价值的位置。 |
| 乐观 | 25% | $10.0B-$13.0B | 约 5.9x-7.6x 收入或 6.7x-8.7x ARR | 完整一个合并年度显示增长耐久、FCF 转化可信、债务结构干净。 | 由于申报文件缺乏公开市场级 KPI 披露,Rubrik 式溢价未能兑现。 |
情景区间依据已披露的收入和 ARR 锚点,以及当前 Rubrik、Commvault 交易区间估算;它们是企业价值口径的估值区间,不是经审计的股权价值。
[CV043, CV044, CV051, CV052, CV053, CV058]三档估值区间框住了当前公开证据能支撑的范围;官方成交锚点已经落在基准情景内,而不是低于基准情景。
上述区间是判断性的估值框架,不是已实现投资人回报;债务和优先权漏损尚未公开可见。
[CV024, CV051, CV052, CV053, CV054, CV058]8.4 反向逻辑、投资逻辑破裂点与压制因素
反向逻辑并不是 Cohesity 缺少规模或战略相关性;反向逻辑是,投资者可能在看不到 Rubrik 式公开披露之前,就被要求为 Rubrik 式上市公司质量付钱。管理层解释推迟 IPO 的理由,是 Cohesity 希望在上市前先成为最大那条鱼。这个逻辑在战略上自洽,但也承认公司仍需要证明。Dataconomy 对宏观波动的总结,以及来自 Yahoo/Forge 的 $4.69 billion 估计,都指向同一个怀疑方向:私人和公开市场可能不会因为公司在 Veritas 交易后变大,就给它高溢价。如果债务或股权类别条款让新进入股权实质上后置;如果原 Veritas 续约黏性低于头条 ARR 暗示;或如果未来 IPO 文件在不披露队列留存、原生与继承业务混合、现金流转换的情况下索要 Rubrik 式倍数,投资逻辑就会破裂。换句话说,主要估值风险是隐藏结构,不是隐藏增长。[CV020, CV021, CV022, CV023, CV024, CV054]
| 维度 | 投资逻辑 | 反向逻辑 | 改变判断的因素 |
|---|---|---|---|
| 规模 | 披露收入显示,合并后公司规模已经超过 Rubrik 和 Commvault。 | 如果收入结构里含有增长更慢或质量更低的继承收入,更大并不自动意味着更有价值。 | 展示原生与继承 ARR 以及续约韧性。 |
| 利润率 | 28% 调整后现金 EBITDA 利润率显示,合并后的盈利引擎可能较强。 | 调整后现金 EBITDA 尚未桥接到上市公司现金流或 GAAP 经营经济性。 | 披露债务服务、SBC、资本开支以及 GAAP 到 non-GAAP 调整桥。 |
| 市场地位 | 收购 Veritas 后,Cohesity 可以主张品类领导地位和广泛工作负载覆盖。 | 按市场份额算的领导地位,仍可能掩盖迁移风险和运营复杂度。 | 按队列和产品家族展示留存与迁移结果。 |
| 公开可比公司支撑 | 官方交割倍数介于 Commvault 与 Rubrik 之间,并不极端。 | Rubrik 的溢价依赖公开披露、高增长和可见资产负债表强度;Cohesity 公开层面还没有做到。 | 完成一个完整合并财年后,提供 Rubrik 式季度 KPI 包。 |
| 私募市场信号 | 官方 >$7B 交割价提供了硬交易锚点。 | Yahoo / Forge 的 $4.69B 估计值显示,部分私募市场参与者仍把公司标在远低于官方交易价值的位置。 | 按股权类别验证实际二级市场成交,而不是依赖模型估计。 |
| IPO 路径 | 如果合并执行保持强劲,管理层的 2026 年愿望可能成为催化剂。 | 宏观波动和退出延迟会惩罚那些规模已成、但披露不完整就入场的公司。 | 在追逐溢价簿记前,先证明审计准备和投行可用的披露。 |
反向逻辑有意强调资本结构和披露风险,而不是产品质量,因为核心估值分歧在于投资者还看不到的部分。
[CV020, CV021, CV022, CV023, CV024, CV049]| 触发因素 | 阈值 | 为什么重要 | 行动含义 |
|---|---|---|---|
| 隐性杠杆 | 债务包足够大,把有效股权价值拉到官方交割锚点以下 | 如果债务吃掉大部分上行空间,高企业价值也不值得投。 | 重置到悲观情景区间,避免溢价入场。 |
| 优先股堆叠侵蚀 | Series H 或展期条款实质性压低新股权顺位 | 即便账面 EV 上升,优先清算瀑布也可能毁掉普通股回报。 | 看不清瀑布前,避开老股或 IPO 配售。 |
| 继承队列留存偏弱 | Veritas 续约、迁移或支持业务经济性不及预期 | 账面 ARR 质量比账面 ARR 规模更重要。 | 把倍数压到接近 Commvault,甚至更低。 |
| IPO 准备中的披露失败 | 未来监管文件缺少队列留存、收入结构和债务透明度 | 公开市场投资者会拿 Rubrik 对标披露质量,而不是私营公司惯例。 | 维持继续研究,或放弃参与 IPO。 |
| 宏观退出窗口关闭 | IPO 市场走弱,同时投行要求更低倍数 | 退出环境不友好时,好公司也可能以弱价格成交。 | 要求更大入场折扣,或推迟参与。 |
| 未证明先要溢价 | 管理层或卖方在缺少 Rubrik 级证据时,要求 Rubrik 式倍数 | 核心错误,是为私募溢价的不确定性支付上市公司溢价价格。 | 新证据出现前,按硬性拒绝处理。 |
这些否决触发因素关注隐性结构如何传导到估值, 而不是重复风险章节已经覆盖的通用经营风险。
[CV023, CV054, CV055, CV056, CV057, CV058]七个可上投委会的 KPI 概括了 Cohesity 的矛盾:战略位置强,但按溢价倍数做投资测算仍难。
KPI 卡混合了官方交易数据和当前市场数据参照,因此应视为决策快照,不是审计后的财务报告。
[CV024, CV043, CV044, CV045, CV046, CV057]8.5 尽调路径与退出准备度
因此建议是观察或继续研究,不是因为业务缺少质量,而是因为承销包仍不完整。纪律严明的投资者已经可以说清哪些信息会改变判断:完整债务条款、股权结构瀑布、合并收入与 ARR 桥、按继承队列和原生队列拆分的留存,以及可信的 IPO 准备包,证明管理层能支撑 Rubrik 式披露。没有这些项目,即便看起来合理的估值入场也可能误导,因为企业价值未必能干净映射到股权价值。退出准备同样有条件。管理层显然想在合并后完整一年业绩之后保留上市选项,但公开市场成功取决于证明的不只是规模。公司必须证明头条规模扛得住整合,调整后利润率可以转化为公开市场认可的现金经济性,而且 Veritas 合并创造的是更干净的市场领导者,而不是更大但更复杂的资本结构。在那之前,入场纪律应强调下行保护和信息权,而不是速度。[CV051, CV052, CV053, CV055, CV056, CV057]
| 主题 | 缺失证据 | 为什么重要 | 负责人 / 尽调路径 |
|---|---|---|---|
| 债务包 | 确切债务金额、利息成本、期限、契约余量和担保情况 | 把官方企业价值式估值转成股权价值,需要这些数据。 | CFO 与贷款方资料室;债务条款清单。 |
| 股权结构瀑布 | Series H 经济条款、展期持股、清算优先权和附函 | 决定新投资者能否真正分享上行。 | 财务加法务审阅章程、附函和瀑布模型。 |
| 合并后收入结构 | 原生 Cohesity 与继承 Veritas 的 ARR、支持和维护收入结构 | 拆清经常性软件质量与传统维护拖累。 | 管理层桥接材料和队列收入明细。 |
| 留存证明 | 按旧平台队列拆分的总留存、NRR 和迁移成功率 | 判断是否应重估到溢价倍数的核心输入。 | 收入运营和客户成功队列分析。 |
| 上市公司披露包 | 未来 IPO 文件的 KPI 草案、审计就绪度和现金流桥接 | Rubrik 级倍数需要 Rubrik 级披露。 | 投行准备材料和审计师工作计划。 |
| 老股价格发现 | 按股份类别观察到的交割后交易,而不是模型估计 | 实时市场信号会验证或挑战官方交割锚点。 | 经纪商指示、撮合交易日志或董事会转让批准。 |
这些要求按它们改变估值置信度的幅度排序,而不是按收集难度排序; 前三项缺任何一项,当前区间都更像叙事,而不是完成承销的估值。
[CV055, CV056, CV057, CV058, CV059, CV060]免责声明
本报告是基于公开证据的尽调快照,不构成投资建议。重要的财务、法律、技术和合同事实仍未公开;作出任何投资决定前,应直接向管理层和一手文件核验。
证据索引
| 编号 | 陈述 | 可信度 | 来源 |
|---|---|---|---|
| CO001 | Cohesity is a private San Jose, California data-security software company whose current official positioning centers on Cohesity Data Cloud as a cyber-resilience platform across cloud, on-premises, and SaaS environments. | 高 | SO001, SO002, SO008 |
| CO002 | Cohesity was founded in 2013. | 高 | SO008, SO018 |
| CO003 | Cohesity consistently frames its mission as protecting, securing, and providing insights into the world's data. | 高 | SO002, SO008 |
| CO004 | Cohesity's current company page claims 13,000+ customers, roughly 70% of the Global 500, and 200+ exabytes of protected data. | 中 | SO002 |
| CO005 | As of May 2026, Sanjay Poonen is Cohesity's President and CEO. | 高 | SO003, SO011, SO025 |
| CO006 | Mohit Aron was still described as CEO and founder in Cohesity's March 2021 valuation announcement, while current leadership materials reference the founder more as a governance presence than as the public operating lead. | 中 | SO006, SO003 |
| CO007 | Cohesity's current leadership page says the board represents both independent and investor experts and also includes the founder. | 中 | SO003 |
| CO008 | The current leadership page names Kevin Mandia as an independent board member and Sandesh Patnam as a Premji Invest observer. | 中 | SO003 |
| CO009 | The February 2024 combination announcement said Greg Hughes, Veritas's CEO, would serve as a Cohesity board member and strategic advisor after close. | 高 | SO007, SO014 |
| CO010 | The same 2024 combination announcement said Patrick McCarter, Brian Sheth, and Sandesh Patnam would take board or observer roles tied to Carlyle, Haveli, and Premji respectively. | 高 | SO007, SO014 |
| CO011 | Public materials still concentrate post-merger leadership and launch messaging around Sanjay Poonen and a relatively small named executive set, creating visible key-person dependence in the external narrative. | 中 | SO003, SO009, SO011, SO018 |
| CO012 | Cohesity's March 2021 tender offer established a $3.7 billion valuation, $1.2 billion above the company's prior valuation less than twelve months earlier. | 高 | SO006, SO024 |
| CO013 | The 2021 liquidity event was a $145 million non-dilutive tender offer led by STEADFAST Capital Ventures and supported by Premji Invest. | 中 | SO006 |
| CO014 | Around the 2021 valuation event, Cohesity disclosed nearly 90% year-over-year ARR growth, net expansion above 130%, and more than 2,300 customers. | 中 | SO006 |
| CO015 | Reuters-republished coverage said Cohesity confidentially filed for a U.S. IPO in December 2021, but the company did not go public after software market conditions weakened. | 中 | SO024, SO018 |
| CO016 | The February 2024 combination announcement valued the combined Cohesity and Veritas data protection business at approximately $7 billion and cited pro forma fiscal-2023 revenue above $1.6 billion with ARR of $1.3 billion. | 高 | SO007, SO014 |
| CO017 | At announcement, the companies projected a combined base of 10,000+ customers, 96 of the Fortune 100, 80% of the Global 500, and about 3,000 partners. | 高 | SO007, SO014 |
| CO018 | Official deal materials committed to supporting both Cohesity and Veritas product roadmaps for years while integrating the best technology across the two portfolios. | 高 | SO007, SO014, SO016 |
| CO019 | Official merger disclosures identify SoftBank Vision Fund, Sequoia, Wing Venture Capital, Premji Invest, Carlyle, Haveli, Madrona, Coatue, Sapphire Ventures, and Dragon Fund as key backers or rollover shareholders in the post-announcement capital story. | 高 | SO007, SO008 |
| CO020 | On December 10, 2024, Cohesity completed its combination with Veritas' enterprise data protection business. | 高 | SO008, SO015, SO018 |
| CO021 | At close, official and partner sources said the combined company served over 12,000 enterprise customers, including more than 85 of the Fortune 100 and nearly 70% of the Global 500. | 高 | SO008, SO015, SO017 |
| CO022 | At close, official and partner sources said the combined entity had over $1.7 billion in pro forma revenue, $1.5 billion of ARR, and a 28% adjusted cash EBITDA margin for the fiscal year ended July 2024. | 高 | SO008, SO015, SO017 |
| CO023 | The Veritas transaction was funded through a Series H round led by Haveli, with Coatue, Sapphire Ventures, and Dragon Fund as key co-investors, plus a term-loan facility arranged by JPMorgan. | 高 | SO008, SO015, SO018 |
| CO024 | TechCrunch reported that numeric customer overlap between Cohesity and Veritas was below 5%, supporting the deal's cross-sell logic. | 中 | SO018 |
| CO025 | TechCrunch said the post-close go-to-market plan was to train one sales motion across both portfolios and redistribute reps for synergies rather than announce immediate sales layoffs. | 中 | SO018 |
| CO026 | TechCrunch also warned that market consolidation can increase pricing power even though Cohesity said it had no plans at close to change pricing or customer contracts. | 中 | SO018 |
| CO027 | Cohesity's current platform pitch is a single secure platform protecting 1,000+ workloads across hybrid cloud and SaaS while unlocking governed enterprise data for AI use cases. | 高 | SO001, SO002 |
| CO028 | On March 10, 2026, Cohesity launched its Enterprise AI Resilience strategy, explicitly positioning the company around AI infrastructure protection, data governance, and recovery from agent-driven disruption. | 高 | SO009, SO019, SO022 |
| CO029 | The same March 2026 product update added DSPM powered by Cyera, sovereign-cloud partnerships, expanded threat-scanning and recovery controls, and simplified Essentials packaging for midsize customers. | 高 | SO010, SO023 |
| CO030 | Cohesity's April 2026 Google Cloud Partner of the Year recognition highlighted deeper integrations with Google Threat Intelligence, Private Scanning, Google Workspace, BigQuery, Vertex AI, and FortKnox on Google Cloud. | 高 | SO011, SO021 |
| CO031 | Nasdaq publicly references Cohesity as the backup platform for 6,000 Microsoft 365 mailboxes, 45 TB of OneDrive and Teams data, and 100 Exchange mailboxes, showing fit in regulated enterprise SaaS backup. | 中 | SO012 |
| CO032 | Conagra says it uses Cohesity to protect both corporate and plant operations, framing the product as cyber-resilience infrastructure for downtime-sensitive operating environments. | 中 | SO013 |
| CO033 | Earlier official and Reuters-derived coverage lists Cisco, NASA, and Siemens among customer references and describes adoption across financial services, healthcare, government, pharma, retail, and technology. | 中 | SO006, SO024 |
| CO034 | CRN quoted Sanjay Poonen describing Cohesity as 100% through the channel and expecting larger reseller and services opportunity after the Veritas combination. | 中 | SO020 |
| CO035 | CRN reported that Veritas brought 45%+ international business share, supporting management's claim that the merger materially expanded Cohesity's global reach. | 中 | SO020 |
| CO036 | Official close materials say Cohesity is backed or partnered with NVIDIA, IBM, HPE, Cisco, AWS, and Google Cloud, reinforcing a large ecosystem around the combined platform. | 中 | SO008, SO011 |
| CO037 | Despite a visible investor-relations page and third-party profiles, the reviewed public sources did not provide a current verified headcount figure for Cohesity as of May 2026. | 低 | SO002, SO005, SO018, SO025 |
| CO038 | Public merger disclosures identify major investors and a debt-plus-equity financing mix, but they do not disclose exact post-close ownership percentages or detailed term-loan sizing and covenants. | 中 | SO007, SO008, SO018 |
| CO039 | By March-April 2026, Cohesity was explicitly tying AI resilience to sovereign-cloud options, Google integrations, and governed data activation, showing strategy expansion beyond core backup into an AI-era control plane. | 中 | SO009, SO010, SO011 |
| CO040 | Craft's company profile lists Sanjay Poonen plus 27 other key executives, implying the management bench is broader than the handful of leaders individually surfaced on the public leadership page. | 低 | SO025 |
| CM001 | Cohesity’s relevant market boundary is broader than legacy backup appliances and spans multicloud data protection, cyber recovery, and adjacent data security and management workloads. | 中 | SM010, SM011, SM012 |
| CM002 | The core spend explicitly anchored inside official combined-company TAM claims is IDC’s data replication and protection software market, estimated at $12.2 billion in 2024 in the February 2024 announcement and $12.3 billion in projected 2024 vendor sales in the December 2024 close materials. | 中 | SM010, SM012 |
| CM003 | IDC’s cyber-recovery framing says recovery from cyberattacks requires more than traditional disaster recovery and specifically depends on data survival, data integrity, and rapid clean recovery. | 高 | SM007, SM024 |
| CM004 | IDC’s cyber-recovery vendor criteria require support for on-premises, multi-public-cloud, and hybrid-cloud workloads and coverage from SMB to large-scale enterprise buyers. | 中 | SM007 |
| CM005 | IDC’s SaaS data-protection analysis treats SaaS protection as a distinct buyer problem where vendors must offer both broad application coverage and more value than native backup tools. | 中 | SM025 |
| CM006 | Status-quo substitutes for a unified cyber-recovery platform include incumbent backup suites, native SaaS protection tools, and channel- or MSP-delivered managed recovery services. | 中 | SM022, SM024, SM025 |
| CM007 | The February 2024 Veritas combination announcement framed the joint opportunity as a TAM of over $30 billion and described the IDC data replication and protection software market as a $12.2 billion 2024 component of that opportunity. | 中 | SM010 |
| CM008 | The December 2024 close announcement widened the official TAM framing to $40+ billion while keeping the IDC core market anchor near $12.3 billion and citing the combined company’s $7 billion-plus valuation. | 中 | SM012 |
| CM009 | Rubrik’s 2024 S-1 said its platform TAM would be about $36.3 billion by the end of 2024 and $52.9 billion by the end of 2027, implying a 13% CAGR based on Gartner research. | 中 | SM013 |
| CM010 | IDC’s 2024 market-shares abstract says the data protection software market keeps growing because it is tied to AI initiatives, ransomware defense, and infrastructure optimization, making it relatively resistant to IT spending cuts. | 中 | SM023 |
| CM011 | Blocks & Files’ summary of IDC tracker data says the data protection market is highly fragmented and the leading vendor held only a little over one-eighth of market share. | 中 | SM020 |
| CM012 | The same analysis expected Cohesity’s Veritas acquisition to push the combined company into the top five by market share but argued proprietary backup formats make consolidation difficult. | 中 | SM020 |
| CM013 | The public TAM figures are not directly comparable because they mix a core software revenue market of roughly $12.2-$12.3 billion with broader vendor platform TAM claims of over $30 billion, $40+ billion, and $36.3 billion. | 中 | SM010, SM012, SM013, SM023 |
| CM014 | IDC’s cyber-recovery Marketscape explicitly says no single vendor fits every organization’s cyber-resilience needs, so buyer fit is structural rather than one-size-fits-all. | 中 | SM024 |
| CM015 | IDC says cyber-recovery buyers should evaluate complexity, breadth of solution, service offerings, price, and incumbency when choosing a vendor. | 高 | SM007, SM024 |
| CM016 | IDC’s SaaS data-protection abstract says application sprawl makes buyers weigh breadth of SaaS coverage against the incremental depth of protection beyond native tools. | 中 | SM025 |
| CM017 | Rubrik says large enterprise purchases often require extensive evaluation, testing, and organization-wide education, which lengthens sales cycles relative to smaller accounts. | 中 | SM013 |
| CM018 | Rubrik segments its sales organization by geography and customer size and maintains dedicated public-sector teams covering federal, state, and local government buyers. | 中 | SM013 |
| CM019 | Rubrik’s customer base spans financial services, healthcare and life sciences, public sector and education, energy and industrials, retail and transportation, technology, and services. | 中 | SM013 |
| CM020 | Cohesity’s federal-government page says hundreds of federal agencies already use its platform and identifies federal agencies plus systems integrators and ISVs as target routes to market. | 中 | SM004 |
| CM021 | Cohesity’s AWS Government Competency post says public-sector buyers look for validated GovCloud partners and compliance with frameworks such as FedRAMP, ITAR, CJIS, and DoD SRG. | 中 | SM008 |
| CM022 | The Gartner Peer Insights release cited customer reviewers with titles including backup administration lead, senior system engineer in banking, and CIO, indicating that infrastructure leaders are the visible user-buyer personas in this category. | 中 | SM019 |
| CM023 | The same release says customer feedback spans industries and company sizes and places Cohesity in Gartner’s above-average user-interest and adoption quadrant. | 中 | SM019 |
| CM024 | 11:11 Systems says it now packages Cohesity through managed onsite backup, offsite replication, on-demand recovery, DRaaS, and cyber-vault offerings, showing MSPs can be both distributors and ongoing operators. | 中 | SM022 |
| CM025 | Veritas close materials say the combined company now spans one of the industry’s largest partner ecosystems across cloud providers, security players, VARs, systems integrators, MSPs, distribution partners, and OEMs. | 高 | SM011, SM012 |
| CM026 | CISA’s ransomware guidance tells organizations to maintain offline encrypted backups and to test those backups regularly, making recoverability a baseline governance control. | 高 | SM015, SM016 |
| CM027 | IDC and CISA both frame post-attack recovery as a distinct workload that depends on trustworthy data copies, rapid restoration, and operational readiness rather than simple retention alone. | 高 | SM007, SM015, SM016 |
| CM028 | GAO says ransomware hit 870 critical-infrastructure organizations in 2022 across 14 of 16 sectors and Treasury reported $886 million in U.S. ransomware-related incident value in 2021. | 中 | SM018 |
| CM029 | GAO also says the adoption of leading ransomware practices across selected critical-infrastructure sectors is still largely unknown, so urgency does not equal preparedness. | 中 | SM018 |
| CM030 | The Government Technology/Cohesity public-sector guide says 72% of states planned backup-and-recovery upgrades within 12 to 18 months, alongside 49% of cities and 44% of counties. | 中 | SM005 |
| CM031 | The same guide says local governments impacted by ransomware rose from 77 in 2021 to more than 100 in 2022 and ties backup resilience to always-on public-service availability. | 中 | SM005 |
| CM032 | Cohesity’s 2025 cyber-resilience survey says only 39% of organizations rely on a single platform for protecting and recovering data across hybrid and multicloud environments. | 中 | SM006 |
| CM033 | The same survey says fewer than half of organizations follow the 3-2-1 rule or use immutability, while 55% support response-and-recovery systems and 49% use isolated recovery environments. | 中 | SM006 |
| CM034 | Only 6% of organizations in Cohesity’s survey qualified as the most mature, risk-ready cohort, implying that most buyers still have meaningful recovery-readiness gaps. | 中 | SM006 |
| CM035 | StorageNewsletter’s summary of IDC work says cyber-recovery adds malware detection, forensic analysis, and cleanroom recovery beyond classic backup and disaster recovery, and cites a 504-organization survey of firms with 500+ employees. | 中 | SM021 |
| CM036 | Cohesity’s ransomware and cyber-resilience pages pitch immutable snapshots, WORM/DataLock, cyber vaulting, anomaly detection, threat intelligence, and SOC integrations as a bundled feature set, showing how buyer expectations have expanded beyond restore alone. | 高 | SM002, SM003 |
| CM037 | Commvault’s 2024 annual report positions the incumbent as a hybrid-world cyber-resilience platform with rapid enterprise-scale recovery and reported total ARR growth of 15% and subscription ARR growth of 25% year over year. | 中 | SM014 |
| CM038 | Cohesity’s 2024 Gartner Magic Quadrant release says enterprises face exploding data volumes across diverse locations alongside constant cyberattack threats, reinforcing ongoing demand for enterprise backup and recovery software. | 中 | SM001 |
| CM039 | Public-sector and regulated buyers face extra certification, budget-cycle, and contracting friction: Rubrik flags FedRAMP and funding-authorization constraints while Cohesity markets FedRAMP/GovRAMP readiness to clear that hurdle. | 中 | SM004, SM008, SM013 |
| CM040 | Public evidence points to infrastructure and security leaders as the visible budget owners, but reviewed sources do not disclose exact post-merger payer titles or typical contract values by segment. | 低 | SM007, SM019, SM022 |
| CM041 | No reviewed public source isolates a standalone post-merger Cohesity SAM or SOM by geography, vertical, or direct-versus-channel mix, so any serviceable-market estimate remains evidence-constrained. | 低 | SM007, SM010, SM012, SM013 |
| CM042 | Cohesity’s threat-trends blog argues that the lines between nation-state actors and ransomware gangs are blurring, which supports cyber resilience as a continuing rather than episodic budget theme. | 中 | SM009 |
| CP001 | Independent 2025 market coverage places Rubrik, Veeam, Commvault, Cohesity, Dell, and Druva in the leader cluster for backup and data protection platforms. | 中 | SP023, SP024, SP026 |
| CP002 | Independent 2025 commentary says Microsoft dropped out of the Magic Quadrant after briefly appearing as a niche player in the prior year. | 中 | SP023, SP026 |
| CP003 | Blocks and Files says the separate Cohesity and Veritas entries were combined after the acquisition closed. | 中 | SP023 |
| CP004 | Rubrik says Rubrik Security Cloud secures enterprise, cloud, SaaS, unstructured, and identity data. | 中 | SP001 |
| CP005 | Commvault says Commvault Cloud unifies data security, cyber recovery, and identity resilience across on-premises, hybrid, multi-cloud, and SaaS environments. | 中 | SP005 |
| CP006 | Veeam says Data Platform v13.1 expands support to 95% of major hypervisors in use. | 中 | SP009 |
| CP007 | Druva says its platform is an immutable, fully managed SaaS service that operates across 26 global regions and 450PB+ of data under management. | 中 | SP011 |
| CP008 | Azure Backup supports Azure Virtual Machines, SQL, SAP databases, AKS, and on-premises VMware machines. | 中 | SP017 |
| CP009 | AWS Backup charges for consumed backup storage, restored data, cross-region transfer, and evaluations with no minimum fee or setup charges. | 高 | SP015, SP016 |
| CP010 | Dell says PowerProtect Cyber Recovery isolates critical data in an air-gapped vault and uses machine learning to support clean recovery. | 中 | SP021 |
| CP011 | IBM says Storage Protect can manage up to 4 petabytes per backup server and supports immutable object storage. | 中 | SP019 |
| CP012 | Veritas Alta Data Protection still markets storage-agnostic immutability and automated clean recovery point recommendations to enterprise buyers. | 中 | SP022 |
| CP013 | Rubrik says it sells Rubrik Security Cloud subscriptions through its sales team and partner network using a land-and-expand strategy. | 高 | SP001, SP004 |
| CP014 | Rubrik reported $1.32 billion of revenue for fiscal 2026. | 中 | SP001 |
| CP015 | Rubrik says its Microsoft partnership combines Microsoft security with Rubrik data security and rapid recovery for Azure and Microsoft 365 data. | 中 | SP003 |
| CP016 | Commvault says its offerings are delivered as Commvault-hosted SaaS, customer-managed software, integrated appliances, and partner-managed services. | 高 | SP005, SP006 |
| CP017 | Commvault exposes three plan families—Operational Recovery, Autonomous Recovery, and Cyber Recovery—on its packaging page. | 高 | SP005, SP006 |
| CP018 | Commvault says add-ons include Cleanroom Recovery, AirGap, Cloud Compliance, Threatscan, and Cloud Rewind. | 高 | SP005, SP006 |
| CP019 | Veeam says v13.1 adds automated Active Directory Forest Recovery and a unified command surface without data migration or rip-and-replace. | 中 | SP009 |
| CP020 | Druva says its ransomware offering combines workflow orchestration and recovery automation with zero-trust architecture and immutable backups. | 高 | SP011, SP012 |
| CP021 | Druva’s pricing brief says common pricing and packaging are public but enterprise, multi-year, and volume discounts still require contact with sales. | 中 | SP014 |
| CP022 | Reviewed official sources for Rubrik, Commvault, and Veeam expose packaging and capabilities but not a comparable public enterprise list price card. | 中 | SP001, SP006, SP009 |
| CP023 | Azure Backup describes pay-as-you-go pricing with no upfront cost. | 高 | SP017, SP018 |
| CP024 | Rubrik’s partner program spans resellers, technology partners, and service delivery partners. | 中 | SP004 |
| CP025 | Commvault’s partner ecosystem explicitly includes cloud partners, alliance partners, global systems integrators, security partners, managed service providers, aggregators, and distributors. | 中 | SP007 |
| CP026 | NetApp said its 2026 alliance with Commvault expands the two companies’ joint go-to-market reach in cyber resilience. | 中 | SP008 |
| CP027 | Veeam says partner success is core to how it delivers platform, solutions, education, competency, and tools for customer needs. | 中 | SP010 |
| CP028 | Druva says its alliance program integrates with leading technology providers to boost data protection and operational resilience. | 中 | SP013 |
| CP029 | Virtualization Review says Rubrik, Druva, and HYCU are at the forefront of cloud-native control planes while Dell is flagged for a slower SaaS transition. | 中 | SP024 |
| CP030 | Blocks and Files says Druva is the only 100 percent SaaS platform in the 2025 leaders quadrant. | 中 | SP023 |
| CP031 | Veeam says mixed-hypervisor support and cross-platform portable recovery let customers protect current and future estates without switching backup tools. | 中 | SP009 |
| CP032 | AWS Backup’s pay-only-for-usage model and Azure Backup’s native workload scope make hyperscaler tools easy status-quo alternatives for cloud-resident workloads. | 高 | SP016, SP017, SP018 |
| CP033 | IBM Storage Defender says it centralizes data views, maps restore dependencies, and automates continuous recovery testing 24/7. | 中 | SP020 |
| CP034 | IBM Storage Protect says its built-in cloud integration supports AWS S3, Google Cloud, Microsoft Azure, and other S3 storage services for retention. | 中 | SP019 |
| CP035 | Virtualization Review says Rubrik leads Gartner’s vision axis by a tiny margin while Veeam leads execution by a tiny margin, with Commvault and Cohesity closely grouped. | 中 | SP024 |
| CP036 | Blocks and Files relaying Competitive Corner says Cohesity’s workload support after Veritas is unmatched except perhaps by Commvault. | 中 | SP023 |
| CP037 | The same commentary says Cohesity still faces expected post-merger chaos risk even if it could become the platform to beat if integration works. | 中 | SP023 |
| CP038 | Blocks and Files says Commvault remains one of the most feature-rich stacks but its fast portfolio expansion has introduced complexity and usability concerns. | 中 | SP023 |
| CP039 | Competitive Corner says Rubrik remains simple to deploy and operate but still lacks the broad workload coverage available from Commvault or Cohesity. | 中 | SP026 |
| CP040 | Blocks and Files says customers in mixed heterogeneous vendor environments need to evaluate multiple Dell solutions and that Dell lags leaders on innovation and features. | 中 | SP023 |
| CP041 | Blocks and Files says Veeam often shares customer floors with other backup products, which is evidence that multi-homing remains common. | 中 | SP023 |
| CP042 | PeerSpot’s May 2026 engagement data shows Veeam at 6.0% mindshare versus Rubrik at 3.4% and Cohesity at 1.8%. | 低 | SP025 |
| CP043 | Converging market expectations now center on immutable vaults, clean recovery, AI-assisted operations, and SaaS or hybrid control planes rather than simple backup alone. | 中 | SP023, SP024, SP009 |
| CP044 | Cohesity’s moat therefore depends less on unique cyber-recovery features and more on turning post-Veritas breadth and installed-base leverage into faster, simpler enterprise execution than peers and adjacent clouds can match. | 中 | SP023, SP024, SP026 |
| CI001 | Legacy standalone Cohesity said fiscal 2021 annualized revenue run rate surpassed 300 million dollars. | 中 | SI001 |
| CI002 | Legacy standalone Cohesity said annual recurring revenue grew more than 70 percent year over year as of July 31, 2021. | 中 | SI001 |
| CI003 | Legacy standalone Cohesity said net expansion exceeded 130 percent in fiscal 2021. | 高 | SI001, SI006 |
| CI004 | Legacy standalone Cohesity said customer count reached approximately 2,600 by July 31, 2021. | 中 | SI001 |
| CI005 | Cohesity said the January 2021 tender-period quarter showed nearly 90 percent ARR growth and more than 2,300 customers. | 高 | SI006, SI019 |
| CI006 | The 2021 employee tender valued Cohesity at 3.7 billion dollars through a 145 million dollar non-dilutive liquidity transaction led by STEADFAST Capital Ventures and supported by Premji Invest. | 高 | SI006, SI019 |
| CI007 | The February 2024 combination announcement disclosed pro forma revenue above 1.6 billion dollars, ARR of 1.3 billion dollars, and a 27 percent adjusted cash EBITDA margin for the combined entity. | 高 | SI002, SI004, SI007 |
| CI008 | The December 2024 close disclosure updated the combined entity to revenue above 1.7 billion dollars, ARR of 1.5 billion dollars, and a 28 percent adjusted cash EBITDA margin on a pro forma adjusted basis for the fiscal year ending July 2024. | 高 | SI003, SI005, SI008 |
| CI009 | Official 2024 and 2025 materials present the larger revenue, ARR, and EBITDA numbers as combined-entity metrics rather than audited standalone Cohesity metrics. | 中 | SI002, SI003, SI004, SI005 |
| CI010 | The close release says Cohesity became the fastest data protection company to cross 1.5 billion dollars in revenue in 11 years. | 高 | SI003, SI008, SI025 |
| CI011 | The combined company closed with over 12,000 customers, more than 85 of the Fortune 100, and nearly 70 percent of the Global 500. | 高 | SI003, SI005, SI008 |
| CI012 | Official TAM framing expanded from over 30 billion dollars at announcement to 40-plus billion dollars at close. | 中 | SI002, SI003 |
| CI013 | Official Cohesity materials consistently describe the business as subscription-led recurring software rather than a one-time license model. | 中 | SI001, SI006, SI003 |
| CI014 | Reviewed public materials support at least four monetization buckets: software subscriptions or term licenses, support and maintenance renewals, SaaS or DMaaS offerings, and professional or partner-delivered services. | 中 | SI001, SI002, SI003, SI014 |
| CI015 | Reviewed public materials do not reveal Cohesity’s realized pricing, discount bands, or contract-level unit pricing. | 中 | SI001, SI002, SI003, SI024 |
| CI016 | Reviewed public materials do not disclose Cohesity’s standalone CAC, payback period, or sales-efficiency cohort metrics. | 中 | SI001, SI003, SI017, SI021 |
| CI017 | The transaction was financed through a combination of equity and debt, and Veritas said exchange offers or similar transactions were expected for its existing debt. | 高 | SI002, SI004, SI007 |
| CI018 | The close release says a Haveli-led Series H supplied the majority of equity, with Coatue, Sapphire Ventures, and Dragon Fund also participating. | 高 | SI003, SI008, SI025 |
| CI019 | Carlyle rolled into the cap table via Veritas and became one of the combined company’s largest shareholders, while SoftBank, Sequoia, Wing, Premji, and Madrona remained or became key supporters. | 高 | SI002, SI003, SI007, SI008 |
| CI020 | J.P. Morgan arranged and committed financing for the transaction. | 高 | SI002, SI003, SI007, SI008 |
| CI021 | Reviewed official and independent coverage does not disclose the size, pricing, maturity, or leverage ratio of the debt package or term loan B. | 中 | SI002, SI003, SI016, SI024 |
| CI022 | Management and investor messaging tie the financing to growth, global expansion, and product innovation rather than a defensive rescue. | 中 | SI003, SI008, SI017 |
| CI023 | CRN reported Poonen describing standalone Cohesity as already north of 500 million dollars in revenue before the transaction closed. | 中 | SI017 |
| CI024 | CRN also quoted management framing the post-close business as a 1.6 to 2.0 billion dollar scale company with 27 percent EBITDA. | 中 | SI017 |
| CI025 | TechCrunch reported that the final deal terms were not disclosed even though the transaction used Series H equity and involved only Veritas’ data protection business. | 中 | SI024 |
| CI026 | Blocks & Files reported management targeting a Rule of 40 score in the mid-30s in the second half of fiscal 2026. | 中 | SI018 |
| CI027 | A mid-30s Rule of 40 target implies improvement but still sits below the canonical 40 benchmark many SaaS investors use. | 中 | SI018 |
| CI028 | CNBC reported management targeting a 2026 IPO after showing investors a full year of combined results. | 中 | SI021 |
| CI029 | CNBC also cited analyst caution that macro volatility could still hinder unicorn-scale IPO exits. | 中 | SI021 |
| CI030 | Yahoo Finance and Forge showed a May 2026 derived private valuation estimate of 4.69 billion dollars for COHS.PVT, which is not an official combined-company valuation. | 低 | SI022 |
| CI031 | Rubrik’s S-1 showed fiscal 2024 revenue of 627.9 million dollars, Subscription ARR of 784.0 million dollars, net loss of 354.2 million dollars, and negative free cash flow of 24.5 million dollars. | 中 | SI012 |
| CI032 | Rubrik’s fiscal 2025 official results lifted subscription ARR to 1.0926 billion dollars and fourth-quarter revenue to 258.1 million dollars while reaching its first year of positive free cash flow. | 中 | SI010 |
| CI033 | Rubrik’s fiscal 2026 official results showed 1.32 billion dollars of revenue, 1.46 billion dollars of subscription ARR, 80.1 percent GAAP gross margin, 237.8 million dollars of free cash flow, and 1.68 billion dollars of cash, cash equivalents, and short-term investments. | 中 | SI011 |
| CI034 | Yahoo Finance showed Rubrik at roughly 12.83 billion dollars of market capitalization and 9.31 times price-to-sales as of May 18, 2026. | 低 | SI023 |
| CI035 | Commvault’s 2024 annual report showed 723.5 million dollars of revenue, 397.2 million dollars of cash and short-term investments, 15 percent total ARR growth, and 25 percent subscription ARR growth. | 中 | SI015 |
| CI036 | Commvault’s fiscal 2026 official results showed 1.184 billion dollars of revenue, 1.122 billion dollars of total ARR, 81.2 percent GAAP gross margin, and 237 million dollars of free cash flow. | 中 | SI014 |
| CI037 | Relative to Rubrik and Commvault, combined Cohesity is larger on disclosed revenue and ARR, but its profitability claim is adjusted cash EBITDA rather than public-company GAAP or non-GAAP EBIT. | 中 | SI003, SI011, SI014 |
| CI038 | Public filings and earnings releases from Rubrik and Commvault provide revenue, gross margin, ARR, cash, and free-cash-flow detail that Cohesity does not publish on a standalone basis. | 中 | SI003, SI012, SI014, SI015 |
| CI039 | Ongoing support commitments to both Cohesity and Veritas product lines may slow synergy capture versus a hard platform sunset model. | 中 | SI003, SI018, SI024 |
| CI040 | The underwriting conclusion is that Cohesity looks revenue-rich and recurring but still disclosure-poor, leaving debt load, cash runway, pricing realization, and post-merger retention as the highest-value diligence gaps. | 中 | SI003, SI018, SI021, SI024 |
| CE001 | Cohesity's public product surface spans DataProtect, NetBackup, FortKnox or Alta Recovery Vault, cloud services, Gaia, and cyber-resilience overlays rather than a single backup SKU. | 高 | SE001, SE002, SE003, SE004, SE027, SE028 |
| CE002 | The public docs index explicitly lists Helios, Helios Self-Managed, Security Center, Threat Protection, Data Classification, RecoveryAgent, FortKnox, Gaia, and NetBackup Web UI as separate documented surfaces. | 中 | SE009 |
| CE003 | DataProtect is positioned as a single management platform for backup and recovery across on-premises, cloud, and SaaS environments. | 中 | SE001 |
| CE004 | DataProtect publicly claims protection for NAS, databases, VMs, and containers across on-premises and multiple clouds. | 中 | SE001 |
| CE005 | DataProtect's public security stack includes immutable snapshots, granular RBAC, MFA, SSO, and hash-based threat scanning. | 高 | SE001, SE028 |
| CE006 | DataProtect publicly claims backup that is 18x faster, recovery that is 2x faster, and instant restore of 1,000 VMs. | 中 | SE001 |
| CE007 | FortKnox is marketed as a cyber vault for both DataProtect and NetBackup and is offered as a managed service hosted on AWS, Azure, and GCP. | 高 | SE002, SE026 |
| CE008 | FortKnox and Alta Recovery Vault pages frame vaulting around immutability, malware scanning, encryption, and rapid clean recovery rather than simple low-cost retention. | 高 | SE002, SE007, SE026 |
| CE009 | The Cohesity NetBackup page promises customers they can keep, extend, or transform existing NetBackup environments on their own terms. | 中 | SE003 |
| CE010 | The NetBackup and Alta pages continue to advertise storage-agnostic immutability, adaptive MFA or MPA risk controls, anomaly detection, malware scanning, and Blueprints-driven recovery. | 高 | SE003, SE007, SE008 |
| CE011 | NetBackup still emphasizes native Kubernetes backup, cross-platform multi-cloud recovery, and appliance-backed deployment, which suggests material functional overlap with the broader DataProtect story. | 中 | SE003, SE008 |
| CE012 | The cloud solutions page says Cohesity can directly protect SaaS, cloud-native, and on-premises workloads and use the cloud for backup, retention, archival, and cyber-vault recovery. | 中 | SE004 |
| CE013 | Cohesity publicly says it has a data plane in all major clouds and supports sovereign-by-design deployment across more than 24 cloud regions. | 中 | SE004 |
| CE014 | The Helios provisioning workflow shows that NetBackup management is being folded into the Cohesity control plane, but onboarding still depends on manual provisioning that can take up to two business days. | 中 | SE006 |
| CE015 | Helios provisioning lets customers choose Alta View regions for sovereignty, confirming that the combined management plane still carries both Helios and Alta branding. | 中 | SE006 |
| CE016 | The public Marketplace highlights third-party extensions such as Cisco XDR, DataMasque, and endpoint backup tools, so add-on functionality sits alongside the core protection stack. | 中 | SE005 |
| CE017 | Cohesity's app platform allows third parties to package Docker-based apps with AppSpec and App SDK on the same DataPlatform that holds backup and unstructured data. | 高 | SE005, SE012, SE029 |
| CE018 | The developer portal pitches APIs, custom workflows, and app building as first-class extension paths rather than afterthought integrations. | 中 | SE012, SE029 |
| CE019 | The GitHub organization showed active repositories in May 2026 for community automation samples, an Ansible collection, a PowerShell module, and a Terraform provider. | 中 | SE014, SE015, SE016, SE017 |
| CE020 | The public automation samples and repo readmes explicitly say code and integrations are provided on a best-effort basis and are not officially supported or sanctioned by Cohesity support teams. | 中 | SE015, SE016, SE017 |
| CE021 | The Terraform provider repository requires Terraform 0.12.20+ and Cohesity DataPlatform 6.4+, and its documentation is routed through a HashiCorp registry listing. | 高 | SE016, SE019 |
| CE022 | The PowerShell module supports Windows, Linux, and macOS, requires Cohesity software 6.0 or higher, and is distributed through both GitHub and the PowerShell Gallery. | 中 | SE017, SE020 |
| CE023 | The ServiceNow developer landing page frames the integration around policy-based VM protection and recovery automation, and the ServiceNow Store confirms a dedicated Cohesity app listing exists. | 高 | SE013, SE033 |
| CE024 | The Splunk add-on listing says Cohesity can export alerts and audit logs into Splunk and that the cluster must be running version 6.7.x or newer. | 中 | SE025 |
| CE025 | Microsoft's Azure marketplace description bundles DataProtect, NetBackup, Cloud Services for Microsoft 365, Identity Resilience, and Gaia inside a single Cohesity Data Cloud cloud offer. | 高 | SE021, SE028 |
| CE026 | Microsoft's Microsoft 365 Backup Storage page says Cohesity customers will soon get near-instant initial full backups and restores, deeper geographic redundancy, and recovery in the context of Microsoft 365 security policies. | 中 | SE022 |
| CE027 | AWS's Cloud Services listing describes a fully managed backup service with global visibility, policy-based automation, immutable backups, strong encryption, privileged-access controls, and SOC 2 Type II-compliant storage. | 高 | SE004, SE024 |
| CE028 | Gaia is built around activating immutable time-series backup data for AI without copying it into new silos or ETL pipelines. | 中 | SE027 |
| CE029 | Gaia publicly advertises semantic search, vector indexing, RBAC-preserving context injection, and integrations with Microsoft Copilot, Google Gemini, and Glean. | 中 | SE027 |
| CE030 | Gaia also offers a self-managed or on-prem deployment path and explicitly pitches sovereignty for regulated environments. | 中 | SE027 |
| CE031 | Gaia Catalog is described as coming soon, so part of Cohesity's AI-ready-data story remains roadmap rather than shipped capability. | 中 | SE027 |
| CE032 | The cyber resilience framework claims the platform handles 1,000+ data sources and ties recovery posture to DSPM, identity resilience, cyber vaulting, threat protection, and cyber recovery orchestration. | 高 | SE009, SE028 |
| CE033 | The same cyber resilience material says customers should retain 60+ days of recovery points, use YARA rules and sandboxing during investigations, and automate rehearsed recovery workflows. | 中 | SE028 |
| CE034 | The NetBackup hardening guide remained live on a Veritas support domain as of 2026-01-14, showing that important security guidance for part of the combined stack still sits on legacy documentation properties. | 高 | SE008, SE011 |
| CE035 | The public docs surface is discoverable, but current DataProtect, Helios, and NetBackup documentation pages all require authentication once selected from the docs index. | 中 | SE009, SE030, SE031, SE032 |
| CE036 | That authentication wall means the public technical evidence is materially thinner than the marketing surface for some of the combined product estate. | 中 | SE009, SE030, SE031, SE032 |
| CE037 | The AWS or PeerSpot review says the setup is easy and scalability is good, but also flags cloud connection resets, web-console connectivity issues, slow support resolution, and relatively expensive pricing. | 中 | SE023 |
| CE038 | The Azure cloud-edition marketplace listing still describes Azure deployment primarily as replication from an on-prem Cohesity cluster to a Cohesity cluster running in Azure, which implies cloud edition is an extension path rather than a wholly separate architecture. | 中 | SE034 |
| CE039 | Official product pages repeatedly emphasize a single management or control plane and API-first extensibility, but public evidence still points to multiple branded management surfaces including Helios, Alta View, Marketplace, and legacy Veritas docs. | 中 | SE001, SE006, SE011, SE026 |
| CE040 | The combination of broad official packaging, gated technical docs, manual Helios provisioning, and best-effort automation repositories implies the integration strategy is credible but still operationally messy after the Veritas combination. | 中 | SE006, SE015, SE016 |
| CE041 | Current authenticated docs advertise separate versions for DataProtect 7.4, Helios Self-Managed 2.0.0, and NetBackup 11.1.0.2, implying distinct release cadences inside the combined estate. | 中 | SE030, SE031, SE032 |
| CE042 | Security integration is more than marketing because public sources show both a Splunk add-on for alerts and audit logs and SOAR or XDR pause-resume hooks in Alta Data Protection. | 高 | SE007, SE025 |
| CU001 | Cohesity said customer count reached approximately 2,600 by July 31, 2021. | 中 | SU024 |
| CU002 | Cohesity said net expansion from its existing customer base continued to exceed 130 percent as of July 31, 2021. | 中 | SU024 |
| CU003 | At merger close, Cohesity said the combined company would serve over 12,000 customers, including over 85 of the Fortune 100 and nearly 70 percent of the Global 500. | 中 | SU025 |
| CU004 | Cohesity said it was named a Gartner Peer Insights Customers’ Choice for backup and data protection platforms for the eighth time in 2026. | 中 | SU007 |
| CU005 | Capterra displayed 49 Cohesity reviews with a 4.6 overall rating, 4.7 ease-of-use rating, and 4.8 customer-service rating on the archived page reviewed for this chapter. | 中 | SU015 |
| CU006 | The archived G2 Cohesity page showed 50 reviews, a 4.4 rating, an average one-month implementation time, and a 17-month return-on-investment estimate. | 中 | SU016 |
| CU007 | PeerSpot reviewers commonly praised Cohesity DataProtect for fast restores, deduplication, centralized management, and hybrid-workload handling. | 中 | SU017 |
| CU008 | PeerSpot reviewers also asked for better reporting, smoother legacy compatibility, faster cloud recovery, better documentation, and stronger support responsiveness. | 中 | SU017 |
| CU009 | Capterra review summaries highlighted missing centralized credential management, uneven backup-exclusion controls, cloud-replication uncertainty, and lack of sponsored user training. | 中 | SU015 |
| CU010 | The archived G2 page included negative comments about Helios exposure risk, higher cost, complex setup, frequent release cadence, and missing backup-policy features. | 低 | SU016 |
| CU011 | Bethany Children’s Health Center uses Cohesity to keep immutable backups on-premises and in FortKnox for pediatric healthcare workloads. | 中 | SU001 |
| CU012 | Bethany said Cohesity can cut compliance-reporting work to minutes instead of hours or days and enables almost instant mailbox, email, and Teams-document restores. | 中 | SU001 |
| CU013 | The City of Detroit uses Cohesity for immutable backups, AI-based threat detection, and protection of municipal on-premises, Microsoft 365, and Google workloads. | 中 | SU002 |
| CU014 | Detroit said Cohesity cut management time by about 40 percent and saves around 50,000 dollars annually on lower-tier storage support. | 中 | SU002 |
| CU015 | Maryland DoIT said it protects about 700 TB of NAS data for roughly 40 state-agency customers using Cohesity on Cisco UCS plus a Cohesity-managed cyber vault. | 中 | SU003 |
| CU016 | Maryland DoIT said 70 percent of 40 NAS instances are fully backed up in under 10 minutes and file-restore time fell from 30 minutes to less than one minute. | 中 | SU003 |
| CU017 | Maryland DoIT cited GovRAMP authorization, Cisco UCS alignment, weekly recovery tests, and FortKnox-based 3-2-1 architecture as reasons the deployment fit state workloads. | 中 | SU003 |
| CU018 | Japanese Red Cross Musashino Hospital protects more than 100 TB of patient and operational data across 27 departmental systems running on more than 80 servers with Cohesity on HPE ProLiant. | 中 | SU005 |
| CU019 | Musashino Hospital said a business-continuity drill recovered access to 500 GB of data in 20 seconds, completed the full process in 15 minutes, and reduced backup-capacity needs by up to 70 percent. | 中 | SU005 |
| CU020 | Reiknistofa bankanna, the operator of Iceland’s real-time payment infrastructure, has used Cohesity since 2018 to modernize data protection for national banking workflows. | 中 | SU006 |
| CU021 | RB said Cohesity made database backup and recovery up to 50 percent faster and cut restore time for a 30-40 TB Oracle database from days to under eight hours while supporting automated weekly restore tests. | 中 | SU006 |
| CU022 | RB tied the deployment to DORA and PCI DSS compliance and said Cohesity and Nutanix provided ongoing specialist support for expansion and issue resolution. | 中 | SU006 |
| CU023 | Nasdaq uses Cohesity to protect 6,000 Microsoft 365 mailboxes, 45 TB of OneDrive and Teams data, and about 100 remaining on-premises Exchange mailboxes. | 中 | SU022 |
| CU024 | Nasdaq said Cohesity cut lost-email restore time from roughly four days to about five minutes, implemented in one month, and automatically aligned backups with country-specific data-sovereignty rules. | 中 | SU022 |
| CU025 | Conagra uses Cohesity across both corporate IT and plant operations to reduce unplanned downtime and protect supply-chain continuity, but the public proof is largely qualitative. | 中 | SU023 |
| CU026 | Schwarz IT’s public story shows Cohesity being used for complex European retail and shared-IT environments with emphasis on immutable, offsite backups and rigorous recovery testing, but with little quantified outcome detail. | 中 | SU004 |
| CU027 | Current named customer proof spans healthcare, public sector, financial infrastructure, capital markets, food manufacturing, and European retail IT rather than a single narrow buyer niche. | 中 | SU001, SU002, SU003, SU004, SU005, SU006, SU022, SU023 |
| CU028 | The strongest public proofs are mission-critical operational workflows such as EMR continuity, municipal services, state-agency file recovery, national payment rails, and regulated Microsoft 365 backups, which is stronger evidence than logo walls alone. | 中 | SU001, SU002, SU003, SU005, SU006, SU022, SU014, SU015 |
| CU029 | Land-and-expand is visible in the public record because customer stories often start with core backup and then extend into FortKnox vaulting, Microsoft 365, Google workloads, Gaia, Nutanix or Kubernetes, or cloud archiving. | 中 | SU001, SU002, SU003, SU005, SU006, SU022 |
| CU030 | Partner and channel expansion is visible through awards and joint go-to-market programs spanning AWS, Microsoft, Google, SHI, WWT, Presidio, and Cisco. | 中 | SU008 |
| CU031 | AWS and Cohesity publicly cited Delta Air Lines and Pearl River Community College as mutual customers while positioning Cohesity for AI-ready backup data, 1,000-plus data sources, and cyber-vaulting across 36 AWS regions. | 中 | SU012 |
| CU032 | The AWS Marketplace listing says Cohesity Cloud Services for Government has FedRAMP Moderate authorization and is sold through private-offer procurement routes for government buyers. | 中 | SU013 |
| CU033 | DISA and JITC materials show Cohesity obtained DoDIN APL approval and joint interoperability certification for federal use, which is stronger public-sector proof than a generic government landing page. | 高 | SU018, SU019 |
| CU034 | The post-merger roadmap explicitly says all products will be supported for many years, customers can migrate on their own schedule, no workloads will be left behind, and no customer will be forced off a preferred platform. | 高 | SU009, SU010, SU011, SU025 |
| CU035 | The same roadmap still describes migration tooling as something the combined company will build and streamline, so public proof of broad completed migration execution is still weaker than the support promise. | 中 | SU009, SU011 |
| CU036 | Post-close materials say most customers would initially keep the same sales, support, and services teams while the combined company adds follow-the-sun support coverage. | 中 | SU010, SU011 |
| CU037 | Broad customer-count claims after December 2024 reflect the Veritas combination and should be kept separate from named current-deployment proof in underwriting. | 中 | SU025 |
| CU038 | Public materials reviewed for this chapter do not disclose current combined-entity NRR, GRR, logo churn, or customer concentration by revenue. | 中 | SU009, SU010, SU011, SU025 |
| CU039 | Public review platforms still surface real friction around training, reporting, restore speed from cloud, setup complexity, Helios governance, and support responsiveness. | 中 | SU015, SU016, SU017 |
| CU040 | Independent evidence is thinnest on renewal durability and migration conversion for inherited NetBackup and Alta customers, because the public record is heavier on assurances than on completed cohort data. | 中 | SU009, SU010, SU011, SU025 |
| CU041 | Google Cloud partnership materials show Cohesity extending customer deployments into data-boundary, sovereign-vaulting, Google Workspace, BigQuery, Vertex AI, and Gemini-linked workflows. | 中 | SU020, SU021 |
| CU042 | Even before the Veritas merger, Cohesity said nearly 25 percent of the Fortune 500, three of the top ten U.S. banks, and three of the top five U.S. health insurers already did business with the company. | 中 | SU024 |
| CU043 | The 2026 Gartner-recognition press release cited customer-review titles from media, education, hardware, and healthcare, suggesting that positive peer-review signal is not limited to one vertical. | 中 | SU007 |
| CU044 | The public customer-count trajectory from about 2,600 customers in 2021 to more than 12,000 at 2024 close reflects both organic growth and M&A aggregation, so logo count alone overstates same-platform adoption depth. | 中 | SU024, SU025 |
| CR001 | Veritas PartnerNet said it would be unavailable while systems transition work was underway, indicating that inherited ecosystem operations were still moving after the close. | 中 | SR001 |
| CR002 | Cohesity launched the Aspire program to consolidate legacy Cohesity and Veritas partner motions around an integrated roadmap and streamlined go-to-market model. | 中 | SR002 |
| CR003 | Cohesity used Veritas technology to launch RecoveryAgent within months of the combination, showing that cross-portfolio product work has started quickly. | 中 | SR003 |
| CR004 | Independent post-close commentary said Veritas customers’ biggest concerns under new ownership centered on pricing, support, and product direction. | 中 | SR004 |
| CR005 | Independent post-close commentary said Cohesity had not publicly announced a formal first-100-days re-onboarding program for every inherited customer. | 中 | SR004 |
| CR006 | The central mitigation message to inherited customers is continuity, with leadership repeatedly framing the integration as “No customer left behind.” | 中 | SR004 |
| CR007 | Public roadmap messaging implies eventual convergence of NetBackup into Cohesity’s platform, but it still describes a destination state rather than a completed unified stack. | 中 | SR003 |
| CR008 | TrustRadius reviews include asks for clearer license-usage dashboards, clearer error messages, and better separation of live versus archive mailbox backup workflows. | 中 | SR006 |
| CR009 | TrustRadius reviews also note that O365 data handling and ease-of-use still have room to improve despite positive recovery outcomes. | 中 | SR006 |
| CR010 | PeerSpot summarizes recurring improvement asks around reporting, restoration speed, legacy compatibility, documentation, release-timeline communication, and technical-support responsiveness. | 中 | SR007 |
| CR011 | PeerSpot includes a direct complaint that cloud recovery can take too long, which matters in a cyber-recovery narrative built around speed. | 中 | SR007 |
| CR012 | PeerSpot says Cohesity pricing is typically capacity-based or hardware-bundled and can be experienced as average to relatively expensive. | 中 | SR007 |
| CR013 | SEC cyber rules require public companies to disclose material cyber incidents on Item 1.05 Form 8-K generally within four business days and to describe cyber governance in annual reports. | 高 | SR008, SR009 |
| CR014 | Any renewed IPO path would add public-company cyber-governance, board-oversight, and incident-disclosure obligations on top of Cohesity’s current private-company operating burden. | 中 | SR008, SR009, SR021 |
| CR015 | DORA treats ICT as operationally critical for financial entities and makes digital operational resilience a formal management requirement rather than an optional product add-on. | 中 | SR012 |
| CR016 | NIS2 creates a unified legal cybersecurity framework across 18 critical sectors with risk-management, reporting, supervision, and supply-chain-security expectations. | 高 | SR013, SR014 |
| CR017 | CISA says technology providers should take executive-level ownership of secure-by-design outcomes and ship core controls such as MFA, logging, and SSO without charging extra for them. | 中 | SR010 |
| CR018 | CISA’s updated cross-sector cybersecurity performance goals add explicit attention to managed service provider risk, least privilege, and incident communication procedures. | 中 | SR026 |
| CR019 | OMB M-22-09 required federal agencies to meet specific zero-trust cybersecurity standards and objectives by the end of FY2024. | 中 | SR023 |
| CR020 | CISA’s Zero Trust Maturity Model aligns to OMB M-22-09 and gives agencies a five-pillar roadmap for evaluating zero-trust maturity. | 中 | SR024 |
| CR021 | DOJ’s Georgia Tech settlement shows that alleged failure to meet cybersecurity requirements on DoD contracts can trigger False Claims Act exposure and a monetary settlement. | 中 | SR025 |
| CR022 | DOJ said the Georgia Tech allegations included missing anti-malware controls, no effective system security plan, and false cybersecurity assessment scoring under NIST SP 800-171 and the now-finalized CMMC context. | 中 | SR025 |
| CR023 | FTC guidance says the Safeguards Rule was tightened in 2021, added breach-notification duties effective May 2024, and requires firms to monitor service providers that handle protected customer information. | 中 | SR028 |
| CR024 | GAO said federal agencies reported 30,659 information-security incidents in FY2022 and still had 567 unimplemented cybersecurity recommendations as of May 2024, including supply-chain-risk items. | 中 | SR027 |
| CR025 | NIST presents CSF 2.0 as a current framework for industry and government to reduce cyber risk and now emphasizes governance and evidence-ready mappings. | 中 | SR011 |
| CR026 | Dell’s competitive critique says Cohesity’s scale-out design increases server, SSD, power, and infrastructure cost relative to Dell PowerProtect. | 中 | SR015 |
| CR027 | Commvault is directly targeting switchers by telling buyers not to feel pressured into Cohesity to solve post-Veritas gaps and by advertising migration services. | 中 | SR016 |
| CR028 | Commvault says it ranked highest in five of six 2025 Gartner critical-capability use cases and was the only vendor scoring 4.0 or higher across all six use cases. | 中 | SR019 |
| CR029 | Rubrik says it is a 2025 Gartner leader positioned furthest in vision and that it protects more than 6,000 organizations worldwide. | 中 | SR018 |
| CR030 | Druva says 2026 G2 comparison data gives it higher marks than Cohesity on meets requirements, ease of use, ease of setup, and quality of support while portraying Cohesity as more complex. | 中 | SR017 |
| CR031 | Veeam expects tighter resilience standards, more backup-testing obligations, and rising enforcement pressure around DORA and NIS2. | 中 | SR020 |
| CR032 | AWS says Cohesity DataHawk runs on AWS and depends on AWS services such as S3 Object Lock, KMS, and IAM to deliver vaulting and integrity controls. | 中 | SR022 |
| CR033 | AWS’s state DOT example says the buyer was approaching a costly licensing renewal and deployed Cohesity on AWS to protect more than 1 PB of data and about 8,000 Microsoft 365 users. | 中 | SR022 |
| CR034 | Cohesity’s investor-relations page prominently markets the Veritas combination as a new “#1 in AI-powered data security” rather than offering public-company-style disclosures. | 中 | SR029 |
| CR035 | Cohesity’s investor-relations page states that internal data shown there has not been independently verified. | 中 | SR029 |
| CR036 | Dataconomy reports that Cohesity is considering a 2026 IPO only after it can show a full financial year of combined-company results, with the fall of 2026 framed as the earliest practical window. | 中 | SR021 |
| CR037 | Dataconomy reports that management is benchmarking a possible IPO valuation against Rubrik’s public valuation while arguing that larger post-merger scale should support a comparable or higher multiple. | 中 | SR021 |
| CR038 | Public post-merger financing commentary frames the combination as a risky pairing of a fast-growing but historically unprofitable Cohesity with a larger profitable asset base. | 中 | SR021 |
| CR039 | Public IPO timing commentary ties 2026 optionality to continued performance and disclosure readiness rather than to a fixed calendar promise. | 中 | SR021 |
| CR040 | The Veritas partner transition notice and the launch of a unified Aspire program together suggest that post-close integration is as much an operating-process migration as a product migration. | 中 | SR001, SR002 |
| CR041 | Public sources reviewed here still do not disclose merged-entity migration conversion, churn, or renewal rates for inherited NetBackup and Alta customers. | 中 | SR004, SR021, SR029 |
| CR042 | Public sources reviewed here still do not disclose a post-merger cap-table breakdown, debt or refinancing profile, or ownership percentages. | 中 | SR021, SR029 |
| CR043 | Integration-support migration and regulated-sector compliance appear to be the highest residual risks because public mitigation evidence is mostly messaging, frameworks, and architecture rather than disclosed conversion or audit outcomes. | 中 | SR004, SR007, SR025, SR026 |
| CR044 | The most practical kill criteria are a material public security incident, sustained review deterioration around support or restores, delayed disclosure readiness, or visible federal or sovereign compliance slippage. | 中 | SR008, SR025, SR027 |
| CR045 | The strongest public mitigations are customer-continuity messaging, secure-by-design and zero-trust alignment, and AWS-backed vaulting architecture, but none fully substitute for disclosed renewal and conversion data. | 中 | SR004, SR010, SR022, SR024 |
| CR046 | Cohesity’s official community is a private space that requires MyCohesity sign-in, which limits public visibility into issue volume or resolution patterns. | 中 | SR005 |
| CR047 | Commvault’s 2024 annual report showed $723.5 million of revenue and 2,671 headcount, underscoring that public competitors have meaningful scale to fund pricing and product competition. | 中 | SR030 |
| CV001 | A March 2021 employee-liquidity tender valued legacy standalone Cohesity at $3.7 billion. | 中 | SV007, SV016 |
| CV002 | The 2021 valuation event was tied to a $145 million non-dilutive tender offer rather than a priced primary financing round. | 中 | SV007, SV016 |
| CV003 | Cohesity’s fiscal 2021 annualized revenue run rate surpassed $300 million. | 高 | SV008, SV016 |
| CV004 | Cohesity said fiscal 2021 annual recurring revenue grew more than 70% year over year. | 高 | SV008, SV016 |
| CV005 | Cohesity said fiscal 2021 net expansion exceeded 130%. | 高 | SV008, SV016 |
| CV006 | Cohesity said customer count reached approximately 2,600 by July 31, 2021. | 中 | SV008 |
| CV007 | The February 2024 combination announcement said the combined entity had over $1.6 billion of pro forma revenue for the fiscal year ending July 2023. | 高 | SV003, SV004 |
| CV008 | The February 2024 combination announcement said the combined entity had $1.3 billion of annual recurring revenue. | 高 | SV003, SV004 |
| CV009 | The February 2024 combination announcement said the combined entity had a 27% adjusted cash EBITDA margin. | 高 | SV003, SV004 |
| CV010 | The February 2024 combination announcement valued the combined company at approximately $7 billion. | 高 | SV003, SV004 |
| CV011 | Cohesity disclosed that it would finance the Veritas combination with a mix of equity and debt. | 高 | SV003, SV004 |
| CV012 | JPMorgan Chase Bank provided committed financing for the Veritas combination. | 高 | SV003, SV004 |
| CV013 | Haveli Investments was named as a significant investor in the transaction financing package. | 高 | SV003, SV004 |
| CV014 | TechCrunch reported that Cohesity had valued Veritas’ data protection business at $3 billion when the deal was announced. | 中 | SV009, SV010 |
| CV015 | The December 2024 closing releases valued the combined company at over $7 billion. | 高 | SV001, SV002 |
| CV016 | The December 2024 closing releases disclosed over $1.7 billion of pro forma revenue for the fiscal year ending July 2024. | 高 | SV001, SV002 |
| CV017 | The December 2024 closing releases disclosed $1.5 billion of annual recurring revenue. | 高 | SV001, SV002 |
| CV018 | The December 2024 closing releases disclosed a 28% adjusted cash EBITDA margin. | 高 | SV001, SV002 |
| CV019 | The December 2024 closing releases said the combined company served over 12,000 customers including over 85 of the Fortune 100 and nearly 70% of the Global 500. | 高 | SV001, SV002 |
| CV020 | Management said Cohesity delayed its IPO so it could close the Veritas transaction, demonstrate integration success, and approach the public market as the category leader. | 中 | SV009, SV011 |
| CV021 | CNBC and Dataconomy reported that management was targeting a 2026 IPO only after a full year of combined-company results. | 中 | SV012, SV013 |
| CV022 | Dataconomy summarized management’s aspiration for a valuation comparable to Rubrik’s roughly $17 billion public market value and noted Commvault traded at a materially lower sales multiple. | 中 | SV013 |
| CV023 | Dataconomy cited Barclays commentary that macroeconomic volatility had weighed on exits, reinforcing IPO-window risk. | 中 | SV013 |
| CV024 | Yahoo Finance’s Forge-derived private-company page estimated Cohesity at $4.69 billion as of May 18, 2026 and explicitly warned that the figure was a derived informational model rather than a quotation. | 中 | SV031 |
| CV025 | Rubrik’s S-1 said fiscal 2024 revenue was $627.9 million. | 高 | SV018, SV020 |
| CV026 | Rubrik’s S-1 said Subscription ARR was $784.0 million as of January 31, 2024. | 中 | SV018 |
| CV027 | Rubrik’s S-1 said fiscal 2024 free cash flow was negative $24.5 million. | 中 | SV018 |
| CV028 | Rubrik’s fiscal 2026 results said total revenue reached $1.32 billion, up 48% year over year. | 高 | SV019, SV020, SV032 |
| CV029 | Rubrik’s fiscal 2026 results said Subscription ARR reached about $1.46 billion as of January 31, 2026. | 高 | SV019, SV020 |
| CV030 | Rubrik’s fiscal 2026 results said GAAP gross margin was 80.1%. | 高 | SV019, SV020 |
| CV031 | Rubrik’s fiscal 2026 results said free cash flow was $237.8 million. | 高 | SV019, SV020 |
| CV032 | Rubrik reported $1.68 billion of cash, cash equivalents, and short-term investments as of January 31, 2026. | 高 | SV019, SV020 |
| CV033 | May 18, 2026 market-data sources put Rubrik around $12.8-$13.4 billion of market cap and about $12.3-$12.9 billion of enterprise value. | 中 | SV026, SV027, SV029 |
| CV034 | May 18, 2026 market-data sources put Rubrik at roughly 9.3x-9.8x enterprise value to trailing revenue. | 中 | SV026, SV029 |
| CV035 | Rubrik’s May 2026 enterprise value and fiscal 2026 Subscription ARR imply roughly 8.4x-8.8x EV to ARR. | 中 | SV019, SV020, SV026, SV029 |
| CV036 | Commvault’s fiscal 2026 results said total revenue reached $1,184 million, up 19% year over year. | 高 | SV022, SV024, SV033, SV034 |
| CV037 | Commvault’s fiscal 2026 results said total ARR reached $1,122 million, up 21% year over year. | 高 | SV022, SV024 |
| CV038 | Commvault’s fiscal 2026 results said GAAP gross margin was 81.2%. | 高 | SV022, SV024 |
| CV039 | Commvault’s fiscal 2026 results said free cash flow was about $237 million. | 高 | SV022, SV024 |
| CV040 | May 18, 2026 market-data sources put Commvault around $4.29-$4.37 billion of market cap and about $4.30 billion of enterprise value. | 中 | SV028, SV030 |
| CV041 | May 18, 2026 market-data sources put Commvault at about 3.6x enterprise value to trailing revenue. | 中 | SV030 |
| CV042 | Commvault’s May 2026 enterprise value and fiscal 2026 ARR imply roughly 3.8x EV to ARR. | 中 | SV022, SV024, SV030 |
| CV043 | The official over-$7 billion close value against over-$1.7 billion of revenue implies at least about 4.1x revenue. | 高 | SV001, SV002 |
| CV044 | The official over-$7 billion close value against $1.5 billion of ARR implies at least about 4.7x ARR. | 高 | SV001, SV002 |
| CV045 | Rubrik’s current EV-to-revenue multiple is more than double Cohesity’s official close multiple. | 中 | SV001, SV002, SV026, SV029 |
| CV046 | Commvault’s current EV-to-revenue multiple sits slightly below Cohesity’s official close multiple. | 中 | SV001, SV002, SV030 |
| CV047 | A Rubrik-like $17 billion value on Cohesity’s disclosed over-$1.7 billion revenue would imply roughly 10x revenue. | 中 | SV001, SV002, SV013 |
| CV048 | A Rubrik-like $17 billion value on Cohesity’s disclosed $1.5 billion ARR would imply roughly 11.3x ARR. | 中 | SV001, SV002, SV013 |
| CV049 | Cohesity’s official close valuation therefore sits between mature-public Commvault and premium-growth Rubrik on disclosed revenue and ARR multiples. | 中 | SV001, SV002, SV026, SV029, SV030 |
| CV050 | The combined Cohesity-Veritas business is larger than Rubrik and Commvault on disclosed revenue, and is slightly larger than Rubrik on disclosed ARR. | 中 | SV001, SV002, SV019, SV020, SV022, SV024 |
| CV051 | A defensible base-case underwriting range is roughly $7-$9 billion for the combined company, or about 4.1x-5.3x revenue and 4.7x-6.0x ARR. | 中 | SV001, SV002, SV029, SV030 |
| CV052 | A bull case around $10-$13 billion requires proof that mid-teens growth, 28% margin, manageable leverage, and public-grade disclosure can coexist after integration. | 中 | SV001, SV002, SV013, SV029, SV030 |
| CV053 | A bear case around $4.5-$6 billion is plausible if integration slows growth toward Commvault-like multiples or if debt and preference overhang absorb equity value. | 中 | SV011, SV013, SV030, SV031 |
| CV054 | The May 2026 Yahoo/Forge-derived $4.69 billion estimate materially undercuts the official over-$7 billion transaction value. | 低 | SV001, SV031 |
| CV055 | Public evidence does not reveal the actual debt amount, debt pricing, or covenant package behind the Veritas combination. | 低 | |
| CV056 | Public evidence does not reveal the liquidation preferences, rollover economics, or dilution waterfall that would govern a future IPO or secondary sale. | 低 | |
| CV057 | Because debt, preference, and cohort-mix transparency remain weak, the correct stance is track or research-more rather than paying a Rubrik-like premium multiple today. | 中 | SV001, SV002, SV029, SV030, SV031 |
| CV058 | Entry discipline should require either a post-debt look-through valuation at or below roughly 5x revenue or 6x ARR, or a future IPO price at a clear discount to Rubrik’s public multiple. | 中 | SV001, SV002, SV029, SV030 |
| CV059 | The key thesis-break triggers are hidden debt or preference terms, evidence of weak Veritas-to-Cohesity retention or migration, or a premium IPO filing that targets Rubrik-like multiples without public-grade cohort disclosure. | 中 | SV011, SV013, SV031 |
| CV060 | Confidence in any valuation above the official close anchor should remain medium-low until the company discloses native-versus-inherited ARR mix, leverage, and post-merger retention by cohort. | 中 | SV003, SV011, SV013, SV031 |
| 编号 | 出版方 | 标题 | 引文 |
|---|---|---|---|
| SO001 | Cohesity | Cohesity homepage | |
| SO002 | Cohesity | Cohesity company page | |
| SO003 | Cohesity | Leadership | Executive Team, Board of Directors and Advisors | |
| SO004 | Cohesity | Cohesity customers page | |
| SO005 | Cohesity | Cohesity investor relations page | |
| SO006 | Cohesity | Cohesity announces a $3.7 billion valuation | Cohesity today announced a new company valuation of $3.7 billion, which is $1.2 billion higher than its valuation less than 12 months ago. |
| SO007 | Cohesity | Cohesity and Veritas data protection business to combine | |
| SO008 | Cohesity | Cohesity becomes world’s largest data protection provider after completing combination with Veritas | On a pro forma adjusted basis for the fiscal year ending July 2024, the combined entity had revenue of over $1.7 billion, annual recurring revenue (ARR) of $1.5 billion, and a 28 percent adjusted cash EBITDA margin. |
| SO009 | Cohesity | Cohesity launches Enterprise AI Resilience strategy to power and protect AI initiatives | Cohesity today unveiled its Enterprise AI Resilience strategy. This unified approach enables organizations to confidently adopt and scale AI by strengthening cyber resilience across the AI ecosystem. |
| SO010 | Cohesity | Cohesity strengthens data protection and security to advance enterprise AI resilience | |
| SO011 | Cohesity | Cohesity wins a 2026 Google Cloud Partner Award | |
| SO012 | Cohesity | Nasdaq customer story | |
| SO013 | Cohesity | Conagra customer story | |
| SO014 | Veritas | Cohesity and Veritas data protection to combine | |
| SO015 | Veritas | Cohesity becomes world’s largest data protection software provider after completing combination with Veritas enterprise data protection business | |
| SO016 | Veritas | Veritas to combine forces with Cohesity announcement page | |
| SO017 | FinTech Global | Data protection leader Cohesity secures $7bn valuation following Veritas merger | |
| SO018 | TechCrunch | Cohesity completes its merger with Veritas; here's how they'll integrate | While Poonen states this move is entirely focused on Cohesity’s customers and improving the experience for them, market consolidation can result in higher prices. |
| SO019 | Business Wire | Cohesity launches Enterprise AI Resilience strategy to power and protect AI initiatives | |
| SO020 | CRN | Cohesity CEO: Veritas acquisition will combine innovation, scale to build global data security business | |
| SO021 | Security MEA | Cohesity named Google Cloud Partner of the Year | |
| SO022 | StorageNewsletter | Cohesity launches Enterprise AI Resilience strategy to power and protect AI initiatives | |
| SO023 | Channel Post MEA | Cohesity boosts data protection to support enterprise AI resilience | |
| SO024 | PE Insights | SoftBank-backed Cohesity confidentially files for $3.7bn IPO | The company was the second-ever investment for the $100 billion SoftBank Vision Fund. |
| SO025 | Craft | Cohesity CEO and key executive team - Craft.co | |
| SM001 | Cohesity | Cohesity recognized as a Leader in 2024 Gartner Magic Quadrant for Enterprise Backup and Recovery Software Solutions | Organizations face growing data volumes across diverse locations and vendors, leading to heightened data management complexity and security risks. |
| SM002 | Cohesity | Ransomware data recovery | Immutable backup snapshots and DataLock capability (WORM) help protect backup data from being modified or deleted. |
| SM003 | Cohesity | Strengthen your cyber resilience | Cohesity helps organizations like yours evolve their strategy, with the Cohesity 5 Steps of Cyber Resilience. |
| SM004 | Cohesity | Government | Cohesity solutions are used by hundreds of federal agencies that require a simple, efficient, and secure way to protect and manage data while improving cyber resilience. |
| SM005 | Cohesity | 5 Keys to Cyber Resilience in Government | According to 2022 data from the Center for Digital Government, 72% of states planned to upgrade their backup and recovery technology in 12 to 18 months. |
| SM006 | Cohesity | Global Cyber Resilience Report | Cohesity commissioned Vanson Bourne to survey 3,200 IT and Security decision-makers in September 2025. |
| SM007 | IDC | IDC MarketScape: Worldwide Cyber-Recovery 2025 Vendor Assessment (excerpt featuring Cohesity) | Recovering from cyberattacks call for more than what traditional DR offers. This is where cyber-recovery comes in. |
| SM008 | Cohesity | Cohesity earns AWS Government Competency | This makes it easier for federal, state, local governments, and education agencies to work with Cohesity to strengthen their cyber resilience. |
| SM009 | Cohesity | Nation-state threat actors, ransomware gangs, and cyber resilience | As the lines between nation-state bad actors and ransomware gangs continue to blur, one thing becomes clear—cyberattacks will continue. |
| SM010 | Veritas | Cohesity and Veritas Data Protection to Combine | Together, the companies will target a total addressable market (TAM) of over $30 billion. |
| SM011 | Veritas | Protecting the World’s Data | Cohesity and Veritas | Our customers will now benefit from the broadest workload support and largest partner ecosystem. |
| SM012 | Veritas | Cohesity becomes world’s largest data protection software provider after completing combination with Veritas enterprise data protection business | Cohesity will target a total addressable market (TAM) of $40+ billion, which includes IDC’s data replication and protection software market. |
| SM013 | Securities and Exchange Commission / Rubrik | Rubrik S-1 | We believe our total addressable market opportunity for our platform will be approximately $36.3 billion by the end of calendar year 2024 and approximately $52.9 billion by the end of calendar year 2027. |
| SM014 | Securities and Exchange Commission / Commvault | Commvault annual report 2024 | Commvault is leading the charge to protect the world against ransomware and other cyber threats by helping companies reduce risk, minimize downtime, and control costs. |
| SM015 | CISA | #StopRansomware Guide | This document is a one-stop resource to help organizations reduce the risk of ransomware incidents through best practices to detect, prevent, respond, and recover. |
| SM016 | CISA | Stop Ransomware | Maintain offline, encrypted backups of data and regularly test your backups. |
| SM017 | CISA | Critical Infrastructure Security and Resilience | There are 16 critical infrastructure sectors that are part of a complex, interconnected ecosystem. |
| SM018 | U.S. Government Accountability Office | Critical Infrastructure Protection: Agencies Need to Enhance Oversight of Ransomware Practices and Assess Federal Support | The FBI reported that 870 critical infrastructure organizations were victims of ransomware in 2022, affecting 14 of the 16 critical infrastructure sectors. |
| SM019 | Business Wire | Cohesity has been recognized for the seventh time as a Gartner Peer Insights Customers’ Choice for Enterprise Backup and Recovery Software Solution | The ratings are based on direct feedback from customers worldwide, spanning various industries and company sizes. |
| SM020 | Blocks & Files | IDC: Veeam has the largest share of the data protection market – and growing fastest | An initial observation is that the market is highly fragmented. |
| SM021 | StorageNewsletter | State of DR and Cyber-Recovery, 2024–2025 | CR builds upon B/R and DR technology and processes with additional requirements for malware detection, forensic analysis, cleanroom recovery, and more. |
| SM022 | 11:11 Systems | 11:11 Systems named Cohesity FY2025 MSP Strategic Partner of the Year | Together, we’ve focused on delivering fully managed onsite backup services, fully managed and monitored offsite replication, and on-demand recovery. |
| SM023 | IDC | Worldwide Data Protection Software Market Shares, 2024: Market Boosted by AI and Infrastructure Optimization | The data protection software market grows regardless of economic conditions. |
| SM024 | IDC | IDC MarketScape: Worldwide Cyber-Recovery 2025 Vendor Assessment | No single cyber-recovery vendor offers the perfect solution for every organization’s cyber-resilience needs. |
| SM025 | IDC | IDC MarketScape: Worldwide SaaS Data Protection 2025–2026 Vendor Assessment | IT buyers need breadth of SaaS application coverage and the depth of capabilities to make it more valuable than what native tools can do. |
| SP001 | Securities and Exchange Commission | rbrk-20260131 | |
| SP002 | Rubrik | Ransomware Recovery | |
| SP003 | Rubrik | Microsoft | |
| SP004 | Rubrik | Partners | |
| SP005 | Securities and Exchange Commission | cvlt-20260331 | |
| SP006 | Commvault | Pricing & Packaging | Commvault | |
| SP007 | Commvault | Partners | Commvault | |
| SP008 | NetApp | NetApp and Commvault Advance Cyber Resilience with Strategic Alliance | |
| SP009 | Veeam Software Official Blog | Veeam Data Platform v13.1 Announcements from VeeamON 2026 | |
| SP010 | Veeam | Become a Veeam Partner | Cloud Service Provider Program | |
| SP011 | Druva | Data Security Cloud | Fully Managed SaaS Platform | Druva | |
| SP012 | Druva | Ransomware Protection, Detection, & Recovery SaaS Tools | |
| SP013 | Druva | Technology Alliance Program | |
| SP014 | Druva | Druva Pricing Plans | |
| SP015 | Amazon Web Services | Backup As A Service - AWS Backup - AWS | |
| SP016 | Amazon Web Services | AWS Backup Pricing | |
| SP017 | Microsoft Azure | Azure Backup | Microsoft Azure | |
| SP018 | Microsoft Azure | Pricing – Azure Backup | Microsoft Azure | |
| SP019 | IBM | Storage Protect - IBM | |
| SP020 | IBM | IBM Storage Defender | |
| SP021 | Dell Technologies | PowerProtect Cyber Recovery Solutions | Dell USA | |
| SP022 | Veritas | Veritas Alta™ Data Protection | |
| SP023 | blocksandfiles | Competitive Corner breaks down key shifts in 2025 Gartner backup MQ | |
| SP024 | Virtualization Review | Rubrik, Veeam Lead in Changing Backup & Data Protection Market -- Virtualization Review | |
| SP025 | PeerSpot | Compare Cohesity DataProtect vs Rubrik | |
| SP026 | Competitive Corner | Breaking down the 2025 Gartner MQ for Enterprise Backup | |
| SP027 | Securities and Exchange Commission | rbrk-20260312 | |
| SP028 | Securities and Exchange Commission | cvlt-20260428 | |
| SI001 | Cohesity | Cohesity Fiscal 2021 Results Shatter Previous Performance Records As Customers Embrace Next-Gen Data Management With Built-in Ransomware Data Protection | |
| SI002 | Cohesity | Cohesity and Veritas Data Protection Business to Combine, Forming a New Leader in AI-Powered Data Security and Management | |
| SI003 | Cohesity | Cohesity Becomes World's Largest Data Protection Software Provider After Completing Combination with Veritas Enterprise Data Protection Business | On a pro forma adjusted basis for the fiscal year ending July 2024, the combined entity had revenue of over $1.7 billion, annual recurring revenue (ARR) of $1.5 billion, and a 28 percent adjusted cash EBITDA margin. |
| SI004 | Veritas | Cohesity and Veritas Data Protection to Combine | |
| SI005 | Veritas | Cohesity Becomes World's Largest Data Protection Software Provider After Completing Combination with Veritas Enterprise Data Protection Business | |
| SI006 | Business Wire | Cohesity Announces a $3.7 Billion Valuation -- $1.2 Billion More Than Its Valuation Less Than 12 Months Ago | The valuation was established in line with a $145 million tender offer made by investors to Cohesity employees who want the option to sell a small portion of their equity for liquidity. |
| SI007 | Business Wire | Cohesity and Veritas Data Protection Business to Combine, Forming a New Leader in AI-Powered Data Security and Management | |
| SI008 | Business Wire | Cohesity Becomes World's Largest Data Protection Software Provider After Completing Combination with Veritas Enterprise Data Protection Business | |
| SI009 | Rubrik | Rubrik - Financials - Quarterly Results | |
| SI010 | Rubrik | Rubrik Reports Fourth Quarter and Fiscal Year 2025 Financial Results | |
| SI011 | Rubrik | Rubrik Reports Fourth Quarter and Fiscal Year 2026 Financial Results | |
| SI012 | Securities and Exchange Commission | S-1 | |
| SI013 | Commvault | SEC Filings | Commvault | |
| SI014 | Commvault | Commvault Announces Fourth Quarter Fiscal 2026 Financial Results | |
| SI015 | Securities and Exchange Commission | Commvault 2024 Annual Report | |
| SI016 | CRN | Cohesity To Acquire Veritas Unit, Forming $7B Data Security And Management Giant | |
| SI017 | CRN | Cohesity CEO On Veritas Acquisition Update, Delayed IPO And Latest Funding Round | |
| SI018 | Blocks & Files | Cohesity talks up post-Veritas merger strategy | Cohesity is hoping to achieve more growth in ARR in the second half, “with management targeting a Rule of 40 score in the mid-30s.” |
| SI019 | StorageNewsletter | Cohesity IPO not So Far | |
| SI020 | StorageNewsletter | Company Profile: Cohesity | |
| SI021 | CNBC | Nvidia-backed Cohesity eyes 2026 IPO with valuation rivaling $17 billion Rubrik | Analysts cautioned that stock market volatility caused by macroeconomic factors is likely to throw up hurdles. |
| SI022 | Yahoo Finance | Cohesity (COHS.PVT) Valuation, History & News - Yahoo Finance | |
| SI023 | Yahoo Finance | Rubrik, Inc. (RBRK) Valuation Measures & Financial Statistics | |
| SI024 | TechCrunch | Cohesity completes its merger with Veritas; here's how they'll integrate | |
| SI025 | StorageNewsletter | Cohesity World's Largest Data Protection Software Provider | |
| SI026 | Rubrik | Rubrik Reports Third Quarter Fiscal Year 2026 Financial Results | |
| SE001 | Cohesity | Data protection software: Cohesity DataProtect | Single management platform |
| SE002 | Cohesity | FortKnox Cyber Vaulting: Immutable Air-Gapped Backup for Clean, Fast Recovery | Available for both DataProtect or NetBackup as a fully managed cyber vault hosted on AWS, Azure, and GCP |
| SE003 | Cohesity | NetBackup: #1 in enterprise backup solutions | Keep, extend, or transform your NetBackup environment - on your terms. |
| SE004 | Cohesity | Cloud Backup and Recovery Solutions | Cohesity | Protect and secure data in over 24+ cloud regions around the world with Cohesity’s sovereign-by-design architecture. |
| SE005 | Cohesity | Cohesity Marketplace | Browse Cohesity apps and Integrations | Get more business insights from your Cohesity deployment with our marketplace of add-on capabilities. |
| SE006 | Cohesity | Cohesity Helios Provisioning | It may take up to two business days for the NetBackup application to show up in your Helios account. |
| SE007 | Veritas | Veritas Alta™ Data Protection | Integrated SOAR/XDR platforms to pause or resume data protection activities based on security or maintenance events. |
| SE008 | Veritas | NetBackup: #1 in enterprise backup solutions | Expand backup and recovery support for cloud-based workloads through Veritas Alta™ Data Protection. |
| SE009 | Cohesity Documentation | Product | Cohesity Documentation | NetBackup Web UI |
| SE010 | Cohesity Documentation | Technical Guides — homepage | Cohesity Documentation | |
| SE011 | Veritas | NetBackup and NetBackup Appliances Hardening Guide | Last Published: 2026-01-14 |
| SE012 | Cohesity | Build Apps For Cohesity DataPlatform | An App consists of Docker containers packaged using Cohesity AppSpec, running on Cohesity's distributed infrastructure and leveraging Cohesity App SDK. |
| SE013 | Cohesity | Cohesity · Developer Portal | Cohesity ServiceNow Integration allows you to protect & recover VMs with policy-based automation. |
| SE014 | GitHub | Cohesity · GitHub | |
| SE015 | GitHub | GitHub - cohesity/community-automation-samples: Cohesity's API samples repository! | Warning: this code is provided on a best effort basis and is not in any way officially supported or sanctioned by Cohesity. |
| SE016 | GitHub | GitHub - cohesity/terraform-provider-cohesity: Terraform Cohesity provider | Cohesity DataPlatform 6.4+ |
| SE017 | GitHub | GitHub - cohesity/cohesity-powershell-module: This repository provides a PowerShell Module for Cohesity DataPlatform. | This project provides a PowerShell Module for interacting with the Cohesity DataPlatform. |
| SE018 | Cohesity | Cohesity PowerShell Module | |
| SE019 | HashiCorp | Terraform Registry | |
| SE020 | PowerShell Gallery | Cohesity.PowerShell 1.10.3 | Install-Module -Name Cohesity.PowerShell |
| SE021 | Microsoft | Cohesity Data Cloud | |
| SE022 | Microsoft | Cohesity – Microsoft Adoption | Cohesity customers will soon enjoy greater performance and built-in geographic redundancy for their immutable Microsoft 365 backups. |
| SE023 | AWS Marketplace / PeerSpot | AWS Marketplace: Cohesity Data Cloud | Sometimes the support team does not provide proper assistance during critical issues from the cloud end. |
| SE024 | AWS Marketplace | AWS Marketplace: Cohesity Cloud Services | Your data is stored on immutable, SOC 2 Type II-compliant storage with advanced discovery capabilities for some workloads, flexible retention policies, and seamless cross-source search. |
| SE025 | Splunkbase | Cohesity Add-on For Splunk | Splunkbase | The Cohesity cluster must be at least version 6.7.x or newer. |
| SE026 | Cohesity | Alta™ Recovery Vault: Cloud-Based Data Vault for Cyber Resilience | Cohesity | Alta Recovery Vault provides secure-by-default, cloud-based data vaulting, enabling quick and confident data recovery for Alta™ Data Protection, NetBackup, and NetBackup-powered appliances. |
| SE027 | Cohesity | Conversational Search Solutions: AI-Driven Enterprise Search & Summarization | Cohesity Gaia | Activate immutable, time-series backup data directly from protected backups – including on-prem environments – without duplicating sensitive content or building complex ingestion pipelines. |
| SE028 | Cohesity | Strengthen your cyber resilience | Deploy a modern data platform that handles 1000+ sources effortlessly: VMs, SaaS, databases, NAS, cloud workloads, and AI agent infrastructure. |
| SE029 | Cohesity | Cohesity · Developer Portal | Harness the power of APIs, Build your own Apps, Increase operational efficiency, Create custom workflows |
| SE030 | Cohesity Documentation | Cohesity 7.4 — DataProtect 7.4 | Access to this product documentation requires authentication. Please sign in to continue. |
| SE031 | Cohesity Documentation | Helios Self-Managed 2.0.0 — helios 2.0.0 | Access to this product documentation requires authentication. Please sign in to continue. |
| SE032 | Cohesity Documentation | About NetBackup 11.1.0.2 — NetBackup 11.1.0.2 | Access to this product documentation requires authentication. Please sign in to continue. |
| SE033 | ServiceNow Store | Cohesity - ServiceNow Store | |
| SE034 | Microsoft | cloud solutions, AI apps, and agents | Cohesity DataPlatform Cloud Edition extends Cohesity's on-premises data protection to the Microsoft Azure Cloud. |
| SU001 | Cohesity | Caring for young patients also means ensuring data security | Cohesity has the quickest restores, is the easiest to use, and has multiple layers of security. |
| SU002 | Cohesity | City of Detroit gets proactive about data security and ransomware protection | With Cohesity we've been able to cut management time, including patching and upgrades, by about 40%. |
| SU003 | Cohesity | Maryland Department of IT safeguards critical files with Cohesity on Cisco UCS | Our experience with Cohesity is that 70% of our 40 NAS instances are fully backed up in under 10 minutes. |
| SU004 | Cohesity | Schwarz IT Builds Cyber Resilience Across Complex Environments with Cohesity | |
| SU005 | Cohesity | Hospital boosts cyber resilience with Cohesity and HPE. | During the BCP training exercise, our staff recovered access to 500 GB of data in just 20 seconds with Cohesity. |
| SU006 | Cohesity | Reiknistofa bankanna makes the national real-time payment system resilient, with Cohesity | With Cohesity, the time to restore a 30-40 TB Oracle database decreased from days to <8 hours. |
| SU007 | Cohesity | Cohesity Recognized for the Eighth Time as a Gartner Peer Insights™ Customers’ Choice for Backup and Data Protection Platforms | |
| SU008 | Cohesity | Cohesity Honors Top Partners Delivering Cyber Resilience Globally | |
| SU009 | Veritas | Combined Company Product Strategy and Roadmap | No Customer Left Behind | All products will be supported for many years. Customers can migrate when and if they want, on their own schedule. |
| SU010 | Veritas | Protecting the World’s Data | Cohesity and Veritas | As promised, we will honor our 'no customer left behind' commitment, supporting existing products from both companies for years to come. |
| SU011 | World Wide Technology | Partner POV | Cohesity + Veritas Open Letter to Customers | In most cases, you'll continue working with the same Sales, Support, and Services teams over the next few months. |
| SU012 | AWS Press Center | Cohesity Establishes Strategic Collaboration Agreement with AWS to Advance AI-Powered Cyber Resilience at Scale | This collaboration with Cohesity helps them do both by using the global infrastructure and AI technologies of AWS to help customers safeguard their critical data and power their AI and analytics initiatives. |
| SU013 | AWS Marketplace | Cohesity Gov Cloud [Private Offer Only] | Cohesity has achieved Federal Risk and Authorization Management Program (FedRAMP) Moderate Authorization for Cohesity Cloud Services for Government. |
| SU014 | Gartner Peer Insights | Cohesity Reviews, Ratings & Features 2026 | Gartner Peer Insights | |
| SU015 | Capterra | Cohesity Reviews 2024 | Capterra | My biggest complaint is, there is no Cohesity sponsored user training. Many other software businesses offer some user training. |
| SU016 | G2 | Cohesity Reviews & Product Details | Helios has its place, but proceed with caution. |
| SU017 | PeerSpot | Cohesity DataProtect Reviews, Competitors and Pricing | Cohesity DataProtect requires better reporting capabilities and improved restoration speeds. |
| SU018 | Defense Information Systems Agency | DoDIN Approved Products List approval of the Cohesity Web-Scale Data Management Platform Rel. 7.1.2_u1 | |
| SU019 | Joint Interoperability Test Command | Joint Interoperability Certification of the Cohesity Web-Scale Data Management Platform | |
| SU020 | Business Wire | Cohesity Wins a 2026 Google Cloud Partner of the Year Award | |
| SU021 | StorageNewsletter | Cohesity Wins a 2026 Google Cloud Partner of the Year Award | |
| SU022 | Cohesity | Nasdaq | Cohesity | Requests to restore lost emails are now fulfilled in minutes, down from days with the previous backup solution. |
| SU023 | Cohesity | Conagra | Cohesity | Conagra implemented Cohesity’s data security and management platform to protect critical systems across both IT and operational environments. |
| SU024 | Cohesity | Cohesity Fiscal 2021 Results Shatter Previous Performance Records As Customers Embrace Next-Gen Data Management With Built-in Ransomware Data Protection | Strong net expansion rate: Cohesity’s net expansion rate continues to exceed 130% as of July 31, 2021. |
| SU025 | Cohesity | Cohesity Becomes World’s Largest Data Protection Software Provider After Completing Combination with Veritas’ Enterprise Data Protection Business | Now the world’s largest data protection software provider by market share, Cohesity will serve over 12,000 customers. |
| SR001 | Veritas PartnerNet | PartnerNet transition notice | PartnerNet will be unavailable as we transition to our new systems. |
| SR002 | CRN Australia | Cohesity launches new unified partner program with “best of Cohesity and Veritas” programs | |
| SR003 | Six Five Media | Cohesity Chief Product Officer on the Cohesity x Veritas Innovation Roadmap - Six Five On The Road | |
| SR004 | Moor Insights & Strategy | RESEARCH NOTE: A New Era for Cohesity — What Has Changed Since Completion of the Veritas Deal | One of the biggest concerns from Veritas customers was the changes that might come with new ownership — especially around pricing, support, and product direction. |
| SR005 | Cohesity | Join the conversation | Cohesity Community | |
| SR006 | TrustRadius | Cohesity Data Cloud Reviews & Ratings 2026 | TrustRadius | Some Errors could be made a bit more clear. |
| SR007 | PeerSpot | Cohesity DataProtect Reviews, Competitors and Pricing | DataProtect's recovery time is too high. It takes a long time to recover things from the cloud. |
| SR008 | U.S. Securities and Exchange Commission | SEC Adopts Rules on Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure by Public Companies | An Item 1.05 Form 8-K will generally be due four business days after a registrant determines that a cybersecurity incident is material. |
| SR009 | U.S. Securities and Exchange Commission | Final Rule: Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure | |
| SR010 | Cybersecurity and Infrastructure Security Agency | Secure by Design | CISA | Every technology provider must take ownership at the executive level to ensure their products are secure by design. |
| SR011 | National Institute of Standards and Technology | Cybersecurity Framework | |
| SR012 | European Union | Regulation - 2022/2554 - EN - DORA | |
| SR013 | European Union | Directive - 2022/2555 - EN | |
| SR014 | European Commission | NIS2 Directive: securing network and information systems | |
| SR015 | Dell Technologies | Don’t Get Caught out by The Scale-Out Illusion! | Dell | |
| SR016 | Commvault | Commvault Cloud vs. Cohesity | Commvault Cloud | |
| SR017 | Druva | Druva vs. Cohesity: Comprehensive Data Protection Comparison | |
| SR018 | Rubrik | Rubrik is Named a Leader in the 2025 Gartner® Magic Quadrant™ for Backup and Data Protection Platforms | Rubrik says it is safeguarding more than 6,000 organizations worldwide. |
| SR019 | Commvault | Commvault Ranked in 2025 Gartner® Critical Capabilities | News | |
| SR020 | Veeam | 2025 Data Resilience Predictions: Trends and Insights | |
| SR021 | Dataconomy | Cohesity targets 2026 IPO after Veritas merger | |
| SR022 | Amazon Web Services | Supercharge your cyber resiliency with Cohesity DataHawk | Amazon Web Services | |
| SR023 | Office of Management and Budget | M-22-09 Federal Zero Trust Strategy | |
| SR024 | Cybersecurity and Infrastructure Security Agency | Zero Trust Maturity Model | CISA | |
| SR025 | U.S. Department of Justice | Georgia Tech Research Corporation Agrees to Pay $875,000 to Resolve Civil Cyber-Fraud Litigation | Georgia Tech Research Corporation has agreed to pay the United States $875,000 to resolve allegations that it violated the False Claims Act and federal common law by failing to meet cybersecurity requirements. |
| SR026 | Cybersecurity and Infrastructure Security Agency | Cross-Sector Cybersecurity Performance Goals | CISA | |
| SR027 | U.S. Government Accountability Office | U.S. GAO - High-Risk Series: Urgent Action Needed to Address Critical Cybersecurity Challenges Facing the Nation | |
| SR028 | Federal Trade Commission | FTC Safeguards Rule: What Your Business Needs to Know | |
| SR029 | Cohesity | Investor Relations | Any internal data presented was derived internally and has not been independently verified. |
| SR030 | Commvault | Commvault 2024 Annual Report | |
| SV001 | Cohesity | Cohesity Becomes World’s Largest Data Protection Software Provider After Completing Combination with Veritas’ Enterprise Data Protection Business | The transaction values the combined company at over $7 billion. |
| SV002 | Veritas | Cohesity Becomes World’s Largest Data Protection Software Provider After Completing Combination with Veritas’ Enterprise Data Protection Business | |
| SV003 | Cohesity | Cohesity and Veritas Data Protection Business to Combine, Forming a New Leader in AI-Powered Data Security and Management | |
| SV004 | Veritas | Cohesity and Veritas Data Protection to Combine | |
| SV005 | Business Wire | Cohesity and Veritas Data Protection Business to Combine, Forming a New Leader in AI-Powered Data Security and Management | |
| SV006 | Business Wire | Cohesity Becomes World's Largest Data Protection Software Provider After Completing Combination with Veritas Enterprise Data Protection Business | |
| SV007 | Business Wire | Cohesity Announces a $3.7 Billion Valuation -- $1.2 Billion More Than Its Valuation Less Than 12 Months Ago | |
| SV008 | Cohesity | Cohesity Fiscal 2021 Results Shatter Previous Performance Records As Customers Embrace Next-Gen Data Management With Built-in Ransomware Data Protection | |
| SV009 | TechCrunch | Cohesity completes its merger with Veritas; here's how they'll integrate | |
| SV010 | CRN | Cohesity To Acquire Veritas Unit, Forming $7B Data Security And Management Giant | |
| SV011 | CRN | Cohesity CEO On Veritas Acquisition Update, Delayed IPO And Latest Funding Round | We've delayed. We're not going to go public this year. We're going to get the Veritas deal done. |
| SV012 | CNBC | Nvidia-backed Cohesity eyes 2026 IPO with valuation rivaling $17 billion Rubrik | |
| SV013 | Dataconomy | Cohesity targets 2026 IPO after Veritas merger | Macroeconomic volatility has weighed on exits. |
| SV014 | FinTech Global | Data protection leader Cohesity secures $7bn valuation following Veritas merger | |
| SV015 | IT Europa | Cohesity becomes number one in data protection by creating $7bn firm with Veritas | |
| SV016 | StorageNewsletter | Cohesity IPO not So Far | |
| SV017 | StorageNewsletter | Company Profile: Cohesity | |
| SV018 | Securities and Exchange Commission | Rubrik S-1 | |
| SV019 | Securities and Exchange Commission | Rubrik 2026 Form 10-K | |
| SV020 | Rubrik | Rubrik Reports Fourth Quarter and Fiscal Year 2026 Financial Results | |
| SV021 | Rubrik | Rubrik Reports Fourth Quarter and Fiscal Year 2025 Financial Results | |
| SV022 | Securities and Exchange Commission | Commvault 2026 Form 10-K | |
| SV023 | Securities and Exchange Commission | Commvault 2024 Annual Report | |
| SV024 | Commvault | Commvault Announces Fourth Quarter Fiscal 2026 Financial Results | |
| SV025 | Stock Analysis | Rubrik (RBRK) Stock Price & Overview | Market Cap 13.37B; Revenue (ttm) 1.32B. |
| SV026 | Stock Analysis | Rubrik (RBRK) Statistics & Valuation | Rubrik has a market cap or net worth of $13.37 billion. The enterprise value is $12.87 billion. |
| SV027 | CompaniesMarketCap | Rubrik (RBRK) - Market capitalization | As of May 2026 Rubrik has a market cap of $13.37 Billion USD. |
| SV028 | CompaniesMarketCap | Commvault (CVLT) - Market capitalization | As of May 2026 Commvault has a market cap of $4.37 Billion USD. |
| SV029 | Yahoo Finance | Rubrik, Inc. (RBRK) Valuation Measures & Financial Statistics | Enterprise Value 12.30B; Enterprise Value/Revenue 9.34; Revenue (ttm) 1.32B. |
| SV030 | Yahoo Finance | Commvault Systems, Inc. (CVLT) Valuation Measures & Financial Statistics | Enterprise Value 4.30B; Enterprise Value/Revenue 3.64; Revenue (ttm) 1.18B. |
| SV031 | Yahoo Finance | Cohesity (COHS.PVT) Valuation, History & News - Yahoo Finance | Forge Price is not a quotation, and does not indicate available supply or demand, is solely for informational purposes, and may rely on limited data. |
| SV032 | CompaniesMarketCap | Rubrik (RBRK) - Revenue | As of May 2026 Rubrik has a revenue of $1.32 Billion. |
| SV033 | CompaniesMarketCap | Commvault (CVLT) - Revenue | As of May 2026 Commvault has a revenue of $1.18 Billion. |
| SV034 | Stock Analysis | Commvault Systems (CVLT) Stock Price & Overview | Market Cap 4.37B; Revenue (ttm) 1.18B. |