The company that decided the corporate network perimeter was already gone - and rebuilt enterprise security in the cloud.
For two decades, enterprise security had a shape. It was a wall - firewalls, VPN concentrators, and appliance stacks guarding the edge of a corporate network, with everything trusted on the inside and everything suspect on the outside. Then people started working from home, applications moved to the cloud, and the wall found itself defending an empty castle.
Zscaler was built on the premise that this shift was permanent. Founded in 2007 in San Jose, California, by security entrepreneur Jay Chaudhry and technologist K. Kailash, the company set out to move security off the appliance and into the cloud. Instead of hauling a remote worker's traffic back to a data center to be inspected, Zscaler proposed inspecting it in a globally distributed cloud that sits between every user and every application they touch.
That cloud is the Zero Trust Exchange, and it is the heart of the company. The name Zscaler itself is a contraction of "zenith of scalability" - the founding ambition to secure internet traffic at enormous volume. Today the platform inspects more than 500 billion transactions on a typical day, a figure that includes vast amounts of encrypted traffic that legacy hardware often waves through untouched.
The distinction sounds academic until you consider how most breaches actually spread. An attacker rarely wins by breaking a single door; they win by getting onto a network and moving sideways, one system to the next. Zscaler's model removes the network from the equation. A user is connected to the specific application they are authorized to reach and nothing else, and the company's cloud never exposes an inbound listening port to the open internet. There is, by design, no front door to knock down.
Figures drawn from Zscaler public filings and disclosures for fiscal year 2025 (ended July 31, 2025). Treat point-in-time metrics as approximate.
The mechanics are easier to picture than the jargon suggests. Every request a user makes - to a website, a SaaS app, or a private internal system - is routed to the nearest node of Zscaler's cloud. There the request is checked against policy, decrypted and inspected for threats and data leakage, and then brokered to its destination if it passes.
No backhaul to a data center. No VPN placing the user on the network. Every connection is verified, inspected, and brokered directly to a single authorized destination.
A cloud-delivered secure web gateway and Security Service Edge (SSE) that secures access to the internet and SaaS apps with inline threat inspection, TLS decryption, firewall, and data loss prevention.
Zero trust network access to private applications without a VPN - connecting a user to a specific app rather than exposing the whole network.
Measures application, network, and device performance end to end so IT can find and fix the source of a slow or broken user experience.
Unified DLP and CASB capabilities protecting sensitive data across web, SaaS, email, endpoints, and cloud.
Workload security and cloud posture management (CNAPP) for public, private, and hybrid cloud environments.
An AI-driven security operations layer, strengthened by the Red Canary acquisition, aimed at an increasingly autonomous SOC with agentic threat detection and response.
Zscaler sells cloud security as a subscription. Contracts are typically multi-year and priced per user, packaged into tiered bundles with add-on modules, and sold both directly and through channel partners and cloud marketplaces. The result is a heavily recurring revenue base, which the company tracks as annual recurring revenue - a figure that surpassed $3 billion in fiscal 2025.
Where it sits in the market is as a pure-play. Zscaler competes on one idea, executed deeply: securing the connection between a user and an application, everywhere, all the time. That focus is also its main line of differentiation. Platform giants such as Palo Alto Networks, Cisco, Microsoft, and Fortinet extend larger franchises - firewalls, identity, networking - into the same space, while network-led rivals like Cloudflare and Cato Networks argue that their global edge is the differentiator. Zscaler's counter is that it was cloud-native from day one and never had to bolt cloud onto a hardware business.
Bars are an illustrative sketch of how analysts group Security Service Edge players - not audited market share.
Jay Chaudhry had already founded and sold four security companies - SecureIT, CoreHarbor, CipherTrust, and AirDefense - before starting Zscaler. What set the fifth apart was that he kept it. Rather than raise venture capital early, he funded the company's first years with roughly $50 million of his own money, and later took it public in 2018.
An Indian-American technology entrepreneur with more than 25 years in the security industry, including roles at IBM, NCR, and Unisys. He founded four security companies that were all acquired before building Zscaler, which he bootstrapped largely with his own capital.
Co-founded the company - originally incorporated as SafeChannel, Inc. - and helped architect the early multi-tenant cloud that became the Zero Trust Exchange.
Jay Chaudhry and K. Kailash start the company in San Jose to build cloud-delivered security, later rebranding to Zscaler.
The first product ships - a cloud-native secure web gateway - establishing the multi-tenant cloud architecture.
Zero trust network access lets users reach private apps without a VPN.
Zscaler goes public under ticker ZS at $16 per share; shares roughly double on the first day of trading.
Digital experience monitoring, unified data protection, and cloud workload security broaden the Zero Trust Exchange.
Annual recurring revenue passes $3 billion; Zscaler acquires Red Canary (~$675M) to build AI-driven security operations.
Reported by YesPress Newsroom. Facts drawn from Zscaler public filings, press releases, and reputable secondary sources. Point-in-time financial figures are approximate.