Prisma™ Cloud is the Cloud Native Application Protection Platform (CNAPP) that secures applications from code to cloud. Security and DevOps teams can effectively collaborate to accelerate secure cloud native application development and deployment using a single dashboard. It offers comprehensive visibility and threat detection across your organization’s hybrid, multi-cloud infrastructure.


This site provides documentation for the full-suite of capabilities that include: 
Code Security  | Cloud Security Posture Management |  Cloud Workload Protection | IAM Security | Web App & API Security 

Prisma Cloud leverages both agent-based and agentless approach to tap into the cloud providers’ APIs for read-only access to your network traffic, user activity, and configuration of systems and services, and correlates these disparate data sets to help the cloud compliance and security analytics teams prioritize risks and quickly respond to issues. It also uses Defenders to enable microsegmentation for workload isolation, and to secure your host, container, and serverless computing environments against vulnerabilities, malware, and compliance violations.

*Review the Prisma Cloud privacy datasheet.

Latest Releases

December 2022
  • Asset Inventory Enhancements
  • Flow Logs Ingestion Time Improvements
  • Recurring Scheduled Reports for Adoption Advisor
November 2022  

  • AWS DNS Logs from Amazon Kinesis Data Firehose
  • Anomaly Policies for AWS DNS Activity
  • [Compute] Fixes for the host, container, and serverless capabilities

October 2022  
  • Prisma Cloud Recommended Policies pack in default alert rule (Only for new deployments)
  • Prisma Cloud in France (app.fr)
September 2022  

  • Command Center  for top priority security risks
  • [IAM Security] Support for AWS permission boundaries for net effective permissions
  • [Data Security] Support for Azure. Discover and classify data stored in Azure Blob Storage 
  • [Code Security] Software Composition Analysis for detecting vulnerabilties in open source packages and license violations.
  • [Compute] Enhancements and fixes for the host, container, and serverless capabilities.

August 2022  
  • Customized views for alert prioritization
  • API for bulk export of resource archives
  • Prisma Cloud service in Japan
  • Support for 3 new compliance standards - DFS 23 NYCRR 500,  Cybersecurity Maturity Model Certification (CMMC) 2.0 , HITRUST CSF v9.6.0
  • [Code Security] Resource Explorer enriched for metadata
July 2022  
  • IAM Security enhancements- support for GCP, graph view for RQL, and checks in Adoption Advisor.
  • Licensing updates
  • Top Alerts View by MITRE ATT&CK Tactics
  • Compute update to 22.06 includes a whole new set of features.
June 2022  
  • Support for 3 new compliance benchmarks - Australian Energy Sector Cyber Security Framework (AESCSF),  Australian Cyber Security Centre (ACSC) Information Security Manual (ISM), and  Australian Cyber Security Centre (ACSC) Essential Eight

  • Prisma Cloud Compute Edition v 22.06 highlights:

               * ARM64 architecture support
                * Multi-cloud support for agentless scanning
                * WAAS Out of Band Detection
                * CIS benchmark updates for Linux and OpenShift
                * New Filters in the Vulnerability Explorer

 SUBSCRIBE

To stay informed of new features and enhancements, add the following URLs to your RSS feed reader and receive Release Notes updates: 

  • CSPM: https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-release-notes/prisma-cloud-release-information/features-introduced-in-2022.html
  • CWP: https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-release-notes/prisma-cloud-compute-release-information.html
  • Code Security: https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-release-notes/prisma-cloud-code-security-release-information/features-introduced-in-code-security-2022.html

Documentation

Prisma Cloud - Cloud Security Posture Management

The CSPM capabilities include the Visibility, Compliance, & Governance, Threat Detection, and Data Security features on Prisma Cloud

Prisma™ Cloud Administrator's Guide


Get started with Prisma Cloud! Learn how to log in, add your cloud accounts and begin monitoring your cloud resources.

Prisma™Cloud Data Security


Discover, classify, and protect sensitive data stored on AWS S3 buckets with Prisma Cloud Data Security.

Prisma™ Cloud Release Information


Review the Prisma Cloud release notes to learn about all the exciting new features and known issues.

Prisma™ Cloud API Reference


Refer to the API documentation to learn how to securely access and use the Prisma Cloud REST APIs to set up and monitor your cloud accounts.

Prisma™ Cloud Resource Query Language (RQL) Reference


Use a flexible query language to perform checks on resources deployed across different cloud platforms.

Prisma Cloud - Cloud Workload Protection

For securing your host, container, and functions across the application lifecycle that constitute the CWP capabilities, Prisma Cloud is available in both self-hosted and SaaS versions:
  • Prisma Cloud Enterprise Edition, includes the Compute tab on the Prisma Cloud administrative console. This interface is the SaaS version of the full Cloud Native Security Platform that delivers host, container, and serverless capabilities along with the cloud security posture management capabilities.

Palo Alto Networks operates the Console for you, and you must deploy the agents (Defenders) into your environment to secure hosts, containers, and serverless functions running in any cloud, including on-premises.

  • Prisma Cloud Compute Edition, which is the downloadable, self-hosted software that you can use to protect hosts, containers, and serverless functions running in any cloud, including on-premises and even fully air-gapped environments. You must deploy and operate the Console and Defenders in your own environment.

Administrator's Guide (Compute)


Learn how to use the Compute tab on the Prisma Cloud administrative console to deploy Prisma Cloud Defenders and secure your hosts, containers, and serverless functions.

Prisma™ Cloud API Reference


Refer to the Compute API documentation for your automation needs.

Compute Edition Release Notes


Stay informed on the new features for securing your hosts, containers, and serverless functions and breaking changes in Prisma™ Cloud Compute Edition.

Prisma™ Cloud Compute Edition for Public Sector


Learn about Prisma Cloud Compute Edition certifications for STIG, FedRamp and other standards to secure federal networks.

Prisma™ Cloud Intelligence Stream Notifications


Review the notifications for breaking changes or changes with significant impact on the IS feed.

Operationalize Guide (Compute)


Use this guide to derive quick time to value with the Compute tab capabilities available with the Prisma Cloud Enterprise Edition license. The guidelines enable you to plan for the work ahead, configure and deploy Prisma Cloud Defenders, and measure your progress.

Prisma Cloud - Code Security, IAM Security, Web App & API Security

Access the documentation for all the other capabilities on Prisma Cloud.

Prisma™Cloud Code Security


Urge your developers and security teams to identify security misconfigurations in common Infrastructure-as-Code (e.g. AWS Cloud Formation Templates, HashiCorp Terraform templates, Kubernetes App Deployment YAML files) with Prisma Cloud IaC scanning capabilities.

RQL for IAM Security


Use a flexible query language to perform checks on resources deployed across different cloud platforms.

IAM Security Administrator's Guide


Use this guide to enforce least-privilege permissions across workloads and cloud resources.

Secure Web Apps and API


Protect against the OWASP Top 10 and secure your microservices-based web applications and APIs in cloud and on-premises environments.

Prisma Cloud Supporting Resources

Translated Documentation


Get trained - build the knowledge, skills and abilities required to onboard, deploy and administer all aspects of Prisma Cloud.

Identity-Based Microsegmentation Release Notes (SaaS)


Stay informed on the new features to help isolate cloud native applications and stop lateral movement of threats across your network.

Enhanced Remediation with Serverless Functions on GitHub


Create custom auto-remediation solutions using serverless functions.

Identity-Based Microsegmentation Administrator's Guide


Use this guide to deploy enforcers and secure your traffic and hosts with identity-based microsegmentation.

Prisma Certified Cloud Security Engineer - Certification


Get trained - build the knowledge, skills and abilities required to onboard, deploy and administer all aspects of Prisma Cloud.

Identity-Based Microsegmentation Admin Guide & Release Notes


Access the consolidated Admin Guide and Release Notes PDF

Identity-Based Microsegmentation Release Notes (5.x Legacy)


Access the consolidated Release Notes for 5.0, 5.1, and 5.2

Related Videos & Blogs

Prisma Cloud Blogs


CVE-2022-42889: Text4Shell Vulnerability


How to Adopt Infrastructure as Code With a Secure-by-Default Strategy