Prisma™ Cloud is a cloud native security platform that enables cloud security posture management (CSPM), data security, and cloud workload protection platform (CWPP) for comprehensive visibility and threat detection across your organization’s hybrid, multi-cloud infrastructure.
*Review the Prisma Cloud privacy datasheet.

Prisma Cloud taps into the cloud providers’ APIs for read-only access to your network traffic, user activity, and configuration of systems and services, and correlates these disparate data sets to help the cloud compliance and security analytics teams prioritize risks and quickly respond to issues. It also uses an agent-based approach to secure your host, container, and serverless computing environments against vulnerabilities, malware, and compliance violations.

For visibility, compliance and governance of your cloud environments Prisma Cloud is available as a cloud-delivered (or SaaS) service.

For securing your host, container, and functions across the application lifecycle that constitute the CWPP capabilities, Prisma Cloud is available in both self-hosted and SaaS versions:

  • Prisma Cloud Compute, which is the SaaS version of the full Cloud Native Security Platform that delivers host, container, and serverless capabilities along with the cloud security posture management capabilities.
    Palo Alto Networks operates the Console for you, and you must deploy the agents (Defenders) into your environment to secure hosts, containers, and serverless functions running in any cloud, including on-premises. 
  • Prisma Cloud Compute Edition, which is the downloadable, self-hosted software that you can use to protect hosts, containers, and serverless functions running in any cloud, including on-premises and even fully air-gapped environments. You must deploy and operate the Console and Defenders in your own environment. 

Latest Releases

May 2021
  • Send Prisma Cloud alerts to Azure Sentinel.
  • Review the updates for Anomaly Settings and the new UEBA policy for detecting Anomalous Compute Provisioning Activity.
  • See the new Data Security scan settings page for estimates on the volume of data eligible for scanning. 
  • Read about the new capabities in the Prisma Cloud Compute Edition 21-04  release.
  • Create Prisma Cloud account groups to match your GCP folder hierarchy with the Auto Map capability.
  • See the new visualizations on policy coverage and usage on the Policies page.
  • Support for new compliance benchmarks- NIST 800-171 rev 2 and PCI DSS 3.2.1.
March 2021
  • Support for Cybersecurity Maturity Model Certification (CMMC) Benchmark
  • CIS Benchmark Updates for AWS, Azure, GCP GKE,  OCI
  • Suppress Anomaly Alerts for Trusted Ports
February 2021
  • Support for Oracle Cloud Infrastructure!
  • Anomaly and Advanced Threat Detection on Prisma Cloud China.
  • Prisma Cloud Compute - Update 2 for fixes and performance enhancements
  • Snippets support on Prisma Cloud Data Security
  • Prisma Cloud Data Security available  for tenants in EMEA
January 2021
  • Suppression of Anomaly Alerts for Trusted Resources
  • Expanded Scope for Anomaly Trusted List
  • Custom Data Patterns and Data Profiles for Prisma Cloud Data Security
  • Support for CIS Microsoft Azure Foundations Benchmark v.1.2.0 and APRA CPS 234 Compliance Standard
  • Bitbucket Server plugin to perform IaC scans


Prisma Cloud Administrator Guides and Release Notes

Prisma™ Cloud Administrator's Guide

Prisma™ Cloud Release Information

Review the Prisma Cloud release notes to learn about all the exciting new features and known issues.

Prisma™ Cloud Administrator's Guide (Compute)

Learn how to use the Compute tab on the Prisma Cloud administrative console to deploy Prisma Cloud Defenders and secure your hosts, containers, and serverless functions.

Prisma™Cloud Compute Edition Release Notes

Stay informed on the new features for securing your hosts, containers, and serverless functions and breaking changes in Prisma™ Cloud Compute Edition.

Prisma™ Cloud API Reference

Refer to the API documentation to learn how to securely access and use the Prisma Cloud APIs to monitor your cloud accounts.

Prisma™ Cloud Compute API Reference

Access the Prisma Cloud Compute APIs to automate the set up and deployment of Defenders in your cloud environments.

Prisma Cloud Supporting Documentation and Resources

Prisma™ Cloud Resource Query Language (RQL) Reference

Use a flexible query language to perform checks on resources deployed across different cloud platforms.

Prisma™ Cloud Policies on GitHub

Review all the Prisma Cloud default RQL based policies for Config, Network, and Audit Events in JSON format .

Prisma Certified Cloud Security Engineer - Certification

Get trained - build the knowledge, skills and abilities required to onboard, deploy and administer all aspects of Prisma Cloud.

Prisma™ Cloud Identity-Based Microsegmentation

Use this guide to deploy enforcers and secure your traffic and hosts with identity-based microsegmentation.

Prisma™ Cloud Compute Reference Architecture

Protect your container, serverless functions, non-container hosts, or any combination! This guide provides Enterprise and Security Architects guidance on how to deploy Prisma Cloud Defenders and integrate with systems commonly found in the enterprise stack.

Prisma™Cloud Data Security

Discover, classify, and protect sensitive data stored on AWS S3 buckets with Prisma Cloud Data Security.

Prisma™ Cloud Compute Operationalize Guide

Use this guide to derive quick time to value with the Compute tab capabilities available with the Prisma Cloud Enterprise Edition license. The guidelines enable you to plan for the work ahead, configure and deploy Prisma Cloud Defenders, and measure your progress.

Prisma™Cloud DevOps Security

Urge your developers and security teams to identify insecure configurations in common Infrastructure-as-Code (e.g. AWS Cloud Formation Templates, HashiCorp Terraform templates, Kubernetes App Deployment YAML files) with Prisma Cloud IaC scanning capabilities.

Enhanced Remediation with Serverless Functions on GitHub

Create custom auto-remediation solutions using serverless functions.

Related Videos & Blogs

Protect Containers Running in Google Kubernetes Engine

The VM-Series on GCP protects containers running in Google Kubernetes Engine. Container visibility empowers security operations teams to make informed security decisions and respond more quickly to potential incidents

Streamlining Cloud Smart Adoption With Prisma Cloud

Prisma Cloud-Cloud Native Security Platform

Addressing security and compliance in the cloud requires a rigorous and continuous approach that ensures risks are Identified and controlled with speed. See how you can use Prisma Cloud, the industry’s only comprehensive cloud native security platform (CNSP) to get the broadest security and compliance coverage for applications, data, and the cloud native technology stack, across hybrid and multi-cloud environments.

Manage your Unmanaged Cloud with Prisma Cloud and Cortex Xpanse

Lightboard Series: Firewall Services VPC Integration

This Lightboard discusses how to integrate the VM-Series next-generation firewall into an AWS Services VPC architecture as a means of addressing security for an environment with many VPCs.

Prisma Cloud Automatically Secures Unprotected Cloud Workloads