Prisma™ Cloud is a cloud native security platform that enables you to secure your cloud native infrastructure and cloud native applications using a single dashboard. It offers comprehensive visibility and threat detection across your organization’s hybrid, multi-cloud infrastructure.
This site provides documentation for the full-suite of capabilities that include: 
Cloud Security Posture Management  |  Cloud Workload Protection |  Identity-Based MicrosegmentationIAM Security & DevOps Security

Prisma Cloud taps into the cloud providers’ APIs for read-only access to your network traffic, user activity, and configuration of systems and services, and correlates these disparate data sets to help the cloud compliance and security analytics teams prioritize risks and quickly respond to issues. It also uses Enforcers to enable microsegmentation for workload isolation, as well as Defenders to secure your host, container, and serverless computing environments against vulnerabilities, malware, and compliance violations.

*Review the Prisma Cloud privacy datasheet.

Latest Releases

November 2021
  • IAM Security adds support for Microsoft Azure and integrates with Azure Active Directory to calculate effective permissions
  • Alert auto-dismissal for respources with specific tags
October 2021
  • Alarm Center supports Google CSCC, PagerDuty. Splunk, and Webhook for notifications
  • app.ind.prismacloud.io in the India region .

 

  • Cloud Account Onboarding Templates—Permission Updates
  •  New host, container, and serverless capabilities available on  Prisma Cloud Enterprise Edition

 

September 2021
  • Support for third-party SSO with two IdPs- Google and OneLogin
  • Support for GCP regions - Asia South 2 and Australia SouthEast 2
  • Increase in number of roles (5 to 50) supported for Prisma Cloud administrators
  • Configure Prisma Cloud to retrieve VPC flow logs from an S3 bucket in a common logging account.
August 2021
  • AWS Organization support for Prisma Cloud Data Security
  • Exposure only scanning with Prisma Cloud Data Security
     

 Prisma Cloud Compute Edition 21-08 (for self-hosted deployments) include the following key features:

  • Container Security: Pre-deployment image analysis sandbox

  • Host Security: Auto-protection for virtual machines on Azure and Google Cloud Platform

  • Web Application and API Security: Windows support, service mesh support, and improved API telemetry.

 SUBSCRIBE

To stay informed of new features and enhancements, add the following URL to your RSS feed reader and receive Release Notes updates: 
https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-release-notes/prisma-cloud-release-information/features-introduced-in-2021.html

Documentation

Prisma Cloud - Cloud Security Posture Management

The CSPM capabilities include the Visibility, Compliance, & Governance, Threat Detection, and Data Security features on Prisma Cloud

Prisma™ Cloud Administrator's Guide


Get started with Prisma Cloud! Learn how to log in, add your cloud accounts and begin monitoring your cloud resources.

Prisma™Cloud Data Security


Discover, classify, and protect sensitive data stored on AWS S3 buckets with Prisma Cloud Data Security.

Prisma™ Cloud Release Information


Review the Prisma Cloud release notes to learn about all the exciting new features and known issues.

Prisma™ Cloud API Reference


Refer to the API documentation to learn how to securely access and use the Prisma Cloud REST APIs to set up and monitor your cloud accounts.

Prisma™ Cloud Resource Query Language (RQL) Reference


Use a flexible query language to perform checks on resources deployed across different cloud platforms.

Prisma Cloud - Cloud Workload Protection

For securing your host, container, and functions across the application lifecycle that constitute the CWP capabilities, Prisma Cloud is available in both self-hosted and SaaS versions:
  • Prisma Cloud Enterprise Edition, includes the Compute tab on the Prisma Cloud administrative console. This interface is the SaaS version of the full Cloud Native Security Platform that delivers host, container, and serverless capabilities along with the cloud security posture management capabilities.

Palo Alto Networks operates the Console for you, and you must deploy the agents (Defenders) into your environment to secure hosts, containers, and serverless functions running in any cloud, including on-premises.

  • Prisma Cloud Compute Edition, which is the downloadable, self-hosted software that you can use to protect hosts, containers, and serverless functions running in any cloud, including on-premises and even fully air-gapped environments. You must deploy and operate the Console and Defenders in your own environment.

Prisma™ Cloud Administrator's Guide (Compute)


Learn how to use the Compute tab on the Prisma Cloud administrative console to deploy Prisma Cloud Defenders and secure your hosts, containers, and serverless functions.

Prisma™ Cloud API Reference


Refer to the Compute API documentation for your automation needs.

Prisma™Cloud Compute Edition Release Notes


Stay informed on the new features for securing your hosts, containers, and serverless functions and breaking changes in Prisma™ Cloud Compute Edition.

Prisma™ Cloud Compute Reference Architecture


Protect your container, serverless functions, non-container hosts, or any combination! This guide provides Enterprise and Security Architects guidance on how to deploy Prisma Cloud Defenders and integrate with systems commonly found in the enterprise stack.

Prisma™ Cloud Compute Operationalize Guide


Use this guide to derive quick time to value with the Compute tab capabilities available with the Prisma Cloud Enterprise Edition license. The guidelines enable you to plan for the work ahead, configure and deploy Prisma Cloud Defenders, and measure your progress.

Prisma™ Cloud Compute Edition for Public Sector


Learn about Prisma Cloud Compute Edition certifications for STIG, FedRamp and other standards to secure federal networks.

Prisma Cloud - IAM Security , DevOps Security & Microsegmentation

Access the documentation for all the other capabilities on Prisma Cloud.

RQL for IAM Security


Use a flexible query language to perform checks on resources deployed across different cloud platforms.

Prisma™Cloud DevOps Security


Urge your developers and security teams to identify insecure configurations in common Infrastructure-as-Code (e.g. AWS Cloud Formation Templates, HashiCorp Terraform templates, Kubernetes App Deployment YAML files) with Prisma Cloud IaC scanning capabilities.

IAM Security Administrator's Guide


Use this guide to enforce least-privilege permissions across workloads and cloud resources.

Identity-Based Microsegmentation Admin Guide & Release Notes


Access the consolidated Admin Guide and Release Notes PDF

Identity-Based Microsegmentation Release Notes (SaaS)


Stay informed on the new features to help isolate cloud native applications and stop lateral movement of threats across your network.

Identity-Based Microsegmentation Release Notes


Stay informed on the new features and fixes in the self-hosted version.

Identity-Based Microsegmentation Administrator's Guide (SaaS)


(For Prisma Cloud Enterprise Edition) Use this guide to deploy enforcers and secure your traffic and hosts with identity-based microsegmentation.

Identity-Based Microsegmentation Administrator's Guide


Use this guide to deploy enforcers and secure your traffic and hosts with identity-based microsegmentation.

Prisma Cloud Supporting Resources

Prisma™ Cloud Policies on GitHub


Review all the Prisma Cloud default RQL based policies for Config, Network, and Audit Events in JSON format .

Enhanced Remediation with Serverless Functions on GitHub


Create custom auto-remediation solutions using serverless functions.

Prisma Certified Cloud Security Engineer - Certification


Get trained - build the knowledge, skills and abilities required to onboard, deploy and administer all aspects of Prisma Cloud.

Related Videos & Blogs

Prisma Cloud Blogs


Prisma Cloud-Cloud Native Security Platform

Addressing security and compliance in the cloud requires a rigorous and continuous approach that ensures risks are Identified and controlled with speed. See how you can use Prisma Cloud, the industry’s only comprehensive cloud native security platform (CNSP) to get the broadest security and compliance coverage for applications, data, and the cloud native technology stack, across hybrid and multi-cloud environments.

Prisma Cloud Automatically Secures Unprotected Cloud Workloads


Manage your Unmanaged Cloud with Prisma Cloud and Cortex Xpanse