Prisma™ Cloud is a cloud native security platform that enables you to secure your cloud native infrastructure and cloud native applications using a single dashboard. It offers comprehensive visibility and threat detection across your organization’s hybrid, multi-cloud infrastructure.
This site provides documentation for the full-suite of capabilities that include: 
Code Security  | Cloud Security Posture Management |  Cloud Workload Protection | IAM Security | Identity-Based Microsegmentation 

Prisma Cloud taps into the cloud providers’ APIs for read-only access to your network traffic, user activity, and configuration of systems and services, and correlates these disparate data sets to help the cloud compliance and security analytics teams prioritize risks and quickly respond to issues. It also uses Enforcers to enable microsegmentation for workload isolation, as well as Defenders to secure your host, container, and serverless computing environments against vulnerabilities, malware, and compliance violations.

*Review the Prisma Cloud privacy datasheet.

Latest Releases

August 2022  
  • API for bulk export of resource archives
  • Adoption advisor PDF report
  • Support for 3 new compliance standards - DFS 23 NYCRR 500,  Cybersecurity Maturity Model Certification (CMMC) 2.0 , HITRUST CSF v9.6.0
July 2022  
  • IAM Security enhancements- support for GCP, graph view for RQL, and checks in Adoption Advisor.
  • Licensing updates
  • Top Alerts View by MITRE ATT&CK Tactics
  • Compute update to 22.06 includes a whole new set of features.
June 2022  
  • Support for 3 new compliance benchmarks - Australian Energy Sector Cyber Security Framework (AESCSF),  Australian Cyber Security Centre (ACSC) Information Security Manual (ISM), and  Australian Cyber Security Centre (ACSC) Essential Eight

  • Prisma Cloud Compute Edition v 22.06 highlights:

               * ARM64 architecture support
                * Multi-cloud support for agentless scanning
                * WAAS Out of Band Detection
                * CIS benchmark updates for Linux and OpenShift
                * New Filters in the Vulnerability Explorer

May 2022
  • Incidents and Risks burndown widgets in Adoption Advisor
  • Policy updates to support new checks on AWS, Azure, and GCP, and deletion of  Azure policies
April 2022
  • [Data Security] True file type identification for scanning
  • Permission updates in the GCP and AWS onboarding templates
  • 16 new Anomaly policies that map to MITRE ATT&CK v10.0
  • Over 50 Configuration policies for build-time  checks when using the Code Security module.
March 2022
  • New alarms for licensing issues in Alarm Center
  • [Data Security] Additional  File Extensions Support for Malware Scanning 
  • [Code Security] Supply Chain security to visualize and secure your code and delivery pipelines.


To stay informed of new features and enhancements, add the following URLs to your RSS feed reader and receive Release Notes updates: 

  • CSPM:
  • CWP:
  • Code Security:


Prisma Cloud - Cloud Security Posture Management

The CSPM capabilities include the Visibility, Compliance, & Governance, Threat Detection, and Data Security features on Prisma Cloud

Prisma™ Cloud Administrator's Guide

Get started with Prisma Cloud! Learn how to log in, add your cloud accounts and begin monitoring your cloud resources.

Prisma™Cloud Data Security

Discover, classify, and protect sensitive data stored on AWS S3 buckets with Prisma Cloud Data Security.

Prisma™ Cloud Release Information

Review the Prisma Cloud release notes to learn about all the exciting new features and known issues.

Prisma™ Cloud API Reference

Refer to the API documentation to learn how to securely access and use the Prisma Cloud REST APIs to set up and monitor your cloud accounts.

Prisma™ Cloud Resource Query Language (RQL) Reference

Use a flexible query language to perform checks on resources deployed across different cloud platforms.

Prisma Cloud - Cloud Workload Protection

For securing your host, container, and functions across the application lifecycle that constitute the CWP capabilities, Prisma Cloud is available in both self-hosted and SaaS versions:
  • Prisma Cloud Enterprise Edition, includes the Compute tab on the Prisma Cloud administrative console. This interface is the SaaS version of the full Cloud Native Security Platform that delivers host, container, and serverless capabilities along with the cloud security posture management capabilities.

Palo Alto Networks operates the Console for you, and you must deploy the agents (Defenders) into your environment to secure hosts, containers, and serverless functions running in any cloud, including on-premises.

  • Prisma Cloud Compute Edition, which is the downloadable, self-hosted software that you can use to protect hosts, containers, and serverless functions running in any cloud, including on-premises and even fully air-gapped environments. You must deploy and operate the Console and Defenders in your own environment.

Administrator's Guide (Compute)

Learn how to use the Compute tab on the Prisma Cloud administrative console to deploy Prisma Cloud Defenders and secure your hosts, containers, and serverless functions.

Prisma™ Cloud API Reference

Refer to the Compute API documentation for your automation needs.

Compute Edition Release Notes

Stay informed on the new features for securing your hosts, containers, and serverless functions and breaking changes in Prisma™ Cloud Compute Edition.

Prisma™ Cloud Compute Edition for Public Sector

Learn about Prisma Cloud Compute Edition certifications for STIG, FedRamp and other standards to secure federal networks.

Prisma™ Cloud Intelligence Stream Notifications

Review the notifications for breaking changes or changes with significant impact on the IS feed.

Operationalize Guide (Compute)

Use this guide to derive quick time to value with the Compute tab capabilities available with the Prisma Cloud Enterprise Edition license. The guidelines enable you to plan for the work ahead, configure and deploy Prisma Cloud Defenders, and measure your progress.

Prisma Cloud - Code Security, IAM Security, & Microsegmentation

Access the documentation for all the other capabilities on Prisma Cloud.

Prisma™Cloud Code Security

Urge your developers and security teams to identify security misconfigurations in common Infrastructure-as-Code (e.g. AWS Cloud Formation Templates, HashiCorp Terraform templates, Kubernetes App Deployment YAML files) with Prisma Cloud IaC scanning capabilities.

Identity-Based Microsegmentation Release Notes (SaaS)

Stay informed on the new features to help isolate cloud native applications and stop lateral movement of threats across your network.

RQL for IAM Security

Use a flexible query language to perform checks on resources deployed across different cloud platforms.

Identity-Based Microsegmentation Release Notes (5.x Legacy)

Access the consolidated Release Notes for 5.0, 5.1, and 5.2

IAM Security Administrator's Guide

Use this guide to enforce least-privilege permissions across workloads and cloud resources.

Identity-Based Microsegmentation Admin Guide & Release Notes

Access the consolidated Admin Guide and Release Notes PDF

Identity-Based Microsegmentation Administrator's Guide

Use this guide to deploy enforcers and secure your traffic and hosts with identity-based microsegmentation.

Prisma Cloud Supporting Resources

Translated Documentation

Get trained - build the knowledge, skills and abilities required to onboard, deploy and administer all aspects of Prisma Cloud.

Enhanced Remediation with Serverless Functions on GitHub

Create custom auto-remediation solutions using serverless functions.

Prisma Certified Cloud Security Engineer - Certification

Get trained - build the knowledge, skills and abilities required to onboard, deploy and administer all aspects of Prisma Cloud.

Related Videos & Blogs

Prisma Cloud Blogs

Prisma Cloud Supports ARM Workloads on Google Cloud and GKE

What is IaC?