Prisma™ Cloud


Prisma™ Cloud is the Cloud Native Application Protection Platform (CNAPP) that secures applications from code to cloud. Security and DevOps teams can effectively collaborate to accelerate secure cloud native application development and deployment using a single dashboard. It offers comprehensive visibility and threat detection across your organization’s hybrid, multi-cloud infrastructure.


This site provides documentation for the full-suite of capabilities that include: 
Code Security  | Cloud Security Posture Management |  Cloud Workload Protection | IAM Security | Web App & API Security 

Prisma Cloud leverages both agent-based and agentless approach to tap into the cloud providers’ APIs for read-only access to your network traffic, user activity, and configuration of systems and services, and correlates these disparate data sets to help the cloud compliance and security analytics teams prioritize risks and quickly respond to issues. It also uses Defenders to enable microsegmentation for workload isolation, and to secure your host, container, and serverless computing environments against vulnerabilities, malware, and compliance violations.

*Review the Prisma Cloud privacy datasheet.

Latest Releases

September 2023
  • API ingestions and new policies
  • [Compute] Enhancements in the 31.01 release
August 2023
  • Attack Path Analysis and Visualization
  • Updates to Workload Defense Metrics on Adoption Advisor
  • [Compute] New 31.00 release.
July 2023
  • [Data Security] Asset Level Scan for Reduced Scanning Costs
  • [IAM Security] Least Privilege Access Enforcement for Groups and Roles
  • [Code Security] Integrated View of Run and Build details for Alerts
  • [Compute] Enhancements in the 30.03 release
June  2023
  • Trendline for Critical Severity Alerts and Assets in Adoption Advisor
  • [Compute] Enhancements in the 30.02 release.
  • [Code Security]  Projects got better for prioritizing code issues
May 2023
  • [Compute] Enhancements in the 30.01 release
  • Cloud Security Assessment Recurring Reports
  • Credit Allocation for Usage
  • IAM Asset Details for more visibility on permissions for AWS cloud accounts

 SUBSCRIBE

To stay informed of new features and enhancements, add the following URLs to your RSS feed reader and receive Release Notes updates: 

  • CSPM: https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-release-notes/prisma-cloud-release-information/features-introduced-in-2023.html
  • CWP: https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-release-notes/prisma-cloud-compute-release-information.html
  • Code Security: https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-release-notes/prisma-cloud-code-security-release-information/features-introduced-in-code-security-2023.html

Prisma Cloud - Cloud Security Posture Management

The CSPM capabilities include the Visibility, Compliance, & Governance, Threat Detection, and Data Security features on Prisma Cloud

Prisma™ Cloud Administrator's Guide


Get started with Prisma Cloud! Learn how to log in, add your cloud accounts and begin monitoring your cloud resources.

Prisma™Cloud Data Security


Discover, classify, and protect sensitive data stored on AWS S3 buckets with Prisma Cloud Data Security.

Prisma™ Cloud Release Information


Review the Prisma Cloud release notes to learn about all the exciting new features and known issues.

Prisma™ Cloud API Reference


Refer to the API documentation to learn how to securely access and use the Prisma Cloud REST APIs to set up and monitor your cloud accounts.

Prisma™ Cloud Resource Query Language (RQL) Reference


Use a flexible query language to perform checks on resources deployed across different cloud platforms.

Prisma Cloud - Cloud Workload Protection

For securing your host, container, and functions across the application lifecycle that constitute the CWP capabilities, Prisma Cloud is available in both self-hosted and SaaS versions:
  • Prisma Cloud Enterprise Edition, includes the Compute tab on the Prisma Cloud administrative console. This interface is the SaaS version of the full Cloud Native Security Platform that delivers host, container, and serverless capabilities along with the cloud security posture management capabilities.

Palo Alto Networks operates the Console for you, and you must deploy the agents (Defenders) into your environment to secure hosts, containers, and serverless functions running in any cloud, including on-premises.

  • Prisma Cloud Compute Edition, which is the downloadable, self-hosted software that you can use to protect hosts, containers, and serverless functions running in any cloud, including on-premises and even fully air-gapped environments. You must deploy and operate the Console and Defenders in your own environment.

Administrator's Guide (Compute)


Learn how to use the Compute tab on the Prisma Cloud administrative console to deploy Prisma Cloud Defenders and secure your hosts, containers, and serverless functions.

Compute Edition Release Notes


Stay informed on the new features for securing your hosts, containers, and serverless functions and breaking changes in Prisma™ Cloud Compute Edition.

Prisma™ Cloud API Reference


Refer to the Compute API documentation for your automation needs.

Prisma™ Cloud Compute Edition for Public Sector


Learn about Prisma Cloud Compute Edition certifications for STIG, FedRamp and other standards to secure federal networks.

Prisma Cloud - Code Security, IAM Security, Web App & API Security

Access the documentation for all the other capabilities on Prisma Cloud.

Prisma™Cloud Code Security


Urge your developers and security teams to identify security misconfigurations in common Infrastructure-as-Code (e.g. AWS Cloud Formation Templates, HashiCorp Terraform templates, Kubernetes App Deployment YAML files) with Prisma Cloud IaC scanning capabilities.

Secure Web Apps and API


Protect against the OWASP Top 10 and secure your microservices-based web applications and APIs in cloud and on-premises environments.

Prisma™Cloud Code Security Policy Reference


Review the build-phase policy checks available for your developers and security teams.

IAM Security Administrator's Guide


Use this guide to enforce least-privilege permissions across workloads and cloud resources.

RQL for IAM Security


Use a flexible query language to perform checks on resources deployed across different cloud platforms.

Prisma Cloud Supporting Resources

Translated Documentation


Get trained - build the knowledge, skills and abilities required to onboard, deploy and administer all aspects of Prisma Cloud.

Identity-Based Microsegmentation Administrator's Guide (EOL)


Use this guide to deploy enforcers and secure your traffic and hosts with identity-based microsegmentation.

Enhanced Remediation with Serverless Functions on GitHub


Create custom auto-remediation solutions using serverless functions.

Identity-Based Microsegmentation Administrator's Guide (5.0 EOL)


Use this guide to deploy enforcers and secure your traffic and hosts with identity-based microsegmentation.

Prisma Certified Cloud Security Engineer - Certification


Get trained - build the knowledge, skills and abilities required to onboard, deploy and administer all aspects of Prisma Cloud.

Identity-Based Microsegmentation Release Notes (5.x Legacy)


Access the consolidated Release Notes for 5.0, 5.1, and 5.2

Postman Collection for API


Use the Postman collection for API examples to help you learn about how our APIs work

Related Videos & Blogs

Prisma Cloud Blogs


Mitigate GraphQL Risks


Top 5 DevSecOps Tools