Prisma Cloud

Prisma™ Cloud is a cloud security posture management (CSPM) and cloud workload protection platform (CWPP) that enables your infrastructure, operations and security teams to work together. As you leverage public cloud platforms and a rich set of microservices to rapidly build and deliver applications, it provides comprehensive visibility and threat detection for your for SecOps and DevOps teams across your organization’s hybrid, multi-cloud infrastructure. Prisma Cloud taps into the cloud providers’ APIs for read-only access to your network traffic, user activity, and configuration of systems and services, and correlates these disparate data sets to help the cloud compliance and security analytics teams prioritize risks and quickly respond to issues. It also uses an agent-based approach to secure your host, container, and serverless computing environments against vulnerabilities, malware, and compliance violations.

Latest Releases

December 2019	AWS GovCloud (East) supported on Prisma Cloud Automated alert remediation for multi-step tasks using CLI in custom policy.
November 2019	^{Limited Availability!}Secure your host, container, and serverless functions deployed on-prem or in the public cloud with Prisma Cloud Defenders and manage them from the Compute tab on the Prisma Cloud administrative console. Help your analysts breathe a little easier with the Prisma Cloud and Demisto (beta) integration for multi-step automated remediation. Get Prisma Cloud from the GCP Marketplace. Try the new network reconnaisance policies for anomaly detection.
October 2019	Support for Cloud Security Alliance: Cloud Controls Matrix (CCM) Version 3.0.1 standard. Prisma Cloud now supports Azure Government Cloud. New CLI Variables for custom policy.
September 2019	Support for AWS Bahrain (me-south-1) region. On Azure, correlate resource configurations and audit events to know who made changes to specific Azure resources. External integration status checks to identify issues with outbound notifications.

Documentation

Prisma Cloud (SaaS service—Palo Alto Networks hosted)

Prisma™ Cloud Administrator's Guide

Keep ahead of the bad guys. Learn how to connect and monitor your public cloud platforms and gain visibility for compliance assurance, security governance, and SOC enablement.

Read Now

Prisma Cloud Administrator’s Guide (Compute)

Learn how to use the Compute tab on the Prisma Cloud administrative console to deploy Prisma Cloud Defenders and secure your hosts, containers, and serverless functions.

Tell Me More

Prisma™ Cloud Resource Query Language (RQL) Reference

Use a flexible query language to perform checks on resources deployed across different cloud platforms.

Let's Try It!

Prisma™ Cloud Release Notes

Read the Release Notes to know what is the latest in Prisma Cloud and stay informed on known issues.

Learn More

Prisma Cloud Reference Architecture (Compute)

Protect your container, serverless functions, non-container hosts, or any combination! This guide provides Enterprise and Security Architects guidance on how to deploy Prisma Cloud Defenders and integrate with systems commonly found in the enterprise stack.

Take Me There!

Prisma Cloud Operationalize Guide (Compute)

Use this guide to derive quick time to value with the Compute tab capabilities available with the Prisma Cloud Enterprise Edition license. The guidelines enable you to plan for the work ahead, configure and deploy Prisma Cloud Defenders, and measure your progress.

Ready to Go!

Prisma™ Cloud Scan API

Urge your developers and security teams to identify insecure configurations in common Infrastructure-as-Code (e.g. AWS Cloud Formation Templates, HashiCorp Terraform templates, Kubernetes App Deployment YAML files) with this free public API service.

Let's Go

Prisma Cloud Compute Edition (Self Hosted)

Prisma Cloud Compute Edition Administrator's Guide

The Prisma Cloud Compute Edition Admin guide shows you how to deploy and operate the cloud workload protection solution in your datacenter or public cloud environments. Prisma Cloud Compute Edition (formerly Twistlock) secures your hosts, containers, and serverless functions.

Let's Learn More

Prisma Cloud Compute Edition Release Notes

Prisma Cloud Compute Edition (formerly Twistlock) secures your hosts, containers, and serverless functions. Read the Release Notes to stay informed on new features and known issues and stay on the right track!

What's New?

Getting Started

Related Videos & Documentation

Protect Containers Running in Google Kubernetes Engine

The VM-Series on GCP protects containers running in Google Kubernetes Engine. Container visibility empowers security operations teams to make informed security decisions and respond more quickly to potential incidents

Lightboard Series: Continuous Cloud Security and Compliance Explained

Addressing security and compliance in the cloud requires a rigorous and continuous approach that ensures risks are Identified and controlled with speed. In this lightboard video, watch Tim Prendergast, Chief Cloud Officer at Palo Alto Networks, discuss how organizations can automate the management of cloud security and compliance risks so that they can minimize the attack surface and protect their public cloud deployments.

Simplifying Your Multi-Cloud Security Strategy

View Blog Article

Containers: Fueling Your Move to DevSecOps

View Blog Article

Safely Enable SaaS Applications with Prisma™ SaaS

Secure your business-critical data residing within enterprise SaaS applications with Prisma™ SaaS. Prisma SaaS is an API-based cloud access security broker deployment that can connect directly to your sanctioned SaaS applications for data classification, DLP and threat detection. It helps you maintain compliance while preventing data leaks and disruption for business-critical applications. .

Bridge the SaaS Gap

Secure Branch Offices and Mobile Users

Protect all your offices and mobile users with Prisma™ Access.

Read Now

Lightboard Series: Firewall Services VPC Integration

This Lightboard discusses how to integrate the VM-Series next-generation firewall into an AWS Services VPC architecture as a means of addressing security for an environment with many VPCs.