Prisma Cloud IAM Security helps you address the security challenges of managing IAM in cloud environments. Prisma Cloud IAM Security capabilities automatically calculate effective permissions across cloud service providers, detect overly permissive access and suggest corrections to reach least privilege entitlements. It includes out-of-the-box policies that govern IAM best practices to help you identify risky permissions and get to the ideal set of privileges for your deployment.

Because Prisma Cloud can correlate identity information with configuration data, it gives you the depth of visibility and control. For example, if you use the AWS S3 storage service, the Prisma Cloud Data Security module can discover and identify sensitive data, the CSPM capability can calculate true internet exposure, and the CIEM capability can provide granular insights into exactly who has access to the data and make appropriate recommendations to enforce least-privilege access.