Surverless Security Platform

Prisma Cloud - Cloud Workload Protection by Palo Alto Networks is a security solution designed to secure hosts, containers, and serverless deployments throughout the application lifecycle. The vendor claims that this product is suitable for small, medium, and large enterprises, and it caters to various professionals and industries including DevOps teams, cloud infrastructure teams, security teams, IT professionals, and software developers.

Key Features

Flexible agentless scanning and agent-based protection: According to the vendor, Prisma Cloud offers both agentless scanning and agent-based protection options for securing cloud VMs, containers, Kubernetes apps, serverless functions, and containerized offerings like AWS Fargate tasks. It provides quick risk assessments without deploying preventive or blocking capabilities, and also supports deep forensic visibility and preventive policies to block suspicious activity.

Security integrated across the application lifecycle: The vendor states that Prisma Cloud delivers a comprehensive view of vulnerabilities across the application lifecycle, helping prioritize risks in real time across public cloud, private cloud, and on-premises environments. It offers a centralized dashboard to manage risk and prioritize vulnerabilities with intelligent risk scoring, and supports all cloud-native technologies.

Vulnerability management: Prisma Cloud aims to secure cloud-native applications by providing a centralized view of vulnerabilities across the application lifecycle. It offers real-time visibility into vulnerabilities for every host, container, and serverless function, and integrates with existing systems and tools to send vulnerability alerts to common endpoints.

Compliance: According to the vendor, Prisma Cloud enables organizations to achieve and maintain compliance for dynamic, ephemeral infrastructures. It provides real-time and historical views into compliance status for hosts, containers, and serverless functions, and covers leading compliance frameworks with prebuilt templates.

CI/CD security: Prisma Cloud integrates with the CI/CD pipeline to secure cloud-native applications throughout the application lifecycle. It identifies exposed issues within the codebase, creates a consolidated inventory of code risks and pipelines, and enforces security policies to prevent insecure components from progressing through the development pipeline.

Runtime defense: The vendor claims that Prisma Cloud provides automated runtime defense to ensure the security of hosts, containers, and serverless applications. It supports a wide range of cloud-native technologies and captures detailed forensics of every audit or security incident for incident response and analysis.

Container access control: Prisma Cloud offers granular control over Docker configurations, containers, images, nodes, plugins, services, and more. It integrates with secrets management tools to manage and secure secrets for containers, and surfaces Kubernetes audit data to identify events to alert on.

Image Analysis Sandbox: According to the vendor, Prisma Cloud enables the safe pulling and running of container images from external repositories by dynamically scanning them in a sandbox virtual machine. It assesses the risk of an image by collecting processes, networking, and filesystem events, and can be integrated into CI/CD workflows.

Trusted Images: Prisma Cloud allows organizations to declare trusted registries, repositories, and images, and respond to untrusted images in the environment. It monitors the origin of all containers on the hosts, establishes trust by point of origin or base layer, and issues audit alerts and blocks untrusted images.

Flexible control: According to the vendor, Prisma Cloud offers agile and integrated controls to protect the entire cloud workload and application stack. It supports both agentless scanning for easy visibility and agent-based protection for runtime threats, and provides a unified console and policy engine for managing security from a single location.