Prisma Cloud Security Solution
August 17, 2021
Prisma Cloud Security Solution
Score 8 out of 10
Vetted Review
Verified User
Overall Satisfaction with Palo Alto Networks Prisma Cloud
We have been using Prisma (Redlock and Twistlock) for monitoring our Cloud Workload hosted on multiple Cloud across multiple Account. The Solution helps us to identify any issue in terms of Security such as configuration/monitoring/IAM/Vulnerability and more.
It provides us the compliance status on workload hosted on multiple clouds with respect to multiple compliance standards such as CIS,NIST and more
We are able to schedule reports and alerts which help us to enhance our security posture. It's able to scan or identify any vulnerability at OS level by deploying Agent on Workload. Integration with CF templates helps us to identify any security issues before workload is deployed in our environment.
It provides us the compliance status on workload hosted on multiple clouds with respect to multiple compliance standards such as CIS,NIST and more
We are able to schedule reports and alerts which help us to enhance our security posture. It's able to scan or identify any vulnerability at OS level by deploying Agent on Workload. Integration with CF templates helps us to identify any security issues before workload is deployed in our environment.
- Vulnerability assessment using Twistlock
- Enhancing Security by scanning workload based on different Security standards and provide a compliance report
- CF template integration with CI/CD pipeline to identify any security issue before workload are deployed
- IAM/UEBA features additional to enchaining security posture
- Auto remediation
- Integration is simple and solution is supported on multiple cloud
- Customized dashboard/queries
- IAM control need enhancement as there are few features missing
- Support on all Container solution such as Pivotal PCF
- Number of Security Policy for scanning is less and required more policy to identify a security issue
- Cloud is not hosted in India
- Firewall Policy on Container required some enhancement for blocking communication between workload
- Enabling Proxy for connecting on-prem workload container to cloud
- Solution should not require write access to a cloud account. It should have capabilities of using existing cloud API for remediation or making changes on Cloud
- Remediation (Auto/Manual)
- Centralize Security Dashboard for multiple cloud or account
- Reporting based on Standard such as CIS and More
- Vulnerability assessment for OS
- CF templates integration with CI/CD
- Provide visibility of workload or services running within our cloud environment. This also help us to decommissioned/disconnect workload which is no more required
- Enhanced security posture for API OPEN/Closed based on application requirement
- Identify Services/Workload hosted on a different account or Cloud and which are not Meeting compliance requirement
- Trend Micro Cloud One - Conformity, Check Point CloudGuard Posture Management (formerly Dome9) and Aqua Cloud Native Security Platform
Each solution has some or the other feature which is USP within that solution but based on our requirement we found Palo Alto Prisma is Meeting most of our requirements since we want to monitor workload/Services hosted on both Cloud/On-Prem.
Do you think Palo Alto Networks Prisma Cloud delivers good value for the price?
Yes
Are you happy with Palo Alto Networks Prisma Cloud's feature set?
Yes
Did Palo Alto Networks Prisma Cloud live up to sales and marketing promises?
Yes
Did implementation of Palo Alto Networks Prisma Cloud go as expected?
Yes
Would you buy Palo Alto Networks Prisma Cloud again?
Yes