Palo Alto Networks has announced Prisma Cloud 2.0, the industry’s only comprehensive cloud-native security platform (CNSP). It includes four new security modules for secured multi- and hybrid-cloud environments and cloud-native applications integrating security across the full DevOps lifecycle.
This announcement integrated Aporeto and builds on the Palo Alto Networks Prisma Cloud that was introduced in November 2019. Prisma Cloud was previously the only provider offering both Cloud Security Posture Management and Cloud Workload Protection on a single platform with a single pane of glass, as a SaaS solution. With this addition, Prisma Cloud now has industry-leading offerings in each of the four CNSP areas, making Prisma Cloud 2.0 the only true Cloud-Native Security Platform.
The new Palo Alto Networks Prisma Cloud modules include:
- Data Security delivers data loss prevention (DLP) capabilities, offering discovery, classification, and malware detection for AWS S3. Enterprises operating in regulated industries can leverage Data Security when adopting the cloud to help meet various compliance requirements. When used in conjunction with Cloud Security Posture Management (CSPM) capabilities, Data Security provides customers an important context about their true cloud risks around data exposure.
- Web Application and API Security helps protect web applications against Layer 7 and OWASP Top 10 threats, integrated with the unified agent framework that enterprises already use today for Cloud Workload Protection Platforms (CWPP).
- Identity-Based Microsegmentation integrates powerful Cloud Network Security (CNS) capabilities, following the acquisition of Aporeto, to provide end-to-end visibility of network communications, along with comprehensive security policy control and management.
- Identity and Access Management (IAM) Security gives customers Cloud Infrastructure Entitlement Management (CIEM) capabilities and allows them to gain visibility into who has access to specific cloud resources and secure those resources by establishing automated least-privileged identity access.