Palo Alto Networks innovates Prisma Cloud to help organisations ensure no workload is left unprotected.
The new capabilities, Palo Alto Networks says, “increase automation and detection, simplify compliance checks, and deepen visibility into malware threats for containers and hosts.”
Palo Alto Networks also unveils what it calls “the industry’s first cloud native attack dashboard” that extends the Mitre Att&ck framework.
“They [organisations] are managing multiple, single-purpose security solutions to protect these workload stacks, which can create operational burdens and security gaps”, Badhwar says.
He claims: “Today’s new capabilities further our commitment to deliver comprehensive cloud workload protection across hybrid and multi-cloud environments. DevOps teams can now efficiently build and deploy their workloads and applications rapidly, while helping security teams deliver protection.”
The new Prisma Cloud capabilities for cloud workload protection are:
● Auto-Detection and Auto-Protection for Hosts: Prisma Cloud now automatically detects unprotected virtual machines (VMs) running on Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP), and seamlessly deploys the Prisma Cloud Defender agent to help ensure that VMs are not left unprotected.
● The Industry’s First Comprehensive Attack Framework Spanning Threats to Cloud Native Workloads: Prisma Cloud’s new interactive dashboard extends the Mitre Att&ck framework to provide a consolidated view of the entire cloud native application portfolio. This helps organisations evaluate their defence against specific threat scenarios, and provides incident response and remediation capabilities. This attack framework was developed by Palo Alto Networks Unit 42 threat research and consulting team.
● Anti-Malware Capabilities at Runtime and During Continuous Integration and Delivery (CI/CD) Scenarios: Prisma Cloud now includes Palo Alto Networks WildFire intelligence to protect and have a deeper visibility into malicious malware threats with new anti-malware and prevention capabilities for host and containers, beginning in the build process before the software is deployed.
● Simplified Compliance for Hosts, Containers and Serverless Applications: Prisma Cloud Compliance Explorer simplifies compliance visibility across leading frameworks and Centre for Internet Security (CIS), including new updates to the latest benchmarks, which join the existing six certifications. In addition, a new user interface delivers a compliance solution for implementing Docker DISA STIG (Defense Information Systems Agency Security Technical Implementation Guide).
● Open Source License Analysis and Expanded Software Composition Analysis: Prisma Cloud adds support for scanning code repositories with the twistcli command line interface, as well as new support for scanning GitHub Enterprise repositories. Additionally, Prisma Cloud includes advanced license detection to identify open-source licenses in packages, combined with license compliance rules, to monitor and manage usage within an organisation.
Doug Cahill, Enterprise Strategy Group, Vice President and Group Director, Cybersecurity, says, “Enterprises are running their cloud native applications on a wide variety of form factors—including a combination of cloud VMs, containers, Kubernetes, and serverless architectures that all need to be secured.”
He concludes: "The latest enhancements to Prisma Cloud deepen their security capabilities for protecting modern applications on both containers and Kubernetes, but also foundational virtual machines from a single, unified solution."