With Prisma Cloud, Jha and his team now have the visibility and control that are critical to their operations.
Onboarding was enlightening thanks to Palo Alto Networks. Using Prisma Cloud, Jha and his team discovered exactly how many CSP accounts they had in service — including many unnecessary open accounts. This is a common trend at most organizations.
Jha knew it wasn’t malicious, however. “Many employees create accounts without understanding the complications it presents. Many times they relate it to a SaaS model, where they just open it and everything is taken care of by the vendor. The concept of a shared services model for security isn’t on their radar.”
Still, he says this was part of the reason they began the DevSecOps pipeline process. “The business units have their own needs, and their own pace at which they need to move. And we provide that flexibility. We needed a partner to help us abstract all of it, so that when we look at the risk, we can look at it across the enterprise and not in silos for each CSP or business unit.”
Not only was the onboarding helpful; it was swift. “We were able to onboard hundreds of accounts in Prisma in a short amount of time—and nobody expected that,” Jha says.
Prior to using Prisma Cloud, the security team had difficulty simply taking inventory of all of the accounts. Now, they’re able to identify any account and specify if it was opened without the proper controls. “That gives us a complete visibility of the risk across all these accounts,” says Jha.
One feature of particular importance is the ability to easily see at a glance how many accounts have systems access that is not actually required. That used to be a huge challenge, but with APIs connected to Prisma Cloud, it is very simple.
In addition, Jha says, the “APIs help account admins get real-time updates on alerts with step-by-step instructions to remediate them. Prisma Cloud gives account owners all the tools they need to fix their issues without having to rely on anyone else.”
Prisma Cloud has provided a unified view of security and compliance posture across the full cloud native stack, making life a lot easier for everyone involved. “Security has the visibility they require, and application teams have the flexibility that they desire,” Jha says. “I can say that I am quite confident I know every account that Experian is using in the cloud. This is critical for enterprise security. Learn more about Prisma Cloud and how it can provide a unified view of security for your team. Visit paloaltonetworks.com/prisma/cloud