As organizations move more infrastructure and workloads to the cloud, they need to ensure security is intelligently, consistently and continuously integrated across the development lifecycle. The latest Prisma Cloud updates help enterprises shift security left, delivering comprehensive security from code to cloud in a single, unified platform. The benefit: powerful, agile and flexible cloud security, simplified from the most complete Cloud Native Application Protection Platform.
Modern development and DevOps teams rely on infrastructure as code (IaC) templates, such as AWS CloudFormation or HashiCorp Terraform, to quickly and repeatedly provision cloud infrastructure. In this release, we're enabling developer and security teams to address cloud risks earlier. With Infrastructure as Code Security, IaC scanning and code fixes are embedded directly into developer tools across the development lifecycle as part of Prisma Cloud.
Agentless scanning is an additive, complementary solution in Prisma Cloud that simplifies our approach to visibility across compute assets in addition to our agent-based protection. Agentless scanning can be initiated easily while onboarding cloud accounts to provide a non-intrusive way of understanding security posture. This extends coverage to both active and dormant virtual machines in the public cloud. At launch, Prisma Cloud will support virtual machines on AWS with plans to extend to other stacks and clouds.
As organizations increasingly adopt infrastructure as a service (IaaS) models for cloud development, the number of entities granted access to critical infrastructure necessarily grows as well. To help our customers better address these growing risks, Prisma Cloud now extends existing Cloud Infrastructure Entitlement (CIEM) functionality for AWS to Microsoft Azure. Users gain visibility into accounts, resources and workloads managed by Azure, and the Azure AD integration helps calculate net-effective user permissions, no matter which CSP or service the user is accessing.
Prisma Cloud Identity-Based Microsegmentation now offers out-of-the-box rules and application profiling, helping security teams simplify and accelerate their Zero Trust adoption. App profiling is a simple workflow that automatically generates the optimal, least-privilege microsegmentation rules for any cloud native application, with just a single click.
Security teams want to ensure that they are achieving the highest levels of efficiency possible with their existing security tools. Prisma Cloud users can now use the Adoption Advisor dashboard to measure all activated platform capabilities in one place and get detailed guidance on how to leverage further untapped capabilities. The initial dashboard release covers integrated Cloud Security Posture Management (CSPM) functionality, with an additional expansion to other areas of the platform coming soon.
Security teams need to identify misconfigurations and vulnerabilities as quickly as possible to prevent incidents and ensure compliance in their cloud environments. We've introduced improvements to the Prisma Cloud architecture that reduce alert times – customers can address issues faster and save costs from excessive API calls and cloud audit log investigation. This ensures teams can reduce their time-to-remediation for any misconfiguration or threat.