* [Blog](https://www2.paloaltonetworks.com/blog)
* [Palo Alto Networks](https://www2.paloaltonetworks.com/blog/corporate/)
* [Announcement](https://www2.paloaltonetworks.com/blog/category/announcement/)
* Prisma Cloud Shifts Left ...

# Prisma Cloud Shifts Left With Proposed Acquisition of Bridgecrew

[](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fwww2.paloaltonetworks.com%2Fblog%2F2021%2F02%2Fprisma-cloud-bridgecrew%2F)  
[](https://twitter.com/share?text=Prisma+Cloud+Shifts+Left+With+Proposed+Acquisition+of+Bridgecrew&url=https%3A%2F%2Fwww2.paloaltonetworks.com%2Fblog%2F2021%2F02%2Fprisma-cloud-bridgecrew%2F)  
[](https://www.linkedin.com/shareArticle?mini=true&url=https%3A%2F%2Fwww2.paloaltonetworks.com%2Fblog%2F2021%2F02%2Fprisma-cloud-bridgecrew%2F&title=Prisma+Cloud+Shifts+Left+With+Proposed+Acquisition+of+Bridgecrew&summary=&source=)  
[](https://www.paloaltonetworks.com//www.reddit.com/submit?url=https://www2.paloaltonetworks.com/blog/2021/02/prisma-cloud-bridgecrew/&ts=markdown)  
\[\](mailto:?subject=Prisma Cloud Shifts Left With Proposed Acquisition of Bridgecrew)  
Link copied  
By [Lee Klarich](https://www.paloaltonetworks.com/blog/author/lee-klarich/?ts=markdown "Posts by Lee Klarich")  
Feb 16, 2021  
6 minutes  
[Announcement](https://www.paloaltonetworks.com/blog/category/announcement/?ts=markdown)  
[DevSecOps](https://www.paloaltonetworks.com/blog/cloud-security/category/devsecops/?ts=markdown)  
[Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown)  
[Bridgecrew](https://www.paloaltonetworks.com/blog/tag/bridgecrew/?ts=markdown)  
[IaC](https://www.paloaltonetworks.com/blog/tag/iac/?ts=markdown)  
[Prisma Cloud](https://www.paloaltonetworks.com/blog/tag/prisma-cloud/?ts=markdown)  
[Shift-left](https://www.paloaltonetworks.com/blog/tag/shift-left/?ts=markdown)

Today, I'm pleased to share the exciting news of our proposed acquisition of Bridgecrew, a developer-first cloud security company (see our [press release)](https://www.paloaltonetworks.com/company/press/2021/palo-alto-networks-announces-intent-to-acquire-bridgecrew). They are an amazing team with great technology and a pioneer in the emerging space of "shift left" cloud security. I'll share a lot more on why this will be such a great fit, but first a little background to put it in context.

About two and a half years ago, we made an early bet on cloud security. We did so based on three fundamental principles:

1. **Cloud adoption would be the new normal.** After leading the industry in our acquisitions of Evident and Redlock, we were well placed to serve customers as they began rapidly shifting workloads to the cloud and consuming more cloud-based applications and services.
2. **New technologies to support cloud native architectures such as containers and serverless would become mainstream**. We were right again: Our acquisitions of Twistlock and PureSec and integrating them into our Prisma Cloud offering allowed us to meet customers' emerging needs of cloud workload protection.
3. **The future would be multi-cloud**where Cloud Service Providers cannot be the sole provider of security, and a single pane of glass for multi-cloud security will be required. We were right for a third time: We've continued to evolve our Prisma Cloud portfolio through acquisition and organic product development to include identity-based microsegmentation, Data Security, and IAM Security.

This bet, the related combination of M\&A and the proactive support of organic development have allowed us to build Prisma Cloud into the market-leading player of today: now servicing more than 1,800 customers, including 70% of the Fortune 100.

**Today, we're making another bet, this time on "shift left" security.**

We believe that cloud security will need to integrate across the entire application lifecycle, and that the integration of build time and runtime security has to strengthen.

To give you an idea of the current challenges faced by customers as organizations embrace the cloud, the number of developers rapidly pushing code into the cloud outnumbers the security professionals tasked with monitoring these changes for security issues by 10 to 1. As security teams mature their runtime security practices, this puts back-pressure on the developers to fix issues found after deploying to production. The imbalance not only risks delays in application deployments, but also results in security missteps at the application development stage that may leave clouds exposed for attack and can be much more costly to fix when found after product release.

Developers and security teams alike are looking for a solution: Developers don't want to figure out that security is not working at the late stage of the development cycle. And the CISO who is charged with protecting the entire organization certainly values the higher levels of security gained from fixing issues earlier in the development lifecycle.

!["Shift left": 4-5x better security; Developers (26+ million), DevOps, Security Teams (about three million); Infrastructure as Code: 25% more efficient application deployment.](https://www.paloaltonetworks.com/blog/wp-content/uploads/2021/02/Boulder-Blog-Images-1.png)

Integrating cloud security across the application lifecycle will both improve security **and** speed up development, helping developers and DevOps teams to identify and correct security problems before code is pushed into production. This will also reduce the impact of security issues on end users and prevent the delay of application deployments.

## **Bridgecrew: An Early Pioneer of Security for Developers and DevOps**

Enter Bridgecrew, who are at the forefront of the emerging space of Infrastructure as Code (IaC) security. They have had significant early traction with an open-source platform called Checkov that has had more than 1 million downloads in its first full year and is growing at an incredible pace.

![The image illustrates the challenges Bridgecrew addresses with its technology: One misconfigured IaC template can turn into hundreds of deployments, which can lead to thousands of security alerts for developers.](https://www.paloaltonetworks.com/blog/wp-content/uploads/2021/02/Boulder-Blog-Images-2.png)

To understand why there is so much early traction, let's look at the challenges it addresses.

Historically, infrastructure, whether in the cloud or on-premises, was configured manually. IaC automates the provisioning of infrastructure, enabling organizations to develop, deploy and scale cloud applications with greater speed, less risk and reduced cost. Once an IaC template is created by a developer or a DevOps engineer, it's typically used over and over again, and it's not uncommon that one template can be used hundreds or even thousands of times.

Why is this important? Any security mistakes made in that one template will be replicated across every deployment, and then for every deployment, all of those errors will be flagged by cloud security products. A single mistake can easily turn into thousands of alerts. And typically those alerts are eventually sent back to the developer to fix, since security teams don't have the application insights or the permissions to do so. One mistake can result in thousands of alerts -- and hours of lost developer productivity.

![This shows the contrast of what Bridgecrew can provide: One secure IaC template, leading to hundreds of deployed secure workloads, leading to minimal security alerts post-deployment.](https://www.paloaltonetworks.com/blog/wp-content/uploads/2021/02/Boulder-Blog-Images-3.png)

Bridgecrew, who pioneered a developer-first approach to secure IaC, have built a cloud security product for developer and DevOps teams that makes it really easy to identify and fix issues as early in the development process as possible -- hence the term "shift left." By fixing the issues at their source, the IaC template is secured before it is deployed to hundreds of workloads, resulting in a massive reduction in security alerts.

Bridgecrew's product embeds security into every commit, pull request and build job. In doing so, it alerts the dev teams in realtime and in the tools they know and love so much. This is not only good for developer productivity -- it also helps security teams to focus on critical runtime security threats. Both teams win in the end.

## **Expanding Our Cloud Native Security Platform With Prisma Cloud + Bridgecrew**

There are so many exciting things we have in store as we look to enforce a consistent set of security policies from build time to runtime. This combination will enable more security controls to be embedded earlier in the development lifecycle, fewer compliance errors and faster time to remediation, and reduced friction between security and development teams.

Bridgecrew provides a very valuable set of capabilities that our customers are looking for, and most importantly, opens up an opportunity for us to further engage with the developer community which is so important to the future of cloud security.

Stay tuned for more information following the close of this acquisition.

*** ** * ** ***

## Related Blogs

### [Announcement](https://www.paloaltonetworks.com/blog/category/announcement/?ts=markdown), [Cloud Posture Security](https://www.paloaltonetworks.com/blog/cloud-security/category/cloud-security-posture-management/?ts=markdown), [Cloud Workload Protection Platform](https://www.paloaltonetworks.com/blog/cloud-security/category/cloud-workload-protection-platform/?ts=markdown), [DevSecOps](https://www.paloaltonetworks.com/blog/cloud-security/category/devsecops/?ts=markdown), [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown)

[#### Prisma Cloud and Bridgecrew: Doubling Down on Developer-Led Security](https://www2.paloaltonetworks.com/blog/2021/03/bridgecrew-developer-led-security/)

### [Announcement](https://www.paloaltonetworks.com/blog/category/announcement/?ts=markdown), [Partners](https://www.paloaltonetworks.com/blog/category/partners/?ts=markdown), [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown)

[#### Discover, Protect and Respond with AWS and Prisma Cloud](https://www2.paloaltonetworks.com/blog/2024/11/aws-and-prisma-cloud/)

### [Announcement](https://www.paloaltonetworks.com/blog/category/announcement/?ts=markdown), [Announcement](https://www.paloaltonetworks.com/blog/cloud-security/category/announcement/?ts=markdown), [Cloud Security](https://www.paloaltonetworks.com/blog/cloud-security/category/cloud-security/?ts=markdown), [CNAPP](https://www.paloaltonetworks.com/blog/cloud-security/category/cnapp/?ts=markdown), [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown)

[#### Prisma Cloud: Darwin Release Introduces Code to Cloud Intelligence](https://www2.paloaltonetworks.com/blog/2023/10/announcing-innovations-cnapp-prisma-cloud/)

### [Announcement](https://www.paloaltonetworks.com/blog/category/announcement/?ts=markdown), [Announcement](https://www.paloaltonetworks.com/blog/cloud-security/category/announcement/?ts=markdown), [Cloud Native Security Platform](https://www.paloaltonetworks.com/blog/cloud-security/category/cloud-native-security-platform/?ts=markdown), [Cloud Workload Protection](https://www.paloaltonetworks.com/blog/category/cloud-workload-protection/?ts=markdown), [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown)

[#### Agentless Workload Scanning Gets Supercharged with Malware Scanning](https://www2.paloaltonetworks.com/blog/2023/06/agentless-malware-scanning/)

### [Announcement](https://www.paloaltonetworks.com/blog/category/announcement/?ts=markdown), [Partners](https://www.paloaltonetworks.com/blog/category/partners/?ts=markdown), [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown)

[#### Commercial Initiatives for Partner Success -- Breakaway 1=5](https://www2.paloaltonetworks.com/blog/2023/02/commercial-initiatives-for-partner-success/)

### [Announcement](https://www.paloaltonetworks.com/blog/category/announcement/?ts=markdown), [Cloud Security](https://www.paloaltonetworks.com/blog/cloud-security/category/cloud-security/?ts=markdown), [Cloud Security Provider](https://www.paloaltonetworks.com/blog/cloud-security/category/cloud-security-provider/?ts=markdown), [Cloud Workload Protection Platform](https://www.paloaltonetworks.com/blog/cloud-security/category/cloud-workload-protection-platform/?ts=markdown), [Company \& Culture](https://www.paloaltonetworks.com/blog/category/company-culture/?ts=markdown), [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown)

[#### Cloud Workload Protection Company of the Year](https://www2.paloaltonetworks.com/blog/2022/11/cloud-workload-protection-company-of-the-year/)

### Subscribe to the Blog!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.
![spinner](https://www2.paloaltonetworks.com/blog/wp-content/themes/panwblog2023/dist/images/ajax-loader.gif) Sign up  
Please enter a valid email.  
By submitting this form, you agree to our [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown) and acknowledge our [Privacy Statement](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown). Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.  
This site is protected by reCAPTCHA and the Google [Privacy Policy](https://policies.google.com/privacy) and [Terms of Service](https://policies.google.com/terms) apply.  
{#footer} {#footer}

## Products and Services

* [AI-Powered Network Security Platform](https://www.paloaltonetworks.com/network-security?ts=markdown)

* [Secure AI by Design](https://www.paloaltonetworks.com/precision-ai-security/secure-ai-by-design?ts=markdown)

* [Prisma AIRS](https://www.paloaltonetworks.com/prisma/prisma-ai-runtime-security?ts=markdown)

* [AI Access Security](https://www.paloaltonetworks.com/sase/ai-access-security?ts=markdown)

* [Cloud Delivered Security Services](https://www.paloaltonetworks.com/network-security/security-subscriptions?ts=markdown)

* [Advanced Threat Prevention](https://www.paloaltonetworks.com/network-security/advanced-threat-prevention?ts=markdown)

* [Advanced URL Filtering](https://www.paloaltonetworks.com/network-security/advanced-url-filtering?ts=markdown)

* [Advanced WildFire](https://www.paloaltonetworks.com/network-security/advanced-wildfire?ts=markdown)

* [Advanced DNS Security](https://www.paloaltonetworks.com/network-security/advanced-dns-security?ts=markdown)

* [Enterprise Data Loss Prevention](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Enterprise IoT Security](https://www.paloaltonetworks.com/network-security/enterprise-device-security?ts=markdown)

* [Medical IoT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [Industrial OT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [Next-Generation Firewalls](https://www.paloaltonetworks.com/network-security/next-generation-firewall?ts=markdown)

* [Hardware Firewalls](https://www.paloaltonetworks.com/network-security/hardware-firewall-innovations?ts=markdown)

* [Software Firewalls](https://www.paloaltonetworks.com/network-security/software-firewalls?ts=markdown)

* [Strata Cloud Manager](https://www.paloaltonetworks.com/network-security/strata-cloud-manager?ts=markdown)

* [SD-WAN for NGFW](https://www.paloaltonetworks.com/network-security/sd-wan-subscription?ts=markdown)

* [PAN-OS](https://www.paloaltonetworks.com/network-security/pan-os?ts=markdown)

* [Panorama](https://www.paloaltonetworks.com/network-security/panorama?ts=markdown)

* [Secure Access Service Edge](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Prisma SASE](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Application Acceleration](https://www.paloaltonetworks.com/sase/app-acceleration?ts=markdown)

* [Autonomous Digital Experience Management](https://www.paloaltonetworks.com/sase/adem?ts=markdown)

* [Enterprise DLP](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Prisma Access](https://www.paloaltonetworks.com/sase/access?ts=markdown)

* [Prisma Browser](https://www.paloaltonetworks.com/sase/prisma-browser?ts=markdown)

* [Prisma SD-WAN](https://www.paloaltonetworks.com/sase/sd-wan?ts=markdown)

* [Remote Browser Isolation](https://www.paloaltonetworks.com/sase/remote-browser-isolation?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [AI-Driven Security Operations Platform](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cloud Security](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Cortex Cloud](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Application Security](https://www.paloaltonetworks.com/cortex/cloud/application-security?ts=markdown)

* [Cloud Posture Security](https://www.paloaltonetworks.com/cortex/cloud/cloud-posture-security?ts=markdown)

* [Cloud Runtime Security](https://www.paloaltonetworks.com/cortex/cloud/runtime-security?ts=markdown)

* [Prisma Cloud](https://www.paloaltonetworks.com/prisma/cloud?ts=markdown)

* [AI-Driven SOC](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cortex XSIAM](https://www.paloaltonetworks.com/cortex/cortex-xsiam?ts=markdown)

* [Cortex XDR](https://www.paloaltonetworks.com/cortex/cortex-xdr?ts=markdown)

* [Cortex XSOAR](https://www.paloaltonetworks.com/cortex/cortex-xsoar?ts=markdown)

* [Cortex Xpanse](https://www.paloaltonetworks.com/cortex/cortex-xpanse?ts=markdown)

* [Unit 42 Managed Detection \& Response](https://www.paloaltonetworks.com/cortex/managed-detection-and-response?ts=markdown)

* [Managed XSIAM](https://www.paloaltonetworks.com/cortex/managed-xsiam?ts=markdown)

* [Threat Intel and Incident Response Services](https://www.paloaltonetworks.com/unit42?ts=markdown)

* [Proactive Assessments](https://www.paloaltonetworks.com/unit42/assess?ts=markdown)

* [Incident Response](https://www.paloaltonetworks.com/unit42/respond?ts=markdown)

* [Transform Your Security Strategy](https://www.paloaltonetworks.com/unit42/transform?ts=markdown)

* [Discover Threat Intelligence](https://www.paloaltonetworks.com/unit42/threat-intelligence-partners?ts=markdown)

## Company

* [About Us](https://www.paloaltonetworks.com/about-us?ts=markdown)
* [Careers](https://jobs.paloaltonetworks.com/en/)
* [Contact Us](https://www.paloaltonetworks.com/company/contact-sales?ts=markdown)
* [Corporate Responsibility](https://www.paloaltonetworks.com/about-us/corporate-responsibility?ts=markdown)
* [Customers](https://www.paloaltonetworks.com/customers?ts=markdown)
* [Investor Relations](https://investors.paloaltonetworks.com/)
* [Location](https://www.paloaltonetworks.com/about-us/locations?ts=markdown)
* [Newsroom](https://www.paloaltonetworks.com/company/newsroom?ts=markdown)

## Popular Links

* [Blog](https://www.paloaltonetworks.com/blog/?ts=markdown)
* [Communities](https://www.paloaltonetworks.com/communities?ts=markdown)
* [Content Library](https://www.paloaltonetworks.com/resources?ts=markdown)
* [Cyberpedia](https://www.paloaltonetworks.com/cyberpedia?ts=markdown)
* [Event Center](https://events.paloaltonetworks.com/)
* [Manage Email Preferences](https://start.paloaltonetworks.com/preference-center)
* [Products A-Z](https://www.paloaltonetworks.com/products/products-a-z?ts=markdown)
* [Product Certifications](https://www.paloaltonetworks.com/legal-notices/trust-center/compliance?ts=markdown)
* [Report a Vulnerability](https://www.paloaltonetworks.com/security-disclosure?ts=markdown)
* [Sitemap](https://www.paloaltonetworks.com/sitemap?ts=markdown)
* [Tech Docs](https://docs.paloaltonetworks.com/)
* [Unit 42](https://unit42.paloaltonetworks.com/)
* [Do Not Sell or Share My Personal Information](https://panwedd.exterro.net/portal/dsar.htm?target=panwedd)
  ![PAN logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/pan-logo-dark.svg)
* [Privacy](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown)
* [Trust Center](https://www.paloaltonetworks.com/legal-notices/trust-center?ts=markdown)
* [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown)
* [Documents](https://www.paloaltonetworks.com/legal?ts=markdown)

Copyright © 2026 Palo Alto Networks. All Rights Reserved

* [![Youtube](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/youtube-black.svg)](https://www.youtube.com/user/paloaltonetworks)
* [![Podcast](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/icons/podcast.svg)](https://www.paloaltonetworks.com/podcasts/threat-vector?ts=markdown)
* [![Facebook](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/facebook-black.svg)](https://www.facebook.com/PaloAltoNetworks/)
* [![LinkedIn](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/linkedin-black.svg)](https://www.linkedin.com/company/palo-alto-networks)
* [![Twitter](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/twitter-x-black.svg)](https://twitter.com/PaloAltoNtwks)
* EN  
  Select your language