{"id":120563,"date":"2020-10-26T14:50:27","date_gmt":"2020-10-26T21:50:27","guid":{"rendered":"https:\/\/www.paloaltonetworks.com\/blog\/?p=120563"},"modified":"2020-10-26T14:50:30","modified_gmt":"2020-10-26T21:50:30","slug":"cloud-comprehensive-cnsp-essential","status":"publish","type":"post","link":"https:\/\/www2.paloaltonetworks.com\/blog\/2020\/10\/cloud-comprehensive-cnsp-essential\/","title":{"rendered":"Prisma Cloud 2.0 Just Launched: Why a Comprehensive CNSP is Essential"},"content":{"rendered":"

We recently announced the <\/span>largest release for Prisma Cloud<\/span><\/a> to date, creating the industry's only comprehensive Cloud Native Security Platform (CNSP).\u00a0<\/span><\/p>\n

But what does it mean to say Prisma Cloud 2.0 is the industry\u2019s only comprehensive CNSP? Why is it essential for a CISO, cybersecurity leader, cloud security engineer or DevOps engineer?<\/span><\/p>\n

 <\/p>\n

Why Does a Comprehensive CNSP Matter?<\/h2>\n

Our claim has three aspects: Prisma Cloud is comprehensive, it is cloud native and it is an integrated platform. Let me explain what we mean by each of these terms, and how each one contributes to creating better outcomes for our customers.<\/span><\/p>\n

 <\/p>\n

Comprehensive<\/b><\/h5>\n

By comprehensive, we mean that Prisma Cloud is designed and optimized for a wide set of security scenarios<\/span>.<\/b> It offers <\/span>four pillars of functionality<\/span><\/a>, covering areas like visibility and security compliance, application security, network security and permissions\/identity security, across <\/span>nine integrated functionality modules<\/span><\/a>. All of this comes with <\/span>full<\/b> lifecycle protection<\/span><\/a>, from scanning code in development to managing runtime risk, and providing ex post facto forensics for incident response. No other cloud security vendor solution offers such comprehensive capabilities as a single product within a single pane of glass.\u00a0<\/span><\/p>\n

Prisma Cloud has <\/span>cloud hosting locations<\/span><\/a> around the world, including the US, Canada, Continental Europe, Singapore, Australia and China. In the US, Prisma Cloud also supports AWS GovCloud and Azure Government. This translates into stronger, <\/span>broader<\/b> and more flexible coverage of your cloud environments, no matter where or how you operate or plan to grow.\u00a0<\/span><\/p>\n

 <\/p>\n

Cloud Native<\/b><\/h5>\n

Prisma Cloud is purpose-built to help customers secure their <\/span>cloud native<\/b> applications and environments. This philosophy applies whether through new development leveraging modern, cloud-native architectures or securing \"lift-and-shift\" migrations while maintaining consistency across all cloud environments.\u00a0<\/span><\/p>\n

The platform is designed for, built in and operates as a cloud service \u2013 the platform uses microservices running on containers, and our product teams deploy code continuously to our customers. In fact, we <\/span>release new builds<\/span><\/a> monthly. We can support cloud native because we understand cloud native.\u00a0<\/span><\/p>\n

 <\/p>\n

Integrated Platform<\/b><\/h5>\n

Finally, a key reason Prisma Cloud is so effective is because the entire scope of functionality exists in one pane of glass. Users don't have to jump from one browser window to another to get a full understanding of security posture or reconcile data and logs from a multitude of sources.\u00a0<\/span><\/p>\n

Users benefit from our ability to correlate data across multiple threat vectors and multiple resources. For instance, if a customer has an Amazon Web Services Simple Storage Service (AWS S3) bucket open to the public, Prisma Cloud helps detect it as a potential misconfiguration and can help assess the relative severity of the exposure based on an understanding of the <\/span>sensitivity of the data<\/span><\/a> being stored in that S3 bucket. Likewise, if an organization has multiple public-facing <\/span>web applications and APIs<\/span><\/a>, Prisma Cloud can help automatically identify new or existing resources, and provide compliance information, runtime status and protection details.<\/span><\/p>\n

Even more, there is a single commercial SKU, meaning customers have access to the full product without having to buy it piece-by-piece. At the same time, our model allows customers to adopt Prisma Cloud at their own pace, so they don\u2019t have to make a decision to go all-in at once. This is especially appealing in the current pandemic as most security teams don\u2019t have the bandwidth to implement a single, big-bang redesign of their security processes.\u00a0<\/span><\/p>\n

 <\/p>\n

What Does Prisma Cloud Mean For Customers?<\/b><\/h2>\n

The cumulative effect of this comprehensive CNSP is that customers get <\/span>future-proof solutions<\/span><\/a>, using fewer tools and fewer vendors \u2013 simplifying cloud security. When organizations use disparate, fragmented security tools, it makes their cloud environment less secure \u2013 complexity breeds gaps, and gaps breed insecurity.\u00a0<\/span><\/p>\n

I have personally spoken with hundreds of cloud security teams over the last year. I find most organizations fall into one of three categories. Some have started on a path to building an entire platform by themselves, which they are realizing is very costly and hard to keep current. Some are building the \"glue\" so they can stitch different best-of-breed tools together. Others are still stuck with silos of multiple, independent tools that need to be managed individually. Customers in each of these three categories want a path to a simpler, more efficient and more secure state \u2013 and most have a desire to move to a unified platform.\u00a0<\/span><\/p>\n

Not surprisingly, research from the <\/span>State of Cloud Native Security<\/span> <\/a>report published earlier this year found <\/span>that a majority of cloud customers (57%) use more than five cloud security tools to manage their cloud environments. However, 51% of the highest performing organizations think a single, comprehensive cloud native security solution would improve their security posture. <\/span>The consolidated approach is critical for the cloud since <\/span>more than 90% of businesses use multiple cloud providers<\/span><\/a>. They need a uniform approach to managing security across all their public and private environments.\u00a0<\/span><\/p>\n

 <\/p>\n

Begin Your Journey With Prisma Cloud<\/b><\/h2>\n

Let me share some recent examples of customers who have embarked on the journey to a comprehensive cloud security platform across their cloud environments.<\/span><\/p>\n