Try our new research platform with insights from 80,000+ expert users

AWS Security Hub vs Prisma Cloud by Palo Alto Networks comparison

Amazon Web Services (AWS) and Palo Alto Networks are both solutions in the Cloud Security Posture Management (CSPM) category. Amazon Web Services (AWS) is ranked #13 with an average rating of 7.9, while Palo Alto Networks is ranked #2 with an average rating of 8.5. Amazon Web Services (AWS) holds a 3.5% mindshare in CSPM, compared to Palo Alto Networks’s 9.3% mindshare. Additionally, 89% of Amazon Web Services (AWS) users are willing to recommend the solution, compared to 98% of Palo Alto Networks users who would recommend it.
AWS Security Hub
Read 26 AWS Security Hub reviews
  • 7,636 Views
  • 3,283 Comparison Views
89% willing to recommend
Prisma Cloud by Palo Alto N...
Read 114 Prisma Cloud by Palo Alto Networks reviews
  • 23,019 Views
  • 12,660 Comparison Views
98% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Feb 1, 2026

Prisma Cloud by Palo Alto Networks and AWS Security Hub compete in the cloud security management category. Prisma Cloud appears to have the upper hand due to its multi-cloud capabilities and comprehensive features set, making it more suitable for diverse cloud environments.

Features: Prisma Cloud excels in workload identity creation, application dependency mapping, and seamless integration with AWS products using dynamic attributes and cryptographic identity. AWS Security Hub provides a comprehensive overview of security alerts and compliance status across AWS accounts, but lacks the feature depth of Prisma Cloud.

Room for Improvement: Prisma Cloud could benefit from better documentation and real-world use case examples, transparency in security checks, improved API security focus, and a reduction in pricing. AWS Security Hub needs to enhance its user interface sophistication, multi-cloud support, and real-time scanning capabilities to better compete with Prisma Cloud.

Ease of Deployment and Customer Service: Prisma Cloud is recognized for its robust customer service, regional support responsiveness, and versatile deployment across hybrid and multi-cloud environments. AWS Security Hub integrates smoothly within AWS's ecosystem, but lacks the multi-cloud flexibility and deployment versatility demonstrated by Prisma Cloud.

Pricing and ROI: Prisma Cloud is perceived as expensive yet justified by its feature set and value in multi-cloud environments, offering extensive cloud security functionalities and compliance capabilities. AWS Security Hub is viewed as cost-effective for AWS users, but its ROI may be limited in multi-cloud scenarios, which might restrict its economic appeal for more diverse cloud landscapes.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed AWS Security Hub vs. Prisma Cloud by Palo Alto Networks Report (Updated: February 2026).
Buyer's Guide
AWS Security Hub vs. Prisma Cloud by Palo Alto Networks
February 2026
Download the complete report
Helped 884,076 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

AWS Security Hub
Ranking in Cloud Security Posture Management (CSPM)
13th
Average Rating
7.6
Reviews Sentiment
6.5
Number of Reviews
26
Ranking in other categories
Security Orchestration Automation and Response (SOAR) (6th)
Prisma Cloud by Palo Alto N...
Ranking in Cloud Security Posture Management (CSPM)
2nd
Average Rating
8.4
Reviews Sentiment
7.1
Number of Reviews
114
Ranking in other categories
Web Application Firewall (WAF) (9th), Container Security (2nd), Cloud-Native Application Protection Platforms (CNAPP) (2nd), Data Security Posture Management (DSPM) (2nd)
 

Mindshare comparison

As of March 2026, in the Cloud Security Posture Management (CSPM) category, the mindshare of AWS Security Hub is 3.5%, down from 4.5% compared to the previous year. The mindshare of Prisma Cloud by Palo Alto Networks is 9.3%, down from 15.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Cloud Security Posture Management (CSPM) Mindshare Distribution
ProductMindshare (%)
Prisma Cloud by Palo Alto Networks9.3%
AWS Security Hub3.5%
Other87.2%
Cloud Security Posture Management (CSPM)
 

Featured Reviews

Karthik Ekambaram - PeerSpot reviewer
Karthik Ekambaram
Director at Scybers
Has helped identify misconfigurations and prioritize risks but lacks multi-cloud support and deeper integration features
AWS Security Hub cannot scale up to multiple different cloud environments; it only works for AWS. There are other products in the market for CSPM that can give you multi-cloud environment misconfigurations, even Microsoft for that matter. Regarding the integration of AWS Security Hub with third-party tools, I am not certain whether we can integrate them, but there is no need to do so. However, AWS Security Hub cannot integrate with other cloud providers, so it only supports the AWS environment. The compliance checks within AWS Security Hub are good, but we don't use them much. We utilize compliance frameworks such as CIS compliance frameworks and ISO 27017 framework, which are beneficial, but it can improve in other areas too, such as including NIST and other frameworks beyond just ISO and CIS. Improvements can be applicable for scalability, particularly on integration with multi-cloud environments, and compliance frameworks can be added for more variety as well. The unified dashboard in AWS Security Hub is adequate; I cannot say it is exceptional, but the content available in the dashboards is satisfactory for now.
Read full review
reviewer2776578 - PeerSpot reviewer
reviewer2776578
Cyber Security Architect at a comms service provider with 10,001+ employees
Image scanning has supported consistent security practices during cloud deployment
On a scale of ten, we would say people are happy with Prisma Cloud by Palo Alto Networks for the part we use. People are okay with it. We probably would give an eight. We don't give ten because if we don't use the other parts of Prisma Cloud by Palo Alto Networks, it's because it was difficult to implement from an operational point of view. We could have deployed the runtime monitoring with Prisma Cloud by Palo Alto Networks, but within our organization at our company, it was very difficult to find who would be the owner for the alerts. People have other tools and in the end, we don't use the full capabilities of a product that we pay for. It's partially related to the difficulty to integrate Prisma Cloud by Palo Alto Networks runtime in our company's support process. We don't use the real-time monitoring part of Prisma Cloud by Palo Alto Networks. We don't know about the automated remediation feature of Prisma Cloud by Palo Alto Networks.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Finding out if your infrastructure is secure is a valuable feature."
"I like that AWS Security Hub currently has several good features, around four or five. The technical support for AWS Security Hub is also responsive."
"The most valuable feature of AWS Security Hub is the ability to track when monitoring is not enabled on any of my resources."
"Currently, our organization utilizes AWS for various purposes, including SaaS (Software as a Service), PaaS (Platform as a Service), and hosting applications in the cloud. We develop our applications and use AWS services as a platform for basic functions and secondary development needs. Additionally, we rely on PaaS for accounting services. Approximately, 50% of our applications are hosted in the cloud environment, making it a significant part of our current setup."
"I rate Security Hub ten out of ten for stability."
"AWS Security Hub's unified dashboard does help streamline my process of identifying vulnerabilities, but we don't use Inspector."
"The most beneficial aspect of Security Hub is its proactive capability, allowing us to identify potential security issues before they escalate."
"AWS Security Hub brings many features into one table that is quite useful, and the app team finds it easier to see what is missing."
More AWS Security Hub pros
"We haven't had an issue with the product for over a year."
"You can also integrate with Amazon Managed Services. You can also get a snapshot in time, whether that's over a 24-hour period, seven days, or a month, to determine what the estate might look like at a certain point in time and generate reports from that for vulnerability management forums."
"Prisma Cloud's monitoring features such as the compute compliance dashboard and the vulnerability dashboard, where we can get a clear visualization of their docker, have also been valuable. We can get layer-by-layer information that helps us see exactly where it's noncompliant. They update the dashboards quite frequently."
"We have standardized vendor process management, so we want to reduce multiple vendors. Prisma Cloud is part of Palo Alto. We use Palo Alto firewalls and other solutions. Prisma has many features that intelligently cover cloud security. One solution can cover runtime for EC2 systems, containers, and Fargate. We also have EKS/Kubernetes integration. So, whatever the cloud-native solution in Pfizer, we can use one solution to secure that."
"It is user-friendly. It has a good look and feel and reporting structure. It provides a single pane of glass. These are the things that I like."
"Prisma Cloud's inventory reporting is pretty good."
"My favorite feature is the CWPP module. We can define various kinds of rules for vulnerabilities, incidents, or suspicious activities."
"We are provided with a single tool to protect all of our cloud resources and applications without having to manage and reconcile compliance reports."
More Prisma Cloud by Palo Alto Networks pros
 

Cons

"AWS Security Hub should improve the time it takes to update. It takes a long period of time when updating. It can take 24 hours sometimes to update. Additionally, when integrating this solution with more security tools, takes time."
"Although AWS Security Hub does a periodic scan of your overall infrastructure, it doesn't do it in real time."
"Security needs to be measured based on their own criteria. We can't add custom criteria specific to our organization. For example, having an S3 bucket publicly available might be flagged as a critical alert, but it might not be critical in a sandbox environment. So, it gets flagged as critical, which becomes a false positive. So, customization options and creating custom dashboards would be areas for improvement."
"AWS Security Hub cannot scale up to multiple different cloud environments; it only works for AWS."
"Security Hub is currently not worth investing in, as it requires more configurations and integration with other services to work effectively."
"The telemetry doesn't always go into the control center. When you have multiple instances running in AWS, you need a control tower to take feeds from Security Hub and analyze your results. Sometimes exemptions aren't passed between the control tower and Security Hub. The configuration gets mixed up or you don't get the desired results."
"AWS Security Hub's configuration and integration are areas where it lacks and needs to improve."
"Many findings are too generic or irrelevant to the environment, which can lead to false positives."
More AWS Security Hub cons
"The innovation side of the solution could be more efficient and more detailed."
"The training documentation provided for the two-hour boot camps is notoriously poor and disorganized."
"There I saw one feature called dummy payloads, in which we trigger the dummy payload, so it exactly gives the exploitable resources. That might be a feature that would be helpful if Prisma Cloud by Palo Alto Networks also had some kind of that feature."
"When it comes to protecting the full cloud-native stack, it has the right breadth. They're covering all the topics I would care about, like container, cloud configuration, and serverless. There's one gap. There could be a better set of features around identity management—native AWS—IAM roles, and service account management. The depth in each of those areas varies a little bit. While they may have the breadth, I think there's still work to do in flushing out each of those feature sets."
"Prisma Cloud's application security capabilities should be enhanced."
"They are missing some compatibility details in their documentation."
"Some of the usability within the Compute functionality needs improvement. I think when Palo Alto added on the Twistlock functionality, they added a Compute tab on the left side of the navigation. Some of the navigation is just a little dense. There is a lot of navigation where there is a tab and dropdowns. So, just improving some of the navigation where there is just a very dense amount of buttons and drop-down menus, that is probably the only thing, which comes from having a lot of features. Because there are a lot of buttons, just navigating around the platform can be a little challenging for new users."
"A better correlation between the multiple products Prisma Cloud contains would be crucial. It would reduce the time spent looking at reports and enable you to get all the actionable insights across products. I think that Palo Alto is working on it, but they need to work faster because it doesn't make sense to have all these products in a single pane of glass without any correlation between them."
More Prisma Cloud by Palo Alto Networks cons
 

Pricing and Cost Advice

"There are multiple subscription models, like yearly, monthly, and packaged."
"The pricing is fine. It is not an expensive tool."
"AWS Security Hub is not an expensive tool. I would consider it to be a cheap solution. AWS Security Hub follows the PAYG pricing model, meaning you will have to pay for whatever you use."
"Security Hub is not an expensive solution."
"The price of the solution is not very competitive but it is reasonable."
"The cost is based on the number of compliances, core checks, and services required, and for more than 10,000 recommendations, the charge is just one dollar."
"The price of AWS Security Hub is average compared to other solutions."
"AWS Security Hub's pricing is pretty reasonable."
"The pricing of the solution is fair."
"I don't know a better way to do it, but their licensing is a little confusing. That's due to the breadth of different types of technologies they are trying to cover. The way you license depends on where you're securing. When they were Twistlock it was a simple licensing scheme and you could tell what you were doing. Now that they've changed that scheme with Palo Alto, it is quite confusing. It's very difficult to predict what your costs are going to be as you try to expand coverage."
"Prisma Cloud by Palo Alto Networks carries a higher cost, but its enhanced security measures justify the expense."
"Prisma Cloud is more expensive than Check Point CloudGuard."
"Prisma Cloud's licensing system functions as expected with a solid licensing infrastructure."
"If you pay for three years of Palo Alto, it's better. If you're planning on doing this, it's obviously not going to be for one year, so it's better if you go with a three-year license... The only challenge we have is with the public cloud vendor pricing. The biggest lesson I have learned is around the issues related to pricing for public cloud. So when you are doing your segmentation and design, it is extremely important that you work with someone who knows and understands what kinds of needs you will have in the future and how what you are doing will affect you in terms of costs."
"One thing we're very pleased about is how the licensing model for Prisma is based on work resources. You buy a certain amount of work resources and then, as they enable new capabilities within Prisma, it just takes those work resource units and applies them to new features. This enables us to test and use the new features without having to go back and ask for and procure a whole new product, which could require going through weeks, and maybe months, of a procurement process."
"Prisma Cloud is remarkably expensive."
More Prisma Cloud by Palo Alto Networks pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Cloud Security Posture Management (CSPM) solutions are best for your needs.
See recommendations
884,076 professionals have used our research since 2012.
 

Comparison Review

it_user186927 - PeerSpot reviewer
it_user186927
Director of Operations at a comms service provider with 10,001+ employees
Feb 16, 2015
Cybereason vs. Interset vs. SQRRL
Capture DB - they all use NoSQL db and hence solve the ad hoc query and 'go back in time' problem with current best of breed SIEM and DLP solutions that rely on real time analysis of incoming logs (and don't store them). This means deeper and quicker iterative threat analysis and assessment…
Read full review
 

Top Industries

By visitors reading reviews
Financial Services Firm
11%
Computer Software Company
11%
Manufacturing Company
10%
Government
7%
Financial Services Firm
15%
Computer Software Company
10%
Manufacturing Company
9%
Insurance Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business10
Midsize Enterprise5
Large Enterprise12
By reviewers
Company SizeCount
Small Business37
Midsize Enterprise22
Large Enterprise56
 

Questions from the Community

Which is better - Azure Sentinel or AWS Security Hub?
We like that Azure Sentinel does not require as much maintenance as legacy SIEMs that are on-premises. Azure Sentinel is auto-scaling - you will not have to worry about performance impact, you will...
See all answers
What do you like most about AWS Security Hub?
The most valuable features of the solution are the scanning of all the cloud environments and most of the compliances available in the cloud.
See all answers
What needs improvement with AWS Security Hub?
AWS Security Hub cannot scale up to multiple different cloud environments; it only works for AWS. There are other products in the market for CSPM that can give you multi-cloud environment misconfig...
See all answers
What is your primary use case for Prisma Cloud by Palo Alto Networks?
Prisma Cloud helps support DevSecOps methodologies, making those responsibilities easier to manage.
See all answers
What Cloud-Native Application Protection Platform do you recommend?
We like Prisma Cloud by Palo Alto Networks, since it offers us incredible visibility into our entire cloud system. We are able to easily see where our container vulnerabilities lie and and where cl...
See all answers
What do you think of Aqua Security vs Prisma Cloud?
Aqua Security is easy to use and very manageable. Its main focus is on Kubernetes and Docker. Security is a very valuable feature and their speed of integration is very good. The initial setup was ...
See all answers
 

Comparisons

Microsoft Sentinel vs AWS Security Hub Logo
Microsoft Sentinel vs AWS Security Hub
Compared 35% of the time
Wiz vs AWS Security Hub Logo
Wiz vs AWS Security Hub
Compared 5% of the time
Microsoft Defender for Cloud vs AWS Security Hub Logo
Microsoft Defender for Cloud vs AWS Security Hub
Compared 4% of the time
Check Point CloudGuard CNAPP vs AWS Security Hub Logo
Check Point CloudGuard CNAPP vs AWS Security Hub
Compared 3% of the time
CrowdStrike Falcon Cloud Security vs AWS Security Hub Logo
CrowdStrike Falcon Cloud Security vs AWS Security Hub
Compared 3% of the time
More AWS Security Hub Competitors
Wiz vs Prisma Cloud by Palo Alto Networks Logo
Wiz vs Prisma Cloud by Palo Alto Networks
Compared 9% of the time
Check Point CloudGuard CNAPP vs Prisma Cloud by Palo Alto Networks Logo
Check Point CloudGuard CNAPP vs Prisma Cloud by Palo Alto Networks
Compared 7% of the time
Cyera vs Prisma Cloud by Palo Alto Networks Logo
Cyera vs Prisma Cloud by Palo Alto Networks
Compared 7% of the time
Microsoft Defender for Cloud vs Prisma Cloud by Palo Alto Networks Logo
Microsoft Defender for Cloud vs Prisma Cloud by Palo Alto Networks
Compared 5% of the time
Aqua Cloud Security Platform vs Prisma Cloud by Palo Alto Networks Logo
Aqua Cloud Security Platform vs Prisma Cloud by Palo Alto Networks
Compared 2% of the time
More Prisma Cloud by Palo Alto Networks Competitors
 

Product Reports

Buyer's Guide
AWS Security Hub
March 2026
AWS Security Hub reportDownload AWS Security Hub product report
Buyer's Guide
Prisma Cloud by Palo Alto Networks
February 2026
Prisma Cloud by Palo Alto Networks reportDownload Prisma Cloud by Palo Alto Networks product report
 

Also Known As

SQRRL
Prisma Public Cloud, RedLock Cloud 360, RedLock, Twistlock, Aporeto
 

Overview

AWS Security Hub is a comprehensive security service that provides a centralized view of security alerts and compliance status across an AWS environment. It collects data from various AWS services, partner solutions, and AWS Marketplace products to provide a holistic view of security posture. With Security Hub, users can quickly identify and prioritize security issues, automate compliance checks, and streamline remediation efforts. 

The service offers a range of features including continuous monitoring, threat intelligence integration, and customizable dashboards. It also provides automated insights and recommendations to help users improve their security posture. Security Hub integrates with other AWS services like Amazon GuardDuty, AWS Config, and AWS Macie to provide a unified security experience. Additionally, it supports integration with third-party security tools through its API, allowing users to leverage their existing security investments. 

With its user-friendly interface and powerful capabilities, AWS Security Hub is a valuable tool for organizations looking to enhance their security and compliance posture in the cloud.

Amazon Web Services (AWS)

Prisma Cloud by Palo Alto Networks provides comprehensive cloud-native security solutions. It covers dynamic workload identity, automated forensics, and multi-cloud protection, ensuring robust security across diverse cloud platforms.

Prisma Cloud delivers advanced capabilities for managing cloud security across AWS, Azure, and GCP platforms. It offers dynamic workload identity creation, real-time monitoring, and seamless integration into CI/CD pipelines. With automation, centralized dashboards, and enhanced visibility, users effectively manage security misconfigurations and vulnerabilities. While optimizing cloud environments through runtime protection and compliance, Prisma Cloud faces challenges with its navigation, pricing, and limited automation capabilities. Users seek improvements in API security, role-based access controls, and documentation quality, emphasizing the need for enhanced customization and reporting features.

What are the important features of Prisma Cloud?

  • Dynamic Workload Identity: Enables unique workload identities for security purposes.
  • Automated Forensics: Offers detailed insights into threats and incidents automatically.
  • Runtime Protection: Provides ongoing detection and blocking of suspicious activities.
  • Multi-Cloud Security: Protects environments on AWS, Azure, and GCP simultaneously.
  • Compliance Management: Assists in meeting regulatory standards across cloud platforms.

What benefits or ROI should users consider in reviews?

  • Enhanced Security Posture: Strengthens cloud defense lines with proactive monitoring.
  • Centralized Dashboard: Offers unified oversight of multiple cloud environments.
  • Efficient Misconfiguration Handling: Quickly identifies and addresses security lapses.
  • Seamless CI/CD Integration: Integrates security within development workflows.
  • Improved Visibility: Provides transparent insights into security operations and alerts.

Industries like finance and telecom rely on Prisma Cloud for managing cloud security posture and container security. Teams utilize its capabilities across hybrid and multi-cloud settings to ensure compliance and robust threat protection. Features like misconfiguration detection and runtime monitoring are critical in promoting security objectives in these sectors.

Palo Alto Networks
 

Sample Customers

Edmunds, Frame.io, GoDaddy, Realtor.com
Amgen, Genpact, Western Asset, Zipongo, Proofpoint, NerdWallet, Axfood, 21st Century Fox, Veeva Systems, Reinsurance Group of America
Buyer's Guide
AWS Security Hub vs. Prisma Cloud by Palo Alto Networks
February 2026
Free Report: AWS Security Hub vs. Prisma Cloud by Palo Alto Networks
Find out what your peers are saying about AWS Security Hub vs. Prisma Cloud by Palo Alto Networks and other solutions. Updated: February 2026.
DOWNLOAD NOW
884,076 professionals have used our research since 2012.
See our AWS Security Hub vs. Prisma Cloud by Palo Alto Networks report.
See our list of best Cloud Security Posture Management (CSPM) vendors.

We monitor all Cloud Security Posture Management (CSPM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.