Coming October 25: PeerSpot Awards will be announced! Learn more
2019-05-08T23:38:00Z
Miriam Tover - PeerSpot reviewer
Service Delivery Manager at PeerSpot (formerly IT Central Station)
  • 1
  • 62

What do you like most about Prisma Cloud by Palo Alto Networks?

Hi Everyone,

What do you like most about Prisma Cloud by Palo Alto Networks?

Thanks for sharing your thoughts with the community!

24
PeerSpot user
24 Answers
Basil Dange - PeerSpot reviewer
Senior Manager at a financial services firm with 10,001+ employees
Real User
Top 5Leaderboard
2021-05-10T18:07:22Z
10 May 21

The licensing if organisation go ahead with Enterprise License they are able to use both functionality that is TWISTLOCK and Redlock with not only provided reports with respect to cloud workload and Policy but also Vulnerability on the OS


Integration with CI/CD pipeline and CF template which allows to identify security risk at much earlier stage before workload or instance is deployed 


UEBA module and lots more

Douglas Costa Rossi - PeerSpot reviewer
Software Security Analyst at a energy/utilities company with 10,001+ employees
Real User
Top 10
2021-03-15T20:48:00Z
15 March 21

The CVEs are valuable because we used to have a tool to scan CVEs, at the language level, for the dependencies that our developers had. What is good about Prisma Cloud is that the CVEs are not only from the software layer, but from all layers: the language, the base image, and you also have CVEs from the host. It covers the full base of security.

Kevin Sorenson - PeerSpot reviewer
Cloud DevOps Engineer at a tech services company with 51-200 employees
Real User
Top 20
2022-08-18T23:39:00Z
18 August 22

We were pleased with Prisma's custom and built-in reports. We could go into the dashboard and see all these notifications telling us which subscriptions didn't have TLS 1.2 enabled. The security controls were the most valuable features.

HariharanManikumar - PeerSpot reviewer
Cloud Presales & Solution Architect at a tech services company with 51-200 employees
MSP
Top 20
2022-07-31T16:41:00Z
31 July 22

The container and serverless security is most valuable. It is quite a new technology for this region. Even though containers have been there for a long time, the adoption of containers is very minimal in this region. When it comes to using Kubernetes containers in a complex architecture, there is a lack of security in the market. People aren't aware of the security controls or the process for governance. Container security provided by Prisma Cloud is quite good at filling that gap.

KP
Technical Program Manager at Salesforce
Real User
2022-02-28T09:02:00Z
28 February 22

It has improved the overall collaboration between SecOps and DevOps. Now, instead of asking people to do something, it is a default offering in the CI/CD. There is less manual intervention and more seamless integration. It is why we don't have many dependencies across many teams, which is definitely a better state.

VC
Senior Principal Consultant Cloud/DevOps/ML/Kubernetes at Opticca
Real User
Top 5Leaderboard
2021-12-29T19:39:00Z
29 December 21

Prisma Cloud also provides the visibility and control you need, regardless of how complex or distributed your cloud environments become. It helps to simplify that complexity. Now we know what the best practices are, and if something is missing we know.

Learn what your peers think about Prisma Cloud by Palo Alto Networks. Get advice and tips from experienced pros sharing their opinions. Updated: September 2022.
635,513 professionals have used our research since 2012.
CL
Director of Information Security Architecture at a financial services firm with 5,001-10,000 employees
Real User
Top 20
2021-10-01T07:34:00Z
01 October 21

The most valuable feature is the continuous cloud compliance monitoring and alerting.

AC
Lead- Information Security Analyst at archan.fiem.it@gmail.com
Real User
2021-09-27T08:57:00Z
27 September 21

Prisma Cloud is quite simple to use. The web GUI is powerful. Prisma Cloud scans the overall architecture of the AWS network to identify open ports and other vulnerabilities, then highlights them.

Ali Mohiuddin - PeerSpot reviewer
Security Architect at a educational organization with 201-500 employees
Real User
Top 10
2021-09-03T08:53:00Z
03 September 21

The application visibility is amazing. For example, sometimes we don't know what a particular custom port is for and what is running on it. The visibility enables us to identify applications, what the protocol is, and what service is behind it. Within Azure, it is doing a great job of providing visibility. We know exactly what is passing through our network. If there is an issue of any sort we are able to quickly detect it and fix the problem.

Darshil Sanghvi - PeerSpot reviewer
Consultant at a tech services company with 501-1,000 employees
Reseller
Top 5Leaderboard
2021-06-05T11:18:37Z
05 June 21

Technical support is quite helpful.

Alex Jones - PeerSpot reviewer
Information Security Manager at Cobalt.io
Real User
Top 10
2021-02-24T01:12:00Z
24 February 21

Prisma Cloud has enabled us to take a very strong preventive approach to cloud security. One of the hardest things with cloud is getting visibility into workloads. With Prisma Cloud, you can go in and get that visibility, then set up policies to alert on risky behavior, e.g., if there are security groups or firewall ports open up. So, it is very helpful in preventing configuration errors in the cloud by having visibility. If there are issues, then you can find them and fix them.

RM
Director, Cloud Engineering at Cerner Corporation
Real User
Top 20
2020-12-15T08:57:00Z
15 December 20

The ability to monitor the artifact repository is one of the most valuable features because we have a disparate set of development processes, but everything tends to land in a common set of artifact repositories. The solution gives us a single point where we can apply security control for monitoring. That's really helpful.

MB
Cloud Security Manager at a manufacturing company with 10,001+ employees
Real User
Top 20
2020-12-10T05:29:00Z
10 December 20

The Twistlock vulnerability scanning tool is its most valuable feature. It provides us insight into security vulnerabilities, running inside both on-premise and public cloud-based container platforms. It is filling a gap that we have with traditional vulnerability scanning tools, where we don't have the ability to scan inside containers.

DJ
Security Architect at Refinitiv
Real User
Top 10
2020-11-19T07:44:00Z
19 November 20

One of the main reasons we like Prisma Cloud so much is that they also provide an API. You can't expect to give someone an account on Prisma Cloud, or on any tool for that matter, and say, "Go find your things and fix them." It doesn't work like that... We pull down the information from the API that Prisma Cloud provides, which is multi-cloud, multi-account—hundreds and hundreds of different types of alerts graded by severity—and then we can clearly identify that these alerts belong to these people, and they're the people who must remediate them.

LukeLynch - PeerSpot reviewer
Cloud Security Specialist at a financial services firm with 501-1,000 employees
Real User
Top 20
2020-11-03T07:14:00Z
03 November 20

You can also integrate with Amazon Managed Services. You can also get a snapshot in time, whether that's over a 24-hour period, seven days, or a month, to determine what the estate might look like at a certain point in time and generate reports from that for vulnerability management forums.

RW
Sr. Information Security Manager at a healthcare company with 201-500 employees
Real User
Top 20
2020-10-26T09:04:00Z
26 October 20

It scans our containers in real time. Also, as they're built, it's looking into the container repository where the images are built, telling us ahead of time, "You have vulnerabilities here, and you should update this code before you deploy." And once it's deployed, it's scanning for vulnerabilities that are in production as the container is running.

Devin Charters - PeerSpot reviewer
Sr. Security Operations Manager at a healthcare company with 5,001-10,000 employees
Real User
Top 10
2020-10-26T09:04:00Z
26 October 20

The policies that come prepackaged in the tool have been very valuable to us. They're accurate and they provide good guidance as to why the policy was created, as well as how to remediate anything that violates the policy.

PK
Governance Test and Compliance Officer at Thales
Real User
2020-05-20T06:52:00Z
20 May 20

I was looking for a vulnerability scanner and I was looking for one place in which I could find everything. This tool not only does vulnerability scanning, but it also gives me an asset management tool.

SV
Senior Manager at a computer software company with 501-1,000 employees
Real User
2020-04-08T06:37:00Z
08 April 20

One of the most valuable features is the compliance of RedLock, which we are using for any issues with security. It flags them and that's the primary objective of that feature.

OS
Manager - cybersecurity at a comms service provider with 10,001+ employees
Real User
2020-01-30T11:44:00Z
30 January 20

I would say Twistlock is a fairly sophisticated tool.

SV
Sr. Manager IT Operations at a tech vendor with 5,001-10,000 employees
Real User
2020-01-12T12:03:00Z
12 January 20

The product is quite good for providing multi-clouds or cross-cloud security from a single-pane -of-glass.

AY
DevOps Solutions Lead at a tech services company with 501-1,000 employees
MSP
2019-12-15T05:59:00Z
15 December 19

The runtime mechanism on the solution is very useful. It's got very good network mapping between containers. If you have more than one container, you can create a content data link between them.

DG
CTO at Aymira Healthcare Technologies, LLC
Real User
2019-05-27T16:12:00Z
27 May 19

The most valuable feature is that the rule set is managed and that it can be run on a regularly scheduled basis.

Real User
2019-05-08T23:38:00Z
08 May 19

It has helped us understand the dynamic topology of our containers, and manage security through the application of policies that our pipelines apply straight from Git.

Related Questions
Netanya Carmi - PeerSpot reviewer
Content Manager at PeerSpot (formerly IT Central Station)
Oct 05, 2021
Is one better than the other?
See 1 answer
05 October 21
Azure Security Center is very easy to use, integrates well, and gives very good visibility on what is happening across your ecosystem. It also has great remote workforce capabilities and supports a multi-cloud environment very well. The dashboard gives clear, easy to understand reporting, and even has a compliance regulatory reporting function that will help identify gaps in your solution and quickly fix them. This can be a real cost-saver. Azure Security Center gives a comprehensive view of the total security structure of your organization. The solution is stable and very scalable. We found Prisma Cloud integrated well with many different solutions. This solution does both development-side security and run-time security very well, which makes it extremely marketable. It offers traffic analysis, user activity, and vulnerability management. Prisma Cloud comes bundled with many different policies, which is very helpful. The dashboard is very informative and offers compliance tabs and other valuable management tabs. Azure Security Center can be a bit complex and challenging to use for a non-technical person. The solution could be more flexible, as many policies don’t apply to every client. The licensing and pricing can also be pretty costly. Prisma Cloud sometimes falls behind on keeping up with changes and updates with other solutions, causing some lag time within the solution. It may also be difficult for individuals who are not so tech-savvy. It is lacking a bit in compliance and risk perspectives and analysis. Conclusion Azure Security Center is great, especially if you are already functioning in an Azure ecosystem. It provides great management and regulatory compliance information. Prisma Cloud can seem inflexible and complicated to use, but if you have a solid plan from the beginning on how to deploy the solution throughout your organization and have done your homework, it can prove to be a very good solution as well.
Netanya Carmi - PeerSpot reviewer
Content Manager at PeerSpot (formerly IT Central Station)
Oct 06, 2021
Which is better?
See 1 answer
06 October 21
Aqua Security is easy to use and very manageable. Its main focus is on Kubernetes and Docker. Security is a very valuable feature and their speed of integration is very good. The initial setup was very straightforward and went smoothly. This solution is stable with great scalability. We found that Prisma Cloud integrated well with many different solutions. This solution does both development-side security and run-time security very well, which makes it extremely marketable. It offers traffic analysis, user activity, and vulnerability management. Prisma Cloud comes bundled with many different policies, which is very helpful. The dashboard is very informative and offers compliance tabs and other valuable management tabs. Aqua Security does not have good options with other servers - more options would be better outside of the Kubernetes and Docker ecosystems. There should be better integration to the cloud. Deployment needs to be improved, too. Many of our clients continue to have their workforce continuing to work remotely, and deployment can be very problematic. The technical support is a bit spotty and should be more proactive in handling issues and concerns. Prisma Cloud sometimes falls behind on keeping up with changes and updates with other solutions, causing some lag time within the solution. It may also be difficult for individuals who are not so tech-savvy. It is lacking a bit in compliance and risk perspectives and analysis. Conclusions If you have a focus on Kubernetes and/or Docker, Aqua Security could be a great fit. This solution does solve a lot of other problems too. Prisma Cloud can seem inflexible and complicated to use, but if you have a solid plan from the beginning on how to deploy the solution throughout your organization and have done your homework, it can prove to be a very good solution as well.
Related Articles
Netanya Carmi - PeerSpot reviewer
Content Manager at PeerSpot (formerly IT Central Station)
May 04, 2022
PeerSpot’s crowdsourced user review platform helps technology decision-makers around the world to better connect with peers and other independent experts who provide advice without vendor bias. Our users have ranked these solutions according to their valuable features, and discuss which features they like most and why. You can read user reviews for the Top 5 Cloud Workload Security Software T...
Netanya Carmi - PeerSpot reviewer
Content Manager at PeerSpot (formerly IT Central Station)
May 03, 2022
PeerSpot’s crowdsourced user review platform helps technology decision-makers around the world to better connect with peers and other independent experts who provide advice without vendor bias. Our users have ranked these solutions according to their valuable features, and discuss which features they like most and why. You can read user reviews for the Top 5 Cloud Security Posture Management ...
Netanya Carmi - PeerSpot reviewer
Content Manager at PeerSpot (formerly IT Central Station)
Apr 25, 2022
PeerSpot’s crowdsourced user review platform helps technology decision-makers around the world to better connect with peers and other independent experts who provide advice without vendor bias. Our users have ranked these solutions according to their valuable features, and discuss which features they like most and why. You can read user reviews for the Top 8 Container Security Tools to help y...
Netanya Carmi - PeerSpot reviewer
Content Manager at PeerSpot (formerly IT Central Station)
Apr 07, 2022
PeerSpot’s crowdsourced user review platform helps technology decision-makers around the world to better connect with peers and other independent experts who provide advice without vendor bias. Our users have ranked these solutions according to their valuable features, and discuss which features they like most and why. You can read user reviews for the Top 5 Microsegmentation Software Tools t...
Deena Nouril - PeerSpot reviewer
Tech Blogger
Aug 05, 2022
What is OWASP? The OWASP or Open Web Application Security Project is a nonprofit foundation dedicated to improving software security. It operates under an open community model, meaning that anyone can participate in and contribute to OWASP-related online chats and projects. The OWASP ensures that its offerings (online tools, videos, forums, events, etc.) remain free and are easily accessible t...
See 2 comments
Ben Arbeit - PeerSpot reviewer
Manager at a retailer with 51-200 employees
31 July 22
Thanks for this informative article.
Jairo Willian Pereira - PeerSpot reviewer
Information Security Manager at a financial services firm with 5,001-10,000 employees
05 August 22
OWASP is nice, but very specific and currently limited. How about trying ISO-24772 for all?
Related Articles
Netanya Carmi - PeerSpot reviewer
Content Manager at PeerSpot (formerly IT Central Station)
May 04, 2022
Top 5 Cloud Workload Security Software 2022
PeerSpot’s crowdsourced user review platform helps technology decision-makers around the world to...
Netanya Carmi - PeerSpot reviewer
Content Manager at PeerSpot (formerly IT Central Station)
May 03, 2022
Top Cloud Security Posture Management Solutions
PeerSpot’s crowdsourced user review platform helps technology decision-makers around the world to...
Download Free Report
Download our free Prisma Cloud by Palo Alto Networks Report and get advice and tips from experienced pros sharing their opinions. Updated: September 2022.
DOWNLOAD NOW
635,513 professionals have used our research since 2012.