2019-05-08T23:38:00Z

What is your primary use case for Prisma Cloud by Palo Alto Networks?

Miriam Tover - PeerSpot reviewer
  • 0
  • 657
PeerSpot user
49

49 Answers

MW
Consultant
Top 20
2024-02-02T13:33:00Z
Feb 2, 2024

Our environment consisted of a cloud-native stack, including Kubernetes, OpenStack, and OpenShift, running alongside additional virtualizations. This hybrid setup required securing both the cloud-native components and the virtualized instances. To address this challenge, we implemented a comprehensive CI/CD pipeline with cloud security in mind. Following vendor code pushes to our environment, we use rigorous scanning and verification procedures to ensure the code's safety before onboarding. Once onboarded, Prisma Cloud provides continuous posture management and security monitoring. Our current Prisma Cloud deployment utilizes the Registry Scan, Runtime Protection, CI/CD Integration, and Vulnerability Management modules. While we have opted for the Complete Edition, it does not include Posture Management, a feature frequently inquired about by our customers. Currently, Posture Management is only available in the SaaS model, and we are utilizing the on-premise edition, also known as the Complete Version. We are a system integrator for the telecom sector. Clients utilizing cloud-native environments often face challenges in scanning and securing their containerized solutions and clusters. Prisma Cloud offers a comprehensive solution, providing end-to-end protection for these clients.

Search for a product comparison
Pinki Jaiswal - PeerSpot reviewer
Real User
Top 10
2024-01-08T10:06:00Z
Jan 8, 2024

We use it to manage multiple AWS accounts within our platform. Our primary focus is on ensuring compliance across all accounts, aligning with specific standards such as GDPR. We conduct regular certifications of AWS accounts to assess the compliance of services and promptly address any non-compliance issues. In cases where services are found to be non-compliant, we notify the responsible teams and work collaboratively to remediate the identified alerts. In addition to code security, we also use Prisma Cloud to protect our workloads, including serverless functions and containers. This comprehensive approach ensures a robust security posture for our cloud infrastructure and applications. It serves as a comprehensive solution for both proactive vulnerability management and reactive runtime threat detection. We manage this tool through a designated management account, handling all configurations within a limited account. At times, we find it necessary to customize scripts, such as when we encounter challenges with integrating Splunk. In this instance, the events are not being formatted as desired. To address this, we aim to create a script and Lambda functions to ensure the events are in the preferred format. It enhances our ability to respond effectively, allowing us to prioritize and focus on resolving any real or potential issues impacting system performance.

Gideon Crous - PeerSpot reviewer
Real User
Top 20
2023-12-06T16:24:00Z
Dec 6, 2023

We utilize the entire Prisma Cloud suite for container security, API security, and CASB. Our primary focus is on the financial services industry, including banking and insurance. We implemented Prisma Cloud mostly for compliance to protect against vulnerabilities and weaknesses.

TS
Real User
Top 20
2023-11-28T12:21:00Z
Nov 28, 2023

We have deployed Prisma Cloud for one of our client premises. And we are managing it internally. Although we do have support and other stuff for this solution, it has two kinds of modes. One is the detect and protect mode, and one is only for the monitoring purpose. There's different licensing. If you need protection from Prisma Cloud, then you will purchase a firewall kind of module with that. Otherwise, by default, it comes in monitoring mode. It's deployed on all VMs and workloads. With the Prisma Cloud, you can have it on a cloud server or you can deploy it as a stand-alone. That said, the container should be persistent. Otherwise, if you restart the container, you will lose your configuration and everything. We were doing a deployment for a telecom client, and they have two different application pipelines. One was based in India with the Oracle team. They were developing their own application, so we have also incurred it to the Prisma Cloud in their CI/CD pipeline. The second use case was to monitor the OpenShift environment. The solution was basically bare metal. Then on top of that, there was OpenStack. It's an on-prem cloud service. We have deployed the Prisma Cloud solution, so it was on top of an open stack.

TB
Real User
Top 20
2023-11-21T13:02:00Z
Nov 21, 2023

My company provides solutions for Cisco customers and helps them secure their cloud environments. Most of our clients are adapting to the cloud, and we're trying to resolve vulnerabilities in their configurations. I use all of the Prisma Cloud modules but have expertise in the CSPM and CWP modules. We work with SMEs but also have some enterprise clients.

Bhupendra Nayak - PeerSpot reviewer
MSP
Top 5Leaderboard
2023-11-17T10:59:00Z
Nov 17, 2023

We use Prisma Cloud Data Security for security compliance and detection. We implemented Prisma Cloud because it eliminates the need for hardware appliances, thereby reducing our on-premises footprint.

Learn what your peers think about Prisma Cloud by Palo Alto Networks. Get advice and tips from experienced pros sharing their opinions. Updated: March 2024.
765,234 professionals have used our research since 2012.
Vijay Shankar Maurya - PeerSpot reviewer
Real User
Top 20
2023-11-03T10:58:00Z
Nov 3, 2023

The solution is integrated with cloud environments such as Azure, Alibaba, and Oracle. After integrating, we do check the network logs, including what are the config logs or configuration issues clients are facing. We see what their cloud requirements are. There are email use cases specific to the modules, and we do have visibility over the entire cloud environment. We handle vulnerability management and can block according to the rules and policies. We can manage identities as well, right down to a particular machine.

Aditya Thakur - PeerSpot reviewer
Real User
Top 20
2023-10-30T17:01:00Z
Oct 30, 2023

Prisma Cloud by Palo Alto Networks is a comprehensive cloud security platform that encompasses vulnerability management, container management, Kubernetes management, and serverless management. It utilizes modules, such as Cloud Workload Protection, to provide comprehensive cloud security. Before deploying any applications, Prisma Cloud performs cloud scans to identify and address vulnerabilities, minimizing potential threats. The solution provides visibility into our cloud environment, enabling us to effectively manage and monitor our infrastructure. This capability is particularly valuable in the financial industry, where hybrid multi-cloud environments are prevalent. We use all the modules Prisma Cloud offers.

CC
Real User
Top 20
2023-09-25T08:03:00Z
Sep 25, 2023

We use Palo Alto to secure our network. We are using the PA-820 firewall and all of the Prisma Cloud modules. It helps reduce our vulnerability to hacking and any malicious attacks on the network. With that appliance, we can minimize those things and control what goes in and out

PM
Real User
Top 20
2023-09-08T10:18:00Z
Sep 8, 2023

We use Prisma Cloud by Palo Alto Networks to scan the Kubernetes cluster. We use Prisma Cloud's threat detection module.

MY
MSP
Top 20
2023-08-09T15:58:00Z
Aug 9, 2023

Financial companies want to restrict user access, which means the users need to go through a subnet to access their services. When the user connects to the internet via the Prisma Cloud VPN, they can use different types of IP addresses globally. The changing IP addresses can be pretty complex. It costs a lot for the application site to apply for access. We negotiated with Palo Alto to get 20 servers, and the customers will be added to those 20 subnets. On the Spectrum Access side, we only need a white list of those twenty subnets, and we won't have issues in the future. The solution is managed by Palo Alto. We're using Panorama, a popular management tool, for managing the connection between the physical portal, firewall, and VPN, as well as Prisma Cloud.

HM
Real User
Top 20
2023-07-14T17:20:00Z
Jul 14, 2023

We were using it for remediation. I was working on a client's project on behalf of our company, and they had multiple subscriptions. They were using not only Azure but also AWS. Rather than managing remediation and governance separately through different clouds, it was proposed to use Prisma Cloud as a single place for remediation of everything.

TejasJain - PeerSpot reviewer
Reseller
Top 5
2023-06-29T17:48:00Z
Jun 29, 2023

We are a Palo Alto Alliance partner and our clients are Fortune 500 companies. We utilize a multi-cloud network architecture, with the primary constraint being the inability to manage everything through a single interface. By implementing uniform guardrails, we address the issue of inconsistent security policies when using native cloud security controls. This is one of the key considerations. Additionally, we employ micro-segmentation using cloud network security modules of Prisma Cloud to minimize the attack surface for various workloads. The primary use case that was lacking was a single pane of glass. Additionally, prior to implementing Prisma Cloud, we used to manually perform these tasks using AWS CloudFormation Templates or Azure Resource Manager Templates. However, Prisma Cloud helped us address this issue by providing a unified administration interface. One of the problems we faced was the inability to view vulnerabilities across different cloud workloads and compare risks across different platforms. These were the challenges we encountered before deploying Prisma Cloud. While we didn't completely solve all of them after implementing Prisma Cloud, we did make significant progress in that regard.

AI
Real User
Top 20
2023-05-25T13:13:00Z
May 25, 2023

We utilize all the modules of Prisma Cloud by Palo Alto Networks, and it is fully integrated into the host control manager on GitHub. We employ this solution to achieve complete visibility from the moment we write our ISE to the actual management of the cloud environment. This approach offers a clear view of our security posture, and the container security component provides valuable insights to assist us in our architectural process. Our security team is the primary user of the solution, followed by SREs and developers.

Sanjog Chhetri - PeerSpot reviewer
Real User
Top 10
2023-05-11T06:10:00Z
May 11, 2023

We use the solution for three areas, CSPM, CWPP, and Cloud Security. We use Prisma Cloud by Palo Alto Networks mostly for CSPM. CSPM helps us identify and fix misconfigurations in our cloud environment. This can help us prevent security breaches and improve our overall cloud security posture. Prisma Cloud also provides CWPP. CWPP helps us protect our cloud workloads from malware, ransomware, and other threats. This can help us keep our data safe and secure. Prisma's Cloud security is something we are still working on. The solution is deployed as SaaS.

JA
MSP
Top 20
2023-05-01T13:19:00Z
May 1, 2023

I generally use Prisma Cloud to dive deeper into any security findings generated by Prisma. It's also a good way to get a complete inventory of all our cloud assets spread across different cloud platforms.

Real User
Top 20
2023-05-01T13:17:00Z
May 1, 2023

When we migrated our workloads from the on-prem to the cloud, we used Prisma Cloud to tell us whether our workloads were PCI compliant.

PA
Real User
Top 20
2023-05-01T12:01:00Z
May 1, 2023

We use the Bridgecrew, IaC, and CSPM domains.

BD
Real User
Top 20
2023-05-01T12:01:00Z
May 1, 2023

I use it for testing and visibility.

RT
Real User
Top 20
2023-03-27T18:18:19Z
Mar 27, 2023

Our primary use case for this solution is for CWP, CSPM, and scanning for run time. We also use it for monitoring mode and pipeline integration.

SJ
Consultant
Top 20
2023-02-17T22:31:00Z
Feb 17, 2023

We use Prisma Cloud by Palo Alto Networks for our cloud security posture management.

AD
Real User
Top 10
2023-01-16T18:59:00Z
Jan 16, 2023

I was managing Prisma Cloud for a client. They were scanning container images for vulnerabilities and remediation.

MR
Real User
Top 20
2023-01-16T17:25:00Z
Jan 16, 2023

We use the solution to monitor and manage our various cloud environments, providing complete visibility in a single platform. We also use it for configuration, network, and anomaly monitoring. On the compute side, that's for containers and Kubernetes, so we know when changes are made and whether those changes are approved or within our required security controls. The platform has yet to become part of our CICD pipeline; we mostly use it as a security tool for monitoring and remediation. Regarding modules, we use the CSP and the compute module.

SB
Real User
Top 20
2023-01-10T00:00:00Z
Jan 10, 2023

I'm using the main module of Prisma Cloud, which manages security at scale in cloud environments.

RK
MSP
Top 20
2022-11-30T00:09:00Z
Nov 30, 2022

We use it for visibility, compliance, and governance. It is the official CSPM solution for our bank. The only module we are using is the compliance module.

RK
Real User
Top 20
2022-09-14T01:21:00Z
Sep 14, 2022

We use this solution to detect misconfigurations in the cloud. It's a multi-cloud solution, so if you're running a multi-cloud environment like Azure, AWS, and GCP, you only need to deploy a single solution. It assists with improving the security posture of an organization. I use CSPM and CWPP. The previous organization I worked for used both, but the company I work for now only uses CSPM. I've also worked with code security. We recently acquired this solution, so it has slowly started gaining momentum in my organization.

Gabriel Montiel - PeerSpot reviewer
Vendor
Top 20
2022-09-06T00:31:00Z
Sep 6, 2022

I work for a monetary provider and handle around five customers. We mostly use Prisma Cloud for CSPN, but we have a banking customer using CWPP. Apart from those two use cases, the other customers are not interested in Prisma Cloud's other functionalities because they're green and already have other solutions with partners that they say are more mature. We have not implemented them in the customers' production environment, but we have toyed around with proofs of concept.

Kevin Sorenson - PeerSpot reviewer
Real User
Top 10
2022-08-18T23:39:00Z
Aug 18, 2022

We had Azure, AWS, and a little bit of GCP, so we gave Prisma read access to all those accounts, subscriptions, etc., and monitored the alerts to mitigate risks based on what popped up in the dashboard. While it's not our only tool, Prisma is managing about 80 percent. We still occasionally go into cloud-native tools to ensure certain compliance standards are being met. Sometimes, urgent issues need to be fixed that haven't been reported in Prisma because the native tools will catch them first. As a third-party solution, Prisma might take a little longer to build a report directory. We had around 30 to 40 users who were a mix of cloud and DevOps engineers. There were also members of the security team who made decisions about what kind of security policies we had to follow. We used it extensively within the public cloud across all our Azure, AWS, and GCP subscriptions and projects. There was interest in using it on-premises with our vSphere environment as well. I don't know if that ever happened.

HariharanManikumar - PeerSpot reviewer
MSP
Top 10
2022-07-31T16:41:00Z
Jul 31, 2022

We are a system integrator. My organization has a cloud practice, and we focus on cloud security. Predominantly, Prisma Cloud is used to identify misconfigurations in the cloud. We have been using Prisma Cloud for two specific customers on Azure Cloud. It is quite a new organization, and we currently have two customers, but in my previous organization, we had about eight customers. We predominantly focus only on the cloud. We don't work with hybrid models. MultiCloud is there, but we haven't worked on MultiCloud as of now. This specific region is more into Azure Cloud. Azure has a data center over here. Therefore, the adoption of AWS or Google is not high in this region. For data compliance, customers want to stick to a cloud vendor that has a data center in this region.

KP
Real User
2022-02-28T09:02:00Z
Feb 28, 2022

We are using the solution to manage vulnerabilities in containers. We use it to detect vulnerabilities and remediate vulnerabilities found in containers running in the public cloud, like AWS. We are using the latest version.

VC
Real User
2021-12-29T19:39:00Z
Dec 29, 2021

We use it for compliance management and policy detection, especially for hybrid clouds.

CL
Real User
2021-10-01T07:34:00Z
Oct 1, 2021

We use Prisma Cloud in several ways and there are a lot of use cases. The first way that we use it is for inventory. It keeps a near real-time inventory of virtual compute storage and services. Second, we use it for monitoring and alerting of misconfigurations or other items of security significance. Next is compliance. We use it to monitor compliance with the centers for internet security (CIS) benchmarks.

AC
Real User
2021-09-27T08:57:00Z
Sep 27, 2021

We primarily use Prisma Cloud as a cloud security posture management (CSPM) module. Prisma Cloud is designed to catch vulnerabilities at the config level and capture everything on a cloud workload, so we mainly use it to identify any posture management issues that we are having in our cloud workloads. We also use it as an enterprise antivirus solution, so it's a kind of endpoint security solution. Our setup is hybrid. We use SaaS also. We mostly work in AWS but we have customers who work with GCP and Azure as well. About 60 percent of our customers use AWS, 30 percent use Azure, and the remaining 10 percent are on GCP. Prisma Cloud covers the full scope. And for XDR, we have an info technology solution that we use for the Gulf cloud. So we have the EDF solution rolled out to approximately around 500 instances right now. Prisma Cloud is used heavily in our all production teams. Some might not be directly using the product since our team is the service owner and we manage Prisma. Our team has around 10 members teams, and they are the primary users. From an engineering aspect, there are another 10 team members who use it basically. Those are the actual people who work hands-on with Prisma Cloud. Aside from that, there are some product teams that use Prisma indirectly. If we detect something wrong with their products, we take care of it, but I don't think they have an active account on Prisma Cloud.

Ali Mohiuddin - PeerSpot reviewer
Real User
2021-09-03T08:53:00Z
Sep 3, 2021

We had an internal debate regarding our firewall solution for the cloud. Initially we had a vendor that suggested we could build a whole environment using the Azure firewall, but we had requirements for Zero Trust architecture. We are essentially like a bank. We were planning to host some PCI services in the cloud and we were planning to create all the zones. When we looked at the feature set of Azure, we were not able to find Layer 7 visibility, which we had on our firewalls, and that is where the debate started. We thought it was better to go with a solution that gives us that level of visibility. Our team was comfortable with Palo Alto as a data center firewall, so we went for Prisma Cloud.

DS
Reseller
2021-06-05T11:18:37Z
Jun 5, 2021

When we did a POC, we realized that this product was able to give us insights into how consumers or services are activated. We could tell if, in certain cases, there was any kind of manual issues such as a misconfiguration. The solution is used to help us to reconfigure items and figure out what reconfiguration needs to be done, et cetera. Our target was to enhance the security portion of our AWS cloud.

DC
Real User
2021-03-15T20:48:00Z
Mar 15, 2021

When we started using this tool, the name was Twistlock, it was not Prisma Cloud. We had a container team responsible for modernizing our environment and they created an on-prem solution using Red Hat OpenShift. They started using Twistlock as a way to manage the security of this on-prem environment. My team, which was the security team, inherited the ownership of the tool to manage all the security problems that it was raising. When we started using containers on the cloud, our cloud provider was Azure. We also started migrating our security solutions for the cloud, but that was at the end of my time with the company, so I didn't participate much in this cloud process. We were also sending the logs and alerts to Splunk Cloud. We were managing all the alerts generated by policies and vulnerabilities and the threats from the web. That way, we had a pipeline system sending these alerts to a central location where our investigation team would look at them. So we used the system to manage both cloud and on-prem and connect them.

AJ
Vendor
2021-02-24T01:12:00Z
Feb 24, 2021

Previously, we were primarily using Amazon Web Services in a product division. We initially deployed RedLock (Prisma Cloud) as a PoC for that product division. Because it is a large organization, we knew that there were Azure and GCP for other cloud workloads. So, we needed a multi-cloud solution. In my current role, we are primarily running GCP, but we do have some presence in Amazon Web Services as well. So, in both those use cases, the multi-cloud functionality was a big requirement. We are on the latest version of Prisma Cloud.

RM
Real User
2020-12-15T08:57:00Z
Dec 15, 2020

There are three pieces to our use case. For the container piece, which used to be Twistlock, we use static scan to scan our artifact repositories and we use that data to remediate issues and provide it back to developers. We also do runtime monitoring on our orchestrators, which are primarily Kubernetes, but some DC/OS as well. Right now, it's all on-premises, although we'll be moving that to the cloud in the future. And we use what used to be RedLock, before it was incorporated into the solution.

MB
Real User
2020-12-10T05:29:00Z
Dec 10, 2020

Primarily, we are attempting to secure our public cloud security posture through compliance and vulnerability scanning.

DJ
Real User
2020-11-19T07:44:00Z
Nov 19, 2020

We have a very large public cloud estate. We have nearly 300 public cloud accounts, with almost a million things deployed. It's pretty much impossible to track all of the security and the compliance issues using anything that would remotely be considered homegrown—scripts, or something that isn't fully automated and supported. We don't have the time, or necessarily even the desire, to build these things ourselves. So we use it to track compliance across all of the various accounts and to manage remediation. We also have 393 applications in the cloud, all of which are part of various suites, which means there are at least 393 teams or groups of people who need to be held accountable for what they have deployed and what they wish to do. It's such a large undertaking that automating it is the only option. To bring it all together, we use it to ensure that we can measure and track and identify the remediation of all of our public cloud issues.

LL
Real User
2020-11-03T07:14:00Z
Nov 3, 2020

Primarily the intent was to have a better understanding of our cloud security posture. My remit is to understand how well our existing estate in cloud marries up to the industry benchmarks, such as CIS or NIST, or even AWS's version of security controls and benchmarks. When a stack is provisioned in a cloud environment, whether in AWS or Azure or Google Cloud, I can get an appreciation of how well the configuration is in alignment with those standards. And if it's out of alignment, I can effectively task those who are accountable for resources in clouds to actually remediate any identifiable vulnerabilities.

RW
Real User
2020-10-26T09:04:00Z
Oct 26, 2020

Our use case for the solution is monitoring our cloud configurations for security. That use case, itself, is huge. We use the tool to monitor security configuration of our AWS and Azure clouds. Security configurations can include storage, networking, IAM, and monitoring of malicious traffic that it detects. We have about 50 users and most of them use it to review their own resources.

DC
Real User
2020-10-26T09:04:00Z
Oct 26, 2020

We are using it for monitoring our cloud environment and detecting misconfigurations in our hosted accounts in AWS or Azure.

PK
Real User
2020-05-20T06:52:00Z
May 20, 2020

I was looking for one tool which, as a WAF, could provide me with information regarding applications and with features where I can oversee things. We use the solution's ability to filter alerts by levels of security and it helps our teams understand which situations are the most critical. Based on the priorities that I get for my product, I can filter the notices the team needs to work on, to those that require immediate attention. That means it's easier for me to categorize and understand things exactly, on a single dashboard. I can see, at one point in time, that these are my 20 applications that are running. Out of them, I can see, for example, the five major vulnerabilities that I have — and it shows my risk tolerance — so I know that these five are above my risk tolerance. I know these need immediate attention and I can assign them to the team to be worked on immediately.

it_user1272177 - PeerSpot reviewer
Real User
2020-01-30T11:44:00Z
Jan 30, 2020

In terms of our use cases, we are a telecom firm and we work a lot with telecom firms around the world, and so we have a lot of solutions other than Twistlock. We have applications, we have consumer-based solutions that we run on a daily basis, and heavily regulatory processes as well. We found it's better that we move our core application than our user systems on container because they're quick, they're effective, easy to deploy, and easy to maintain. But because of the sanctions, heavily regulated security is a very core part of the entire environment, and thus we had to go ahead and look for a solution that would help automate that security part and because it was almost impossible to go about doing that manually.

it_user1206177 - PeerSpot reviewer
Real User
2020-01-12T12:03:00Z
Jan 12, 2020

We use cloud solutions generally for client demos of products.

AY
MSP
2019-12-15T05:59:00Z
Dec 15, 2019

We primarily use the solution to create a cluster or scenario, for runtime management on containers.

DG
Real User
2019-05-27T16:12:00Z
May 27, 2019

The primary use case for this solution was to run the rule set for the CIS 20 framework and HIPAA compliance.

Real User
2019-05-08T23:38:00Z
May 8, 2019

Our primary use case for this solution is for container security and monitoring.

Prisma Cloud by Palo Alto Networks is a cloud security solution used for cloud security posture management, cloud workload protection, container security, and code security. It provides visibility, monitoring, and alerting for security issues in multi-cloud environments.  The solution is user-friendly, easy to set up, and integrates with SIEM for generating alerts and reports. Its most valuable features include security features, monitoring capabilities, reporting, compliance...
Download Prisma Cloud by Palo Alto Networks ReportRead more