Comprehensive software reviews to make better IT decisions
Palo Alto Networks Enhances Its Prisma Cloud Solution With AppDev Security Capabilities for Cloud Environments
Palo Alto Networks Inc. updated its Prisma Cloud cybersecurity platform, a comprehensive cloud security suite, which is designed to protect a company’s hybrid and multi-cloud environments by providing security control features that improve data protection, access governance, and secure applications.
Palo Alto Networks’ acquisition of Twistlock Ltd. and PureSec Ltd. enhances the breach detection capabilities of the Prisma Cloud cybersecurity platform by checking potentially vulnerable code before production. This allows clients to monitor the complete application SDLC developed for cloud environments on a single plane of glass.
The platform can find security flaws/issues in:
- Container images
- Serverless functions written for services (e.g. AWS Lambda)
- Configuration templates software teams use to set up their IaaS environments
Source: SoftwareReviews, Palo Alto Cloud Security, Accessed February 7, 2020
Palo Alto Networks has simplified the monitoring and management of cloud application development from creation to deployment into production. As organizations increase their digital footprint via Cloud services, they should carefully consider what each Cloud Access Security Broker solution has to offer. It’s likely that other market leaders in the CASB space will look to acquire similar capabilities to meet market demand.
Want to Know More?
By exploiting a five-year-old configuration error, a hacker was able to access Amazon’s S3 cloud storage buckets on which Twilio’s code was loaded. As a result, customers were able to unknowingly download the modified code for twenty-four hours.
CASB vendors CipherCloud and Bitglass have both recently announced partnerships with big-name cyber threat intelligence (CTI) providers to improve the threat protection features of their products. The partnerships, with FireEye and CrowdStrike respectively, will bring industrial-strength CTI to their customers.
Zscaler has announced its intent to buy cloud security posture management (CSPM) vendor Cloudneeti. The move suggests that Zscaler is serious about entering the CASB market.
CloudCodes has added agentless data loss prevention (DLP) features for Google users to its cloud access security broker (CASB) solution, offering greater flexibility for data governance within G Suite and Google Drive.
Recent strategic partnerships, including that recently announced by Netskope and eperi, signal that consolidation within the cloud access security broker market is likely at an end. This is good news for consumers.
Cloud service providers are maturing their security portfolio offerings. Barracuda Networks announced that its compliance orchestration platform, Cloud Security Guardian, is integrating with the Amazon Detective security service.
A newly announced collaboration between CipherCloud and Thales promises to enable zero trust access control for data in the cloud. This may be a compelling value proposition for companies looking for a CASB with integrated zero trust identity management.
In the thrilling world of FedRAMP, achieving a High impact level authorization is as exhilarating as it gets. McAfee has achieved this exciting apex for its MVISION Cloud service.