Where are you using WebAssembly?
Wasm promises to let developers build once and run anywhere. Are you using it yet?
At work, for production apps
At work, but not for production apps
I don’t use WebAssembly but expect to when the technology matures
I have no plans to use WebAssembly
No plans and I get mad whenever I see the buzzword
Cloud Native Ecosystem / DevOps / Security

Amazon Inspector Comes to Prisma Cloud

Thanks to a partnership with Amazon Web Services, Palo Alto Networks has extended the capabilities of its Prisma Cloud cloud native security platform through an integration with AWS' Amazon Inspector.
Dec 1st, 2021 7:21am by
Featued image for: Amazon Inspector Comes to Prisma Cloud
Prisma Cloud from Palo Alto Networks is sponsoring our coverage of AWS re:Invent 2021.

Thanks to a partnership with Amazon Web Services, Palo Alto Networks has extended the capabilities of its Prisma Cloud cloud native security platform through an integration with AWS’ Amazon Inspector.

The idea behind the additional AWS security information is to help Prisma customers expedite their move to a DevSecOps workflow, according to Keith Mokris, director of product marketing for Prisma Cloud at Palo Alto Networks. Such a tool can be used to build continuous security risk assessments directly into DevOps pipelines, providing a way to head off potential security issues that would otherwise cause more issues further in the development cycle.

AWS launched Amazon Inspector is 2015. This automated tool assesses the security state of applications that run on AWS, looking for  unintended exposures, vulnerabilities, and deviations from best practices. The service works with both Amazon Elastic Compute Cloud (Amazon EC2) instances and container images. It identifies potential issues such as open access to Amazon EC2 instances from the internet, remote root-login enablement, and vulnerable versions of software, including those identified by the Common Vulnerabilities and Exposures (CVE) database.

The Prisma Cloud platform provides a wide range of tools built specifically to secure cloud native computing deployments. It can scan Infrastructure-as-code templates from HashiCorp Terraform, AWS’ CloudFormation or others to check for misconfigurations that can lead to unintended exposures of resources.

Version 3 of the platform, released last month, uses machine learning to facilitate advanced container image sandboxing, building models from runtime behavior.

With this partnership, the AWS service provides a detailed list to Prisma of security findings prioritized by level of severity, which can be displayed within the Prisma Cloud Console. In addition, Prisma users can do a do a search using the Prisma Cloud Resource Query Language (RQL) to get a list of affected resources, across organizational units (OUs) and member accounts.

The Prisma Cloud Resource Explorer

Prisma Cloud Resource Explorer provides a consolidated, single-pane-of-glass view of all findings, including configurations, networks status, audit trail, and severity. With Common Vulnerabilities and Exposures (CVE) details and the Amazon Inspector findings, teams can then accelerate remediation of their security vulnerabilities.

Behind the scenes, Prisma Cloud ingests the security data by way of the Amazon EventBridge webhook.

The company will be showing off the integration this week at AWS re:Invent 2021, booth #861. Company engineers will also be speaking at two Breakout conference at the show, around the theme of facilitating DevSecOps, as well as hosting a umber of interactive workshops.

Group Created with Sketch.
TNS owner Insight Partners is an investor in: Pragma.
THE NEW STACK UPDATE A newsletter digest of the week’s most important stories & analyses.