Amazon Inspector Comes to Prisma Cloud

Thanks to a partnership with Amazon Web Services, Palo Alto Networks has extended the capabilities of its Prisma Cloud cloud native security platform through an integration with AWS’ Amazon Inspector.

The idea behind the additional AWS security information is to help Prisma customers expedite their move to a DevSecOps workflow, according to Keith Mokris, director of product marketing for Prisma Cloud at Palo Alto Networks. Such a tool can be used to build continuous security risk assessments directly into DevOps pipelines, providing a way to head off potential security issues that would otherwise cause more issues further in the development cycle.

AWS launched Amazon Inspector is 2015. This automated tool assesses the security state of applications that run on AWS, looking for  unintended exposures, vulnerabilities, and deviations from best practices. The service works with both Amazon Elastic Compute Cloud (Amazon EC2) instances and container images. It identifies potential issues such as open access to Amazon EC2 instances from the internet, remote root-login enablement, and vulnerable versions of software, including those identified by the Common Vulnerabilities and Exposures (CVE) database.

The Prisma Cloud platform provides a wide range of tools built specifically to secure cloud native computing deployments. It can scan Infrastructure-as-code templates from HashiCorp Terraform, AWS’ CloudFormation or others to check for misconfigurations that can lead to unintended exposures of resources.

Version 3 of the platform, released last month, uses machine learning to facilitate advanced container image sandboxing, building models from runtime behavior.

Prisma Cloud delivers the industry’s broadest security and compliance coverage—for applications, data, and the entire cloud native technology stack—throughout the development lifecycle and across multi- and hybrid-cloud environments.

Learn More

The latest from Prisma by Palo Alto Networks

With this partnership, the AWS service provides a detailed list to Prisma of security findings prioritized by level of severity, which can be displayed within the Prisma Cloud Console. In addition, Prisma users can do a do a search using the Prisma Cloud Resource Query Language (RQL) to get a list of affected resources, across organizational units (OUs) and member accounts.

Prisma Cloud Resource Explorer provides a consolidated, single-pane-of-glass view of all findings, including configurations, networks status, audit trail, and severity. With Common Vulnerabilities and Exposures (CVE) details and the Amazon Inspector findings, teams can then accelerate remediation of their security vulnerabilities.

Behind the scenes, Prisma Cloud ingests the security data by way of the Amazon EventBridge webhook.

The company will be showing off the integration this week at AWS re:Invent 2021, booth #861. Company engineers will also be speaking at two Breakout conference at the show, around the theme of facilitating DevSecOps, as well as hosting a umber of interactive workshops.

Have you had a chance to come visit us yet @awscloud @AWSreInvent? 👋 We’d love to chat with you about all things #cloudnative security, so come say hi at booth #861! pic.twitter.com/tABalFLsog

— Prisma Cloud (@prisma_cloud) November 30, 2021

Joab Jackson is Editor-in-Chief for The New Stack, assuring that the TNS website gets a fresh batch of cloud native news, tutorials and perspectives each day. He has reported on infrastructure IT for over 25 years, including stints at IDG...

Read more from Joab Jackson