Thanks to a partnership with Amazon Web Services, Palo Alto Networks has extended the capabilities of its Prisma Cloud cloud native security platform through an integration with AWS’ Amazon Inspector.
The idea behind the additional AWS security information is to help Prisma customers expedite their move to a DevSecOps workflow, according to Keith Mokris, director of product marketing for Prisma Cloud at Palo Alto Networks. Such a tool can be used to build continuous security risk assessments directly into DevOps pipelines, providing a way to head off potential security issues that would otherwise cause more issues further in the development cycle.
AWS launched Amazon Inspector is 2015. This automated tool assesses the security state of applications that run on AWS, looking for unintended exposures, vulnerabilities, and deviations from best practices. The service works with both Amazon Elastic Compute Cloud (Amazon EC2) instances and container images. It identifies potential issues such as open access to Amazon EC2 instances from the internet, remote root-login enablement, and vulnerable versions of software, including those identified by the Common Vulnerabilities and Exposures (CVE) database.
The Prisma Cloud platform provides a wide range of tools built specifically to secure cloud native computing deployments. It can scan Infrastructure-as-code templates from HashiCorp Terraform, AWS’ CloudFormation or others to check for misconfigurations that can lead to unintended exposures of resources.
Version 3 of the platform, released last month, uses machine learning to facilitate advanced container image sandboxing, building models from runtime behavior.
With this partnership, the AWS service provides a detailed list to Prisma of security findings prioritized by level of severity, which can be displayed within the Prisma Cloud Console. In addition, Prisma users can do a do a search using the Prisma Cloud Resource Query Language (RQL) to get a list of affected resources, across organizational units (OUs) and member accounts.
Behind the scenes, Prisma Cloud ingests the security data by way of the Amazon EventBridge webhook.
The company will be showing off the integration this week at AWS re:Invent 2021, booth #861. Company engineers will also be speaking at two Breakout conference at the show, around the theme of facilitating DevSecOps, as well as hosting a umber of interactive workshops.
— Prisma Cloud (@prisma_cloud) November 30, 2021
Amazon Web Services, HashiCorp, and Prisma Cloud from Palo Alto Networks are sponsors of The New Stack.