Palo Alto Networks announced the launch of Cortex Cloud, the latest version of Prisma Cloud, which seamlessly integrates new releases of its cloud detection and response (CDR) and cloud native application protection platform (CNAPP) capabilities on the unified Cortex platform. The introduction of this new solution provides security teams with groundbreaking innovations driven by artificial intelligence (AI) and automation, surpassing traditional approaches to cloud security to combat attacks in real-time.
According to Unit 42 reports, a staggering 80% of security exposures were identified in cloud attack surfaces, with a 66% surge in threats targeting cloud environments. With the increasing adoption of cloud technology and AI, Cortex Cloud aims to consolidate data, automate workflows, and utilize AI-driven insights to minimize risk, thwart threats, and intercept attacks instantaneously.
Designed to ingest and analyze data from third-party tools, Cortex Cloud delivers centralized visibility, AI-driven insights, and end-to-end remediation across the entire cloud security ecosystem. Lee Klarich, Chief Product Officer of Palo Alto Networks, emphasized the importance of expanding cloud security to include industry-leading runtime protection, highlighting the inclusion of CNAPP at no additional cost for every Cortex Cloud Runtime Security customer. This initiative aligns with the company’s goal to facilitate the swift prevention, detection, investigation, and response to evolving threats across organizations.
Cortex Cloud represents Palo Alto Networks’ commitment to platformization strategy by revamping its cloud security solution on the AI-powered Cortex SecOps platform, offering a unified user experience with persona-driven dashboards and workflows. The platform enables customers to achieve enhanced protection at a lower total cost of ownership, introducing additional value and features such as application security, cloud posture management, cloud runtime protection, and a comprehensive Security Operations Center (SOC) platform.
The inclusion of application security in Cortex Cloud empowers users to build secure applications and preempt issues during development to prevent potential vulnerabilities that could be exploited by attackers. Additionally, the platform enhances multi-cloud risk management through AI-driven prioritization and automated remediation, consolidating all cloud posture capabilities within a single user interface.
Cloud runtime protection is a key component of Cortex Cloud, providing real-time threat prevention through the integration of Cortex XDR agent with additional cloud data sources. This integration ensures advanced analytics to thwart threats effectively, as validated by top results in recent MITRE ATT&CK testing. Moreover, the Cloud Runtime Security offering comprises CNAPP capabilities at no extra cost, promoting widespread adoption of end-to-end cloud security on a unified platform.
Furthermore, Cortex Cloud serves as the go-to SOC platform for enterprise and cloud security, exceeding the capabilities of traditional Security Information and Event Management (SIEM) systems. By integrating cloud data, context, and workflows within Cortex XSIAM, Cortex Cloud significantly reduces the mean time to respond (MTTR) to modern threats, providing a unified SecOps solution for efficient incident response.
Melinda Marks, Practice Director of Cybersecurity at Enterprise Strategy Group, acknowledged the challenges faced by security teams in mitigating risk and responding to cybersecurity incidents promptly. Marks commended Palo Alto Networks for introducing Cortex Cloud, offering a unified platform from code to cloud to SOC, enabling security teams to prioritize remediation actions effectively and enhance detection and response capabilities.
In conclusion, the launch of Palo Alto Networks’ Cortex Cloud represents a significant advancement in cloud security, leveraging AI and automation to provide comprehensive protection, threat prevention, and incident response capabilities for organizations in the evolving cybersecurity landscape.