Palo Alto Networks

Cloud Computing

Using Your Pipelines To Harden Your Pipelines: The Importance of CI/CD Security for Your Software Supply Chain

As the systems we use to deliver software to the cloud get more complex and reliant on third-party components, they also leave more opportunities for attacks. Just last year, software supply chain attacks jumped 51%, which is proof that bad (and creative) actors are capitalizing on these weaknesses.

Software supply chains are only as strong as their weakest link, and Continuous Integration/Continuous Delivery (CI/CD) pipelines are the latest attac...

Cloud Computing

DevSecOps

Dec 01, 2022

By Idan Tendler

Palo Alto Networks

Products and Services

Partners

Cloud Computing, DevSecOps

AppSec and CloudSec 101: Blurring the Lines Between Cloud-Native App Layers

Not too long ago, IT security models were relatively straightforward. They were broken into layers — the infrastructure layer, the application layer, sometimes the network layer, a...

Sep 28, 2022

By Chris Tozzi

Cloud Computing, DevSecOps

A Primer on Secure DevOps: Learn the Benefits of These 3 DevSecOps Use Case...

DevSecOps has risen to buzzword status in the past few years, encompassing several shift-left security use cases. And while the word DevSecOps gets thrown around a lot, there are s...

Sep 22, 2022

By Julia Benson

Cloud Computing, DevSecOps

Four Steps To Get Started With a ‘Bottom-Up’ Cybersecurity Approach

Throughout 2021, thousands of cybersecurity incidents were recorded, many of them significant and some of them devastating. Information belonging to over 550 million Facebook users...

Sep 13, 2022

By Idan Tendler

Cloud Computing, DevSecOps

How To Adopt Infrastructure as Code With a Secure-by-Default Strategy

Since its inception, infrastructure as code (IaC) has transformed how application infrastructure is provisioned and configured. IaC allows you to easily manage, configure, update,...

Sep 08, 2022

By Julia Benson

Cloud Computing, DevSecOps

Addressing Security Throughout the Infrastructure DevOps Lifecycle

No, this isn’t another post about the Secure Development Lifecycle. This is a practical post on why and how to address cloud security at each step of the infrastructure development...

Aug 30, 2022

By Barak Schoster

Cloud Computing, DevSecOps

5 Tips for Securely Adopting Infrastructure as Code

Infrastructure as code (IaC) allows us to design, build, deploy and manage cloud infrastructure in code, rather than clicking through a cloud provider’s UI or having a long list of CLI commands. IaC—especially...

Aug 23, 2022

By Taylor Smith

Cloud Computing, DevSecOps

Scaling in the Cloud? IaC and DevSecOps Are Here to Help

The cloud presents a ton of opportunities for flexibility, performance and scale.With scale, however, comes a whole new type of challenge.

Aug 09, 2022

By Julia Benson

Cloud Computing, Cloud Native Application Protection Platform, Cloud Workload Protection Platform

Zero Trust for Applications: Securing Content within Transactions

Over the past few years organizations have been adopting cloud computing technologies. With that comes shifting legacy a...

Mar 15, 2022

By Mohit Bhasin

Cloud Computing, DevSecOps, Events

Build Security Expertise from Code to Cloud at our Upcoming Global Practiti...

In the past (nearly) three years since Palo Alto Networks announced Prisma Cloud, we have constantly pushed the envelope when it comes to securing the...

Mar 10, 2022

By Payton O’Neal

Cloud Computing, Cloud Network Security

Zero Trust for Applications: Verifying Access Between Workloads

Zero Trust is a cybersecurity concept that companies are applying to users, applications, and infrastructure. Today, organizations adopt Zero Trust pr...

Mar 01, 2022

By Jason Williams

Cloud Computing, DevSecOps, Secure the Cloud

How Does DevSecOps Fit Into Your Digital Transformation?

"Going digital" is a huge challenge in the best of times, but thanks to increasingly competitive markets, more technically savvy customers, and a few... black swan events sprinkled around, it can feel more comp...

Dec 08, 2021

By Zachary Flower

Cloud Computing, DevSecOps

Implementing NSA/CISA Kubernetes Hardening Guidance

On August 3, 2021 the National Security Agency (NSA) and the Cybersecurity and Infrastructure Agency (CISA) released the Kubernetes Hardening Guidance Cybersecurity Technical Report. The document, which is inte...

Oct 06, 2021

By Paul Fox

Cloud Computing, Platform

Strengthening Integrations in our Cloud Native Security Platform

In our latest CWPP release of Prisma Cloud, we enhanced and expanded our best-of-breed capabilities and built upon our award winning technology to protect cloud workloads across se...

Oct 01, 2021

By Aqsa Taylor

Cloud Computing, Cloud Workload Protection Platform

Host Security: Automating Protection for VMs Across Public Clouds

As customers extend their deployments across multiple clouds, visibility and standardized security coverage remain a key challenge in multi-cloud mana...

Sep 08, 2021

By Hari Srinivasan

Cloud Computing, Cybersecurity, Must-Read Articles

Save Costs and Stay Secure While Accelerating Your Move to the Cloud

Organizations have been forced to accelerate their digital transformation projects in light of recent demands on their networks. Cloud migration bring...

Aug 19, 2021

By Dr. Marshall Kuypers

Cloud Computing, Partners

The Journey to Coursera with Google Cloud and Prisma Cloud

Coursera announced the availability of Palo Alto Networks Prisma Cloud training on Google Qwiklabs, which is hosted by Coursera. Now students can learn how Prisma Cloud provides or...

Aug 13, 2021

By Jane Chung, Mason Yan and Peter Riebli

Cloud Computing, Cloud Network Security

Why Microsegmentation Policy as Code is Important for DevOps

Cloud native has changed the way organizations develop, deploy, and run their applications. Businesses became more agile by adopting developer-led or...

Aug 12, 2021

By Alexandre Cezar

Cloud Computing, Cybersecurity, Must-Read Articles

Five steps to deploy a zero-trust attack surface management solution

In response to recent ransomware attacks, the White house issued an executive order1 to companies to improve their cybersecurity postures. One of the...

Aug 11, 2021

By Kane Lightowler

Cloud Computing, Cloud Infrastructure Entitlement Management

Why Multi-Factor Authentication Should be at the Root of Your Security

In October 2020, Unit 42 researchers published the 2H 2020 Cloud Threat Report, which centered around identity and access management (IAM) threats. Du...

Aug 09, 2021

By Nathaniel Quist

Cloud Computing, Cloud Workload Protection Platform

Open Source Vulnerability Management for Cloud Security

These days, as there are many different strategies and architectures for building and running applications, and there are many different components involved, the mission of securing them all has become increasi...

Jul 20, 2021

By Sharon Ben Zeev and Ariel Zelivansky

Load more blogs