* [Blog](https://www.paloaltonetworks.com/blog)
* [Cloud Security](https://www.paloaltonetworks.com/blog/cloud-security/)
* [Cloud Computing](https://www.paloaltonetworks.com/blog/category/cloud-computing-2/)
* Google Cloud and Prisma C...

# Google Cloud and Prisma Cloud: Partnering to protect cloud VMs

[](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fwww.paloaltonetworks.com%2Fblog%2Fcloud-security%2Fgoogle-cloud-prisma-cloud-partnering-to-protect-cloud-vms%2F)  
[](https://twitter.com/share?text=Google+Cloud+and+Prisma+Cloud%3A+Partnering+to+protect+cloud+VMs&url=https%3A%2F%2Fwww.paloaltonetworks.com%2Fblog%2Fcloud-security%2Fgoogle-cloud-prisma-cloud-partnering-to-protect-cloud-vms%2F)  
[](https://www.linkedin.com/shareArticle?mini=true&url=https%3A%2F%2Fwww.paloaltonetworks.com%2Fblog%2Fcloud-security%2Fgoogle-cloud-prisma-cloud-partnering-to-protect-cloud-vms%2F&title=Google+Cloud+and+Prisma+Cloud%3A+Partnering+to+protect+cloud+VMs&summary=&source=)  
[](https://www.paloaltonetworks.com//www.reddit.com/submit?url=https://www.paloaltonetworks.com/blog/cloud-security/google-cloud-prisma-cloud-partnering-to-protect-cloud-vms/&ts=markdown)  
\[\](mailto:?subject=Google Cloud and Prisma Cloud: Partnering to protect cloud VMs)  
Link copied  
By [Derek Rogerson](https://www.paloaltonetworks.com/blog/author/derek-rogerson/?ts=markdown "Posts by Derek Rogerson")  
Mar 29, 2021  
6 minutes  
[Cloud Computing](https://www.paloaltonetworks.com/blog/category/cloud-computing-2/?ts=markdown)  
[Cloud Workload Protection Platform](https://www.paloaltonetworks.com/blog/cloud-security/category/cloud-workload-protection-platform/?ts=markdown)  
[Cybersecurity](https://www.paloaltonetworks.com/blog/category/cybersecurity-2/?ts=markdown)  
[Partners](https://www.paloaltonetworks.com/blog/category/partners/?ts=markdown)  
[Partners](https://www.paloaltonetworks.com/blog/cloud-security/category/partners/?ts=markdown)  
[Google Cloud](https://www.paloaltonetworks.com/blog/tag/google-cloud/?ts=markdown)  
[multi-cloud](https://www.paloaltonetworks.com/blog/tag/multi-cloud/?ts=markdown)  
[VM](https://www.paloaltonetworks.com/blog/tag/vm/?ts=markdown)

Enterprises take cloud security seriously, and they're willing to invest in solutions that protect their cloud infrastructure, applications and data. In 2020, [Gartner predicted](https://www.gartner.com/en/newsroom/press-releases/2020-06-17-gartner-forecasts-worldwide-security-and-risk-managem) that global spending on cloud security would grow faster than spending on any other type of security. But the challenge is how to deliver first-rate cloud security without sacrificing speed, agility, and innovation---the capabilities that make cloud native applications so compelling in the first place.

Palo Alto Networks is partnering with [Google Cloud](https://cloud.withgoogle.com/partners/detail/?id=palo-alto-networks&hl=en-US) to help our customers achieve this critical balance between security, usability and performance in the cloud. Google recently took a big step toward this goal with its Host Defender Auto Deployment, which integrates the security capabilities of [Prisma Cloud Compute Edition](https://docs.paloaltonetworks.com/prisma/prisma-cloud.html) with Google Cloud's powerful automation and management tools. Host Defender Auto Deployment also implements a custom deployment UI that turns the process of using these tools into a fast, simple, and seamless experience---giving teams a better way to manage and secure cloud environments at massive scale.

Let's take a closer look at how Google Cloud's Host Defender Auto Deployment works and how it addresses one of our customers' most important cloud challenges.

## **Getting Ahead of Multi-Cloud Complexity**

Enterprises are deploying more cloud native applications, more quickly, to solve a greater variety of business challenges. Some workloads may run as hosts or VMs; others might be containerized or serverless deployments that run within distributed microservices environments.

You get the picture: A modern, multi-cloud environment can be extremely tough to manage, and even tougher to secure.

Taming these multi-cloud challenges is a big reason why Google Cloud has focused on creating solutions like [Google Anthos](https://cloud.google.com/anthos#section-5) to make it simpler and easier to manage applications across multiple clouds. And it's also a big reason why Google Cloud contributes to the open source community with technologies like Kubernetes. And today, it's why the Prisma Cloud team is partnering with them to solve our customers' most urgent cloud security challenges.

Prisma Cloud is central to this partnership. We designed our Cloud Native Security Platform specifically to secure modern, multi-cloud environments---no matter where cloud workloads are deployed or how they happen to be running. That means Prisma Cloud is equally adept at securing public, private and hybrid cloud environments. It offers the same, holistic protection whether cloud workloads run as hosts, containers or serverless deployments; and its capabilities extend across the entire software lifecycle.

## **Defenders: A Better Approach to Multi-Cloud Security**

Prisma Cloud has two key components: the Console, which provides a management interface with tools to define your security policy and monitor your cloud environment; and [Defenders](https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin-compute/technology_overviews/defender_architecture.html), which are agent-like components that protect a specific type of resource based on a user's security policies.

Defenders come in a [variety of flavors](https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin-compute/install/defender_types.html), including options for defending a host and its containers, a host environment without a running container engine, or serverless functions. Other types of Defenders are deployed as app-embedded or manually configured versions that can protect pretty much any other cloud-based runtime in use today.

There's a lot more [happening under the hood](https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin-compute/technology_overviews/defender_architecture.html), of course, but the end result is that Prisma Cloud gives enterprises a cloud native security architecture that keeps pace with today's dynamic, fast-evolving, and massively scalable multi-cloud environments. Unlike many security solutions, Defenders are architected to avoid creating new security issues (for example, relying on a least-privilege security design that avoids using kernel extensions or any other host OS modifications). And every Defender type running in a customer's cloud environment reports back to a single Console---giving teams simple, single-pane-of-glass visibility into their hybrid cloud and multi-cloud environments.

## **Auto Deployments Clear the Barriers to Scalable Cloud Security**

Qualities like visibility, simplicity and usability have been major points of emphasis for the partnership between Google Cloud and Palo Alto Networks. As multi-cloud environments get bigger and more complex, even the simplest management tasks can turn into burdens that drain a team's time and resources. That's why businesses need solutions that not only protect multi-cloud environments, but also make managing the cloud security simpler and less stressful, even at massive scale.

Google Cloud's Host Defender Auto Deployment is important because it's truly a team win, showing how Prisma Cloud and Google Cloud work together to deliver security, performance and usability within a single, integrated package. To show you why, let's walk through a quick example of how the deployment works, and how it benefits customers:

* First, let's review the use case for Host Defender: Virtual Machines (VMs) deployed as Google Compute Engine instances in a customer's Google Cloud environment. We know that many of our customers continue to depend on this deployment model. Host Defender maintains security, visibility and control even as the number of VMs being managed continues to scale.
* Of course, different groups of VMs are likely to have different security and management requirements, or they may require you to deploy different security toolsets. Defining multiple security policies in Prisma Cloud is pretty simple---but ensuring that every new VM gets an up-to-date Host Defender instance, with the right security policy, can quickly become unmanageable as an environment scales and gets more complex.
* Google Cloud solves this problem with interactive tools that give customers a faster, easier, and more intuitive way to deploy Host Defender agents. The key innovation is a custom deployment UI on the Google Cloud Console that turns this essentially into a single-step process. Once a customer [adds Host Defender via Marketplace](https://console.cloud.google.com/marketplace/details/paloaltonetworksgcp-public/host-defender), the custom deployment UI takes them seamlessly through the [deployment process](http://console.cloud.google.com/security/agent/deployment/prisma): identifying groups of VM-based hosts based on their [instance name prefix](https://cloud.google.com/compute/docs/os-config-management/create-guest-policy#example2) or [instance label,](https://cloud.google.com/compute/docs/os-config-management/create-guest-policy#example3) and defining security policies that Host Defender should implement each time Compute Engine spins up a new VM within a defined group.
* That's it. The same interactive deployment process, based on the same custom UI, can scale easily to set effective security policies for any group of supported VMs. And once the initial deployment is complete, Host Defender with Auto Deploy continues to work hand in hand with Google Cloud, automatically deploying a Host Defender agent with the correct security policy each time Compute Engine spins up a new virtualized host.

## **There's More to Come From the Google Cloud and Palo Alto Networks Partnership**

Google Cloud's approach to integrating Host Defender with its Auto Deploy makes a difference for Prisma Cloud administrators. What was once a tedious and time-consuming deployment process is now a simpler, faster and far more efficient path to value for admins.

Better yet, these auto deployments can help nearly eliminate the risk of misconfigured or missing Host Defender deployments. Customers get a solution that extends their visibility and control, and sets the stage for more accurate reporting, compliance and governance.

Keep in mind that this is just one example of how the integrated capabilities between Google Cloud and Palo Alto Networks products create unique value and benefits for customers. The more our customers learn about using these capabilities, the better they'll get at managing and securing their cloud workloads at scale.

To learn more about Host Defender with Auto Deploy, including the setup requirements for your environments, get started with our hands-on [Qwiklabs](https://www.qwiklabs.com/focuses/16330?catalog_rank=%7B%22rank%22%3A1%2C%22num_filters%22%3A0%2C%22has_search%22%3Atrue%7D&parent=catalog&search_id=9822154).

*** ** * ** ***

## Related Blogs

### [Cloud Computing](https://www.paloaltonetworks.com/blog/category/cloud-computing-2/?ts=markdown), [Cloud Workload Protection Platform](https://www.paloaltonetworks.com/blog/cloud-security/category/cloud-workload-protection-platform/?ts=markdown), [Cybersecurity](https://www.paloaltonetworks.com/blog/category/cybersecurity-2/?ts=markdown), [Partners](https://www.paloaltonetworks.com/blog/category/partners/?ts=markdown), [Partners](https://www.paloaltonetworks.com/blog/cloud-security/category/partners/?ts=markdown)

[#### Automating Visibility and Protection for Cloud VMs](https://www.paloaltonetworks.com/blog/cloud-security/automating-visibility-protection-cloud-vms/)

### [Cloud Computing](https://www.paloaltonetworks.com/blog/category/cloud-computing-2/?ts=markdown), [Cloud Workload Protection Platform](https://www.paloaltonetworks.com/blog/cloud-security/category/cloud-workload-protection-platform/?ts=markdown), [Cybersecurity](https://www.paloaltonetworks.com/blog/category/cybersecurity-2/?ts=markdown), [Partners](https://www.paloaltonetworks.com/blog/category/partners/?ts=markdown), [Partners](https://www.paloaltonetworks.com/blog/cloud-security/category/partners/?ts=markdown)

[#### Better Together With IBM and Prisma Cloud Compute Edition](https://www.paloaltonetworks.com/blog/cloud-security/better-together-ibm-prisma-cloud/)

### [Announcement](https://www.paloaltonetworks.com/blog/category/announcement/?ts=markdown), [Cloud Computing](https://www.paloaltonetworks.com/blog/category/cloud-computing-2/?ts=markdown), [Cloud Workload Protection Platform](https://www.paloaltonetworks.com/blog/cloud-security/category/cloud-workload-protection-platform/?ts=markdown), [Cybersecurity](https://www.paloaltonetworks.com/blog/category/cybersecurity-2/?ts=markdown), [Partners](https://www.paloaltonetworks.com/blog/category/partners/?ts=markdown), [Partners](https://www.paloaltonetworks.com/blog/cloud-security/category/partners/?ts=markdown)

[#### Prisma Cloud Secures Containerized Apps on AWS-Optimized Bottlerocket](https://www.paloaltonetworks.com/blog/cloud-security/secure-containerized-app-aws-bottlerocket/)

### [Cloud Computing](https://www.paloaltonetworks.com/blog/category/cloud-computing-2/?ts=markdown), [Cloud Workload Protection Platform](https://www.paloaltonetworks.com/blog/cloud-security/category/cloud-workload-protection-platform/?ts=markdown), [Cybersecurity](https://www.paloaltonetworks.com/blog/category/cybersecurity-2/?ts=markdown), [DevSecOps](https://www.paloaltonetworks.com/blog/cloud-security/category/devsecops/?ts=markdown), [Partners](https://www.paloaltonetworks.com/blog/cloud-security/category/partners/?ts=markdown)

[#### Open Source License Detection and Expanded Git Repo Scanning](https://www.paloaltonetworks.com/blog/cloud-security/open-source-license-detection-expanded-git-repo-scanning/)

### [Cloud Workload Protection Platform](https://www.paloaltonetworks.com/blog/cloud-security/category/cloud-workload-protection-platform/?ts=markdown), [Partners](https://www.paloaltonetworks.com/blog/category/partners/?ts=markdown)

[#### Prisma Cloud Supports Arm Workloads on Google Cloud and GKE](https://www.paloaltonetworks.com/blog/cloud-security/supports-arm-workloads-on-google-cloud-and-gke/)

### [Cloud Workload Protection Platform](https://www.paloaltonetworks.com/blog/cloud-security/category/cloud-workload-protection-platform/?ts=markdown), [Partners](https://www.paloaltonetworks.com/blog/category/partners/?ts=markdown)

[#### Prisma Cloud Container Security with GKE Autopilot](https://www.paloaltonetworks.com/blog/cloud-security/gke-autopilot/)

### Subscribe to Cloud Security Blogs!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.
![spinner](https://www.paloaltonetworks.com/blog/wp-content/themes/panwblog2023/dist/images/ajax-loader.gif) Sign up  
Please enter a valid email.  
By submitting this form, you agree to our [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown) and acknowledge our [Privacy Statement](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown). Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.  
This site is protected by reCAPTCHA and the Google [Privacy Policy](https://policies.google.com/privacy) and [Terms of Service](https://policies.google.com/terms) apply.  
{#footer} {#footer}

## Products and Services

* [AI-Powered Network Security Platform](https://www.paloaltonetworks.com/network-security?ts=markdown)

* [Secure AI by Design](https://www.paloaltonetworks.com/precision-ai-security/secure-ai-by-design?ts=markdown)

* [Prisma AIRS](https://www.paloaltonetworks.com/prisma/prisma-ai-runtime-security?ts=markdown)

* [AI Access Security](https://www.paloaltonetworks.com/sase/ai-access-security?ts=markdown)

* [Cloud Delivered Security Services](https://www.paloaltonetworks.com/network-security/security-subscriptions?ts=markdown)

* [Advanced Threat Prevention](https://www.paloaltonetworks.com/network-security/advanced-threat-prevention?ts=markdown)

* [Advanced URL Filtering](https://www.paloaltonetworks.com/network-security/advanced-url-filtering?ts=markdown)

* [Advanced WildFire](https://www.paloaltonetworks.com/network-security/advanced-wildfire?ts=markdown)

* [Advanced DNS Security](https://www.paloaltonetworks.com/network-security/advanced-dns-security?ts=markdown)

* [Enterprise Data Loss Prevention](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Enterprise IoT Security](https://www.paloaltonetworks.com/network-security/enterprise-device-security?ts=markdown)

* [Medical IoT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [Industrial OT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [Next-Generation Firewalls](https://www.paloaltonetworks.com/network-security/next-generation-firewall?ts=markdown)

* [Hardware Firewalls](https://www.paloaltonetworks.com/network-security/hardware-firewall-innovations?ts=markdown)

* [Software Firewalls](https://www.paloaltonetworks.com/network-security/software-firewalls?ts=markdown)

* [Strata Cloud Manager](https://www.paloaltonetworks.com/network-security/strata-cloud-manager?ts=markdown)

* [SD-WAN for NGFW](https://www.paloaltonetworks.com/network-security/sd-wan-subscription?ts=markdown)

* [PAN-OS](https://www.paloaltonetworks.com/network-security/pan-os?ts=markdown)

* [Panorama](https://www.paloaltonetworks.com/network-security/panorama?ts=markdown)

* [Secure Access Service Edge](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Prisma SASE](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Application Acceleration](https://www.paloaltonetworks.com/sase/app-acceleration?ts=markdown)

* [Autonomous Digital Experience Management](https://www.paloaltonetworks.com/sase/adem?ts=markdown)

* [Enterprise DLP](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Prisma Access](https://www.paloaltonetworks.com/sase/access?ts=markdown)

* [Prisma Browser](https://www.paloaltonetworks.com/sase/prisma-browser?ts=markdown)

* [Prisma SD-WAN](https://www.paloaltonetworks.com/sase/sd-wan?ts=markdown)

* [Remote Browser Isolation](https://www.paloaltonetworks.com/sase/remote-browser-isolation?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [AI-Driven Security Operations Platform](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cloud Security](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Cortex Cloud](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Application Security](https://www.paloaltonetworks.com/cortex/cloud/application-security?ts=markdown)

* [Cloud Posture Security](https://www.paloaltonetworks.com/cortex/cloud/cloud-posture-security?ts=markdown)

* [Cloud Runtime Security](https://www.paloaltonetworks.com/cortex/cloud/runtime-security?ts=markdown)

* [Prisma Cloud](https://www.paloaltonetworks.com/prisma/cloud?ts=markdown)

* [AI-Driven SOC](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cortex XSIAM](https://www.paloaltonetworks.com/cortex/cortex-xsiam?ts=markdown)

* [Cortex XDR](https://www.paloaltonetworks.com/cortex/cortex-xdr?ts=markdown)

* [Cortex XSOAR](https://www.paloaltonetworks.com/cortex/cortex-xsoar?ts=markdown)

* [Cortex Xpanse](https://www.paloaltonetworks.com/cortex/cortex-xpanse?ts=markdown)

* [Unit 42 Managed Detection \& Response](https://www.paloaltonetworks.com/cortex/managed-detection-and-response?ts=markdown)

* [Managed XSIAM](https://www.paloaltonetworks.com/cortex/managed-xsiam?ts=markdown)

* [Threat Intel and Incident Response Services](https://www.paloaltonetworks.com/unit42?ts=markdown)

* [Proactive Assessments](https://www.paloaltonetworks.com/unit42/assess?ts=markdown)

* [Incident Response](https://www.paloaltonetworks.com/unit42/respond?ts=markdown)

* [Transform Your Security Strategy](https://www.paloaltonetworks.com/unit42/transform?ts=markdown)

* [Discover Threat Intelligence](https://www.paloaltonetworks.com/unit42/threat-intelligence-partners?ts=markdown)

## Company

* [About Us](https://www.paloaltonetworks.com/about-us?ts=markdown)
* [Careers](https://jobs.paloaltonetworks.com/en/)
* [Contact Us](https://www.paloaltonetworks.com/company/contact-sales?ts=markdown)
* [Corporate Responsibility](https://www.paloaltonetworks.com/about-us/corporate-responsibility?ts=markdown)
* [Customers](https://www.paloaltonetworks.com/customers?ts=markdown)
* [Investor Relations](https://investors.paloaltonetworks.com/)
* [Location](https://www.paloaltonetworks.com/about-us/locations?ts=markdown)
* [Newsroom](https://www.paloaltonetworks.com/company/newsroom?ts=markdown)

## Popular Links

* [Blog](https://www.paloaltonetworks.com/blog/?ts=markdown)
* [Communities](https://www.paloaltonetworks.com/communities?ts=markdown)
* [Content Library](https://www.paloaltonetworks.com/resources?ts=markdown)
* [Cyberpedia](https://www.paloaltonetworks.com/cyberpedia?ts=markdown)
* [Event Center](https://events.paloaltonetworks.com/)
* [Manage Email Preferences](https://start.paloaltonetworks.com/preference-center)
* [Products A-Z](https://www.paloaltonetworks.com/products/products-a-z?ts=markdown)
* [Product Certifications](https://www.paloaltonetworks.com/legal-notices/trust-center/compliance?ts=markdown)
* [Report a Vulnerability](https://www.paloaltonetworks.com/security-disclosure?ts=markdown)
* [Sitemap](https://www.paloaltonetworks.com/sitemap?ts=markdown)
* [Tech Docs](https://docs.paloaltonetworks.com/)
* [Unit 42](https://unit42.paloaltonetworks.com/)
* [Do Not Sell or Share My Personal Information](https://panwedd.exterro.net/portal/dsar.htm?target=panwedd)
  ![PAN logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/pan-logo-dark.svg)
* [Privacy](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown)
* [Trust Center](https://www.paloaltonetworks.com/legal-notices/trust-center?ts=markdown)
* [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown)
* [Documents](https://www.paloaltonetworks.com/legal?ts=markdown)

Copyright © 2026 Palo Alto Networks. All Rights Reserved

* [![Youtube](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/youtube-black.svg)](https://www.youtube.com/user/paloaltonetworks)
* [![Podcast](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/icons/podcast.svg)](https://www.paloaltonetworks.com/podcasts/threat-vector?ts=markdown)
* [![Facebook](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/facebook-black.svg)](https://www.facebook.com/PaloAltoNetworks/)
* [![LinkedIn](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/linkedin-black.svg)](https://www.linkedin.com/company/palo-alto-networks)
* [![Twitter](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/twitter-x-black.svg)](https://twitter.com/PaloAltoNtwks)
* EN  
  Select your language