* [Blog](https://www.paloaltonetworks.com/blog)
* [Cloud Security](https://www.paloaltonetworks.com/blog/cloud-security/)
* [AI Security](https://www.paloaltonetworks.com/blog/cloud-security/category/ai-security/)
* Introducing Cortex Cloud ...

# Introducing Cortex Cloud 2.1

[](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fwww.paloaltonetworks.com%2Fblog%2Fcloud-security%2Fvisibility-governance-automation%2F)  
[](https://twitter.com/share?text=Introducing+Cortex+Cloud+2.1&url=https%3A%2F%2Fwww.paloaltonetworks.com%2Fblog%2Fcloud-security%2Fvisibility-governance-automation%2F)  
[](https://www.linkedin.com/shareArticle?mini=true&url=https%3A%2F%2Fwww.paloaltonetworks.com%2Fblog%2Fcloud-security%2Fvisibility-governance-automation%2F&title=Introducing+Cortex+Cloud+2.1&summary=&source=)  
[](https://www.paloaltonetworks.com//www.reddit.com/submit?url=https://www.paloaltonetworks.com/blog/cloud-security/visibility-governance-automation/&ts=markdown)  
\[\](mailto:?subject=Introducing Cortex Cloud 2.1)  
Link copied  
By [Cody Queen](https://www.paloaltonetworks.com/blog/author/cody-queen/?ts=markdown "Posts by Cody Queen")  
May 05, 2026  
6 minutes  
[AI Security](https://www.paloaltonetworks.com/blog/cloud-security/category/ai-security/?ts=markdown)  
[Application Security](https://www.paloaltonetworks.com/blog/cloud-security/category/application-security/?ts=markdown)  
[AppSec](https://www.paloaltonetworks.com/blog/cloud-security/category/appsec/?ts=markdown)  
[CIEM](https://www.paloaltonetworks.com/blog/cloud-security/category/ciem-2/?ts=markdown)  
[Cloud Security](https://www.paloaltonetworks.com/blog/category/cloud-security/?ts=markdown)  
[Identity Security](https://www.paloaltonetworks.com/blog/cloud-security/category/identity-security/?ts=markdown)  
[Supply Chain Security](https://www.paloaltonetworks.com/blog/cloud-security/category/supply-chain-security/?ts=markdown)

As organizations accelerate their digital transformation, the boundaries between development, data and infrastructure are disappearing. Cloud Security can no longer be a series of disconnected tools. It must instead be a cohesive fabric that spans the entire cloud-native stack. Today, we are happy to announce Cortex Cloud 2.1, a milestone release focused on three critical pillars: expanded visibility, unified governance and automated remediation.

From your Kubernetes clusters to the cutting edge of AI pipelines, Cortex Cloud 2.1 provides the guardrails and visibility you need to innovate with confidence. Let's dive into the highlights of this release and what they mean for your organization.

## Governance for the AI Frontier

AI is very much a reality of modern business. The rapid adoption of AI models, however, often outpaces security oversight. Cortex Cloud 2.1 brings specialized governance to your AI pipelines, ensuring your innovation doesn't come at the cost of exposure.

### Expanded AI Visibility and GCP Vertex Integration

* \*\*What's New?\*\*Deep visibility into AI applications running in cloud workloads, as well as new native visibility into GCP Vertex Model Garden models, including models invoked without deployed endpoints.
* **The Benefit:** Eliminate shadow AI across workloads and managed AI services. Teams can now [identify AI software packages](https://www.paloaltonetworks.com/blog/cloud-security/shadow-ai-workloads/?ts=markdown) in cloud compute and govern GCP Vertex Model Garden models, including models invoked without deployed endpoints. Together, this extends the AI bill of materials (AI-BOM) to ensure that your data science teams can experiment freely while security maintains a complete audit trail of every AI component in the pipeline.

![AI Software packages in the AI-SPM module of Cortex Cloud](https://www.paloaltonetworks.com/blog/wp-content/uploads/2026/04/word-image-358043-1.png)
AI Software packages in the AI-SPM module of Cortex Cloud

## Seeing the Human Behind the Permissions

In the cloud, identity is often fragmented across directories, cloud providers and SaaS applications, inadvertently creating dark permissions that attackers love to exploit.

### Unified Human Identities

* **What's New?** A single virtual identity that links a person's accounts across directories, cloud IdPs and SaaS applications.
* **The Benefit:** We are moving beyond raw logs to true identity risk. You can finally [identify excessive or risky privileges that cross platform boundaries](https://www.paloaltonetworks.com/cortex/cloud/cloud-infrastructure-entitlement-management?ts=markdown), which helps your SOC team to prioritize risk based on human access relationships versus simple machine configurations.

![All human identities as shown in Cortex Cloud](https://www.paloaltonetworks.com/blog/wp-content/uploads/2026/04/word-image-358043-2.png)
Figure 2. All human identities as shown in Cortex Cloud

## Securing On-Prem Data

Many enterprises aren't 100% in the cloud. They have legacy databases and complex Kubernetes environments that require a unified security posture.

### Hybrid Data Security

* **What's New?** [Data Security Posture Management (DSPM)](https://www.paloaltonetworks.com/cortex/cloud/data-security-posture-management?ts=markdown) support is expanded to on-premises databases, building on existing support for on-premises file shares.
* **The Benefit:** You get a single pane of glass for your most sensitive data. Whether it lives in an AWS RDS instance, on-premises databases or shared file system, you can apply the same governance, ensuring that sensitive data is never exposed.

### Zero-Friction Kubernetes and Container Security

As organizations scale their cloud-native footprints, the operational burden of deploying and maintaining security agents across every cluster can slow down development. Security should be an accelerator, not a bottleneck that creates blind spots in dynamic environments.

### Agentless Kubernetes Security

* **What's New?** Agentless scanning for AWS Kubernetes environments, including clusters, nodes, namespaces and workloads.
* **The Benefit:** Uncover critical misconfigurations and vulnerabilities across your entire Kubernetes environment in minutes, delivering 100% visibility and continuous posture management with zero operational friction or workload impact.

### New Agent-Based CaaS Support

* **What's New?** Embed the XDR Agent within the container image for AWS Fargate CaaS workloads for real-time monitoring and protection.
* **The Benefit:** Get real-time monitoring and protection for vulnerabilities, compliance issues and active threats while removing the friction of deploying an agent.

![CaaS resource in Cortex Cloud](https://www.paloaltonetworks.com/blog/wp-content/uploads/2026/04/word-image-358043-3.png)
Figure 3. CaaS resource in Cortex Cloud

## Remediation at the Speed of Code

The gap between finding a bug and fixing a bug is where risk lives. Cortex Cloud 2.1 introduces our first AI-native security assistant to close that gap.

### Meet the AppSec AI Agent

* **What's New:** An AI agent that [analyzes AppSec findings](https://www.paloaltonetworks.com/cortex/cloud/application-security?ts=markdown) and automatically opens ready-to-merge fix PRs for the highest-risk issues.
* \*\*The Benefit:\*\*Eliminates triage and context switching by delivering prioritized, validated fixes directly in the developer workflow. Simplicity reduces remediation time and now frees your teams to focus on shipping instead of sorting alerts.

### New Integration with Snyk

* **What's New:** A native integration that brings Snyk SCA and SAST findings into Cortex Cloud's unified platform and policy framework.
* **The Benefit:** Consolidates risk across tools into a single view with consistent prioritization and enforcement. Teams keep their existing workflows while gaining clarity and control.

![Simple onboarding of Snyk integration in Cortex Cloud](https://www.paloaltonetworks.com/blog/wp-content/uploads/2026/04/word-image-358043-4.png)
Figure 4. Simple onboarding of Snyk integration in Cortex Cloud

### Unified Code-to-Registry Policies

* **What's New:** A unified [policy framework across pre-production environments](https://www.paloaltonetworks.com/cortex/cloud/software-supply-chain-security?ts=markdown).
* \*\*The Benefit:\*\*Delivers consistent enforcement across software supply chains, reduces gaps and policy drift, and scales security without adding complexity.

![Setting up a new policy in Cortex Cloud](https://www.paloaltonetworks.com/blog/wp-content/uploads/2026/04/screenshot-2026-03-16-at-6-57-39-png.png)
Figure 5. Setting up a new policy in Cortex Cloud

## Audit-Ready and Automated

Security is also about [proving compliance](https://www.paloaltonetworks.com/cortex/cloud/cloud-security-posture-management?ts=markdown). Cortex Cloud 2.1 takes the pain out of compliance audits and supports teams as they work to reduce risk by automating remediation to rapidly reduce cloud risks.

### Audit Ready Compliance Reporting

* **What's New?** A unified evidence framework for SOC 2, PCI DSS and HIPAA that automates data collection across agent, agentless and Kubernetes sources.
* **The Benefit:** Reclaim your weekends. We automate the collection of proof, so when the auditors arrive, you have a comprehensive, defensible report ready at the click of a button.

### One-Click Remediation Playbooks

* **What's New?** New CSPM playbooks for AWS, Azure and GCP to fix internet-exposed compute and misconfigurations.
* **The Benefit:** Fast, safe response. When a misconfiguration is detected, your team can resolve it with one click, using prevalidated workflows that minimize the risk of human error or breaking production environments.

![Cortex Cloud compliance dashboard for easy management](https://www.paloaltonetworks.com/blog/wp-content/uploads/2026/04/image-png.png)
Figure 6. Cortex Cloud compliance dashboard for easy management

## Cloud Security That Innovates with You

Cortex Cloud 2.1 is designed for the speed of the modern enterprise, moving security from detect and notify to detect and resolve. By unifying posture, runtime and application security under a single, [AI-driven command center](https://www.paloaltonetworks.com/cortex/cloud/application-security-posture-management?ts=markdown), we are giving your team the power to see everything and the autonomy to fix it faster than ever. Now you can lower operational costs, reduce risk exposure and secure a more resilient cloud presence for every customer.

**Ready to see Cortex Cloud in action?** [Request a demo](https://www.paloaltonetworks.com/cortex/cloud/demo?ts=markdown) today.

*** ** * ** ***

## Related Blogs

### [Application Security](https://www.paloaltonetworks.com/blog/cloud-security/category/application-security/?ts=markdown), [AppSec](https://www.paloaltonetworks.com/blog/cloud-security/category/appsec/?ts=markdown), [Cloud Security](https://www.paloaltonetworks.com/blog/category/cloud-security/?ts=markdown), [Supply Chain Security](https://www.paloaltonetworks.com/blog/cloud-security/category/supply-chain-security/?ts=markdown)

[#### Bitwarden CLI Impersonation Attack Steals Cloud Credentials and Spreads Across npm Supply Chains](https://www.paloaltonetworks.com/blog/cloud-security/bitwardencli-supply-chain-attack/)

### [AI Security](https://www.paloaltonetworks.com/blog/cloud-security/category/ai-security/?ts=markdown), [AI-SPM](https://www.paloaltonetworks.com/blog/cloud-security/category/ai-spm/?ts=markdown), [CIEM](https://www.paloaltonetworks.com/blog/cloud-security/category/ciem-2/?ts=markdown), [Cloud Security](https://www.paloaltonetworks.com/blog/category/cloud-security/?ts=markdown), [Data Security](https://www.paloaltonetworks.com/blog/cloud-security/category/data-security/?ts=markdown), [DSPM](https://www.paloaltonetworks.com/blog/cloud-security/category/dspm/?ts=markdown)

[#### Dissecting Shadow AI to Illuminate Hidden Footprints in Your Workloads](https://www.paloaltonetworks.com/blog/cloud-security/shadow-ai-workloads/)

### [Application Security](https://www.paloaltonetworks.com/blog/cloud-security/category/application-security/?ts=markdown), [AppSec](https://www.paloaltonetworks.com/blog/cloud-security/category/appsec/?ts=markdown), [ASPM](https://www.paloaltonetworks.com/blog/cloud-security/category/aspm/?ts=markdown), [Cloud Security](https://www.paloaltonetworks.com/blog/category/cloud-security/?ts=markdown), [DevSecOps](https://www.paloaltonetworks.com/blog/cloud-security/category/devsecops/?ts=markdown)

[#### Level Up Your AppSec Team with an Agentic Workforce](https://www.paloaltonetworks.com/blog/cloud-security/cloud-security-appsec-agent-aspm/)

### [Application Security](https://www.paloaltonetworks.com/blog/cloud-security/category/application-security/?ts=markdown), [AppSec](https://www.paloaltonetworks.com/blog/cloud-security/category/appsec/?ts=markdown), [ASPM](https://www.paloaltonetworks.com/blog/cloud-security/category/aspm/?ts=markdown), [Cloud Security](https://www.paloaltonetworks.com/blog/category/cloud-security/?ts=markdown), [Partners](https://www.paloaltonetworks.com/blog/cloud-security/category/partners/?ts=markdown)

[#### Palo Alto Networks and Veracode: Unifying Application Security from Code to Cloud](https://www.paloaltonetworks.com/blog/cloud-security/application-security-veracode-partnership/)

### [AI Security](https://www.paloaltonetworks.com/blog/cloud-security/category/ai-security/?ts=markdown), [AI-SPM](https://www.paloaltonetworks.com/blog/cloud-security/category/ai-spm/?ts=markdown), [CIEM](https://www.paloaltonetworks.com/blog/cloud-security/category/ciem/?ts=markdown), [Cloud Security](https://www.paloaltonetworks.com/blog/category/cloud-security/?ts=markdown), [DSPM](https://www.paloaltonetworks.com/blog/cloud-security/category/dspm/?ts=markdown), [Identity Security](https://www.paloaltonetworks.com/blog/cloud-security/category/identity-security/?ts=markdown)

[#### Is AI a New Challenge for Cloud Security? Yes and No.](https://www.paloaltonetworks.com/blog/cloud-security/ai-security-gap-cloud-models-agents/)

### [AppSec](https://www.paloaltonetworks.com/blog/cloud-security/category/appsec/?ts=markdown), [Cloud Detection and Response](https://www.paloaltonetworks.com/blog/cloud-security/category/cloud-detection-and-response/?ts=markdown), [Cloud Runtime Security](https://www.paloaltonetworks.com/blog/cloud-security/category/cloud-runtime-security/?ts=markdown), [Cloud Security](https://www.paloaltonetworks.com/blog/category/cloud-security/?ts=markdown), [Supply Chain Security](https://www.paloaltonetworks.com/blog/cloud-security/category/supply-chain-security/?ts=markdown)

[#### Shai-Hulud 2.0: How Cortex Helps Protect Against the Resurgent npm Worm](https://www.paloaltonetworks.com/blog/cloud-security/shai-hulud-2-0-npm-worm-detection-blocking/)

### Subscribe to Cloud Security Blogs!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.
![spinner](https://www.paloaltonetworks.com/blog/wp-content/themes/panwblog2023/dist/images/ajax-loader.gif) Sign up  
Please enter a valid email.  
By submitting this form, you agree to our [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown) and acknowledge our [Privacy Statement](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown). Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.  
This site is protected by reCAPTCHA and the Google [Privacy Policy](https://policies.google.com/privacy) and [Terms of Service](https://policies.google.com/terms) apply.  
{#footer} {#footer}

## Products and Services

* [AI-Powered Network Security Platform](https://www.paloaltonetworks.com/network-security?ts=markdown)

* [Secure AI by Design](https://www.paloaltonetworks.com/precision-ai-security/secure-ai-by-design?ts=markdown)

* [Prisma AIRS](https://www.paloaltonetworks.com/prisma/prisma-ai-runtime-security?ts=markdown)

* [AI Access Security](https://www.paloaltonetworks.com/sase/ai-access-security?ts=markdown)

* [Cloud Delivered Security Services](https://www.paloaltonetworks.com/network-security/security-subscriptions?ts=markdown)

* [Advanced Threat Prevention](https://www.paloaltonetworks.com/network-security/advanced-threat-prevention?ts=markdown)

* [Advanced URL Filtering](https://www.paloaltonetworks.com/network-security/advanced-url-filtering?ts=markdown)

* [Advanced WildFire](https://www.paloaltonetworks.com/network-security/advanced-wildfire?ts=markdown)

* [Advanced DNS Security](https://www.paloaltonetworks.com/network-security/advanced-dns-security?ts=markdown)

* [Enterprise Data Loss Prevention](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Enterprise IoT Security](https://www.paloaltonetworks.com/network-security/enterprise-device-security?ts=markdown)

* [Medical IoT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [Industrial OT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [Next-Generation Firewalls](https://www.paloaltonetworks.com/network-security/next-generation-firewall?ts=markdown)

* [Hardware Firewalls](https://www.paloaltonetworks.com/network-security/hardware-firewall-innovations?ts=markdown)

* [Software Firewalls](https://www.paloaltonetworks.com/network-security/software-firewalls?ts=markdown)

* [Strata Cloud Manager](https://www.paloaltonetworks.com/network-security/strata-cloud-manager?ts=markdown)

* [SD-WAN for NGFW](https://www.paloaltonetworks.com/network-security/sd-wan-subscription?ts=markdown)

* [PAN-OS](https://www.paloaltonetworks.com/network-security/pan-os?ts=markdown)

* [Panorama](https://www.paloaltonetworks.com/network-security/panorama?ts=markdown)

* [Secure Access Service Edge](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Prisma SASE](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Application Acceleration](https://www.paloaltonetworks.com/sase/app-acceleration?ts=markdown)

* [Autonomous Digital Experience Management](https://www.paloaltonetworks.com/sase/adem?ts=markdown)

* [Enterprise DLP](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Prisma Access](https://www.paloaltonetworks.com/sase/access?ts=markdown)

* [Prisma Browser](https://www.paloaltonetworks.com/sase/prisma-browser?ts=markdown)

* [Prisma SD-WAN](https://www.paloaltonetworks.com/sase/sd-wan?ts=markdown)

* [Remote Browser Isolation](https://www.paloaltonetworks.com/sase/remote-browser-isolation?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [AI-Driven Security Operations Platform](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cloud Security](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Cortex Cloud](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Application Security](https://www.paloaltonetworks.com/cortex/cloud/application-security?ts=markdown)

* [Cloud Posture Security](https://www.paloaltonetworks.com/cortex/cloud/cloud-posture-security?ts=markdown)

* [Cloud Runtime Security](https://www.paloaltonetworks.com/cortex/cloud/runtime-security?ts=markdown)

* [Prisma Cloud](https://www.paloaltonetworks.com/prisma/cloud?ts=markdown)

* [AI-Driven SOC](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cortex XSIAM](https://www.paloaltonetworks.com/cortex/cortex-xsiam?ts=markdown)

* [Cortex XDR](https://www.paloaltonetworks.com/cortex/cortex-xdr?ts=markdown)

* [Cortex XSOAR](https://www.paloaltonetworks.com/cortex/cortex-xsoar?ts=markdown)

* [Cortex Xpanse](https://www.paloaltonetworks.com/cortex/cortex-xpanse?ts=markdown)

* [Unit 42 Managed Detection \& Response](https://www.paloaltonetworks.com/cortex/managed-detection-and-response?ts=markdown)

* [Managed XSIAM](https://www.paloaltonetworks.com/cortex/managed-xsiam?ts=markdown)

* [Threat Intel and Incident Response Services](https://www.paloaltonetworks.com/unit42?ts=markdown)

* [Proactive Assessments](https://www.paloaltonetworks.com/unit42/assess?ts=markdown)

* [Incident Response](https://www.paloaltonetworks.com/unit42/respond?ts=markdown)

* [Transform Your Security Strategy](https://www.paloaltonetworks.com/unit42/transform?ts=markdown)

* [Discover Threat Intelligence](https://www.paloaltonetworks.com/unit42/threat-intelligence-partners?ts=markdown)

## Company

* [About Us](https://www.paloaltonetworks.com/about-us?ts=markdown)
* [Careers](https://jobs.paloaltonetworks.com/en/)
* [Contact Us](https://www.paloaltonetworks.com/company/contact-sales?ts=markdown)
* [Corporate Responsibility](https://www.paloaltonetworks.com/about-us/corporate-responsibility?ts=markdown)
* [Customers](https://www.paloaltonetworks.com/customers?ts=markdown)
* [Investor Relations](https://investors.paloaltonetworks.com/)
* [Location](https://www.paloaltonetworks.com/about-us/locations?ts=markdown)
* [Newsroom](https://www.paloaltonetworks.com/company/newsroom?ts=markdown)

## Popular Links

* [Blog](https://www.paloaltonetworks.com/blog/?ts=markdown)
* [Communities](https://www.paloaltonetworks.com/communities?ts=markdown)
* [Content Library](https://www.paloaltonetworks.com/resources?ts=markdown)
* [Cyberpedia](https://www.paloaltonetworks.com/cyberpedia?ts=markdown)
* [Event Center](https://events.paloaltonetworks.com/)
* [Manage Email Preferences](https://start.paloaltonetworks.com/preference-center)
* [Products A-Z](https://www.paloaltonetworks.com/products/products-a-z?ts=markdown)
* [Product Certifications](https://www.paloaltonetworks.com/legal-notices/trust-center/compliance?ts=markdown)
* [Report a Vulnerability](https://www.paloaltonetworks.com/security-disclosure?ts=markdown)
* [Sitemap](https://www.paloaltonetworks.com/sitemap?ts=markdown)
* [Tech Docs](https://docs.paloaltonetworks.com/)
* [Unit 42](https://unit42.paloaltonetworks.com/)
* [Do Not Sell or Share My Personal Information](https://panwedd.exterro.net/portal/dsar.htm?target=panwedd)
  ![PAN logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/pan-logo-dark.svg)
* [Privacy](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown)
* [Trust Center](https://www.paloaltonetworks.com/legal-notices/trust-center?ts=markdown)
* [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown)
* [Documents](https://www.paloaltonetworks.com/legal?ts=markdown)

Copyright © 2026 Palo Alto Networks. All Rights Reserved

* [![Youtube](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/youtube-black.svg)](https://www.youtube.com/user/paloaltonetworks)
* [![Podcast](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/icons/podcast.svg)](https://www.paloaltonetworks.com/podcasts/threat-vector?ts=markdown)
* [![Facebook](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/facebook-black.svg)](https://www.facebook.com/PaloAltoNetworks/)
* [![LinkedIn](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/linkedin-black.svg)](https://www.linkedin.com/company/palo-alto-networks)
* [![Twitter](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/twitter-x-black.svg)](https://twitter.com/PaloAltoNtwks)
* EN  
  Select your language