[](https://www.paloaltonetworks.com/?ts=markdown) * Sign In * Customer * Partner * Employee * [Login to download](https://www.paloaltonetworks.com/login?ts=markdown) * [Join us to become a member](https://www.paloaltonetworks.com/login?screenToRender=traditionalRegistration&ts=markdown) * EN * [USA (ENGLISH)](https://www.paloaltonetworks.com) * [AUSTRALIA (ENGLISH)](https://www.paloaltonetworks.com.au) * [BRAZIL (PORTUGUÉS)](https://www.paloaltonetworks.com.br) * [CANADA (ENGLISH)](https://www.paloaltonetworks.ca) * [CHINA (简体中文)](https://www.paloaltonetworks.cn) * [FRANCE (FRANÇAIS)](https://www.paloaltonetworks.fr) * [GERMANY (DEUTSCH)](https://www.paloaltonetworks.de) * [INDIA (ENGLISH)](https://www.paloaltonetworks.in) * [ITALY (ITALIANO)](https://www.paloaltonetworks.it) * [JAPAN (日本語)](https://www.paloaltonetworks.jp) * [KOREA (한국어)](https://www.paloaltonetworks.co.kr) * [LATIN AMERICA (ESPAÑOL)](https://www.paloaltonetworks.lat) * [MEXICO (ESPAÑOL)](https://www.paloaltonetworks.com.mx) * [SINGAPORE (ENGLISH)](https://www.paloaltonetworks.sg) * [SPAIN (ESPAÑOL)](https://www.paloaltonetworks.es) * [TAIWAN (繁體中文)](https://www.paloaltonetworks.tw) * [UK (ENGLISH)](https://www.paloaltonetworks.co.uk) * ![magnifying glass search icon to open search field](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/search-black.svg) * [Contact Us](https://www.paloaltonetworks.com/company/contact-sales?ts=markdown) * [What's New](https://www.paloaltonetworks.com/resources?ts=markdown) * [Get Support](https://support.paloaltonetworks.com/SupportAccount/MyAccount) * [Under Attack?](https://start.paloaltonetworks.com/contact-unit42.html) ![x close icon to close mobile navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/x-black.svg) [![Palo Alto Networks logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/pan-logo-dark.svg)](https://www.paloaltonetworks.com/?ts=markdown) ![magnifying glass search icon to open search field](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/search-black.svg) * [](https://www.paloaltonetworks.com/?ts=markdown) * Products ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) Products [AI-Powered Network Security Platform](https://www.paloaltonetworks.com/network-security?ts=markdown) * [AI Security](https://www.paloaltonetworks.com/precision-ai-security/secure-ai-by-design?ts=markdown) * [Prisma AIRS](https://www.paloaltonetworks.com/prisma/prisma-ai-runtime-security?ts=markdown) * [AI Access Security](https://www.paloaltonetworks.com/sase/ai-access-security?ts=markdown) * [Cloud Delivered Security Services](https://www.paloaltonetworks.com/network-security/security-subscriptions?ts=markdown) * [Advanced Threat Prevention](https://www.paloaltonetworks.com/network-security/advanced-threat-prevention?ts=markdown) * [Advanced URL Filtering](https://www.paloaltonetworks.com/network-security/advanced-url-filtering?ts=markdown) * [Advanced WildFire](https://www.paloaltonetworks.com/network-security/advanced-wildfire?ts=markdown) * [Advanced DNS Security](https://www.paloaltonetworks.com/network-security/advanced-dns-security?ts=markdown) * [Enterprise Data Loss Prevention](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown) * [Enterprise Device Security](https://www.paloaltonetworks.com/network-security/enterprise-device-security?ts=markdown) * [Medical Device Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown) * [OT Device Security](https://www.paloaltonetworks.com/network-security/ot-device-security?ts=markdown) * [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown) * [Next-Generation Firewalls](https://www.paloaltonetworks.com/network-security/next-generation-firewall?ts=markdown) * [Hardware Firewalls](https://www.paloaltonetworks.com/network-security/hardware-firewall-innovations?ts=markdown) * [Software Firewalls](https://www.paloaltonetworks.com/network-security/software-firewalls?ts=markdown) * [Strata Cloud Manager](https://www.paloaltonetworks.com/network-security/strata-cloud-manager?ts=markdown) * [SD-WAN for NGFW](https://www.paloaltonetworks.com/network-security/sd-wan-subscription?ts=markdown) * [PAN-OS](https://www.paloaltonetworks.com/network-security/pan-os?ts=markdown) * [Panorama](https://www.paloaltonetworks.com/network-security/panorama?ts=markdown) * [Secure Access Service Edge](https://www.paloaltonetworks.com/sase?ts=markdown) * [Prisma SASE](https://www.paloaltonetworks.com/sase?ts=markdown) * [Application Acceleration](https://www.paloaltonetworks.com/sase/app-acceleration?ts=markdown) * [Autonomous Digital Experience Management](https://www.paloaltonetworks.com/sase/adem?ts=markdown) * [Enterprise DLP](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown) * [Prisma Access](https://www.paloaltonetworks.com/sase/access?ts=markdown) * [Prisma Browser](https://www.paloaltonetworks.com/sase/prisma-browser?ts=markdown) * [Prisma SD-WAN](https://www.paloaltonetworks.com/sase/sd-wan?ts=markdown) * [Remote Browser Isolation](https://www.paloaltonetworks.com/sase/remote-browser-isolation?ts=markdown) * [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown) [AI-Driven Security Operations Platform](https://www.paloaltonetworks.com/cortex?ts=markdown) * [Cloud Security](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown) * [Cortex Cloud](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown) * [Application Security](https://www.paloaltonetworks.com/cortex/cloud/application-security?ts=markdown) * [Cloud Posture Security](https://www.paloaltonetworks.com/cortex/cloud/cloud-posture-security?ts=markdown) * [Cloud Runtime Security](https://www.paloaltonetworks.com/cortex/cloud/runtime-security?ts=markdown) * [Prisma Cloud](https://www.paloaltonetworks.com/prisma/cloud?ts=markdown) * [AI-Driven SOC](https://www.paloaltonetworks.com/cortex?ts=markdown) * [Cortex XSIAM](https://www.paloaltonetworks.com/cortex/cortex-xsiam?ts=markdown) * [Cortex XDR](https://www.paloaltonetworks.com/cortex/cortex-xdr?ts=markdown) * [Cortex AgentiX](https://www.paloaltonetworks.com/cortex/agentix?ts=markdown) * [Cortex XSOAR](https://www.paloaltonetworks.com/cortex/cortex-xsoar?ts=markdown) * [Cortex Exposure Management](https://www.paloaltonetworks.com/cortex/exposure-management?ts=markdown) * [Cortex Xpanse](https://www.paloaltonetworks.com/cortex/cortex-xpanse?ts=markdown) * [Cortex Advanced Email Security](https://www.paloaltonetworks.com/cortex/advanced-email-security?ts=markdown) * [Unit 42 Managed Detection \& Response](https://www.paloaltonetworks.com/cortex/managed-detection-and-response?ts=markdown) * [Unit 42 Managed XSIAM](https://www.paloaltonetworks.com/cortex/managed-xsiam?ts=markdown) * Solutions ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) Solutions Secure AI by Design * [Secure AI Ecosystem](https://www.paloaltonetworks.com/prisma/prisma-ai-runtime-security?ts=markdown) * [Secure GenAI Usage](https://www.paloaltonetworks.com/sase/ai-access-security?ts=markdown) Network Security * [Cloud Network Security](https://www.paloaltonetworks.com/network-security/software-firewalls?ts=markdown) * [Data Center Security](https://www.paloaltonetworks.com/network-security/data-center?ts=markdown) * [DNS Security](https://www.paloaltonetworks.com/network-security/advanced-dns-security?ts=markdown) * [Intrusion Detection and Prevention](https://www.paloaltonetworks.com/network-security/advanced-threat-prevention?ts=markdown) * [Device Security](https://www.paloaltonetworks.com/network-security/device-security?ts=markdown) * [OT Security](https://www.paloaltonetworks.com/network-security/ot-device-security?ts=markdown) * [5G Security](https://www.paloaltonetworks.com/network-security/5g-security?ts=markdown) * [Secure All Apps, Users and Locations](https://www.paloaltonetworks.com/sase/secure-users-data-apps-devices?ts=markdown) * [Secure Branch Transformation](https://www.paloaltonetworks.com/sase/secure-branch-transformation?ts=markdown) * [Secure Work on Any Device](https://www.paloaltonetworks.com/sase/secure-work-on-any-device?ts=markdown) * [VPN Replacement](https://www.paloaltonetworks.com/sase/vpn-replacement-for-secure-remote-access?ts=markdown) * [Web \& Phishing Security](https://www.paloaltonetworks.com/network-security/advanced-url-filtering?ts=markdown) Cloud Security * [Application Security Posture Management (ASPM)](https://www.paloaltonetworks.com/cortex/cloud/application-security-posture-management?ts=markdown) * [Software Supply Chain Security](https://www.paloaltonetworks.com/cortex/cloud/software-supply-chain-security?ts=markdown) * [Code Security](https://www.paloaltonetworks.com/cortex/cloud/code-security?ts=markdown) * [Cloud Security Posture Management (CSPM)](https://www.paloaltonetworks.com/cortex/cloud/cloud-security-posture-management?ts=markdown) * [Cloud Infrastructure Entitlement Management (CIEM)](https://www.paloaltonetworks.com/cortex/cloud/cloud-infrastructure-entitlement-management?ts=markdown) * [Data Security Posture Management (DSPM)](https://www.paloaltonetworks.com/cortex/cloud/data-security-posture-management?ts=markdown) * [AI Security Posture Management (AI-SPM)](https://www.paloaltonetworks.com/cortex/cloud/ai-security-posture-management?ts=markdown) * [Cloud Detection \& Response](https://www.paloaltonetworks.com/cortex/cloud-detection-and-response?ts=markdown) * [Cloud Workload Protection (CWP)](https://www.paloaltonetworks.com/cortex/cloud/cloud-workload-protection?ts=markdown) * [Web Application \& API Security (WAAS)](https://www.paloaltonetworks.com/cortex/cloud/web-app-api-security?ts=markdown) Security Operations * [Cloud Detection \& Response](https://www.paloaltonetworks.com/cortex/cloud-detection-and-response?ts=markdown) * [Security Information and Event Management](https://www.paloaltonetworks.com/cortex/modernize-siem?ts=markdown) * [Network Security Automation](https://www.paloaltonetworks.com/cortex/network-security-automation?ts=markdown) * [Incident Case Management](https://www.paloaltonetworks.com/cortex/incident-case-management?ts=markdown) * [SOC Automation](https://www.paloaltonetworks.com/cortex/security-operations-automation?ts=markdown) * [Threat Intel Management](https://www.paloaltonetworks.com/cortex/threat-intel-management?ts=markdown) * [Managed Detection \& Response](https://www.paloaltonetworks.com/cortex/managed-detection-and-response?ts=markdown) * [Attack Surface Management](https://www.paloaltonetworks.com/cortex/cortex-xpanse/attack-surface-management?ts=markdown) * [Compliance Management](https://www.paloaltonetworks.com/cortex/cortex-xpanse/compliance-management?ts=markdown) * [Internet Operations Management](https://www.paloaltonetworks.com/cortex/cortex-xpanse/internet-operations-management?ts=markdown) * [Extended Data Lake (XDL)](https://www.paloaltonetworks.com/cortex/cortex-xdl?ts=markdown) * [Agentic Assistant](https://www.paloaltonetworks.com/cortex/cortex-agentic-assistant?ts=markdown) Endpoint Security * [Endpoint Protection](https://www.paloaltonetworks.com/cortex/endpoint-protection?ts=markdown) * [Extended Detection \& Response](https://www.paloaltonetworks.com/cortex/detection-and-response?ts=markdown) * [Ransomware Protection](https://www.paloaltonetworks.com/cortex/ransomware-protection?ts=markdown) * [Digital Forensics](https://www.paloaltonetworks.com/cortex/digital-forensics?ts=markdown) [Industries](https://www.paloaltonetworks.com/industry?ts=markdown) * [Public Sector](https://www.paloaltonetworks.com/industry/public-sector?ts=markdown) * [Financial Services](https://www.paloaltonetworks.com/industry/financial-services?ts=markdown) * [Manufacturing](https://www.paloaltonetworks.com/industry/manufacturing?ts=markdown) * [Healthcare](https://www.paloaltonetworks.com/industry/healthcare?ts=markdown) * [Small \& Medium Business Solutions](https://www.paloaltonetworks.com/industry/small-medium-business-portfolio?ts=markdown) * Services ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) Services [Threat Intel and Incident Response Services](https://www.paloaltonetworks.com/unit42?ts=markdown) * [Assess](https://www.paloaltonetworks.com/unit42/assess?ts=markdown) * [AI Security Assessment](https://www.paloaltonetworks.com/unit42/assess/ai-security-assessment?ts=markdown) * [Attack Surface Assessment](https://www.paloaltonetworks.com/unit42/assess/attack-surface-assessment?ts=markdown) * [Breach Readiness Review](https://www.paloaltonetworks.com/unit42/assess/breach-readiness-review?ts=markdown) * [BEC Readiness Assessment](https://www.paloaltonetworks.com/bec-readiness-assessment?ts=markdown) * [Cloud Security Assessment](https://www.paloaltonetworks.com/unit42/assess/cloud-security-assessment?ts=markdown) * [Compromise Assessment](https://www.paloaltonetworks.com/unit42/assess/compromise-assessment?ts=markdown) * [Cyber Risk Assessment](https://www.paloaltonetworks.com/unit42/assess/cyber-risk-assessment?ts=markdown) * [M\&A Cyber Due Diligence](https://www.paloaltonetworks.com/unit42/assess/mergers-acquisitions-cyber-due-diligence?ts=markdown) * [Penetration Testing](https://www.paloaltonetworks.com/unit42/assess/penetration-testing?ts=markdown) * [Purple Team Exercises](https://www.paloaltonetworks.com/unit42/assess/purple-teaming?ts=markdown) * [Ransomware Readiness Assessment](https://www.paloaltonetworks.com/unit42/assess/ransomware-readiness-assessment?ts=markdown) * [SOC Assessment](https://www.paloaltonetworks.com/unit42/assess/soc-assessment?ts=markdown) * [Supply Chain Risk Assessment](https://www.paloaltonetworks.com/unit42/assess/supply-chain-risk-assessment?ts=markdown) * [Tabletop Exercises](https://www.paloaltonetworks.com/unit42/assess/tabletop-exercise?ts=markdown) * [Unit 42 Retainer](https://www.paloaltonetworks.com/unit42/retainer?ts=markdown) * [Respond](https://www.paloaltonetworks.com/unit42/respond?ts=markdown) * [Cloud Incident Response](https://www.paloaltonetworks.com/unit42/respond/cloud-incident-response?ts=markdown) * [Digital Forensics](https://www.paloaltonetworks.com/unit42/respond/digital-forensics?ts=markdown) * [Incident Response](https://www.paloaltonetworks.com/unit42/respond/incident-response?ts=markdown) * [Managed Detection and Response](https://www.paloaltonetworks.com/unit42/respond/managed-detection-response?ts=markdown) * [Managed Threat Hunting](https://www.paloaltonetworks.com/unit42/respond/managed-threat-hunting?ts=markdown) * [Managed XSIAM](https://www.paloaltonetworks.com/cortex/managed-xsiam?ts=markdown) * [Unit 42 Retainer](https://www.paloaltonetworks.com/unit42/retainer?ts=markdown) * [Transform](https://www.paloaltonetworks.com/unit42/transform?ts=markdown) * [IR Plan Development and Review](https://www.paloaltonetworks.com/unit42/transform/incident-response-plan-development-review?ts=markdown) * [Security Program Design](https://www.paloaltonetworks.com/unit42/transform/security-program-design?ts=markdown) * [Virtual CISO](https://www.paloaltonetworks.com/unit42/transform/vciso?ts=markdown) * [Zero Trust Advisory](https://www.paloaltonetworks.com/unit42/transform/zero-trust-advisory?ts=markdown) [Global Customer Services](https://www.paloaltonetworks.com/services?ts=markdown) * [Education \& Training](https://www.paloaltonetworks.com/services/education?ts=markdown) * [Professional Services](https://www.paloaltonetworks.com/services/consulting?ts=markdown) * [Success Tools](https://www.paloaltonetworks.com/services/customer-success-tools?ts=markdown) * [Support Services](https://www.paloaltonetworks.com/services/solution-assurance?ts=markdown) * [Customer Success](https://www.paloaltonetworks.com/services/customer-success?ts=markdown) [![](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/logo-unit-42.svg) UNIT 42 RETAINER Custom-built to fit your organization's needs, you can choose to allocate your retainer hours to any of our offerings, including proactive cyber risk management services. Learn how you can put the world-class Unit 42 Incident Response team on speed dial. Learn more](https://www.paloaltonetworks.com/unit42/retainer?ts=markdown) * Partners ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) Partners NextWave Partners * [NextWave Partner Community](https://www.paloaltonetworks.com/partners?ts=markdown) * [Cloud Service Providers](https://www.paloaltonetworks.com/partners/nextwave-for-csp?ts=markdown) * [Global Systems Integrators](https://www.paloaltonetworks.com/partners/nextwave-for-gsi?ts=markdown) * [Technology Partners](https://www.paloaltonetworks.com/partners/technology-partners?ts=markdown) * [Service Providers](https://www.paloaltonetworks.com/partners/service-providers?ts=markdown) * [Solution Providers](https://www.paloaltonetworks.com/partners/nextwave-solution-providers?ts=markdown) * [Managed Security Service Providers](https://www.paloaltonetworks.com/partners/managed-security-service-providers?ts=markdown) * [XMDR Partners](https://www.paloaltonetworks.com/partners/managed-security-service-providers/xmdr?ts=markdown) Take Action * [Portal Login](https://www.paloaltonetworks.com/partners/nextwave-partner-portal?ts=markdown) * [Managed Services Program](https://www.paloaltonetworks.com/partners/managed-security-services-provider-program?ts=markdown) * [Become a Partner](https://paloaltonetworks.my.site.com/NextWavePartnerProgram/s/partnerregistration?type=becomepartner) * [Request Access](https://paloaltonetworks.my.site.com/NextWavePartnerProgram/s/partnerregistration?type=requestaccess) * [Find a Partner](https://paloaltonetworks.my.site.com/NextWavePartnerProgram/s/partnerlocator) [CYBERFORCE CYBERFORCE represents the top 1% of partner engineers trusted for their security expertise. Learn more](https://www.paloaltonetworks.com/cyberforce?ts=markdown) * Company ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) Company Palo Alto Networks * [About Us](https://www.paloaltonetworks.com/about-us?ts=markdown) * [Management Team](https://www.paloaltonetworks.com/about-us/management?ts=markdown) * [Investor Relations](https://investors.paloaltonetworks.com) * [Locations](https://www.paloaltonetworks.com/about-us/locations?ts=markdown) * [Ethics \& Compliance](https://www.paloaltonetworks.com/company/ethics-and-compliance?ts=markdown) * [Corporate Responsibility](https://www.paloaltonetworks.com/about-us/corporate-responsibility?ts=markdown) * [Military \& Veterans](https://jobs.paloaltonetworks.com/military) [Why Palo Alto Networks?](https://www.paloaltonetworks.com/why-paloaltonetworks?ts=markdown) * [Precision AI Security](https://www.paloaltonetworks.com/precision-ai-security?ts=markdown) * [Our Platform Approach](https://www.paloaltonetworks.com/why-paloaltonetworks/platformization?ts=markdown) * [Accelerate Your Cybersecurity Transformation](https://www.paloaltonetworks.com/why-paloaltonetworks/nam-cxo-portfolio?ts=markdown) * [Awards \& Recognition](https://www.paloaltonetworks.com/about-us/awards?ts=markdown) * [Customer Stories](https://www.paloaltonetworks.com/customers?ts=markdown) * [Global Certifications](https://www.paloaltonetworks.com/legal-notices/trust-center/compliance?ts=markdown) * [Trust 360 Program](https://www.paloaltonetworks.com/resources/whitepapers/trust-360?ts=markdown) Careers * [Overview](https://jobs.paloaltonetworks.com/) * [Culture \& Benefits](https://jobs.paloaltonetworks.com/en/culture/) [A Newsweek Most Loved Workplace "Businesses that do right by their employees" Read more](https://www.paloaltonetworks.com/company/press/2021/palo-alto-networks-secures-top-ranking-on-newsweek-s-most-loved-workplaces-list-for-2021?ts=markdown) * More ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) More Resources * [Blog](https://www.paloaltonetworks.com/blog/?ts=markdown) * [Unit 42 Threat Research](https://unit42.paloaltonetworks.com/) * [Communities](https://www.paloaltonetworks.com/communities?ts=markdown) * [Content Library](https://www.paloaltonetworks.com/resources?ts=markdown) * [Cyberpedia](https://www.paloaltonetworks.com/cyberpedia?ts=markdown) * [Tech Insider](https://techinsider.paloaltonetworks.com/) * [Knowledge Base](https://knowledgebase.paloaltonetworks.com/) * [Palo Alto Networks TV](https://tv.paloaltonetworks.com/) * [Perspectives of Leaders](https://www.paloaltonetworks.com/perspectives/?ts=markdown) * [Cyber Perspectives Magazine](https://www.paloaltonetworks.com/cybersecurity-perspectives/cyber-perspectives-magazine?ts=markdown) * [Regional Cloud Locations](https://www.paloaltonetworks.com/products/regional-cloud-locations?ts=markdown) * [Tech Docs](https://docs.paloaltonetworks.com/) * [Security Posture Assessment](https://www.paloaltonetworks.com/security-posture-assessment?ts=markdown) * [Threat Vector Podcast](https://unit42.paloaltonetworks.com/unit-42-threat-vector-podcast/) * [Packet Pushers Podcasts](https://www.paloaltonetworks.com/podcasts/packet-pusher?ts=markdown) Connect * [LIVE community](https://live.paloaltonetworks.com/) * [Events](https://events.paloaltonetworks.com/) * [Executive Briefing Center](https://www.paloaltonetworks.com/about-us/executive-briefing-program?ts=markdown) * [Demos](https://www.paloaltonetworks.com/demos?ts=markdown) * [Contact us](https://www.paloaltonetworks.com/company/contact-sales?ts=markdown) [Blog Stay up-to-date on industry trends and the latest innovations from the world's largest cybersecurity Learn more](https://www.paloaltonetworks.com/blog/) * Sign In ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) Sign In * Customer * Partner * Employee * [Login to download](https://www.paloaltonetworks.com/login?ts=markdown) * [Join us to become a member](https://www.paloaltonetworks.com/login?screenToRender=traditionalRegistration&ts=markdown) * EN ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) Language * [USA (ENGLISH)](https://www.paloaltonetworks.com) * [AUSTRALIA (ENGLISH)](https://www.paloaltonetworks.com.au) * [BRAZIL (PORTUGUÉS)](https://www.paloaltonetworks.com.br) * [CANADA (ENGLISH)](https://www.paloaltonetworks.ca) * [CHINA (简体中文)](https://www.paloaltonetworks.cn) * [FRANCE (FRANÇAIS)](https://www.paloaltonetworks.fr) * [GERMANY (DEUTSCH)](https://www.paloaltonetworks.de) * [INDIA (ENGLISH)](https://www.paloaltonetworks.in) * [ITALY (ITALIANO)](https://www.paloaltonetworks.it) * [JAPAN (日本語)](https://www.paloaltonetworks.jp) * [KOREA (한국어)](https://www.paloaltonetworks.co.kr) * [LATIN AMERICA (ESPAÑOL)](https://www.paloaltonetworks.lat) * [MEXICO (ESPAÑOL)](https://www.paloaltonetworks.com.mx) * [SINGAPORE (ENGLISH)](https://www.paloaltonetworks.sg) * [SPAIN (ESPAÑOL)](https://www.paloaltonetworks.es) * [TAIWAN (繁體中文)](https://www.paloaltonetworks.tw) * [UK (ENGLISH)](https://www.paloaltonetworks.co.uk) * [Contact Us](https://www.paloaltonetworks.com/company/contact-sales?ts=markdown) * [What's New](https://www.paloaltonetworks.com/resources?ts=markdown) * [Get support](https://support.paloaltonetworks.com/SupportAccount/MyAccount) * [Under Attack?](https://start.paloaltonetworks.com/contact-unit42.html) * [Demos and Trials](https://www.paloaltonetworks.com/get-started?ts=markdown) Search All * [Tech Docs](https://docs.paloaltonetworks.com/search) Close search modal [Deploy Bravely --- Secure your AI transformation with Prisma AIRS](https://www.deploybravely.com) [](https://www.paloaltonetworks.com/?ts=markdown) 1. [Cyberpedia](https://www.paloaltonetworks.com/cyberpedia?ts=markdown) 2. [Cloud Security](https://www.paloaltonetworks.com/cyberpedia/cloud-security?ts=markdown) 3. [Cloud Native](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-native?ts=markdown) 4. [What Is CSPM?](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-security-posture-management?ts=markdown) Table of Contents * [What Is Cloud Native?](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-native?ts=markdown) * [Cloud Native Explained](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-native#explained?ts=markdown) * [History of Cloud Native](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-native#history?ts=markdown) * [What Are Cloud-Native Applications?](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-native#applications?ts=markdown) * [What Is Cloud-Native Architecture?](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-native#architecture?ts=markdown) * [What Is Cloud-Native Application Development?](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-native#development?ts=markdown) * [Benefits of Cloud-Native Application Development](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-native#benefits?ts=markdown) * [What Is a Cloud-Native Stack?](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-native#stack?ts=markdown) * [Cloud-Native Security Challenges](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-native#challenges?ts=markdown) * [Cloud-Native FAQs](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-native#faqs?ts=markdown) * [What Is Threat Modeling?](https://www.paloaltonetworks.com/cyberpedia/threat-modeling?ts=markdown) * [Threat Modeling Explained](https://www.paloaltonetworks.com/cyberpedia/threat-modeling#threat?ts=markdown) * [Threat Modeling Frameworks](https://www.paloaltonetworks.com/cyberpedia/threat-modeling#frameworks?ts=markdown) * [Threat Modeling: Four Question Framework](https://www.paloaltonetworks.com/cyberpedia/threat-modeling#modeling?ts=markdown) * [Benefits of Threat Modeling in Modern Enterprise Security](https://www.paloaltonetworks.com/cyberpedia/threat-modeling#benefits?ts=markdown) * [Threat Modeling Tools](https://www.paloaltonetworks.com/cyberpedia/threat-modeling#tools?ts=markdown) * [Threat Modeling FAQs](https://www.paloaltonetworks.com/cyberpedia/threat-modeling#faqs?ts=markdown) * [What Are Microservices?](https://www.paloaltonetworks.com/cyberpedia/what-are-microservices?ts=markdown) * [Microservices Explained](https://www.paloaltonetworks.com/cyberpedia/what-are-microservices#explained?ts=markdown) * [From Service-Oriented Architecture to Microservices](https://www.paloaltonetworks.com/cyberpedia/what-are-microservices#service?ts=markdown) * [Benefits of Microservices](https://www.paloaltonetworks.com/cyberpedia/what-are-microservices#benefits?ts=markdown) * [When to Use Microservices](https://www.paloaltonetworks.com/cyberpedia/what-are-microservices#when?ts=markdown) * [Building and Deploying Microservices-Based Apps](https://www.paloaltonetworks.com/cyberpedia/what-are-microservices#deploying?ts=markdown) * [Microservices Best Practices](https://www.paloaltonetworks.com/cyberpedia/what-are-microservices#best?ts=markdown) * [Adopting Microservices](https://www.paloaltonetworks.com/cyberpedia/what-are-microservices#adopting?ts=markdown) * [Securing Microservices](https://www.paloaltonetworks.com/cyberpedia/what-are-microservices#securing?ts=markdown) * [Microservices FAQs](https://www.paloaltonetworks.com/cyberpedia/what-are-microservices#faqs?ts=markdown) * [What Is Cloud-Native Security?](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-native-security?ts=markdown) * [Cloud-Native Security Explained](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-native-security#explained?ts=markdown) * [Cloud Native Goes Beyond Fixed Perimeters](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-native-security#perimeters?ts=markdown) * [Diagnostic Difficulties](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-native-security#diagnostic?ts=markdown) * [Accelerating DevOps Velocity](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-native-security#velocity?ts=markdown) * [Key Elements of Cloud-Native Security](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-native-security#key?ts=markdown) * [Cloud Native-Security Strategies](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-native-security#strategies?ts=markdown) * [Cloud-Native Security FAQs](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-native-security#faqs?ts=markdown) * [What Is CNAPP?](https://www.paloaltonetworks.com/cyberpedia/what-is-a-cloud-native-application-protection-platform?ts=markdown) * [CNAPP Explained](https://www.paloaltonetworks.com/cyberpedia/what-is-a-cloud-native-application-protection-platform#cnapp?ts=markdown) * [Key Components of a CNAPP](https://www.paloaltonetworks.com/cyberpedia/what-is-a-cloud-native-application-protection-platform#key?ts=markdown) * [CNAPP Architecture and Functionality](https://www.paloaltonetworks.com/cyberpedia/what-is-a-cloud-native-application-protection-platform#architecture?ts=markdown) * [CNAPP Implementation Strategies](https://www.paloaltonetworks.com/cyberpedia/what-is-a-cloud-native-application-protection-platform#implementation?ts=markdown) * [CNAPP Benefits](https://www.paloaltonetworks.com/cyberpedia/what-is-a-cloud-native-application-protection-platform#benefits?ts=markdown) * [The AI-Enhanced CNAPP](https://www.paloaltonetworks.com/cyberpedia/what-is-a-cloud-native-application-protection-platform#enhanced?ts=markdown) * [What's Next for CNAPP?](https://www.paloaltonetworks.com/cyberpedia/what-is-a-cloud-native-application-protection-platform#next?ts=markdown) * [Cloud-Native Security FAQs](https://www.paloaltonetworks.com/cyberpedia/what-is-a-cloud-native-application-protection-platform#faqs?ts=markdown) * What Is CSPM? | Cloud Security Posture Management Explained * [Cloud Security Posture Management Explained](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-security-posture-management#cloud?ts=markdown) * [Why Is CSPM Important?](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-security-posture-management#why?ts=markdown) * [How Does CSPM Work?](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-security-posture-management#how?ts=markdown) * [The Evolution of CSPM](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-security-posture-management#the?ts=markdown) * [What Are Researchers Saying About CSPM?](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-security-posture-management#what?ts=markdown) * [What Are the Benefits of CSPM?](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-security-posture-management#benefits?ts=markdown) * [Cloud Security Posture Management (CSPM) FAQs](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-security-posture-management#faqs?ts=markdown) * [What Is Cloud Network Security?](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-network-security?ts=markdown) * [Cloud Network Security Explained](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-network-security#network-security?ts=markdown) * [Cloud Network Security](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-network-security#cns?ts=markdown) * [Kubernetes Network Security](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-network-security#kns?ts=markdown) * [Kubernetes Control Plane Security](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-network-security#control-plane-security?ts=markdown) * [Network Security Best Practices for Containers and Kubernetes](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-network-security#best-practice?ts=markdown) * [Cloud Network Security FAQs](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-network-security#faq?ts=markdown) * [CSP-Built Security Vs. Cloud-Agnostic Security](https://www.paloaltonetworks.com/cyberpedia/cloud-native-security-vs-3rd-party-security?ts=markdown) * [Cloud Security: The Technology Decision](https://www.paloaltonetworks.com/cyberpedia/cloud-native-security-vs-3rd-party-security#cloud?ts=markdown) * [Feature Set and Capabilities](https://www.paloaltonetworks.com/cyberpedia/cloud-native-security-vs-3rd-party-security#feature?ts=markdown) * [The Multicloud Challenge](https://www.paloaltonetworks.com/cyberpedia/cloud-native-security-vs-3rd-party-security#challenge?ts=markdown) * [Real-World Applications](https://www.paloaltonetworks.com/cyberpedia/cloud-native-security-vs-3rd-party-security#realworld?ts=markdown) * [Prisma Cloud](https://www.paloaltonetworks.com/cyberpedia/cloud-native-security-vs-3rd-party-security#prisma-cloud?ts=markdown) * [Cloud-Native Security FAQs](https://www.paloaltonetworks.com/cyberpedia/cloud-native-security-vs-3rd-party-security#faqs?ts=markdown) * [What Is Microsegmentation?](https://www.paloaltonetworks.com/cyberpedia/what-is-microsegmentation?ts=markdown) * [Microsegmentation Explained](https://www.paloaltonetworks.com/cyberpedia/what-is-microsegmentation#micro?ts=markdown) * [Beyond Perimeter Security](https://www.paloaltonetworks.com/cyberpedia/what-is-microsegmentation#beyond?ts=markdown) * [Network Segmentation Challenges](https://www.paloaltonetworks.com/cyberpedia/what-is-microsegmentation#network?ts=markdown) * [How Microsegmentation Works](https://www.paloaltonetworks.com/cyberpedia/what-is-microsegmentation#how?ts=markdown) * [Types of Microsegmentation](https://www.paloaltonetworks.com/cyberpedia/what-is-microsegmentation#types?ts=markdown) * [Benefits of Microsegmentation](https://www.paloaltonetworks.com/cyberpedia/what-is-microsegmentation#benefits?ts=markdown) * [Microsegmentation Use Cases](https://www.paloaltonetworks.com/cyberpedia/what-is-microsegmentation#usecases?ts=markdown) * [Microsegmentation FAQs](https://www.paloaltonetworks.com/cyberpedia/what-is-microsegmentation#faqs?ts=markdown) * [Core Tenets of a Cloud Native Security Platform (CNSP)](https://www.paloaltonetworks.com/cyberpedia/core-tenets-of-a-cloud-native-security-platform?ts=markdown) * [What Is a Cloud Native Security Platform?](https://www.paloaltonetworks.com/cyberpedia/what-is-a-cloud-native-security-platform?ts=markdown) * [What Does 'Cloud Native' Mean?](https://www.paloaltonetworks.com/cyberpedia/what-is-a-cloud-native-security-platform#what?ts=markdown) * [The Beginnings of Cloud Native Security](https://www.paloaltonetworks.com/cyberpedia/what-is-a-cloud-native-security-platform#beginning?ts=markdown) * [Enter Cloud Native Security Platforms](https://www.paloaltonetworks.com/cyberpedia/what-is-a-cloud-native-security-platform#enter?ts=markdown) * [CNSPs and the Future](https://www.paloaltonetworks.com/cyberpedia/what-is-a-cloud-native-security-platform#cnsp?ts=markdown) * [Cloud Native Security Platform FAQs](https://www.paloaltonetworks.com/cyberpedia/what-is-a-cloud-native-security-platform#faqs?ts=markdown) * [CSPM Tools: How to Evaluate and Select the Best Option](https://www.paloaltonetworks.com/cyberpedia/cspm-tools?ts=markdown) * [The Need for Cloud Security Posture Management Solutions](https://www.paloaltonetworks.com/cyberpedia/cspm-tools#need?ts=markdown) * [Components of CSPM Tools](https://www.paloaltonetworks.com/cyberpedia/cspm-tools#components?ts=markdown) * [How to Select the Right CSPM Solution](https://www.paloaltonetworks.com/cyberpedia/cspm-tools#how?ts=markdown) * [Common Challenges in Implementing CSPM](https://www.paloaltonetworks.com/cyberpedia/cspm-tools#common?ts=markdown) * [Cloud Security Posture Management (CSPM) FAQs](https://www.paloaltonetworks.com/cyberpedia/cspm-tools#faqs?ts=markdown) * [What is Platform as a Service (PaaS)?](https://www.paloaltonetworks.com/cyberpedia/platform-as-a-service-paas?ts=markdown) * [Benefits and Security Implications](https://www.paloaltonetworks.com/cyberpedia/platform-as-a-service-paas#benefits?ts=markdown) * [Platform as a Service FAQs](https://www.paloaltonetworks.com/cyberpedia/platform-as-a-service-paas#faqs?ts=markdown) * [What Is Serverless Security?](https://www.paloaltonetworks.com/cyberpedia/what-is-serverless-security?ts=markdown) # What Is CSPM? 5 min. read [Download The CNAPP Buyer's Guide](https://start.paloaltonetworks.com/cnapp-buyers-guide.html) Table of Contents * * [Cloud Security Posture Management Explained](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-security-posture-management#cloud?ts=markdown) * [Why Is CSPM Important?](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-security-posture-management#why?ts=markdown) * [How Does CSPM Work?](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-security-posture-management#how?ts=markdown) * [The Evolution of CSPM](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-security-posture-management#the?ts=markdown) * [What Are Researchers Saying About CSPM?](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-security-posture-management#what?ts=markdown) * [What Are the Benefits of CSPM?](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-security-posture-management#benefits?ts=markdown) * [Cloud Security Posture Management (CSPM) FAQs](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-security-posture-management#faqs?ts=markdown) 1. Cloud Security Posture Management Explained * * [Cloud Security Posture Management Explained](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-security-posture-management#cloud?ts=markdown) * [Why Is CSPM Important?](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-security-posture-management#why?ts=markdown) * [How Does CSPM Work?](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-security-posture-management#how?ts=markdown) * [The Evolution of CSPM](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-security-posture-management#the?ts=markdown) * [What Are Researchers Saying About CSPM?](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-security-posture-management#what?ts=markdown) * [What Are the Benefits of CSPM?](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-security-posture-management#benefits?ts=markdown) * [Cloud Security Posture Management (CSPM) FAQs](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-security-posture-management#faqs?ts=markdown) Cloud security posture management (CSPM) is the practice of controlling public cloud infrastructure risk. CSPM tools automate the detection and remediation of misconfigurations across cloud resources (e.g., Amazon EC2 instances). Organizations use CSPM in public cloud and multicloud environments to reduce the likelihood of breaches and improve regulatory compliance. ![](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cyberpedia/what-is-cloud-security-posture-management-video-thumbnail.jpg) close ## Cloud Security Posture Management Explained Cloud security posture management (CSPM) is a means of mitigating risk and compliance violations by identifying and remediating misconfigurations across public cloud environments. CSPM tools help security and compliance teams by providing automated visibility, continuous monitoring, and remediation workflows for their infrastructure as a service (IaaS), [platform as a service (PaaS)](https://www.paloaltonetworks.com/cyberpedia/platform-as-a-service-paas?ts=markdown) and software as a service (SaaS). Organizations generally adopt CSPM as a standard security practice when they migrate their applications to various cloud providers, such as Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP). As part of the cloud security [shared responsibility model](https://www.paloaltonetworks.com/cyberpedia/cloud-security-is-a-shared-responsibility?ts=markdown), CSPM tools help client organizations in many ways. ![Shared responsibility model between cloud providers and client organizations](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cyberpedia/cloud-security-posture-management/cspm-explained.png "Shared responsibility model between cloud providers and client organizations") ***Figure 1:** Shared responsibility model between cloud providers and client organizations* ## Why Is CSPM Important? CSPM becomes crucial as companies increasingly adopt public cloud infrastructure, such as AWS, Microsoft Azure, and GCP. Public and multicloud infrastructure enables IT and development teams to rapidly configure and deploy services and applications, ultimately accelerating innovation. This shift, while beneficial, naturally results in risky cloud configurations, also known as cloud misconfigurations. Cloud misconfigurations can lead to unwanted outcomes including data breaches or hefty fines for violating regulatory compliance. Organizations adopting cloud infrastructure are responsible for practicing CSPM, but wIthout a CSPM tool, security teams face significant challenges: ### Multicloud Complexity Each cloud provider offers different infrastructure architectures and taxonomy for security teams to learn and manage. Amazon VPC and Azure VPN, for example, are virtual networks that have unique nuances. Cloud providers frequently release new services, challenging security teams to keep pace. CSPM tools can detect, unify and normalize cloud provider services into a single console reducing complexity for security teams. ### Security Blind Spots Organizations often find it challenging to achieve visibility into their cloud environments, which leaves them unable to answer questions such as: * What cloud services does my organization use? * Who made changes to cloud resources? What changes did they make? When did the changes happen? * What cloud misconfigurations exist in my cloud environment? * Is my organization maintaining compliance requirements? With a CSPM tool, security teams get visibility into cloud resources, configuration changes, risks, compliance violations and more. ### Compliance Obligations Many businesses adopting cloud infrastructure have regulatory compliance requirements mandating specific security measures --- [PCI DSS](https://www.paloaltonetworks.com/cyberpedia/pci-dss?ts=markdown), [GDPR](https://www.paloaltonetworks.com/cyberpedia/gdpr-compliance?ts=markdown), [SOC 2](https://www.paloaltonetworks.com/cyberpedia/soc-2?ts=markdown), and [HIPAA](https://www.paloaltonetworks.com/cyberpedia/what-is-hipaa?ts=markdown), to name a few. Any lapse in maintaining proper cloud configurations can lead to noncompliance, potentially resulting in hefty fines, legal repercussions, and damage to a brand's reputation. CSPM tools can help businesses ensure that their cloud infrastructure meets these compliance requirements. For starters, CSPM tools automatically compare cloud configurations against regulatory controls to detect compliance violations and provide remediation guidance. Some solutions include compliance reporting, allowing security teams to produce audit-ready reports in minutes. ### Poor Developer Experience A benefit of adopting cloud infrastructure in enabling agility, but security teams are seen as an obstacle to development teams. According to Gartner, "Security teams are perceived as slowing down modern DevOps style development." Modern CSPM practices require security teams to collaborate with developer and DevOps teams to remediate misconfigurations. Traditional security tools weren't designed with this in mind. As a result, they generate excessive low-risk alerts for developers to address. Modern CSPM tools can improve security and developer collaboration by prioritizing misconfigurations with context and augmenting remediation steps. ![Excessive alerts lead to poor outcomes for security and development teams](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cyberpedia/cloud-security-posture-management/development-vs-security.png "Excessive alerts lead to poor outcomes for security and development teams") ***Figure 2:** Excessive alerts lead to poor outcomes for security and development teams* Employing a CSPM solution is a first step to securing cloud infrastructure and keeping private [data secure](https://www.paloaltonetworks.com/cyberpedia/what-is-data-security?ts=markdown). [Cloud-native computing](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-native?ts=markdown) is here to stay, and cloud security posture management tools play a critical role in providing vital visibility and control over cloud infrastructure. **Related download:** [Guide to Cloud Security Posture Management Tools](https://start.paloaltonetworks.com/guide-cspm-tools) ## How Does CSPM Work? Understanding the mechanics of CSPM is essential to appreciate its role in enhancing cloud security. The following section explores how CSPM helps secure cloud infrastructure. ![CSPM tools connect with cloud provider APIs to detect key risks.](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cyberpedia/cloud-security-posture-management/cspm-tool.png "CSPM tools connect with cloud provider APIs to detect key risks.") ***Figure 3:** CSPM tools connect with cloud provider APIs to detect key risks.* ### Connect to Your Cloud Environments Unlike many security approaches that require agents or proxies, CSPM solutions connect to your cloud providers APIs for visibility, also known as [agentless security](https://www.paloaltonetworks.com/cyberpedia/what-is-the-difference-between-agent-based-and-agentless-security?ts=markdown). Organizations must grant access to their CSPM tools within their cloud providers. CSPM tools offer automated workflows, generating the permissions needed for effective posture management. Many CSPM providers give organizations the flexibility to choose between read-only access for just visibility and minimal read-write permissions for visibility and automated remediation. Nearly all offerings support AWS, Azure, and GCP and some support additional cloud providers including Oracle, Alibaba, and IBM Cloud. ### Get Visibility Once connected, CSPM solutions use the API-based connectivity to give you visibility into your cloud asset inventory, configurations, audit trail (configuration changes), network communications, and cloud events. ### Identify Misconfigurations and Compliance Violations CSPM tools come with out-of-the-box configuration checks, also known as policies that compare your cloud resources and configurations against security controls. Typically, the policies will map to an industry best practice framework (e.g., CIS, MITRE ATT\&CK) or regulatory compliance (e.g., PCI DSS, [HIPAA](https://www.paloaltonetworks.com/cyberpedia/what-is-hipaa?ts=markdown)). CSPM tools often come with hundreds of policies mapping to dozens of frameworks. Anytime a configuration matches a defined policy, a CSPM solution will identify this as a misconfiguration and alert security teams. **Examples of Misconfigured Services** * Amazon EC2 instance has IMDSv2 disabled * Azure Kubernetes Service endpoint is publicly accessible * GCP API key not rotating in every 90 days ### Detect Threats Traditional security approaches require proxies and agents to detect threats such as malware, network attacks and data exfiltration. With CSPM, security teams can detect compromises in action just by using the telemetry from your cloud providers such as network traffic (e.g., Amazon VPC flow logs), events (e.g., AWS CloudTrail event logs). Using policies, and artificial intelligence in some cases, CSPM solutions continuously inspect logs and events to detect anomalies and suspicious activity. Some tools will map incidents to the MITRE ATT\&CK tactics for enhanced visibility and prioritization. An effective CSPM must maintain high-fidelity threat intelligence to identify the latest threats and assess their severity level. The ability to detect anomalies on the network and correlate them with other types of threat data is also important for gaining full context on the potential risk impact of any threat. The same must be done with user and entity behavior analytics (UEBA) data. ### Contextualize Risks While policies help security teams identify misconfigurations and compliance issues, many enterprises will have thousands of misconfigurations, creating a need for risk prioritization. That's why many CSPM offerings have expanded into identifying additional risk signals, normally found in other tools, such as vulnerabilities, highly permissive access, active threats and more. Backed by graph database technologies, present-day CSPM tools contextualize misconfigurations with additional findings that together form potential attack paths. Like individual misconfigurations, modern CSPM offerings typically include out of the box policies that identify attack paths. Since combined issues pose a greater threat than individual misconfigurations, security teams use contextualized risk to improve their prioritization efforts. ![Example of CSPM with risk context](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cyberpedia/cloud-security-posture-management/traditional-cspm-present-day-cspm.png "Example of CSPM with risk context") ***Figure 4:** Example of CSPM with risk context* ### Remediate Issues At minimum, CSPM solutions provide step-by-step remediation instructions which security teams can forward to the teams responsible for the misconfiguration for improved collaboration. CSPM solutions should integrate with external platforms like SIEM, SOAR, ticketing systems and collaboration tools (e.g., Slack) allowing security teams to stream alerts and remediation feedback to the right teams. In some cases, security teams can automatically remediate violations from their CSPM console to facilitate rapid response. ![Example of remediation steps for a misconfiguration](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cyberpedia/cloud-security-posture-management/aws-s3-bucket-acls.png "Example of remediation steps for a misconfiguration") ***Figure 5:** Example of remediation steps for a misconfiguration* ### Monitor and Report As security teams repeatedly identify and remediate cloud infrastructure misconfigurations, they should notice downward risk trends over time. CSPM tools with built-in reporting capabilities help security teams verify their efforts and communicate with key stakeholders. For organizations running regulated applications on public cloud infrastructure, they can leverage CSPM to answer compliance posture questions like: * Am I passing or failing my compliance checks? * What percentage of my environment is compliant? * Which resources are noncompliant and how can I address it? CSPM solutions offer the ability to produce easily consumable reports. With a click of a button, security teams can generate a PCI DSS v4.0 report in PDF format, illustrating each PCI control and confirming that their cloud infrastructure complies with each control. From the CSPM tool, teams can hand off the report to a compliance expert for easy auditing or send it to a developer to communicate compliance concerns and prioritize remediation efforts. ![Example of a CSPM tool generating a handoff-ready PCI DSS compliance report](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cyberpedia/cloud-security-posture-management/cspm-tool-generate-report.png " Example of a CSPM tool generating a handoff-ready PCI DSS compliance report") ***Figure 6:** Example of a CSPM tool generating a handoff-ready PCI DSS compliance report* ## The Evolution of CSPM CSPM is unsustainable as a standalone product and capabilities have been absorbed into adjacent markets or into a platform. This has forced the CSPM scope to include more than just visibility, compliance, and governance. The table below compares present-day and traditional CSPM. | Present-day CSPM | Traditional CSPM | | Asset Inventory | ✓ | ✓ | | Audit trail of configuration changes | ✓ | ✓ | | Misconfiguration detection | ✓ | ✓ | | Compliance violation detection | ✓ | ✓ | | Automated remediation | ✓ | ✓ | | Audit-ready reporting | ✓ | ✓ | | Network flow visibility | ✓ | ✓ | | API discovery and visibility | ✓ | | | Threat detection --- suspicious behavior, network anomalies | ✓ | | | Effective network exposure | ✓ | | | Risk context --- correlate misconfigurations with vulnerabilities and other findings | ✓ | | | Integrated agentless workload scanning | ✓ | | | Integrated with cloud infrastructure entitlement management (CIEM) | ✓ | | | Integrated with data security posture management (DSPM) | ✓ | | | Integrated infrastructure-as-code scanning | ✓ | | | Integrated internet attack surface scanning | ✓ | | | Cloud provider coverage | AWS, Azure, Google, Oracle, Alibaba, IBM | AWS, Azure, Google | | Frequency of visibility updates | Near-real time (within minutes or seconds) | Snapshots (1-2 times a day) | |--------------------------------------------------------------------------------------|--------------------------------------------|-----------------------------| ![CSPM’s integration in CNAPP. (Click image to enlarge.)](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cyberpedia/cloud-security-posture-management/cspm-alert-triaging_wo-logo.jpg "CSPM’s integration in CNAPP. (Click image to enlarge.)") ***Figure 7:** CSPM's integration in CNAPP. (Click image to enlarge.)* ## CSPM Vs. Other Solutions With numerous product categories available in the market, security professionals should understand the scope of various cloud security solutions. Below are examples of common security controls that have similarities or overlap with CSPM. ### What Is the Difference between CASB and CSPM? Cloud access security broker (CASB) solutions filter network traffic to and from cloud services and SaaS applications to protect data. CSPM focuses on securely configuring cloud infrastructure. Unlike CASB, CSPM tools don't sit inline with the network, filter traffic, nor do they focus on SaaS applications. ### What Is the Difference Between Cloud Security and CSPM? The scope of cloud security is much broader than CSPM, encompassing the security of applications, data, identities, networks, and infrastructure within cloud environments. CSPM detects and remediates misconfigurations across cloud infrastructure. Many organizations adopt CSPM early in their cloud journey and believe it is an important first step for cloud security. ### What Is the Difference Between CNAPP and CSPM? [Cloud-native application protection platform (CNAPP)](https://www.paloaltonetworks.com/cyberpedia/what-is-a-cloud-native-application-protection-platform?ts=markdown), a term coined by [Gartner](https://www.gartner.com/en/documents/4005115), is an integrated set of cloud security and compliance capabilities designed to help secure and protect cloud-native applications across development and production. Core capabilities of a CNAPP include: * Cloud security posture management (CSPM) * [Cloud workload protection platform (CWPP)](https://www.paloaltonetworks.com/cyberpedia/what-is-cwpp-cloud-workload-protection-platform?ts=markdown) * [Code security](https://www.paloaltonetworks.com/cyberpedia/what-is-code-security?ts=markdown) * [Web application and API security (WAAS)](https://www.paloaltonetworks.com/blog/prisma-cloud/secure-cloud-native-api-microservices/?ts=markdown) * [Cloud infrastructure entitlement management (CIEM)](https://www.paloaltonetworks.com/cyberpedia/what-is-ciem?ts=markdown) * [Data security posture management (DSPM)](https://www.paloaltonetworks.com/cyberpedia/what-is-dspm?ts=markdown) These core functionalities within a CNAPP give security teams comprehensive visibility of public cloud infrastructure across the entire application development lifecycle. When initially adopting a platform at the early stages of their cloud journey, most organizations begin with CSPM. ### What Is the Difference Between CWPP and CSPM? Cloud workload protection platforms (CWPP) protect cloud compute instances such as hosts (e.g., Linux, Windows), containers (e.g., Kubernetes), and serverless functions (e.g., Amazon Lambda) against threats. The scope of CWPP is [vulnerability management](https://www.paloaltonetworks.com/cyberpedia/vulnerability-management?ts=markdown), compliance, and runtime protection for compute instances while CSPM tools identify and remediate cloud infrastructure misconfigurations. Market trends show that organizations are increasingly adopting CSPM and CWPP together. According to [Gartner](https://www.paloaltonetworks.com/resources/research/gartner-market-guide-cnapp?ts=markdown), "By 2025, 60% of enterprises will have consolidated cloud workload protection platform (CWPP) and cloud security posture management (CSPM) capabilities to a single vendor, up from 25% in 2022." ### What Is the Difference Between CIEM and CSPM? While CSPM expands visibility, governance and compliance into cloud resource configurations, it doesn't typically deliver deep identity controls or access governance. This is where [cloud infrastructure entitlement management (CIEM)](https://www.paloaltonetworks.com/cyberpedia/what-is-ciem?ts=markdown) can help. CIEM tools focus on identifying cloud identity risks and managing entitlements for accessing cloud infrastructure. Together, CSPM and CIEM technologies can help manage the security posture of cloud infrastructure via configuration and entitlement management. ### What Is the Difference Between SIEM and CSPM? Security information and event management (SIEM) aggregates security events from several different IT infrastructure sources (cloud, network, identity, etc.) to detect and mitigate threats. CPSM identifies security risks across cloud infrastructure. Most CSPM solutions can export findings to SIEM tools for further analysis and response. ### What Is the Difference Between DSPM and CSPM? Data security posture management is the practice of protecting [sensitive data](https://www.paloaltonetworks.com/cyberpedia/sensitive-data?ts=markdown) hosted within cloud environments. Through techniques like [data discovery](https://www.paloaltonetworks.com/cyberpedia/data-discovery?ts=markdown), [data classification](https://www.paloaltonetworks.com/cyberpedia/data-classification?ts=markdown), and [data governance](https://www.paloaltonetworks.com/cyberpedia/data-goverance?ts=markdown). Both DSPM and CSPM provide visibility, detect and remediate misconfigurations and aid compliance, but CSPM focuses on the cloud infrastructure configuration. DSPM focuses on the data hosted in the cloud. ## What Are Researchers Saying About CSPM? ### Gartner on CSPM Gartner offers several research pieces on CSPM, some standalone CSPM research and others bundled into CNAPP research. According to the [2023 Gartner Market Guide for Cloud-Native Application Protection Platforms](https://www.paloaltonetworks.com/resources/research/gartner-market-guide-cnapp?ts=markdown), "By 2025, 75% of new CSPM purchases will be part of an integrated CNAPP offering." The research piece highlights the growing interest in CSPM, saying "The number of end-user calls on CNAPPs grew 70% from 2021 to 2022 with an emphasis on CSPM due to compliance drivers and ease of deployment via APIs." Gartner hasn't conducted a Magic Quadrant report for CSPM but offers other research to help security professionals make informed decisions with CSPM solutions. ### Forrester Despite Forrester's lack of standalone research articles on CSPM, the firm recognizes CSPM as a core component of Cloud Workload Security (CWS), a platform-based product category for cloud security. Forrester analyzed and scored CWS vendors, including their CSPM capabilities, in [The Forrester Wave: Cloud Workload Security Q1, 2024](https://www.paloaltonetworks.com/resources/research/forrester-wave-cloud-workload-security-prisma-cloud-leader-2024?ts=markdown). ### GigaOm GigaOm is one of few research firms that closely research CSPM independently. Their researchers analyzed and scored vendors who they believe are the top CSPM providers in the [2023 GigaOm Radar: Cloud Security Posture Management](https://start.paloaltonetworks.com/gigaom-leader-in-cloud-security-posture-management) report. ![The GigaOm Radar scores vendors based on their ability to deliver CSPM.](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cyberpedia/cloud-security-posture-management/gigaom-radar-report.png "The GigaOm Radar scores vendors based on their ability to deliver CSPM.") ***Figure 7:** The GigaOm Radar scores vendors based on their ability to deliver CSPM.* ## What Are the Benefits of CSPM? ### Greater Visibility Gaining visibility into all cloud services distributed across cloud providers is both essential and challenging. CSPM solutions provide centralized visibility across cloud and multicloud environments by analyzing and normalizing data sources as well as creating a detailed inventory of cloud resources and assets. Some CSPM solutions provide continuous real-time visibility, while others collect periodic snapshots of cloud asset inventories. A CSPM solution that offers single-dashboard visibility across several clouds is more than convenient. This CSPM platform is immensely valuable to security teams, given that schematics for each cloud provider environment differ. ### Reduced Cloud Security Risk Many CSPM tools contextualize misconfigurations with other cloud security findings such as vulnerabilities, highly permissive access, data risks and more. By correlating these findings, security teams can prioritize cloud risks with the greatest impact to their business. Remediation guidance and automation built into CSPM tools help security teams address critical risks quicker. ### Improved Regulatory Compliance Governance and compliance teams using the cloud and dealing with stringent compliance regulations --- PCI DSS, [GDPR](https://www.paloaltonetworks.com/cyberpedia/gdpr-compliance?ts=markdown), SOC 2, and HIPAA, to name a few --- often struggle to demonstrate compliance to auditors. A CSPM solution can help with compliance monitoring and reporting: * Continuous monitoring of your compliance posture and automatic mapping against common compliance frameworks * Quick-generation audit-ready reports, reducing the time to create, share, and consume compliance reports * Ability for SOC teams to investigate audit data for unusual user behavior or potential account compromise ## Cloud Security Posture Management (CSPM) FAQs ### Are CSPM and CNAPP the same? Cloud security posture management (CSPM) is one module in the cloud-native application protection platform (CNAPP). CNAPP, providing a comprehensive and fully integrated approach to cloud security in a single platform, comprises CSPM, cloud workload protection platform (CWPP), application security, and cloud infrastructure entitlement management (CIEM). ### Why are CSPM, DSPM, and DDR all needed? When used together, CSPM, DSMP, and DDR solutions provide a comprehensive data security strategy that addresses different aspects of data security. CSPM can ensure the security and compliance of cloud infrastructure, while DSPM can secure sensitive data within the cloud, and DDR can detect and alert in real time when changes occur that increase the risk of data exposure. CSPM, DSPM, and DDR work together to provide a comprehensive data security solution that addresses cloud infrastructure security, data protection, and real-time response. For example, CSPM can integrate with DSPM to ensure that sensitive data is properly secured. Then DDR focuses on data events happening in real-time, allowing teams to respond when changes occur. ### What is security friction? Security friction is defined as the degree to which cloud security is limiting an organization's operations. Today, with the movement to shift-left and embrace DevSecOps principles, security friction between developers and security teams is lessening. ### How do misconfigurations happen? Misconfigurations are common and often unintentional. Since public cloud infrastructure may be programmed through APIs, incorrect settings pose a serious risk to businesses. Mismanagement of several interconnected resources like Kubernetes, serverless operations and containers is a common cause of setup errors. This is frequently the result of lack of visibility, a lack of understanding of how different resources interact, and the application of permissions. ### What is data integrity? Data integrity refers to the accuracy, consistency, and reliability of data stored in a system or database. It ensures that information remains unaltered and uncorrupted during processing, storage, transmission, and retrieval. Maintaining data integrity is crucial for decision-making, business processes, and regulatory compliance. Techniques to ensure data integrity include implementing access controls, data validation checks, error detection and correction mechanisms, version control, and utilizing cryptographic hash functions to verify data consistency. ### What is PCI DSS? PCI DSS stands for Payment Card Industry Data Security Standard, which is an information security standard administered by the Payment Card Industry Security Standards Council. Created to reduce credit card fraud, PCI DSS compliance involves technical and operational standards that businesses follow to secure and protect credit card data. ### What is HIPAA? Commonly known as [HIPAA, the Health Insurance Portability and Accountability Act of 1996](https://www.paloaltonetworks.com/cyberpedia/what-is-hipaa?ts=markdown) is a federal law that installed national standards to protect individuals' medical records and other individually identifiable health information --- defined as protected health information (PHI). It applies to health plans, healthcare clearinghouses, and healthcare providers electronically conducting certain healthcare transactions. Penalties for HIPAA violations are issued by the HHS Office for Civil Rights (OCR) and state attorneys general. The OCR can impose a maximum fine of $1.5 million per violation, per year. Depending on the type of violation, covered entities can also be subject to criminal or civil lawsuits. ### What is GDPR? GDPR stands for General Data Protection Regulation, a privacy and security law passed by the European Union (EU) that applies to organizations worldwide that target or collect data pertaining to people within the EU. Viewed as the world's strictest set of data protection rules, the GDPR imposes severe fines on those who violate the privacy and security standards within this expansive regulation. ### What is SOC 2? SOC 2 was developed by the American Institute of CPAs and refers to a voluntary compliance standard for service organizations that details how customer data should be managed. SOC 2 criteria are based on "trust service principles" --- security, availability, processing integrity, confidentiality, and privacy. Organizations can follow one or more of the trust principles depending on the nature of their business and business practices. ### What is NIST CSF? NIST CSF stands for NIST Cybersecurity Framework, which delineates standards and guidance on managing and reducing risks to IT infrastructure security. ### What is NIST 800-171? NIST SP 800-171 is a special publication that nonfederal computer systems must follow to store, process, or transmit controlled unclassified information (CUI). This compliance regulation governs manufacturers such as defense contractors. Related content [The 6 Key Requirements for Multicloud Security Gain visibility into your cloud infrastructure, secure sensitive data, prioritize risk, accurately assess the external attack surface, protect AI models, and more.](https://www.paloaltonetworks.com/resources/ebooks/six-key-requirements-of-multicloud-security?ts=markdown) [Improve Your Multicloud Security Posture Multicloud environments are complex and difficult to secure without a proactive approach to security and visibility.](https://www.paloaltonetworks.com/resources/datasheets/tip-sheet-improve-your-multicloud-security-posture?ts=markdown) [Multicloud CSPM Requires Multifunctional Platforms Good cloud security hygiene starts with complete visibility into the security and compliance posture of each resource deployed in your cloud environment.](https://www.paloaltonetworks.com/resources/ebooks/guide-to-cloud-security-posture?ts=markdown) [Prisma Cloud for CSPM Prisma Cloud is a unique Cloud Security Posture Management (CSPM) solution that reduces the complexity of securing multi-cloud environments, while radically simplifying compliance.](https://www.paloaltonetworks.com/resources/videos/prisma-cloud-for-cspm?ts=markdown) ![Share page on facebook](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/resources/facebook-circular-icon.svg) ![Share page on linkedin](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/resources/linkedin-circular-icon.svg) [![Share page by an email](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/resources/email-circular-icon.svg)](mailto:?subject=What%20Is%20CSPM%3F%20%7C%20Cloud%20Security%20Posture%20Management%20Explained&body=Discover%20how%20Cloud%20security%20posture%20management%20%28CSPM%29%20continuously%20monitors%20and%20improves%20the%20security%20posture%20of%20cloud%20infrastructure%20and%20services.%20at%20https%3A//www.paloaltonetworks.com/cyberpedia/what-is-cloud-security-posture-management) Back to Top [Previous](https://www.paloaltonetworks.com/cyberpedia/what-is-a-cloud-native-application-protection-platform?ts=markdown) What Is CNAPP? [Next](https://www.paloaltonetworks.com/cyberpedia/what-is-cloud-network-security?ts=markdown) What Is Cloud Network Security? {#footer} ## Products and Services * [AI-Powered Network Security Platform](https://www.paloaltonetworks.com/network-security?ts=markdown) * [Secure AI by Design](https://www.paloaltonetworks.com/precision-ai-security/secure-ai-by-design?ts=markdown) * [Prisma AIRS](https://www.paloaltonetworks.com/prisma/prisma-ai-runtime-security?ts=markdown) * [AI Access Security](https://www.paloaltonetworks.com/sase/ai-access-security?ts=markdown) * [Cloud Delivered Security Services](https://www.paloaltonetworks.com/network-security/security-subscriptions?ts=markdown) * [Advanced Threat Prevention](https://www.paloaltonetworks.com/network-security/advanced-threat-prevention?ts=markdown) * [Advanced URL Filtering](https://www.paloaltonetworks.com/network-security/advanced-url-filtering?ts=markdown) * [Advanced WildFire](https://www.paloaltonetworks.com/network-security/advanced-wildfire?ts=markdown) * [Advanced DNS Security](https://www.paloaltonetworks.com/network-security/advanced-dns-security?ts=markdown) * [Enterprise Data Loss Prevention](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown) * [Enterprise IoT Security](https://www.paloaltonetworks.com/network-security/enterprise-device-security?ts=markdown) * [Medical IoT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown) * [Industrial OT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown) * [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown) * [Next-Generation Firewalls](https://www.paloaltonetworks.com/network-security/next-generation-firewall?ts=markdown) * [Hardware Firewalls](https://www.paloaltonetworks.com/network-security/hardware-firewall-innovations?ts=markdown) * [Software Firewalls](https://www.paloaltonetworks.com/network-security/software-firewalls?ts=markdown) * [Strata Cloud Manager](https://www.paloaltonetworks.com/network-security/strata-cloud-manager?ts=markdown) * [SD-WAN for NGFW](https://www.paloaltonetworks.com/network-security/sd-wan-subscription?ts=markdown) * [PAN-OS](https://www.paloaltonetworks.com/network-security/pan-os?ts=markdown) * [Panorama](https://www.paloaltonetworks.com/network-security/panorama?ts=markdown) * [Secure Access Service Edge](https://www.paloaltonetworks.com/sase?ts=markdown) * [Prisma SASE](https://www.paloaltonetworks.com/sase?ts=markdown) * [Application Acceleration](https://www.paloaltonetworks.com/sase/app-acceleration?ts=markdown) * [Autonomous Digital Experience Management](https://www.paloaltonetworks.com/sase/adem?ts=markdown) * [Enterprise DLP](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown) * [Prisma Access](https://www.paloaltonetworks.com/sase/access?ts=markdown) * [Prisma Browser](https://www.paloaltonetworks.com/sase/prisma-browser?ts=markdown) * [Prisma SD-WAN](https://www.paloaltonetworks.com/sase/sd-wan?ts=markdown) * [Remote Browser Isolation](https://www.paloaltonetworks.com/sase/remote-browser-isolation?ts=markdown) * [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown) * [AI-Driven Security Operations Platform](https://www.paloaltonetworks.com/cortex?ts=markdown) * [Cloud Security](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown) * [Cortex Cloud](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown) * [Application Security](https://www.paloaltonetworks.com/cortex/cloud/application-security?ts=markdown) * [Cloud Posture Security](https://www.paloaltonetworks.com/cortex/cloud/cloud-posture-security?ts=markdown) * [Cloud Runtime Security](https://www.paloaltonetworks.com/cortex/cloud/runtime-security?ts=markdown) * [Prisma Cloud](https://www.paloaltonetworks.com/prisma/cloud?ts=markdown) * [AI-Driven SOC](https://www.paloaltonetworks.com/cortex?ts=markdown) * [Cortex XSIAM](https://www.paloaltonetworks.com/cortex/cortex-xsiam?ts=markdown) * [Cortex XDR](https://www.paloaltonetworks.com/cortex/cortex-xdr?ts=markdown) * [Cortex XSOAR](https://www.paloaltonetworks.com/cortex/cortex-xsoar?ts=markdown) * [Cortex Xpanse](https://www.paloaltonetworks.com/cortex/cortex-xpanse?ts=markdown) * [Unit 42 Managed Detection \& Response](https://www.paloaltonetworks.com/cortex/managed-detection-and-response?ts=markdown) * [Managed XSIAM](https://www.paloaltonetworks.com/cortex/managed-xsiam?ts=markdown) * [Threat Intel and Incident Response Services](https://www.paloaltonetworks.com/unit42?ts=markdown) * [Proactive Assessments](https://www.paloaltonetworks.com/unit42/assess?ts=markdown) * [Incident Response](https://www.paloaltonetworks.com/unit42/respond?ts=markdown) * [Transform Your Security Strategy](https://www.paloaltonetworks.com/unit42/transform?ts=markdown) * [Discover Threat Intelligence](https://www.paloaltonetworks.com/unit42/threat-intelligence-partners?ts=markdown) ## Company * [About Us](https://www.paloaltonetworks.com/about-us?ts=markdown) * [Careers](https://jobs.paloaltonetworks.com/en/) * [Contact Us](https://www.paloaltonetworks.com/company/contact-sales?ts=markdown) * [Corporate Responsibility](https://www.paloaltonetworks.com/about-us/corporate-responsibility?ts=markdown) * [Customers](https://www.paloaltonetworks.com/customers?ts=markdown) * [Investor Relations](https://investors.paloaltonetworks.com/) * [Location](https://www.paloaltonetworks.com/about-us/locations?ts=markdown) * [Newsroom](https://www.paloaltonetworks.com/company/newsroom?ts=markdown) ## Popular Links * [Blog](https://www.paloaltonetworks.com/blog/?ts=markdown) * [Communities](https://www.paloaltonetworks.com/communities?ts=markdown) * [Content Library](https://www.paloaltonetworks.com/resources?ts=markdown) * [Cyberpedia](https://www.paloaltonetworks.com/cyberpedia?ts=markdown) * [Event Center](https://events.paloaltonetworks.com/) * [Manage Email Preferences](https://start.paloaltonetworks.com/preference-center) * [Products A-Z](https://www.paloaltonetworks.com/products/products-a-z?ts=markdown) * [Product Certifications](https://www.paloaltonetworks.com/legal-notices/trust-center/compliance?ts=markdown) * [Report a Vulnerability](https://www.paloaltonetworks.com/security-disclosure?ts=markdown) * [Sitemap](https://www.paloaltonetworks.com/sitemap?ts=markdown) * [Tech Docs](https://docs.paloaltonetworks.com/) * [Unit 42](https://unit42.paloaltonetworks.com/) * [Do Not Sell or Share My Personal Information](https://panwedd.exterro.net/portal/dsar.htm?target=panwedd) ![PAN logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/pan-logo-dark.svg) * [Privacy](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown) * [Trust Center](https://www.paloaltonetworks.com/legal-notices/trust-center?ts=markdown) * [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown) * [Documents](https://www.paloaltonetworks.com/legal?ts=markdown) Copyright © 2025 Palo Alto Networks. All Rights Reserved * [![Youtube](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/youtube-black.svg)](https://www.youtube.com/user/paloaltonetworks) * [![Podcast](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/icons/podcast.svg)](https://www.paloaltonetworks.com/podcasts/threat-vector?ts=markdown) * [![Facebook](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/facebook-black.svg)](https://www.facebook.com/PaloAltoNetworks/) * [![LinkedIn](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/linkedin-black.svg)](https://www.linkedin.com/company/palo-alto-networks) * [![Twitter](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/twitter-x-black.svg)](https://twitter.com/PaloAltoNtwks) * EN Select your language