Data Security

Data classification and malware scanning across public cloud storage.
Request a Trial
Data Security Hero Front Image
Data Security Hero Back Image

The near-limitless capacity offered by cloud storage services has enabled organizations to store exponentially larger amounts of data, amplifying the challenges of traditional, lengthy and error-prone manual processes for classification.

Read about our approach to Cloud Data Security.

Read the blog
1

Data classification is challenging

Many organizations don’t have enough visibility of critical data types such as Social Security numbers, driver’s licenses and other forms of personal identifiable information (PII). This becomes problematic when facing audits and prioritizing data security tactics.
2

Malware can hide in public cloud storage

Public cloud storage services are an often-overlooked source of malware. When known and unknown file-based threats infiltrate cloud storage services, they can then spread across the broader cloud environment.
3

Preventing accidental exposure is paramount

Essential to a strong data security strategy for public cloud is ensuring that sensitive data is not accidentally exposed by leakage or a malicious insider. This requires object classification correlated with bucket policies, access control lists (ACLs) and other configurations.

Protect public cloud storage services

Prisma® Cloud Data Security is purpose-built to address the challenges of discovering and protecting data at the scale and velocity common in public cloud environments. By combining the power of Palo Alto Networks Enterprise Data Loss Prevention (DLP) and WildFire® malware prevention service, only Prisma Cloud offers data security integrated into a comprehensive cloud-native application protection platform.
  • Multicloud support across AWS and Azure
  • Comprehensive visibility and data classification
  • Protection against known and unknown malware
  • icon Data visibility
    Data visibility and classification
  • icon Malware prevention
    Malware prevention
  • icon Exposure risk analysis
    Exposure risk analysis
  • icon Data security dashboard
    Data security dashboard
THE PRISMA CLOUD SOLUTION

Our approach to Cloud Data Security

Data visibility and classification

Prisma Cloud leverages Palo Alto Networks powerful Enterprise DLP to categorize sensitive and regulated data, such as PII, protected health information (PHI), customer records, financial data and intellectual property.

  • Enterprise DLP engine

    Save time using consistent regex-based data patterns and machine learning to identify sensitive data across networks, endpoints and clouds. Reuse customized data patterns or profiles built for other Enterprise DLP use cases.

  • Data discovery at cloud scale

    Leverage machine learning and pattern recognition to accurately detect many different types of data, such as addresses, credit cards or driver’s license numbers. Users can even define their own data patterns unique to each use case.

  • Security posture visibility

    Gain comprehensive visibility into the security and privacy posture of the data stored in Amazon S3 and Azure Storage Blob. Immediately gain insight into any exposed or publicly accessible storage resources.

Learn more
Sensitive data detection

Malware prevention

Ensuring stored data is free from malware that can spread across cloud environments is an essential yet often overlooked security requirement for cloud storage services. By leveraging WildFire, Prisma Cloud identifies and helps protect against known and unknown file-based threats that have infiltrated storage accounts.

  • WildFire integration

    Use our WildFire malware analysis engine, seamlessly integrated into the Prisma Cloud Data Security module, to quickly and easily identify any malware hidden in your stored data without requiring a separate, siloed security product.

  • Antivirus for cloud storage

    Discover Trojans as well as other types of viruses and malware hidden in your cloud storage. Easily delete, tag or quarantine infected objects.

  • Deep integration

    Use a single UI for comprehensive cloud security. Prisma Cloud Data Security is built into the same platform and UI as every other Prisma Cloud capability.

Learn more
Malware prevention

Exposure risk analysis

Publicly exposed sensitive data is one of the most commonly seen vulnerabilities across public cloud environments. The exponential growth of collected data amplifies this issue. Prisma Cloud prevents publicly exposed sensitive data by automatically and continuously monitoring storage objects, bucket policies and ACLs, and other configurations.

  • Exposure risk calculation

    Automatically and continuously monitor configurations for access control, policy, objects and others to calculate the exposure of objects. This allows users to quickly remediate unintended settings for storage resources that have been identified as containing sensitive data.

  • Exfiltration prevention

    Gain visibility into misconfigured storage resources that are exposed. Leverage ML-powered policies to detect malicious insider activity and exfiltration attempts

  • Automated remediation

    Enforce a continuously robust security posture across storage services by either letting Prisma Cloud fix any misconfigurations or by sending alerts to an existing workflow via 14 integrations.

Learn more
Prevent accidental exposure screenshot

Prisma Cloud Data Security dashboard

Prisma Cloud delivers a single pane of glass view to cover all cloud storage risks so security teams can quickly assess their risk and determine remediation approach without relying on yet another tool.

  • Misconfiguration of cloud storage services

    Detect misconfigurations that violate compliance standards and/or company policies with default and customizable configuration policies and remediate to reduce risk.

  • Audit trail of user activities

    Provide a unified view of user activities and impact on cloud storage services to quickly assess risk and potential threats.

  • Public exposure, sensitive data and malware

    Determine the public exposure risk of cloud storage services and objects, and detect the presence of sensitive data and malware in the same pane of glass as the misconfiguration and audit trail to provide a comprehensive view of all risks related to cloud storage services.

Learn more
Single view to assess all cloud storage risks
Prisma Cloud
Prisma Cloud
Prisma® Cloud is the industry’s most complete Cloud Native Application Protection Platform (CNAPP), with the industry’s broadest security and compliance coverage—for infrastructure, workloads, and applications, across the entire cloud native technology stack—throughout the development lifecycle and across hybrid and multicloud environments.
Learn more

Cloud Security Posture Management modules

VISIBILITY, COMPLIANCE, AND GOVERNANCE

Continuously monitor all cloud resources for misconfigurations, vulnerabilities and other security threats. Simplify compliance reporting.

Learn more

THREAT DETECTION

Pinpoint the highest risk security issues using ML-powered and threat intelligence-based detection with contextual insights.

Learn more

DATA SECURITY

Continuously monitor cloud storage for security threats, govern file access and mitigate malware attacks.

Learn more
Featured Resources

Get more insight into what Prisma Cloud can do for your business

See all resources
Blog post

Help Protect Sensitive Data with a Cloud Native Security Platform

Learn more
DATASHEET

Prisma Cloud: Cloud Security Posture Management

Download

Customer Stories

Hear how Pokemon, Sabre and ElevenPaths take advantage of Prisma Cloud's full lifecycle security and full stack protection.

Cloud security basics

Learn about DevSecOp trends and get practical tips from developers, industry leaders and security professionals.

The latest from our blog

Start with a piece that focuses on container security with Kubernetes cluster awareness, then dive into the rest.

Get the latest news, invites to events, and threat alerts

Popular Resources

Legal Notices

Popular Links

Report a Vulnerability