The way your business leverages cloud and SaaS technologies evolves each and every day -- including where they access systems and data from. As a result, many security and technology executives find it a challenge to strike the right balance between speed and risk. If you’re looking for ideas and best practices to ensure consistent, comprehensive security without adding additional complexity, check out our Prisma resource center for tips and best practices to inform how your next step in your cloud security journey.
This guide provides a foundation for securing network infrastructure using Palo Alto Networks® VMSeries virtualized next generation firewalls within the Amazon Web Services (AWS) public cloud. For an organization with a desire to move to public cloud infrastructure, the next question is often “How do I secure my applications in a public cloud?” This guide provides an overview of AWS components and how they can be used to build a scalable and secure public cloud infrastructure on AWS using the VM-Series. The architectures begin with a single virtual private cloud suitable for organizations getting started and scales to thousands to meet any size organization’s operational requirements.
Organizations are rapidly migrating their enterprise applications and data onto Amazon ® Web Services. Just as they would in the data center, applications deployed on AWS ® often require outbound connectivity to applications housed in other virtual private clouds, as well as to resources located on the corporate network or the web. As the numbers of AWS accounts and VPCs grow, managing the many individual connections becomes complex and difficult, often slowing deployments. Another challenge lies in making sure the process of protecting applications and data does not become a bottleneck for new applica - tion deployments.
Whitepaper that provides examples of how Terraform, Ansible and VM-Series automation features allow customers to embed security into their DevOps or cloud migration processes. This whitepaper walks through a “touchless” deployment scenario where a fully configured, VM-Series next generation firewall is deployed on AWS and Azure and dynamically updated using Ansible as the environment expands and contracts.
