Co-Authored by: Gilson Melo, Director of Product Management
Between growing workloads, lacking visibility across siloed environments, and an ever-increasing barrage of security alerts underscoring both, a day in the life of today’s average Security Operations Center (SOC) is not for the faint of heart (or short of time, for that matter). While resource constraints are nothing new for SOC teams, monitoring security across the organization has never been more complex.
Digital transformation and cloud migration initiatives have carried no dearth of returns for many organizations harnessing the performance, TCO, and agility of Gen 2 Cloud architectures. While modern enterprises and embraced hybrid and multicloud strategies, SOC teams have struggled to identify solutions that can help them maintain visibility across siloed on-premises, cloud, and hybrid cloud environments. In fact, 72% of SOC teams cite a lack of clear visibility into the network and IT infrastructure as a top pain point.
This blog post addresses how Oracle Cloud Infrastructure (OCI) is partnering with Palo Alto Networks to empower organizations with comprehensive security visibility and cloud workload protection to address these critical challenges.
Oracle is proud to partner with Palo Alto Networks, a nine-time Gartner Magic Quadrant leader for network firewalls, to extend Prisma Cloud by Palo Alto Networks support to OCI. A comprehensive cloud native security platform (CNSP), Prisma Cloud provides security teams with multicloud and hybrid visibility for all cloud assets, including OCI and four other major cloud providers, in a single console.
Public cloud security best practices dictate the following behavior:
Understand your threat exposure through cloud infrastructure and application visibility.
Detect the insecure configuration of your cloud infrastructure with best practices and custom policies to reduce your attack surface area.
Check your cloud environment against industry compliance standards like CIS.
Detect anomalous user activities and network traffic.
While native OCI features establish the robust security of the platform, Prisma Cloud complements those protections and further reduces your attack surface by enabling full visibility. It applies more than 40 prebuilt OCI policies that assess misconfigurations, checks your OCI environment against compliance standards, and catches threats with machine learning and threat intelligence-derived threat detection.
Figure 1. Inventory of OCI resources and assets secured with Prisma Cloud
With Prisma Cloud, you can easily set your security posture governance using prebuilt OCI policies and compliance reporting. You can extend protections with security operations (SecOps) telemetry integrations, for SOC tools like Splunk and orchestration tools like ServiceNow, to effectively manage enterprise digital workflows.
For organizations that must comply with regulatory mandates such as GDPR and HIPAA, cloud security posture management (CSPM) by Prisma Cloud helps deliver compliance protection by providing continuous visibility on all OCI resource inventories. CSPM governance also establishes API-driven guardrails by using more than 40 prebuilt OCI policies that assess misconfigurations, including integrated support for the CIS OCI Foundations Benchmark.
Figure 2. Prisma Cloud dashboard for CIS OCI Foundations Benchmark compliance
Gartner defines cloud workload protection platforms (CWPP) as workload-centric security offerings that target the unique protection requirements of workloads in modern hybrid, multicloud data center architectures. These platforms need to help security leaders continuously assess risk across cloud native architectures and identify vulnerabilities and misconfigurations before deployment to runtime to minimize runtime problems.
As complementary capabilities to the cloud security posture management available with Prisma Cloud, the platform also delivers CWPP for Hosts and Containers on Oracle Cloud Container Engine for Kubernetes (OKE) and web application and API Security (WAAS) to provide full-stack security for cloud native applications.
The cloud workload protection capabilities are delivered from the same console used for CSPM and deliver protection through a unified agent framework, called Prisma Cloud Defender, deployed to your environment. When deployed, security teams benefit from continuous vulnerability management, compliance, and runtime protection across OCI. Prisma Cloud also delivers security as part of continuous integration and continuous delivery (CICD) workflows. It can scan container images as part of the build process and continuously monitor container images stored in Oracle Cloud Infrastructure Registry (OCIR).
With Prisma Cloud, Palo Alto Networks has also brought their best-in-class virtual next-generation firewall to OCI. VM-Series Virtual Next-Generation Firewalls, deployable directly from Oracle Cloud Marketplace, provide the capabilities of the Palo Alto Networks next-generation hardware firewall in a virtual machine (VM) form. While native Oracle Cloud features establish robust security of the platform, Palo Alto Networks solutions augment these controls by providing Layer 7 visibility and inline threat protection to secure applications and data on OCI.
Ready to learn more about Prisma Cloud and VM-Series Virtual Next-Generation Firewalls on Oracle Cloud Infrastructure? Visit Palo Alto Networks solutions on Oracle Cloud Marketplace today!