Palo Alto Networks has added new features to its Cortex XSIAM platform. The enhancements, part of Cortex XSIAM for Cloud, are said to make it the first security operations centre (SOC) platform optimised for the cloud.
As businesses increasingly shift their operations to the cloud, traditional SOC security tools, not designed for this new environment, have struggled to keep pace.
Palo Alto Networks’ latest innovations address this gap, delivering cloud security operations capabilities through a single platform for improved security outcomes.
The new features take into account the unique architecture of cloud-based applications, understand the specific nature of cloud-related threats, and provide real-time monitoring and response capabilities for SOC analysts.
“The evolution of our Cortex XSIAM platform to integrate Cloud Detection and Response capabilities underscores our commitment to providing a comprehensive security operations platform powered by AI and automation,” said Gonen Fink (top), SVP of Products for Cortex and Prisma Cloud at Palo Alto Networks.
“This approach eliminates data silos, increases efficiency, and nets optimal experiences for SecOps teams. Cortex XSIAM for Cloud represents our commitment to providing a unified security solution in one platform, leading to greater speed and better security,” he added.
Key features of the new Cloud Detection and Response capabilities include a new Cloud Command Center within the Cortex XSIAM platform that provides complete visibility into cloud assets, enabling security teams to identify and respond to cloud threats quickly.
An expanded version of the Cortex XDR Agent enhances Cortex’s runtime security and threat protection with Prisma® Cloud’s powerful vulnerability and security compliance management capabilities. This provides a complete Cloud Detection and Response solution, eliminating the need for two agents and enhancing visibility while streamlining deployment and operations across a security program.
The new Prisma Cloud integration enriches the capabilities delivered through the cloud SOC with broader context and security posture information about cloud assets for detailed incident grouping and more straightforward navigation.
Entelechy Asia 