Prisma Cloud Copilot: Don’t Just Ask, Act

May 07, 2024
5 minutes
... views

This post is also available in: 简体中文 (Chinese (Simplified)) 繁體中文 (Chinese (Traditional)) 日本語 (Japanese) 한국어 (Korean)

Generative AI's acceleration of software delivery is straining current approaches to cloud security, making scaling nearly impossible because, as Gartner points out, organizations don’t have the skilled resources to take it all on. For those counting on AI to drive innovation, this is a problem. How do you keep safe? Here’s where Palo Alto Networks Precision AITM comes in — a proprietary AI system that helps power Prisma Cloud Copilot.

A Simple, Intuitive Way to Reduce Cloud Security Risk

A seamless component of the Code to CloudTM platform, Prisma Cloud Copilot empowers users to resolve cloud risk as easily as asking a question.

  • Want to know what your top risks are? Copilot can tell you.
  • Need to find out where your sensitive data is secure and who has access to it? Copilot has that answer.
  • Not sure what to ask? That’s OK too. Copilot is contextually aware and can suggest questions and actions based on where you are in the Prisma Cloud platform.

Identify Complex Attack Paths, Understand the Broader Impact

Copilot leverages the advanced algorithms in Prisma Cloud to continuously analyze your cloud stack, precisely connecting insights from across your environment to identify the vulnerabilities and misconfigurations that pose the greatest business risk. It details the code to cloud impact and provides additional context, such as why the risk is critical and how an attacker could exploit it.

Figure 1: Prisma Cloud Copilot shows the code to cloud impact, details the risk and offers relevant next steps
Figure 1: Prisma Cloud Copilot shows the code to cloud impact, details the risk and offers relevant next steps

Copilot also discovers the broader blast radius so you can understand the impact to your crown jewels. It graphs models the possible pathways an attacker could take from the initial asset so you can easily understand how extensively a risk could spread. By combining path exploitability and crown jewel significance, the overall risk impact is precisely calculated.

Figure 2: Quickly understand the broader risk impact to the crown jewels
Figure 2: Quickly understand the broader risk impact to the crown jewels

With both risk reachability and impact context, Copilot can then recommend the best remediation workflow, whether to open a pull request, to a corrected IaC template or to create a ticket.

Figure 3: Always take the right action, as Prisma Cloud Copilot intelligently recommends the best remediation workflow
Figure 3: Always take the right action, as Prisma Cloud Copilot intelligently recommends the best remediation workflow

Replace Query Building with Natural Language Questions

With Prisma Cloud Copilot, you’ll never have to go through the arduous task of building a custom query to analyze specific cloud risks. The system understands natural language, so whether you're looking for insights into specific resources or a broader view into your security posture, you can simply ask Copilot.

Figure 4: Understand which users are over-privileged and have access to S3 buckets and what to do next by asking a question
Figure 4: Understand which users are over-privileged and have access to S3 buckets and what to do next by asking a question

Find Prisma Cloud Capabilities Fast

Prisma Cloud is a comprehensive command center for cloud security. Whether you need help with a feature or directions to a particular capability, Copilot helps you find what you’re looking for — without wasting time sifting through documentation or navigating multiple dashboards.

Figure 5: Simply ask how to take actions instead of sifting through documentation
Figure 5: Simply ask how to take actions instead of sifting through documentation

Streamline Support Requests for Faster Action

When you need product support, time is of the essence. Copilot makes it easy to open a new case, intelligently collecting relevant logs and information so support engineers have the details they need to resolve the case quickly and effectively.

Figure 6: Easily get help with automated support ticket creation
Figure 6: Easily get help with automated support ticket creation

See Prisma Cloud Copilot in action.

Learn More

Reducing security risks in the cloud is a challenge in the best of circumstances. But today, given the rapid acceleration of AI-assisted development — not to mention AI-driven attacks — it feels almost impossible. There’s simply too much to do and not enough resources to manage it all.

Prisma Cloud Copilot, generally available as of October 1,  fixes that. Look how easy it can be to understand what you need to focus on and how you need to fix it.

Palo Alto Networks was at the forefront of AI long before AI became a buzzword. And we’ve been doubling down on our investment over the years, developing models to enhance threat detection. Today, we announce new AI functionality across our many platforms.

To get an up-close look at how Prisma Cloud Copilot works and learn how it can multiply your security force, contact your customer success team.

 

This blog contains forward-looking statements that involve risks, uncertainties, and assumptions, including, without limitation, statements regarding the benefits, impact, or performance or potential benefits, impact or performance of our products and technologies. These forward-looking statements are not guarantees of future performance, and there are a significant number of factors that could cause actual results to differ materially from statements made in this blog. We identify certain important risks and uncertainties that could affect our results and performance in our most recent Annual Report on Form 10-K, our most recent Quarterly Report on Form 10-Q, and our other filings with the U.S. Securities and Exchange Commission from time-to-time, each of which are available on our website at investors.paloaltonetworks.com and on the SEC's website at www.sec.gov. All forward-looking statements in this blog are based on information available to us as of the date hereof, and we do not assume any obligation to update the forward-looking statements provided to reflect events that occur or circumstances that exist after the date on which they were made.

 

 

 


Subscribe to Cloud Native Security Blogs!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.