Professional Documents
Culture Documents
RFP Checklist
Comprehensive cloud native security requires a broad set of capabilities
with deep functionality across the development lifecycle (build, deploy,
run). The distributed risks involved in hybrid and multi-cloud environments
also require integration with other cloud native tools across infrastructure,
applications, and data. Furthermore, to successfully coordinate enterprise-
scale protection against modern threats, nearly every organization will
benefit from a consolidated platform that can deliver all of these capabilities
in a single console.
6. DevSecOps Requirements
Embed security guidance and guardrails into developer tools throughout the
development lifecycle.
□S
upport for infrastructure-as-code (IaC) templates in use (e.g., Terraform, Kubernetes manifests)
□S
upport for relevant cloud providers (e.g., AWS, Azure, GCP)
□A
bility to detect secrets in IaC files
□O
ut-of-the-box policies based on CIS and industry frameworks to help provide configuration guard-
rails for developers
□A
bility to create custom policies in code (policy as code)
□O
ut-of-the-box and custom graph-based policies (context-aware)
□A
utomatic variable rendering to provide a complete picture of your cloud infrastructure for security
checks prior to deployment
□A
bility to scan Terraform modules
□ I ntegrations with continuous integration (CI) tools in use (e.g., Jenkins, CircleCI, GitHub Actions)
□A
bility to automatically block builds based on policy violations
□ I ntegrations with version control system (VCS) in use (e.g., GitHub, GitLab, Bitbucket)
□ I ntegrations with alerting and ticketing systems (e.g., Jira, Slack)
□R
emediation guidance for policy violations along with relevant benchmarks
□P
rioritized alerts
□P
ull request ready auto-remediations
□A
bility to detect drift from version controlled state
Learn More
For high-level overviews showing how Prisma® Cloud addresses these requirements, please watch our
pre-recorded product demonstrations.
For technical details on performing individual functions within Prisma Cloud, please explore our
comprehensive product documentation.
To understand how Prisma Cloud can address your specific environment or to explore a function not
detailed above, please contact your sales or account representative, or request a hands-on trial.
3000 Tannery Way © 2021 Palo Alto Networks, Inc. Palo Alto Networks is a registered
Santa Clara, CA 95054 trademark of Palo Alto Networks. A list of our trademarks can be found at
https://www.paloaltonetworks.com/company/trademarks.html. All other
Main: +1.408.753.4000 marks mentioned herein may be trademarks of their respective companies.
Sales: +1.866.320.4788 prisma_ds_cloud-rfp-checklist_090821
Support: +1.866.898.9087
www.paloaltonetworks.com