Empowering Developers and Security Teams with Prisma Cloud and Terraform

For cloud and development teams struggling with securing continuous rapid deployment (CI/CD) and needing faster security workflows, Prisma Cloud can help with cloud-native integrations to shift security left and directly benefit developers.

At Palo Alto Networks, we know developers want to stay in their own tools. Using Prisma Cloud and Terraform together means developers can confidently secure their entire cloud stack without ever leaving their own development tools or workflows. And what’s even better, organizations can ensure that all deployed developer code is truly secure and conforming to security team standards.

With Prisma Cloud, developers use a single security framework and the same policies that the security team uses for a unified, friction-free approach. By enforcing unified policy-as-code early in the lifecycle, both developer and security teams are aligned to a streamlined DevSecOps application delivery workflow. This allows every adopting organization to experience the full benefits of Terraform automation and security at modern cloud scale.

Streamline Your Security and Boost Productivity with Prisma Cloud and Terraform

When organizations empower developers to automate secure provisioning of cloud infrastructure using code instead of manual processes, developers can then build, change, and manage infrastructure in safe, consistent, and repeatable ways that effectively scale using modern cloud.

Organizations can save significant time and lower costs automating secure cloud provisioning with Terraform and Prisma Cloud. Having integrated real-time security within CI/CD pipelines to identify and fix misconfigurations in Terraform, infrastructure as code (IaC) saves a lot of time and money just by eliminating the need to chase down noisy alerts. Faster and earlier remediations also means significantly decreasing the number of real and costly high-severity events from happening, which saves more time and money. Similarly, reductions in noncompliant resources early in the lifecycle greatly reduces later compliance work and results in fewer failed audits for organizations.

Stay in Terraform to Save Time, Accelerate DevSecOps, and Speed Releases

Developers can identify and fix misconfigurations in Terraform infrastructure as code right inside of whichever Terraform edition they may be using. Prisma Cloud natively allows developers to scan, identify, and get alerts directly in Terraform, so remediating application vulnerabilities, exposed secrets, and license noncompliance is an easy task. Developers don’t have to stop innovating to meet with security teams.

Leveraging streamlined policy controls embedded by Prisma Cloud across the lifecycle, development teams can innovate and remediate in their own tools to minimize risk from missed connections and maximize release velocity.

Extend Prisma Cloud IaC Security with Checkov for Unmatched Policy Quality

Using Prisma Cloud IaC Security also gives cloud operations teams a distinct advantage since it is built on the popular Checkov code-scanning tool.

Checkov by Prisma Cloud is a trusted open-source infrastructure-as-code scanning tool with millions of downloads. In community-driven Checkov, organizations can find hundreds of predefined policies to check for common misconfiguration issues, as well as support for custom policy creation and policy management.

These are quality policy contributions by industry practitioners that can’t be found in other solutions. Organizations can take advantage and extend Checkov community-backed policies to full Code to Cloud™ coverage when using the unified Prisma Cloud policy framework.

Modernizing with DevSecOps: Prisma Cloud and HashiCorp Terraform Are Better Together

When securing Terraform deployments with Prisma Cloud, developers are able to quickly provision cloud resources while complying with the security needs of the organization. This a win-win for both developer and security teams and a foundation for successful DevSecOps.

Prisma Cloud by Palo Alto Networks is verified to work with Terraform and also a leading HashiCorp technology partner. Together, Prisma Cloud and Terraform can save organizations significant time and money while also keeping developers productive and happy in their own tools.

Please review the following Terraform resources to understand the developer-specific benefits of Prisma Cloud, which also enhance operations and productivity for security teams and the entire organization.

• Datasheet: 8 Prisma Cloud Benefits for Developers Using Terraform
• Guide: Streamline Security and Boost Productivity with Terraform and Prisma Cloud

Also, if you want to gain practical experience with Prisma Cloud and Terraform, be sure to join our Terraform hands-on workshop series with HashiCorp and AWS.