Palo Alto Networks, a cybersecurity solutions provider, has enhanced its Prisma Cloud offering by introducing the CI/CD Security module, which is an integral part of its code-to-cloud capabilities.

Continuous Integration and Continuous Delivery (CI/CD) provide an integrated software delivery pipeline security, addressing the evolving landscape of attack surfaces. According to Palo Alto Networks, the industry has turned to Cloud Native Application Protection Platforms (CNAPPs) to consolidate various security capabilities and safeguard applications from code to the cloud.

“The integration of Cider’s capabilities secures the CI/CD environment and empowers Prisma Cloud customers to analyze individual tools, visualize their interactions with applications and each other, and identify as well as remediate risks,” stated Ankur Shah, Senior Vice President of Prisma Cloud at Palo Alto Networks.

ePLDT taps Palo Alto Networks for cloud security
Palo Alto Networks bolsters SaaS applications security

CI/CD Security is the 11th module integrated into Palo Alto Networks’ cloud security platform. This equips Prisma Cloud to seamlessly safeguard the entire application lifecycle — from code development through deployment to runtime. The new module derives its capabilities from Cider Security, assisting organizations in “shifting security left” to preempt threats and vulnerabilities before applications are deployed into production environments.

Ensuring the delivery pipeline’s security

According to Gartner, securing the software delivery pipeline is as crucial as ensuring the security of the delivered software. The CI/CD Security module facilitates enhanced collaboration between DevOps and security teams, thereby enhancing security outcomes throughout the application lifecycle. By incorporating CI/CD Security into the Prisma Cloud platform, which already encompasses Secrets Scanning, Software Composition Analysis, and Infrastructure as Code Security, organizations can optimize security and risk prevention across the entire software delivery pipeline. This achieves holistic and comprehensive security oversight, a feat unattainable with individual, isolated solutions.

“The only way to prevent insecure code from reaching production is by scanning every code artifact and dependency, thereby ensuring the delivery pipeline’s robust protection,” explained Daniel Krivelevich, CTO of Application Security at Prisma Cloud, Palo Alto Networks, and former co-founder of Cider Security. “Integrating Cider’s technology with Prisma Cloud strengthens the platform’s ability to secure organizations’ complete engineering ecosystem, ensuring that only intended components are pushed to production.”