Palo Alto Networks has introduced Cortex Cloud Application Security Posture Management (ASPM), a prevention-focused module designed to stop security issues before cloud and AI applications are deployed. The company said the platform enables security leaders and developers to address risks earlier, making the process faster, more efficient, and cost-effective.
Cortex Cloud ASPM features an open application security (AppSec) partner ecosystem, allowing organizations to combine data from third-party code scanners with Palo Alto Networks’ native tools in one platform. This approach provides broader visibility without requiring developers to change their preferred tools. Partners include Black Duck, Checkmarx, GitLab, HashiCorp, Semgrep, Snyk, and Veracode.
The launch builds on Cortex Cloud, which integrates the company’s cloud native application protection platform (CNAPP) and cloud detection and response (CDR) tools for real-time cloud security. By unifying these capabilities, the platform offers AI-ready data across code, cloud, and security operations centers.
“Equipped with an industry-leading CNAPP, best-in-class CDR and now prevention-first ASPM, Cortex Cloud delivers the most comprehensive approach to cloud security and automatically stops risks before they reach production with end-to-end visibility across the entire application lifecycle,” said Sarit Tager, VP of Product Management at Palo Alto Networks.
According to the company, the new ASPM helps teams prevent risks before they reach production, prioritize critical vulnerabilities over false alarms, and automate fixes to reduce manual work.
“As development speed accelerates, the challenge is not just identifying vulnerabilities but focusing on those that pose real risk,” said Katie Norton, research manager for DevSecOps and software supply chain security at IDC. “By connecting application security with the live threat landscape, Palo Alto Networks’ Cortex Cloud ASPM can help organizations to stop threats faster and operate more efficiently.”
Cortex Cloud ASPM is in early access and will be generally available in the second half of 2025.