Palo Alto seeks to redefine application security

Palo Alto Networks has launched a solution aimed at redefining application security by intelligently blocking security issues before they can reach production.

The company says the solution, Cortex Cloud Application Security Posture Management (APSM), is designed to allow developers and security teams to fix security risks before cloud and AI applications have been deployed.

Cortex Cloud APSM includes an open AppSec partner ecosystem to enable organisations to consolidate data from their deployed third-party code scanners into a single platform to enhance visibility. It currently supports products from vendors including Black Duck, Checkmarx, GitLab, HashiCorp, Semgrep, Snyk and Veracode.

IDC Research Manager for DevSpecOps and Software Supply Chain Security Katie Norton said application risk reaching production remains a persistent challenge for security teams and a source of risk for organisations.

“As development speed accelerates, the challenge is not just identifying vulnerabilities but focusing on those that pose real risk,” she said. “By connecting application security with the live threat landscape, Palo Alto Networks’ Cortex Cloud ASPM can help organisations to stop threats faster and operate more efficiently.”

Palo Alto Networks VP of Product Management Sarit Tager added that security capabilities must evolve to protect the speed of innovation as AI drastically increases the pace of application development.

“Equipped with an industry-leading CNAPP, best-in-class CDR and now prevention-first ASPM, Cortex Cloud delivers the most comprehensive approach to cloud security and automatically stops risks before they reach production with end-to-end visibility across the entire application lifecycle,” she said.

Image credit: iStock.com/da-kuk