Palo Alto Networks Redefines Application Security with the Industry's Most Comprehensive Prevention-First ASPM
Palo Alto Networks (NASDAQ: PANW) has announced Cortex Cloud Application Security Posture Management (ASPM), a new prevention-first security module designed to block security issues before they reach production environments. The solution promises to be 10 times faster, more efficient, and cost-effective than traditional approaches.
The new ASPM includes an open AppSec partner ecosystem featuring integration with leading vendors like Black Duck, Checkmarx, GitLab, HashiCorp, Semgrep, Snyk, and Veracode. This ecosystem allows organizations to consolidate security data from multiple third-party code scanners into a single platform.
Key features include proactive risk prevention, intelligent issue prioritization, and automated fixes across the application lifecycle. The solution is currently in early access and is expected to be generally available in the second half of 2025.
Palo Alto Networks (NASDAQ: PANW) ha presentato Cortex Cloud Application Security Posture Management (ASPM), un nuovo modulo di sicurezza orientato alla prevenzione, progettato per bloccare i problemi di sicurezza prima che raggiungano gli ambienti di produzione. La soluzione promette di essere 10 volte più veloce, efficiente e conveniente rispetto agli approcci tradizionali.
Il nuovo ASPM include un ecosistema aperto di partner AppSec con integrazioni con fornitori leader come Black Duck, Checkmarx, GitLab, HashiCorp, Semgrep, Snyk e Veracode. Questo ecosistema consente alle organizzazioni di consolidare i dati di sicurezza provenienti da molteplici scanner di codice di terze parti in un'unica piattaforma.
Le caratteristiche principali comprendono la prevenzione proattiva dei rischi, la prioritizzazione intelligente delle problematiche e le correzioni automatiche durante l'intero ciclo di vita dell'applicazione. La soluzione è attualmente in accesso anticipato e si prevede che sarà disponibile generalmente nella seconda metà del 2025.
Palo Alto Networks (NASDAQ: PANW) ha anunciado Cortex Cloud Application Security Posture Management (ASPM), un nuevo módulo de seguridad enfocado en la prevención, diseñado para bloquear problemas de seguridad antes de que lleguen a los entornos de producción. La solución promete ser 10 veces más rápido, eficiente y rentable que los enfoques tradicionales.
El nuevo ASPM incluye un ecosistema abierto de socios AppSec con integración con proveedores líderes como Black Duck, Checkmarx, GitLab, HashiCorp, Semgrep, Snyk y Veracode. Este ecosistema permite a las organizaciones consolidar datos de seguridad de múltiples escáneres de código de terceros en una sola plataforma.
Las características clave incluyen prevención proactiva de riesgos, priorización inteligente de problemas y correcciones automáticas a lo largo del ciclo de vida de la aplicación. La solución está actualmente en acceso anticipado y se espera que esté disponible de forma general en la segunda mitad de 2025.
Palo Alto Networks (NASDAQ: PANW)는 Cortex Cloud Application Security Posture Management (ASPM)를 발표했습니다. 이 새로운 예방 중심 보안 모듈은 보안 문제가 프로덕션 환경에 도달하기 전에 차단하도록 설계되었습니다. 이 솔루션은 기존 방식보다 10배 빠르고, 더 효율적이며 비용 효율적이라고 약속합니다.
새로운 ASPM은 Black Duck, Checkmarx, GitLab, HashiCorp, Semgrep, Snyk, Veracode와 같은 주요 공급업체와의 통합을 포함하는 개방형 AppSec 파트너 생태계를 갖추고 있습니다. 이 생태계는 조직이 여러 타사 코드 스캐너의 보안 데이터를 단일 플랫폼으로 통합할 수 있게 합니다.
주요 기능으로는 사전 위험 예방, 지능형 문제 우선순위 지정, 애플리케이션 수명 주기 전반에 걸친 자동 수정이 포함됩니다. 이 솔루션은 현재 초기 액세스 단계에 있으며 2025년 하반기 일반 제공될 예정입니다.
Palo Alto Networks (NASDAQ : PANW) a annoncé Cortex Cloud Application Security Posture Management (ASPM), un nouveau module de sécurité axé sur la prévention, conçu pour bloquer les problèmes de sécurité avant qu'ils n'atteignent les environnements de production. La solution promet d'être 10 fois plus rapide, efficace et économique que les approches traditionnelles.
Le nouvel ASPM comprend un écosystème ouvert de partenaires AppSec intégrant des fournisseurs de premier plan tels que Black Duck, Checkmarx, GitLab, HashiCorp, Semgrep, Snyk et Veracode. Cet écosystème permet aux organisations de consolider les données de sécurité provenant de plusieurs scanners de code tiers sur une plateforme unique.
Les principales fonctionnalités incluent la prévention proactive des risques, la priorisation intelligente des problèmes et les corrections automatisées tout au long du cycle de vie des applications. La solution est actuellement en accès anticipé et devrait être généralement disponible dans la seconde moitié de 2025.
Palo Alto Networks (NASDAQ: PANW) hat Cortex Cloud Application Security Posture Management (ASPM) angekündigt, ein neues, präventionsorientiertes Sicherheitsmodul, das Sicherheitsprobleme blockieren soll, bevor sie Produktionsumgebungen erreichen. Die Lösung verspricht, 10-mal schneller, effizienter und kostengünstiger als herkömmliche Ansätze zu sein.
Das neue ASPM umfasst ein offenes AppSec-Partner-Ökosystem mit Integrationen führender Anbieter wie Black Duck, Checkmarx, GitLab, HashiCorp, Semgrep, Snyk und Veracode. Dieses Ökosystem ermöglicht es Organisationen, Sicherheitsdaten von mehreren Drittanbieter-Code-Scannern in einer einzigen Plattform zu konsolidieren.
Zu den Hauptmerkmalen gehören proaktive Risikoprävention, intelligente Priorisierung von Problemen und automatisierte Behebungen über den gesamten Anwendungslebenszyklus hinweg. Die Lösung befindet sich derzeit im Early Access und soll in der zweiten Hälfte des Jahres 2025 allgemein verfügbar sein.
- Integration with leading security vendors through open AppSec partner ecosystem
- 10x faster, more efficient, and cost-effective security implementation
- Automated remediation capabilities across security and development teams
- Proactive security approach that prevents issues before reaching production
- None.
Insights
Palo Alto Networks' new prevention-first ASPM strengthens their cloud security portfolio and competitive position against pure-play ASPM vendors.
Palo Alto Networks' introduction of Cortex Cloud ASPM represents a significant enhancement to their cloud security portfolio. The prevention-first approach addresses a critical gap in the application security market by shifting security left and catching vulnerabilities before deployment rather than after—potentially saving companies substantial remediation costs.
What makes this announcement technically noteworthy is the open partner ecosystem that includes Black Duck, Checkmarx, GitLab, HashiCorp, Semgrep, Snyk and Veracode. This integration strategy tackles one of the biggest challenges in application security: fragmentation across multiple scanning tools. By consolidating findings from various scanners into a unified platform, Palo Alto Networks is positioning itself as an integration hub rather than forcing customers to abandon existing tools.
This move aligns perfectly with the accelerating pace of AI-assisted development, where code generation speed has dramatically outpaced traditional security processes. The timing is strategic as organizations struggle to secure applications developed with generative AI tools that can compress development cycles "from months to hours."
From a competitive standpoint, this positions Palo Alto Networks against pure-play ASPM vendors like Apiiro and Wiz while strengthening their full-stack cloud security narrative. By combining CNAPP, CDR, and now ASPM capabilities under the Cortex Cloud umbrella, they're creating higher switching costs for customers and potentially increasing average contract values.
The early access announcement with general availability expected in H2 2025 suggests the product is still maturing, but gives the company runway to refine capabilities based on early customer feedback.
- Cortex Cloud expands the platform with a prevention-first ASPM to automatically stop risks from reaching production
- New open AppSec partner ecosystem unifies all data from industry-leading AppSec providers on a single platform for unprecedented cross-vendor visibility
In addition, Cortex Cloud ASPM includes an open AppSec partner ecosystem, enabling organizations to consolidate data from their preferred third-party code scanners into one, centralized platform for comprehensive visibility. Combining native ASPM data with insights from third-party vendors enables security teams to dramatically improve their security posture, all without forcing developers to change tools. Palo Alto Networks AppSec partners feature leading vendors such as Black Duck, Checkmarx, GitLab, HashiCorp, Semgrep, Snyk and Veracode.
This release builds on the introduction of Cortex Cloud, which merged the company's industry-leading cloud native application protection platform (CNAPP) and best-in-class cloud detection and response (CDR) capabilities for real-time cloud security. As part of the broader unified Cortex platform, customers can benefit from AI-ready data spanning code, cloud, and SOC to transform end-to-end security operations.
Sarit Tager, VP of Product Management, Palo Alto Networks
"As AI-generated code compresses application development from months to hours, security must evolve to protect the speed of innovation. Equipped with an industry-leading CNAPP, best-in-class CDR and now prevention-first ASPM, Cortex Cloud delivers the most comprehensive approach to cloud security and automatically stops risks before they reach production with end-to-end visibility across the entire application lifecycle."
Cortex Cloud ASPM fully integrates and significantly enhances Palo Alto Networks existing best-in-class application security offerings already available in Cortex Cloud. Key benefits include:
- Prevent risks, don't chase them: Proactively stop security issues from reaching production, using full application and business context to enforce targeted guardrails without slowing down production.
- Prioritize real issues, not false alarms: Pinpoint critical, exploitable risks without forcing developers to change tools by correlating findings from an open ecosystem of native and third-party scanners with complete code, cloud, runtime and business context.
- Automate fixes, skip the backlog: Eliminate manual remediation across security and development teams using industry-leading automation at every stage of the application lifecycle.
Katie Norton, Research Manager, DevSecOps and Software Supply Chain Security, IDC
"Application risks reaching production remain a persistent challenge for security teams and continue to leave organizations exposed. As development speed accelerates, the challenge is not just identifying vulnerabilities but focusing on those that pose real risk. By connecting application security with the live threat landscape, Palo Alto Networks' Cortex Cloud ASPM can help organizations to stop threats faster and operate more efficiently."
Cortex Cloud ASPM is currently in early access and expected to be generally available in the second half of 2025. To learn more about the Cortex platform and how Palo Alto Networks is transforming cybersecurity, read our blog.
Follow Palo Alto Networks on X (formerly Twitter), LinkedIn, Facebook and Instagram.
About Palo Alto Networks
As the global AI and cybersecurity leader, Palo Alto Networks (NASDAQ: PANW) is dedicated to protecting our digital way of life via continuous innovation. Trusted by more than 70,000 organizations worldwide, we provide comprehensive AI-powered security solutions across network, cloud, security operations and AI, enhanced by the expertise and threat intelligence of Unit 42. Our focus on platformization allows enterprises to streamline security at scale, ensuring protection fuels innovation. Explore more at www.paloaltonetworks.com.
Palo Alto Networks, the Palo Alto Networks logo, Cortex, Cortex Cloud and Unit 42 are trademarks of Palo Alto Networks, Inc. in
View original content to download multimedia:https://www.prnewswire.com/news-releases/palo-alto-networks-redefines-application-security-with-the-industrys-most-comprehensive-prevention-first-aspm-302521901.html
SOURCE Palo Alto Networks, Inc.
FAQ
What is Palo Alto Networks' new Cortex Cloud ASPM and when will it be available?
Which security vendors are partnering with PANW's new AppSec ecosystem?
How much more efficient is PANW's new ASPM solution compared to traditional approaches?
What are the key benefits of Palo Alto Networks' Cortex Cloud ASPM?
