Palo Alto Networks

Integrated security suite offering network, cloud, and endpoint protection against advanced cyber threats.

Product categories

Next-generation firewall (NGFW): Combines traditional firewall capabilities with advanced features like intrusion prevention and application awareness for cloud network security.
Cloud access security broker (CASB): Provides visibility and control over cloud service usage, enforcing security policies and compliance between users and cloud applications.
Cloud security posture management (CSPM): Continuously monitors cloud infrastructures for risks and misconfigurations, ensuring adherence to security best practices and compliance requirements.
Extended detection and response (XDR): Unifies security data across multiple layers to improve the speed and accuracy of threat detection and incident response in cloud environments.
Zero trust network access (ZTNA): Implements a "never trust, always verify" approach to network access, providing secure, granular access control for users and devices in cloud environments.
Cloud-native application protection platform (CNAPP): Provides integrated security and compliance tools to protect cloud-native applications across development and runtime environments.
Cloud workload protection platform (CWPP): Protects cloud workloads in multi-cloud and hybrid environments, offering tailored security for various cloud deployment models.
Secure access service edge (SASE): Combines network security with WAN capabilities to provide secure and direct access to cloud services and applications from any location.
Data loss prevention (DLP): Detects and prevents unauthorized transmission of sensitive data across cloud environments, enforcing data protection policies to mitigate data loss risks.
Container security: Protects containerized applications and infrastructure by securing the entire container lifecycle, from build to runtime, in cloud environments.

Supported cloud providers

Open-source projects

Checkov: Static analysis tool scanning IaC frameworks like Terraform and Kubernetes to identify security misconfigurations.

Research

Unit 42: Palo Alto Networks' research team analyzing advanced cyber threats and developing defense strategies.

Acquisitions

Talon Cyber Security acquired on November 6, 2023 for $625M: Secure enterprise browser solution protecting organizations from web-based threats by focusing on endpoint security.
Dig Security acquired on October 31, 2023 for $350M: Cloud data security solution specializing in real-time discovery, protection, and threat detection across multi-cloud environments.
Zycada acquired on April 1, 2023: Web application acceleration and content delivery optimization solution improving end-user experiences through faster network performance.
Cider Security acquired on November 17, 2022 for $195M: CI/CD security platform identifying and mitigating risks in software delivery pipelines to prevent vulnerabilities from reaching production.
Bridgecrew acquired on February 16, 2021 for $156M: DevSecOps platform integrating policy enforcement and compliance checks into development pipelines for automated cloud infrastructure security.
Sinefa acquired on November 24, 2020 for $44M: Network visibility and control platform enabling enterprises to optimize performance, enhance user experiences, and troubleshoot issues in real-time.
Expanse acquired on November 11, 2020 for $800M: Attack surface management solution enabling organizations to discover, monitor, and secure internet-facing assets and reduce digital risk exposure.
Crypsis Group acquired on August 24, 2020 for $265M: Digital forensics, incident response, and cyber risk management services helping businesses handle and recover from cyber incidents.
CloudGenix acquired on March 31, 2020 for $420M: SD-WAN solution optimizing enterprise network performance, connectivity, and security across distributed cloud and on-premises environments.
Aporeto acquired on November 25, 2019 for $150M: Identity-based security platform for cloud-native apps, enabling micro-segmentation and access control for workloads in multicloud environments.
Zingbox acquired on September 4, 2019: IoT security solution providing real-time monitoring, threat detection, and automated responses to protect connected devices in enterprise environments.
Twistlock acquired on May 29, 2019 for $378M: Container and cloud-native security platform providing vulnerability management, runtime protection, and compliance for modern applications.
PureSec acquired on May 29, 2019: Serverless security platform offering real-time threat detection, vulnerability management, and automated protection for cloud-native applications.
Demisto acquired on February 19, 2019 for $474M: SOAR platform streamlining incident response and automating security workflows for improved threat management and team efficiency.
RedLock acquired on October 3, 2018 for $173M: Cloud security and compliance platform providing visibility, monitoring, and automated response capabilities for public cloud environments.
SECDO acquired on April 10, 2018 for $83M: Endpoint detection and response (EDR) solution offering advanced threat detection, automated investigation, and rapid incident response capabilities.
Evident.io acquired on March 14, 2018 for $293M: Cloud infrastructure security platform providing continuous monitoring, risk assessment, and automated compliance reporting for public clouds.
LightCyber acquired on February 28, 2017 for $105M: Behavioral attack detection platform using advanced analytics to identify and respond to network-based threats in real-time.
Cyvera acquired on March 24, 2014 for $178M: Endpoint security platform preventing advanced and zero-day attacks by blocking threats at the endpoint level using innovative protection techniques.