Overview
The Prisma Cloud Security as Code service allows you to integrate security into your DevOps workflow, automating the detection and correction of code issues on AWS to save time and reduce risk.
It includes a technical desk to understand requirements and review compliance, tenant activation and configuration of customer-defined users and roles, SSO integration, and activation of the Cloud Code Application Security module (IaC, SCA, Secret Scan, SAST). Onboarding of up to three code repositories and CI/CD pipelines supported by Prisma Cloud, installation of plugins in development environments such as VS Code or IntelliJ, and creation of custom policies in YAML for IaC in the Build stage.
In addition, Drift Detection is configured, custom dashboards, and security scan results are reviewed in IaC, SCA, Secret Scan and Drift Detection, with delivery of an As-built document and up to two sessions to resolve technical and operational issues.
- Technical touchpoints are established for the understanding of requirements, review of applicable compliance, and organization of public cloud accounts.
- The Prisma Cloud tenant is activated.
- Configuration of administration users and roles in Prisma Cloud to be used. RBAC is defined by the customer.
- SSO integration is done.
- Activation of the Cloud Code Application Security module in Prisma Cloud: IaC, SCA, Secret Scan, SAST.
- Onboarding of up to three (3) code repositories supported by Prisma Cloud.
- Integration of up to three (3) CICD pipelines supported by Prisma Cloud.
- Installation of the Prisma Cloud Plugin in up to three (3) development environments: VS Code or IntelliJ.
- Construction of up to five (5) custom policies in YAML for IaC in Build stage, defined by the client.
- Accompaniment in the remediation of up to five (5) IaC configuration non-compliances.
- Configuration of Enforcement Rule thresholds.
- Activation of Drift Detection in Prisma Cloud.
- Configuration of up to two (2) custom dashboards in Prisma Cloud for Code Security.
- Review in Prisma Cloud console of surveyed logs, IaC, SCA and Secret Scan results, Drift Detection scan results and SBOM and Supply Chain dashboards.
- Construction and presentation of the As-built document of the installed environment.
- Up to two (2) sessions of knowledge transfer of the tool will be carried out.
- Up to two (2) sessions of maximum two (2) hours each will be contemplated to solve technical or operative inconveniences of the implementation.
Highlights
- Security Integration in DevOps: automate the detection and correction of security issues directly in your workflow, with support for IaC, SCA, Secret Scan and SAST, reducing risks from the development stage.
- Onboarding and Custom Configuration: includes integration of up to three code repositories and CI/CD pipelines, installation of plugins in VS Code or IntelliJ, and creation of IaC policies in YAML to enforce security at the Build stage.
- Real-Time Visibility and Control: configure customized dashboards, review Drift Detection and Supply Chain logs and results, with knowledge transfer and technical support to optimize the security of your environment.
Details
Pricing
Custom pricing options
Legal
Content disclaimer
Support
Vendor support
Our Service Level Agreement (SLA) guarantees 24/7* support to ensure uninterrupted assistance for our clients. We commit to a first response time of under 15 minutes, providing prompt attention to your needs. Our SLA includes vendor support to address issues requiring external expertise, ensuring seamless problem resolution. Clients can reach us anytime through Xelco, telephone, email, or live chat, offering flexible communication options tailored to their preferences.
- Restrictions may apply.
- Contact support for more information at www.netdatanetworks.com/en/contact-us or via email info@netdatanetworks.com
Software associated with this service
