Start with Identity
CIEM

Prisma Cloud

Founded 2018Santa Clara, California, USAPublic (Palo Alto Networks)Score 4.3/5Evaluated 2026-07-03Website ↗

Capability scores

Methodology →
Authentication
3.0
SSO & Federation
3.0
Authorization
4.5
Lifecycle & Provisioning
2.5
MFA & Passwordless
2.5
Governance & Audit
4.5
Developer Experience
4.0
Deployment Flexibility
3.5
Pricing Transparency
2.5
Support & Ecosystem
4.0

Scored 0–5 against a published rubric. Independent analysis, no vendor sponsorship.

Overview

Prisma Cloud is Palo Alto Networks' cloud-native application protection platform, with CIEM as one module alongside posture management, workload protection, and code security. It appeals to enterprises consolidating cloud security under one vendor.

What it is good at

CIEM in Prisma Cloud discovers effective permissions across clouds, flags over-privileged and unused access, and enforces least privilege, correlated with the platform's misconfiguration and workload risk. The breadth is the draw: identity risk sits next to CSPM, CWPP, and application security in one console.

Where it falls short

As part of a large suite, its CIEM depth and workflows can trail dedicated specialists, and the platform is a significant enterprise commitment in cost and scope.

Pricing

Credit-based, quote-driven enterprise pricing across the Prisma Cloud platform.

Best for, and who should look elsewhere

Choose it to get CIEM within a broad CNAPP, especially if you run Palo Alto. Look elsewhere for a focused CIEM or predictable point pricing.

Bottom line

A capable CIEM inside one of the most complete cloud security platforms, best for consolidation.

By SWI Community Team · Last evaluated 2026-07-03

Independent, community-driven analysis. No vendor sponsorship. Compiled from public research and community input and verified on a best-effort basis, so details may be incomplete or out of date. Scores are opinions, not advice. Trademarks belong to their owners; mention does not imply affiliation or endorsement. See the full disclaimer, or send corrections to [email protected].