Securing applications with AWS and Palo Alto Networks (AIM271)

Here is a detailed summary of the video transcription, formatted in Markdown with sections and single-level bullet points:

Securing Applications with AWS and Palo Alto Networks

Overview

• Palo Alto Networks is hosting a session on securing applications in the cloud using their network security platform.
• The session features three speakers discussing their cloud journey and experiences deploying Palo Alto Networks firewalls.

Palo Alto Networks Network Security Platform

• The platform consists of three main components:
  • Firewall form factors that can be deployed across different environments
  • AI-powered cloud-delivered security services
  • Unified management through Panorama or Palo Alto Networks' cloud manager
• The platform uses a two-phase approach to protect network traffic:
  1. Granular controls to decide what traffic to allow or deny
  2. Cloud-delivered security services to protect the allowed traffic

Cloud Firewall Form Factors

• Palo Alto Networks offers three variants of software firewalls for cloud environments:
  1. Self-managed VM-Series instances
  2. Palo Alto Networks-managed Cloud NGFW service
  3. AI Runtime Security instances for protecting AI applications and models

Why Firewalls in Public Cloud?

• To protect outbound malicious traffic, such as command and control or data exfiltration
• To provide a first layer of defense against unpatched vulnerabilities
• To protect east-west traffic between applications and workloads

Customer Experiences

Mark Zanek, Bristol-Myers Squibb

• Migrated to a cloud-first strategy, resulting in a large VPC with complex IAM policies
• Adopted AWS Transit Gateway to simplify network connectivity
• Chose Palo Alto Networks firewalls to provide security inspection across their cloud environment
• Benefits:
  • Simplified management through Panorama
  • Scalable and dynamic security with auto-scaling firewall groups
  • Consistent security policy enforcement across regions and clouds

John Wright, SS Technologies

• Manages over 300 pairs of Palo Alto Networks firewalls across private and public clouds
• Chose Palo Alto Networks Cloud NGFW service for rapid deployment and ease of management
  • No need to manage load balancers, scalability groups, or firewall instances
  • Centralized management through Panorama
• Benefits:
  • Rapid deployment of firewalls
  • Centralized management and policy enforcement
  • Access to Palo Alto Networks' advanced security features

Eric Ellis, Avalon Healthcare Solutions

• Healthcare company operating 100% in the cloud
• Implemented a layered security approach with Palo Alto Networks firewalls
• Transitioned from multiple VPC-specific firewalls to Palo Alto Networks Cloud NGFW
  • Reduced complexity and engineering resources
  • Improved security efficacy and manageability
  • Enabled scalability and high availability
• Benefits:
  • Simplified operations and reduced staffing needs
  • Improved security posture and threat protection
  • Ability to secure multiple AWS regions and environments

Conclusion

• Palo Alto Networks firewalls provide comprehensive security for both private and public cloud environments.
• The platform offers automation, centralized management, and cloud-delivered security services to protect against evolving threats.
• Palo Alto Networks firewalls are available in the AWS Marketplace, with 30-day free trials and test drives available.