← CASB / Cloud App SecurityPalo Alto Prisma SaaS (CASB)

StrongStrongStrongStrong

4.5

Vendors › CASB / Cloud App Security › Palo Alto Prisma SaaS (CASB)

Palo Alto Prisma SaaS (CASB)

Name: Palo Alto Prisma SaaS (CASB)
Rating: 4.5 (750 reviews)
Author: Palo Alto Networks

Palo Alto Networks

Founded 2005·US·Public

4.5

Combined score

4.5150

Gartner

4.5600

⚠

Security incident on record — CVE-2024-3400 (GlobalProtect zero-day, April 2024) — affected PAN-OS firewalls not Prisma SaaS; patched promptly

▪ Editorial verdict

Palo Alto Prisma SaaS delivers the deepest inline DLP of any CASB in the market, drawing on the NGFW heritage of full content inspection that Palo Alto has refined over 15 years. For organisations already running Palo Alto NGFWs and Cortex XDR, the unified policy context across network firewall, endpoint, and cloud application access is a genuine operational advantage that reduces the number of separate security policies administrators need to manage.

The deployment complexity and admin learning curve are consistently noted as the highest in the CASB category. The Gartner SSE positioning as a Challenger rather than Leader reflects both the capability strengths and the execution gaps accurately.

The verdict: Palo Alto Prisma SaaS is right for enterprises already in the Palo Alto ecosystem wanting CASB with the deepest inline DLP integrated with their existing NGFW investment. Organisations without Palo Alto infrastructure should evaluate Netskope or Zscaler.

Last reviewed: May 2026

4.5150 reviews

Gartner

4.5600 reviews

Gartner MQ: Leader (SSE MQ 2025)

CASB / Cloud App Security assessment

PROTECTIONStrong

Shadow IT visibility

4 / 5

Data protection

5 / 5

OPERATIONSStrong

API & app coverage

4 / 5

Policy enforcement

5 / 5

ANALYTICSStrong

Cloud analytics

4 / 5

TRUST & ECOSYSTEMStrong

Compliance reporting

4 / 5

Strongest: Data protection

Watch out for: Compliance reporting

Strengths & limitations

Strengths

●Single-vendor SASE combining NGFW heritage with CASB in one platform

●Broadest inline inspection and DLP capabilities of any CASB vendor

●Deep ecosystem integration with Cortex XDR and Prisma Cloud

Watch out for

●Most expensive CASB/SSE platform — per-feature licensing adds up

●Steep admin learning curve; requires Palo Alto expertise

●Performance concerns when all inspection features enabled simultaneously

Best for

Enterprises consolidating SD-WAN, SSE, and CASB on a single Palo Alto Networks platform.

Not suitable for: SMBs and organisations not already invested in Palo Alto infrastructure.

Compliance coverage

●Essential Eight

●AU Privacy Act

●SOC 2

●HIPAA

●NIST CSF

●PCI-DSS

●CMMC

●GDPR

●NIS2

●DORA

●ISO 27001

●CIS Benchmarks

Switching intelligence

Switching from

Common migration paths based on review data

Point CASB tools
Zscaler (ecosystem consolidation)

Also considering

Vendors typically shortlisted alongside

Also in our database

Palo Alto Networks also appears in:

Cloud Security Posture Management →EDR / XDR →Vulnerability Management →Firewall / UTM / Network Security →ZTNA / Zero Trust Network Access →SOAR →

← Back to CASB / Cloud App Security Compare with other CASB / Cloud App Security vendors →

Quick facts

Pricing modelper user/month; module licensing

Pricing range$12-20/user/month

Free trialYes — 30 days

Min seats250

Deployment time2-4 weeks

Complexity4 / 5

Pricing transparency2 / 5

AU presenceYes

IRAP assessedYes

Open sourceProprietary

Deployment

ModelsSaaS

OS supportWindows, macOS, Linux, iOS, Android

CloudAWS, Azure, GCP

Support24/7 Phone, Email, Dedicated CSM, Professional Services

Data residencyUS, EU, AU, Global

Company

Palo Alto Networks

Founded 2005 · 15,000+ employees · Public

HQ: US

$8B+ revenue FY2024

Certifications

FedRAMP High, SOC 2 Type II, ISO 27001, PCI-DSS, IRAP PROTECTED

Integrations

Cortex XDRNGFWPrisma CloudOktaCrowdStrikeSplunkServiceNowAzure AD