Try our new research platform with insights from 80,000+ expert users

AWS Security Hub vs Prisma Cloud by Palo Alto Networks comparison

Amazon Web Services (AWS) and Palo Alto Networks are both solutions in the Cloud Security Posture Management (CSPM) category. Amazon Web Services (AWS) is ranked #12 with an average rating of 7.7, while Palo Alto Networks is ranked #2 with an average rating of 8.5. Amazon Web Services (AWS) holds a 4.6% mindshare in CSPM, compared to Palo Alto Networks’s 14.8% mindshare. Additionally, 87% of Amazon Web Services (AWS) users are willing to recommend the solution, compared to 98% of Palo Alto Networks users who would recommend it.
AWS Security Hub
Read 22 AWS Security Hub reviews
  • 3,684 Views
  • 3,162 Comparison Views
87% willing to recommend
Prisma Cloud by Palo Alto N...
Read 108 Prisma Cloud by Palo Alto Networks reviews
  • 17,006 Views
  • 10,310 Comparison Views
98% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Mar 25, 2025

Prisma Cloud by Palo Alto Networks and AWS Security Hub compete in the domain of cloud security solutions. Based on the data comparisons, Prisma Cloud seems to have an upper hand due to its comprehensive security features.

Features: Prisma Cloud stands out with dynamic workload identity creation, an application dependency map for compliance, and seamless integration with AWS products. Its automated forensics and real-time container scanning add significant value. AWS Security Hub is notable for its tight integration with AWS services and effective fault detection.

Room for Improvement: Prisma Cloud could improve by offering more transparent security checks, reducing manual integration configurations, and better cost structures. Enhancements in user interfaces and customizable reporting are also needed. AWS Security Hub could improve its multi-cloud capabilities, add compliance checks, incorporate real-time scanning, and offer more customization for alerts and dashboards.

Ease of Deployment and Customer Service: Both Prisma Cloud and AWS Security Hub provide robust support across hybrid, public, and private clouds. However, AWS Security Hub is less flexible for on-premises deployments. Prisma Cloud users report mixed customer service experiences, while AWS Security Hub has a mature support framework, with some room for faster interactions and adaptability.

Pricing and ROI: Although Prisma Cloud is often considered expensive, its robust security features and flexibility in licensing models justify the cost. Users acknowledge the high return on investment. AWS Security Hub is seen as cost-effective, aligning with financial expectations, though there is a demand for more flexible purchasing options and broader multi-cloud support.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed AWS Security Hub vs. Prisma Cloud by Palo Alto Networks Report (Updated: March 2025).
Buyer's Guide
AWS Security Hub vs. Prisma Cloud by Palo Alto Networks
March 2025
Download the complete report
Helped 842,767 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

AWS Security Hub
Ranking in Cloud Security Posture Management (CSPM)
12th
Average Rating
7.6
Reviews Sentiment
7.2
Number of Reviews
22
Ranking in other categories
Security Orchestration Automation and Response (SOAR) (5th)
Prisma Cloud by Palo Alto N...
Ranking in Cloud Security Posture Management (CSPM)
2nd
Average Rating
8.4
Reviews Sentiment
7.3
Number of Reviews
108
Ranking in other categories
Web Application Firewall (WAF) (6th), Container Security (1st), Cloud-Native Application Protection Platforms (CNAPP) (1st), Data Security Posture Management (DSPM) (1st)
 

Mindshare comparison

As of April 2025, in the Cloud Security Posture Management (CSPM) category, the mindshare of AWS Security Hub is 4.6%, down from 5.5% compared to the previous year. The mindshare of Prisma Cloud by Palo Alto Networks is 14.8%, down from 18.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Cloud Security Posture Management (CSPM)
 

Featured Reviews

MuhammadAzhar Khan - PeerSpot reviewer
Offers best practice recommendations and supports various compliance standards
Security Hub provides insightful information about what is running and where there might be weaknesses. It offers best practice recommendations and supports various compliance standards such as ISO and PCI DSS. Enabling these compliance checks helps identify non-compliant services and suggests steps to achieve compliance. The main advantage is providing information and compliance insights rather than prevention.
Read full review
Mohammad Qaw - PeerSpot reviewer
It gives you one console to see all of your assets, review their configurations, and build your processes
Most customers use Prisma Cloud for visibility and compliance. Prisma has so many features, but many organizations do not use them. They primarily use the visibility part to connect all their cloud accounts and hosts for visibility to see if they are missing any security controls or if they have any misconfigurations. You can connect it to cloud environments such as Azure, AWS, Oracle Cloud, Alibaba, etc., or to an on-prem data center. Prisma Cloud gives you so many options to automate processes related to your daily operations. When it comes to cybersecurity, you can automate things with their existing APIs. They also have out-of-the-box integrations with many solutions. I have not seen any limitations. Everything is customizable. You can do whatever you want, defining the reporting and custom use cases. They recently updated the UI, so it's much better than before.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most beneficial aspect of Security Hub is its proactive capability, allowing us to identify potential security issues before they escalate."
"The best feature of AWS Security Hub is that you can get compliance or your cloud's current security posture."
"Currently, our organization utilizes AWS for various purposes, including SaaS (Software as a Service), PaaS (Platform as a Service), and hosting applications in the cloud. We develop our applications and use AWS services as a platform for basic functions and secondary development needs. Additionally, we rely on PaaS for accounting services. Approximately, 50% of our applications are hosted in the cloud environment, making it a significant part of our current setup."
"Very good at detection and providing real-time alerts."
"The platform has valuable features for security."
"Cloudposse is a valuable feature as it guarantees my security."
"The most valuable features of the solution are the scanning of all the cloud environments and most of the compliances available in the cloud."
"The solution shows us our compliance score."
More AWS Security Hub pros
"It has helped us understand the dynamic topology of our containers, and manage security through the application of policies that our pipelines apply straight from Git."
"This positively affected our confidence in your security and compliance. No matter how complex the environment is, the the seamless integration from the top layer itself give us the immediate visibility on the number of services."
"I like Palo Alto's threat protection and Wi-Fi coverage. It has advanced features like DNS security and sandboxing. The automation capabilities are excellent."
"Comprehensive and valuable for providing security. It is scalable, its stability is impressive, and setting it up is straightforward."
"The UI is very good. We get all the things within a single UI."
"The application visibility is amazing. For example, sometimes we don't know what a particular custom port is for and what is running on it. The visibility enables us to identify applications, what the protocol is, and what service is behind it. Within Azure, it is doing a great job of providing visibility. We know exactly what is passing through our network. If there is an issue of any sort we are able to quickly detect it and fix the problem."
"What I found most valuable in Prisma Cloud by Palo Alto Networks is the VAS, such as the web application and API security. I feel that VAS adds a lot of value, mainly because it gives visibility through the application layer and threat detection features."
"We are provided with a single tool to protect all of our cloud resources and applications without having to manage and reconcile compliance reports."
More Prisma Cloud by Palo Alto Networks pros
 

Cons

"It is not flexible for multi-cloud environments."
"There is room for improvement in implementing AI capabilities. It would be beneficial for Security Hub to implement preventative measures and to directly apply recommendations instead of just suggesting them."
"The solution lacks self-sufficiency."
"Many findings are too generic or irrelevant to the environment, which can lead to false positives."
"AWS Security Hub's configuration and integration are areas where it lacks and needs to improve."
"The solution will only give you insight if you have configure rule enabled. It should work more like Prisma Cloud and Dome9 which have a better approach."
"Adding SIEM features would be beneficial because of the limited customization of AWS Security Hub."
"I would like a more fine-grained capability for creating custom rules and a more user-friendly experience programmatically in writing queries and configuring custom security rules, making it quicker and easier."
More AWS Security Hub cons
"Having auto Defender upgrades so that we do not have to upgrade Defender manually would be helpful."
"The licensing is a bit confusing."
"I think Prisma Cloud could improve its preventive governance policy and CWP run time modules."
"They are missing some compatibility details in their documentation."
"The Palo Alto support needs to improve."
"It would be ideal if they could somehow reduce the deployment time."
"A couple of exporting functionalities should be more user-friendly because if I want to export something, I can get a lot of data visible to that particular CSV."
"Runecast gave us more visibility into VMware's private cloud. We have more environments there, but Prisma's lack of visibility into the private cloud was a downside—there weren't many."
More Prisma Cloud by Palo Alto Networks cons
 

Pricing and Cost Advice

"AWS Security Hub is not an expensive tool. I would consider it to be a cheap solution. AWS Security Hub follows the PAYG pricing model, meaning you will have to pay for whatever you use."
"Security Hub is not an expensive solution."
"The cost is based on the number of compliances, core checks, and services required, and for more than 10,000 recommendations, the charge is just one dollar."
"The price of the solution is not very competitive but it is reasonable."
"The price of AWS Security Hub is average compared to other solutions."
"AWS Security Hub's pricing is pretty reasonable."
"There are multiple subscription models, like yearly, monthly, and packaged."
"The pricing is fine. It is not an expensive tool."
"The pricing is competitive; for the most part, the security firms have similar prices."
"Prisma Cloud licensing works on credits."
"Prisma Cloud is remarkably expensive."
"The pricing is competitive. From what I have seen in the past, it is on par with the others."
"The cost depends on the pricing model. Compared to other solutions, the cost isn't that bad."
"Prisma Cloud is cost-efficient, but the credits are on the higher end."
"The product is very expensive, but the cost is a necessary evil; I don't know how we could have any kind of cloud presence without this type of monitoring. The pricing is calculated by module and resource usage. Ultimately, it saves us money in the amount of time we would spend uncovering what it uncovers, and we might not make the required discoveries without it anyway. Prisma offers incredible value, though I wish it were cheaper."
"Although the cost can be high, the value is worth the price tag."
More Prisma Cloud by Palo Alto Networks pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Cloud Security Posture Management (CSPM) solutions are best for your needs.
See recommendations
842,767 professionals have used our research since 2012.
 

Comparison Review

it_user186927 - PeerSpot reviewer
Feb 16, 2015
Cybereason vs. Interset vs. SQRRL
Capture DB - they all use NoSQL db and hence solve the ad hoc query and 'go back in time' problem with current best of breed SIEM and DLP solutions that rely on real time analysis of incoming logs (and don't store them). This means deeper and quicker iterative threat analysis and assessment…
Read full review
 

Top Industries

By visitors reading reviews
Computer Software Company
15%
Financial Services Firm
13%
Manufacturing Company
9%
Government
7%
Educational Organization
17%
Financial Services Firm
13%
Computer Software Company
13%
Manufacturing Company
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Which is better - Azure Sentinel or AWS Security Hub?
We like that Azure Sentinel does not require as much maintenance as legacy SIEMs that are on-premises. Azure Sentinel is auto-scaling - you will not have to worry about performance impact, you will...
See all answers
What do you like most about AWS Security Hub?
The most valuable features of the solution are the scanning of all the cloud environments and most of the compliances available in the cloud.
See all answers
What needs improvement with AWS Security Hub?
There is room for improvement in implementing AI capabilities. It would be beneficial for Security Hub to implement preventative measures and to directly apply recommendations instead of just sugge...
See all answers
What is your primary use case for Prisma Cloud by Palo Alto Networks ?
Prisma Cloud helps support DevSecOps methodologies, making those responsibilities easier to manage.
See all answers
What Cloud-Native Application Protection Platform do you recommend?
We like Prisma Cloud by Palo Alto Networks, since it offers us incredible visibility into our entire cloud system. We are able to easily see where our container vulnerabilities lie and and where cl...
See all answers
What do you think of Aqua Security vs Prisma Cloud?
Aqua Security is easy to use and very manageable. Its main focus is on Kubernetes and Docker. Security is a very valuable feature and their speed of integration is very good. The initial setup was ...
See all answers
 

Comparisons

Microsoft Sentinel vs AWS Security Hub Logo
Microsoft Sentinel vs AWS Security Hub
Compared 39% of the time
Wiz vs AWS Security Hub Logo
Wiz vs AWS Security Hub
Compared 12% of the time
Microsoft Defender for Cloud vs AWS Security Hub Logo
Microsoft Defender for Cloud vs AWS Security Hub
Compared 6% of the time
Google Chronicle Suite vs AWS Security Hub Logo
Google Chronicle Suite vs AWS Security Hub
Compared 5% of the time
Orca Security vs AWS Security Hub Logo
Orca Security vs AWS Security Hub
Compared 4% of the time
More AWS Security Hub Competitors
Wiz vs Prisma Cloud by Palo Alto Networks Logo
Wiz vs Prisma Cloud by Palo Alto Networks
Compared 22% of the time
Microsoft Defender for Cloud vs Prisma Cloud by Palo Alto Networks Logo
Microsoft Defender for Cloud vs Prisma Cloud by Palo Alto Networks
Compared 12% of the time
CrowdStrike Falcon Cloud Security vs Prisma Cloud by Palo Alto Networks Logo
CrowdStrike Falcon Cloud Security vs Prisma Cloud by Palo Alto Networks
Compared 5% of the time
Aqua Cloud Security Platform vs Prisma Cloud by Palo Alto Networks Logo
Aqua Cloud Security Platform vs Prisma Cloud by Palo Alto Networks
Compared 5% of the time
Red Hat Advanced Cluster Security for Kubernetes vs Prisma Cloud by Palo Alto Networks Logo
Red Hat Advanced Cluster Security for Kubernetes vs Prisma Cloud by Palo Alto Networks
Compared 3% of the time
More Prisma Cloud by Palo Alto Networks Competitors
 

Product Reports

Buyer's Guide
AWS Security Hub
March 2025
AWS Security Hub reportDownload AWS Security Hub product report
Buyer's Guide
Prisma Cloud by Palo Alto Networks
March 2025
Prisma Cloud by Palo Alto Networks reportDownload Prisma Cloud by Palo Alto Networks product report
 

Also Known As

SQRRL
Prisma Public Cloud, RedLock Cloud 360, RedLock, Twistlock, Aporeto
 

Overview

AWS Security Hub is a comprehensive security service that provides a centralized view of security alerts and compliance status across an AWS environment. It collects data from various AWS services, partner solutions, and AWS Marketplace products to provide a holistic view of security posture. With Security Hub, users can quickly identify and prioritize security issues, automate compliance checks, and streamline remediation efforts. 

The service offers a range of features including continuous monitoring, threat intelligence integration, and customizable dashboards. It also provides automated insights and recommendations to help users improve their security posture. Security Hub integrates with other AWS services like Amazon GuardDuty, AWS Config, and AWS Macie to provide a unified security experience. Additionally, it supports integration with third-party security tools through its API, allowing users to leverage their existing security investments. 

With its user-friendly interface and powerful capabilities, AWS Security Hub is a valuable tool for organizations looking to enhance their security and compliance posture in the cloud.

Amazon Web Services (AWS)

Prisma Cloud by Palo Alto Networks delivers comprehensive security for cloud environments, focusing on workload protection, identity creation, and seamless AWS integration. Its cloud visibility and control, combined with thorough vulnerability scanning, help maintain robust security across multi-cloud platforms.

Prisma Cloud provides essential capabilities for cloud security posture management, container security, and compliance monitoring. Enterprises utilize it to secure cloud configurations, detect vulnerabilities, and ensure regulatory compliance, spanning AWS, Azure, and Google Cloud. Its runtime management, identity-based micro-segmentation, and threat detection enhance cybersecurity. Despite needing improvements in documentation, integration complexities, UI, and the need for role-based access control refinement, it remains pivotal for securing assets across cloud infrastructures, particularly with its capabilities for vulnerability scanning and CI/CD pipeline integration.

What are the key features?

  • Workload Identity Creation: Establishes identities for cloud workloads, enhancing security through precise access management.
  • Dynamic Workload Protection: Protects applications dynamically, securing resources during runtime.
  • Integration with AWS Products: Seamlessly integrates with AWS services, maximizing the efficiency of cloud operations.
  • Automated Forensics: Provides detailed insights through automated investigations and runtime mapping between containers.
  • Application Dependency Map: Enables compliance and asset management through comprehensive inventory functionality.

What benefits or ROI should users expect?

  • Proactive Threat Prevention: Enhances security measures with advanced threat detection and prevention.
  • Cloud Visibility and Control: Offers control across multi-cloud environments, ensuring users maintain a strong security posture.
  • Prevention Capabilities: Users value its ability to prevent vulnerabilities and threats effectively.
  • Integration Capabilities: Supports seamless integration into existing cloud infrastructures and CI/CD pipelines.

In industries like finance, healthcare, and retail, Prisma Cloud is implemented to strengthen cybersecurity measures, facilitate regulatory compliance, and enhance governance. Organizations leverage its features to secure sensitive data, monitor configurations, and integrate security processes within CI/CD workflows, ensuring robust protection across complex cloud infrastructures.

Palo Alto Networks
 

Sample Customers

Edmunds, Frame.io, GoDaddy, Realtor.com
Amgen, Genpact, Western Asset, Zipongo, Proofpoint, NerdWallet, Axfood, 21st Century Fox, Veeva Systems, Reinsurance Group of America
Buyer's Guide
AWS Security Hub vs. Prisma Cloud by Palo Alto Networks
March 2025
Free Report: AWS Security Hub vs. Prisma Cloud by Palo Alto Networks
Find out what your peers are saying about AWS Security Hub vs. Prisma Cloud by Palo Alto Networks and other solutions. Updated: March 2025.
DOWNLOAD NOW
842,767 professionals have used our research since 2012.
See our AWS Security Hub vs. Prisma Cloud by Palo Alto Networks report.
See our list of best Cloud Security Posture Management (CSPM) vendors.

We monitor all Cloud Security Posture Management (CSPM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.