AWS Security Hub vs Prisma Cloud by Palo Alto Networks comparison

AWS Security Hub vs. Prisma Cloud by Palo Alto Networks

Download the complete report

Helped 842,296 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

AWS Security Hub

Ranking in Cloud Security Posture Management (CSPM)

12th

Average Rating

7.6

Reviews Sentiment

7.2

Number of Reviews

Ranking in other categories

Security Orchestration Automation and Response (SOAR) (5th)

Prisma Cloud by Palo Alto N...

Ranking in Cloud Security Posture Management (CSPM)

2nd

Average Rating

8.4

Reviews Sentiment

7.3

Number of Reviews

108

Ranking in other categories

Vulnerability Management (2nd), Cloud Workload Protection Platforms (CWPP) (1st), Cloud-Native Application Protection Platforms (CNAPP) (2nd), Data Security Posture Management (DSPM) (1st), Software Supply Chain Security (1st), Cloud Infrastructure Entitlement Management (CIEM) (1st), Application Security Posture Management (ASPM) (1st), Cloud Detection and Response (CDR) (2nd)

Mindshare comparison

As of March 2025, in the Cloud Security Posture Management (CSPM) category, the mindshare of AWS Security Hub is 4.7%, down from 5.3% compared to the previous year. The mindshare of Prisma Cloud by Palo Alto Networks is 15.7%, down from 18.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Cloud Security Posture Management (CSPM)

Featured Reviews

MuhammadAzhar Khan

Senior DevOps Engineer at Alibaba Group

Offers best practice recommendations and supports various compliance standards

Security Hub provides insightful information about what is running and where there might be weaknesses. It offers best practice recommendations and supports various compliance standards such as ISO and PCI DSS. Enabling these compliance checks helps identify non-compliant services and suggests steps to achieve compliance. The main advantage is providing information and compliance insights rather than prevention.

Read full review

Mohammad Qaw

Senior Security Consultant at helpag

It gives you one console to see all of your assets, review their configurations, and build your processes

Most customers use Prisma Cloud for visibility and compliance. Prisma has so many features, but many organizations do not use them. They primarily use the visibility part to connect all their cloud accounts and hosts for visibility to see if they are missing any security controls or if they have any misconfigurations. You can connect it to cloud environments such as Azure, AWS, Oracle Cloud, Alibaba, etc., or to an on-prem data center. Prisma Cloud gives you so many options to automate processes related to your daily operations. When it comes to cybersecurity, you can automate things with their existing APIs. They also have out-of-the-box integrations with many solutions. I have not seen any limitations. Everything is customizable. You can do whatever you want, defining the reporting and custom use cases. They recently updated the UI, so it's much better than before.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"I like that AWS Security Hub currently has several good features, around four or five. The technical support for AWS Security Hub is also responsive."

"I really like the seamless integration with the AWS account structure. It can even be made mandatory as part of the landing zone. These are great features. And there's a single pane of glass for the entire account."

"I find all of the features to be highly valuable."

"The solution shows us our compliance score."

"One of the most effective features of AWS Security Hub is the easy access to a dashboard with a ready-to-use security score."

"It's a security posture management tool from AWS. Basically, it identifies misconfigurations, similar to Trusted Advisor but on a larger scale."

"I rate Security Hub ten out of ten for stability."

"The platform has valuable features for security."

More AWS Security Hub pros

"As a pure-play CSPM, it is pretty good. From the data exposure perspective, Prisma Cloud does a fairly good job. Purely from the perspective of reading the conflicts, it is able to highlight any data exposures that I might be having."

"It has improved the overall collaboration between SecOps and DevOps. Now, instead of asking people to do something, it is a default offering in the CI/CD. There is less manual intervention and more seamless integration. It is why we don't have many dependencies across many teams, which is definitely a better state."

"Cloud security posture management is the preferred feature among other vendors."

"I was looking for a vulnerability scanner and I was looking for one place in which I could find everything. This tool not only does vulnerability scanning, but it also gives me an asset management tool."

"Prisma was extremely comprehensive. It's easy to drill down to gather more information and keep going. It seemed like you could drill down forever to see what the vulnerability was linked to."

"The solution's dashboard looks very user-friendly."

"The most valuable features of the solution are areas like compliance and asset inventories, along with runtime protection."

"This positively affected our confidence in your security and compliance. No matter how complex the environment is, the the seamless integration from the top layer itself give us the immediate visibility on the number of services."

More Prisma Cloud by Palo Alto Networks pros

Cons

"The solution should be easier to learn and use"

"Whenever my team gets some alarms from the central team, my team needs to initiate whether it's a real or false trigger. The central team needs to keep adjusting to the parameters or at least the concerned IPs, whether it's really from the company's pool of IPs, so the trigger process can be improved. In the next release of AWS Security Hub, I'd like a better dashboard that could result in better alert visibility."

"Although AWS Security Hub does a periodic scan of your overall infrastructure, it doesn't do it in real time."

"There is room for improvement in implementing AI capabilities."

"It's not user-friendly. Too much going on, too many unnecessary findings, not very visual. You can't do much compared to other similar tools that are cheaper and better."

"AWS Security Hub should improve the time it takes to update. It takes a long period of time when updating. It can take 24 hours sometimes to update. Additionally, when integrating this solution with more security tools, takes time."

"The user interface, graphs, and dashboards of the solution could improve in the future. They are not very sophisticated and could use an update."

"Shortening the response time for support tickets, particularly in production issues, could make the service more efficient."

More AWS Security Hub cons

"A better correlation between the multiple products Prisma Cloud contains would be crucial. It would reduce the time spent looking at reports and enable you to get all the actionable insights across products. I think that Palo Alto is working on it, but they need to work faster because it doesn't make sense to have all these products in a single pane of glass without any correlation between them."

"We identified two things that we felt would be great to have, but they are under NDA. So, I can't disclose them. Other than those two things, we identified a generic bug in the secret key management service on AWS that needs to be fixed. We reported it to them, and we want them to fix it."

"When an account is onboarded, if it is missing any permission, it should automatically be updated with the required permissions and policies."

"It can be too expensive for small companies."

"The IM security has room for improvement."

"It would be nice Prisma Cloud merged its modules for CSPM and infrastructure as code. It would simplify the pricing and make it easier for customers to evaluate the solution because there are different modules, and you need to add it to your subscription separately."

"We'd like to have more native integration with clouds and additional security checks in the future."

"The licensing is a bit confusing."

More Prisma Cloud by Palo Alto Networks cons

Pricing and Cost Advice

"The pricing is fine. It is not an expensive tool."

"There are multiple subscription models, like yearly, monthly, and packaged."

"AWS Security Hub's pricing is pretty reasonable."

"AWS Security Hub is not an expensive tool. I would consider it to be a cheap solution. AWS Security Hub follows the PAYG pricing model, meaning you will have to pay for whatever you use."

"The cost is based on the number of compliances, core checks, and services required, and for more than 10,000 recommendations, the charge is just one dollar."

"The price of AWS Security Hub is average compared to other solutions."

"The price of the solution is not very competitive but it is reasonable."

"Security Hub is not an expensive solution."

"Prisma Cloud is quite scalable. In our current licensing model, we're able to heavily extend our cloud workload and onboard a lot of customers. It really helps, and it is on par with other solutions."

"Its price is reasonable as compared to other products. The main challenge is explaining the licensing model to customers. It isn't a problem related to Palo Alto. Commonly, people don't understand cloud licensing or security licensing. When they have fixed virtual machines, they know what they are going to be charged, but when it comes to cloud automation, it is hard for them to get clarity in case of high workloads or when they have enabled auto-scaling, etc. It would be helpful if Palo Alto can educate people on their licensing programs."

"Prisma Cloud by Palo Alto Networks is a highly expensive solution."

"The pricing structure is easy to understand. Depending on the use case the pricing of the solution can be different. There are not any additional costs to the standard living fees."

"The pricing is competitive; for the most part, the security firms have similar prices."

"Prisma Cloud is more expensive than Check Point CloudGuard."

"The price for Prisma Cloud is reasonable."

"The pricing is competitive. From what I have seen in the past, it is on par with the others."

More Prisma Cloud by Palo Alto Networks pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Cloud Security Posture Management (CSPM) solutions are best for your needs.

See recommendations

842,296 professionals have used our research since 2012.

Comparison Review

it_user186927

Director of Operations at Bell

Feb 16, 2015

Cybereason vs. Interset vs. SQRRL

Capture DB - they all use NoSQL db and hence solve the ad hoc query and 'go back in time' problem with current best of breed SIEM and DLP solutions that rely on real time analysis of incoming logs (and don't store them). This means deeper and quicker iterative threat analysis and assessment…

Read full review

Top Industries

By visitors reading reviews

Computer Software Company

15%

Financial Services Firm

13%

Manufacturing Company

10%

Government

Educational Organization

17%

Financial Services Firm

13%

Computer Software Company

13%

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Which is better - Azure Sentinel or AWS Security Hub?

We like that Azure Sentinel does not require as much maintenance as legacy SIEMs that are on-premises. Azure Sentinel is auto-scaling - you will not have to worry about performance impact, you will...

What do you like most about AWS Security Hub?

The most valuable features of the solution are the scanning of all the cloud environments and most of the compliances available in the cloud.

What needs improvement with AWS Security Hub?

There is room for improvement in implementing AI capabilities. It would be beneficial for Security Hub to implement preventative measures and to directly apply recommendations instead of just sugge...

What is your primary use case for Prisma Cloud by Palo Alto Networks ?

Prisma Cloud helps support DevSecOps methodologies, making those responsibilities easier to manage.

What Cloud-Native Application Protection Platform do you recommend?

We like Prisma Cloud by Palo Alto Networks, since it offers us incredible visibility into our entire cloud system. We are able to easily see where our container vulnerabilities lie and and where cl...

What do you think of Aqua Security vs Prisma Cloud?

Aqua Security is easy to use and very manageable. Its main focus is on Kubernetes and Docker. Security is a very valuable feature and their speed of integration is very good. The initial setup was ...

Microsoft Sentinel vs AWS Security Hub

Comparisons

Compared 38% of the time

Wiz vs AWS Security Hub

Compared 12% of the time

Microsoft Defender for Cloud vs AWS Security Hub

Compared 6% of the time

Google Chronicle Suite vs AWS Security Hub

Compared 5% of the time

Orca Security vs AWS Security Hub

Compared 3% of the time

More AWS Security Hub Competitors

Wiz vs Prisma Cloud by Palo Alto Networks

Compared 22% of the time

Microsoft Defender for Cloud vs Prisma Cloud by Palo Alto Networks

Compared 12% of the time

CrowdStrike Falcon Cloud Security vs Prisma Cloud by Palo Alto Networks

Compared 5% of the time

Aqua Cloud Security Platform vs Prisma Cloud by Palo Alto Networks

Compared 5% of the time

Check Point CloudGuard CNAPP vs Prisma Cloud by Palo Alto Networks

Compared 3% of the time

More Prisma Cloud by Palo Alto Networks Competitors

Product Reports

AWS Security Hub

Download AWS Security Hub product report

Prisma Cloud by Palo Alto Networks

Download Prisma Cloud by Palo Alto Networks product report

Prisma Cloud by Palo Alto Networks report

Also Known As

SQRRL

Prisma Public Cloud, RedLock Cloud 360, RedLock, Twistlock, Aporeto

Overview

AWS Security Hub is a comprehensive security service that provides a centralized view of security alerts and compliance status across an AWS environment. It collects data from various AWS services, partner solutions, and AWS Marketplace products to provide a holistic view of security posture. With Security Hub, users can quickly identify and prioritize security issues, automate compliance checks, and streamline remediation efforts.

The service offers a range of features including continuous monitoring, threat intelligence integration, and customizable dashboards. It also provides automated insights and recommendations to help users improve their security posture. Security Hub integrates with other AWS services like Amazon GuardDuty, AWS Config, and AWS Macie to provide a unified security experience. Additionally, it supports integration with third-party security tools through its API, allowing users to leverage their existing security investments.

With its user-friendly interface and powerful capabilities, AWS Security Hub is a valuable tool for organizations looking to enhance their security and compliance posture in the cloud.

Amazon Web Services (AWS)

Prisma Cloud by Palo Alto Networks delivers comprehensive security for cloud environments, focusing on workload protection, identity creation, and seamless AWS integration. Its cloud visibility and control, combined with thorough vulnerability scanning, help maintain robust security across multi-cloud platforms.

Prisma Cloud provides essential capabilities for cloud security posture management, container security, and compliance monitoring. Enterprises utilize it to secure cloud configurations, detect vulnerabilities, and ensure regulatory compliance, spanning AWS, Azure, and Google Cloud. Its runtime management, identity-based micro-segmentation, and threat detection enhance cybersecurity. Despite needing improvements in documentation, integration complexities, UI, and the need for role-based access control refinement, it remains pivotal for securing assets across cloud infrastructures, particularly with its capabilities for vulnerability scanning and CI/CD pipeline integration.

What are the key features?

Workload Identity Creation: Establishes identities for cloud workloads, enhancing security through precise access management.
Dynamic Workload Protection: Protects applications dynamically, securing resources during runtime.
Integration with AWS Products: Seamlessly integrates with AWS services, maximizing the efficiency of cloud operations.
Automated Forensics: Provides detailed insights through automated investigations and runtime mapping between containers.
Application Dependency Map: Enables compliance and asset management through comprehensive inventory functionality.

What benefits or ROI should users expect?

Proactive Threat Prevention: Enhances security measures with advanced threat detection and prevention.
Cloud Visibility and Control: Offers control across multi-cloud environments, ensuring users maintain a strong security posture.
Prevention Capabilities: Users value its ability to prevent vulnerabilities and threats effectively.
Integration Capabilities: Supports seamless integration into existing cloud infrastructures and CI/CD pipelines.

In industries like finance, healthcare, and retail, Prisma Cloud is implemented to strengthen cybersecurity measures, facilitate regulatory compliance, and enhance governance. Organizations leverage its features to secure sensitive data, monitor configurations, and integrate security processes within CI/CD workflows, ensuring robust protection across complex cloud infrastructures.

Palo Alto Networks

Sample Customers

Edmunds, Frame.io, GoDaddy, Realtor.com

Amgen, Genpact, Western Asset, Zipongo, Proofpoint, NerdWallet, Axfood, 21st Century Fox, Veeva Systems, Reinsurance Group of America

AWS Security Hub vs. Prisma Cloud by Palo Alto Networks