Level 1 - Palo Alto Prisma Cloud Implementation

This service includes the design, configuration and deployment of Prisma Cloud on the AWS cloud, including visibility, information governance and monitoring tools. Up to two technical roundtables will be held to define requirements, review compliance and set up public cloud accounts.

Includes Prisma Cloud tenant activation, user configuration, customer-defined roles (RBAC), and integration with SSO. It includes onboarding of up to three public cloud accounts, activation of monitoring controls, configuration of compliance reports, alerting rules and native integrations.

Additionally, the activation and configuration of agentless scans for Hosts and Serverless in AWS Lambda are included, vulnerability scans and CIS compliance, as well as Cloud Infrastructure Entitlement Management and Cloud Code Application Security modules for IaC. Onboarding of up to three code repositories, review of alerts in five policies, verification of third-party integrations and information sources, along with the creation of an As-built document.

Knowledge transfer and remote sessions for technical and operational support are also included.

• Up to two (2) technical roundtables to understand requirements, review applicable compliance, and set up public cloud accounts.
• Activation of Prisma Cloud tenant.
• Configuration of administration users and roles in Prisma Cloud to be used. RBAC is defined by the customer.
• SSO integration supported by Prisma.
• Onboarding of up to three (3) individual public cloud accounts in AWS.
• Activation of controls for public cloud monitoring.
• Configuration of up to three (3) compliance reports.
• Configuration of up to three (3) alerting rules.
• Configuration of up to three (3) native Prisma Cloud integrations.
• Activation and configuration of agentless scan for Host and Serverless for AWS Lambda.
• Configuration of periodicity of vulnerability scans for Host and Serverless deployed.
• Configuration of one (1) rule for vulnerability scanning on Host and Serverless.
• Configuration of one (1) rule for CIS compliance scanning on Host and Serverless.
• Activation of Cloud Infrastructure Entitlement Management module.
• Activation of the Cloud Code Application Security module in Prisma Cloud for IAC.
• Onboarding of up to three (3) code repositories supported by Prisma Cloud for IaC scanning.
• Review that alerts are being generated correctly based on defined policies.
• Review of associated alerts up to a maximum of five (5) different policies.
• Verification of possible integration with third party platforms.
• Verification of information sources.
• Construction and presentation of the As-built document of the installed environment.
• Online activities in remote sessions of maximum two (2) hours each.
• Up to two (2) knowledge transfers of the tool, focused on the features of interest.
• Up to two (2) sessions of maximum two (2) hours each will be contemplated to solve technical / operational problems of the delivery.