Overview

This section contains guidance for the implementation of Prisma Cloud Compute in public-sector organizations. Please check up on this site as guidance may change over time.

Document revisions

Date Comment

20201012

Initial release of this guidance.

Federal Risk and Authorization Management Program (FedRAMP)

Prisma Cloud Enterprise Edition is in process for FedRAMP Moderate certification. The Prisma Cloud Compute module is not within the boundaries of this certification and is not available within the FedRAMPed Prisma Cloud Console. Customers requiring FedRAMP certification should use the self-hosted version, Prisma Cloud Compute Edition. For customers offering their own FedRAMP services that use Prisma Cloud Compute to facilitate in their service’s FedRAMP certification, GSA has drafted guidance for the FedRAMP Vulnerability Scanning Requirements for the Deployment and use of Containers.

The configuration settings for Prisma Cloud Compute’s features and functions to support an organization’s FedRAMP certification can be found here.

Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs)

The findings based upon the vulnerability severity category codes can be found here.