After installing Prisma Cloud, observe it for the first month. Get familiar with the data that’s being reported. Review the default rules. Study how Prisma Cloud rules work. Individual rules make up your policy. Rule order has a big impact on how a policy is enforced. More specific rules must always precede more general rules.
Start looking at your top 10 CVEs. Resolve them if you want, but you’ll come back to this later when you start operationalizing vulnerability management.