Palo Alto Networks is expanding its security ecosystem with three major launches - Cortex Cloud 2.0, Cortex AgentiX, and Prisma AIRS 2.0. Each of these builds on the company’s broader mission to connect automation, cloud security, and AI protection into one continuous, intelligent defense framework. Together, they help enterprises simplify operations, strengthen visibility, and prepare for the new era of autonomous, AI-driven environments.
Securing the Cloud with Cortex Cloud 2.0
Cortex Cloud 2.0 introduces a more connected approach to cloud security by integrating autonomous AI agents, a redesigned Cloud Command Center, and an enhanced Cloud Detection and Response (CDR) engine. The goal is to solve a common problem many enterprises face: too many disconnected tools managing posture, detection, and remediation separately. With Cortex Cloud 2.0, those capabilities now live in one platform, where AI agents can automatically detect, investigate, and fix issues across multicloud environments.
These agents, powered by
Cortex AgentiX, can handle complex investigations in minutes while ensuring every automated action follows enterprise security and compliance rules. The new Cloud Command Center offers a single, unified view of assets, vulnerabilities, and threats across clouds, while the optimized CDR agent maintains real-time protection with less processing power - making it easier for organizations to balance performance with strong security. The Application Security Posture Management (ASPM) module extends protection earlier in the software lifecycle, helping developers find and fix issues before code reaches production.
Building the Agentic SOC with Cortex AgentiX
As security operations centers evolve, the need for automation that’s intelligent and trustworthy is growing fast. Cortex AgentiX was built for that next step. It’s the next generation of
Cortex XSOAR and introduces a framework where AI agents can think and act across SOC workflows, investigating incidents, containing threats, and orchestrating responses across systems automatically. The result is a more efficient SOC where analysts spend less time on repetitive work and more on strategic initiatives.
Elad Koren, VP of Product Management for Cortex at Palo Alto Networks, said AgentiX is opening new doors for service providers and SOC teams alike. “AgentiX gives service providers a platform to deliver a new class of managed security operations that is both autonomous and trusted,” Koren explained. “MSPs and MSSPs can now build and deploy AI agents that codify their best practices and handle repetitive investigations, containment, and response across email, endpoints, cloud workloads, and more.”
He added that AgentiX was designed for flexibility and scale. “AgentiX was built as a product-agnostic platform that works with all traditional SecOps and IT tools customers already use, bringing an industry-leading library of 1,000+ pre-built integrations,” Koren said. “Partners can embed autonomous agents directly into current XSIAM, XDR, or cloud solutions, as well as third-party tools and even LLMs, to deliver agentic workforce to any operations.”
This approach means service providers can deploy agentic SOC offerings faster and with less overhead. Customers retain full transparency and control through built-in governance guardrails, while providers can scale their services without growing their analyst teams linearly.
Securing the AI Ecosystem with Prisma AIRS 2.0
As AI adoption accelerates, so do the risks tied to unmonitored agents, exposed models, and poisoned training data.
Prisma AIRS 2.0 tackles those risks directly. The platform integrates Protect AI’s capabilities into Palo Alto Networks’ portfolio, giving enterprises unified coverage across every layer of AI security, from models and agents to runtime behavior. It combines three powerful modules: AI Agent Security, AI Red Teaming, and AI Model Security.
Anand Oswal, Executive Vice President of Network Security at Palo Alto Networks, said Prisma AIRS 2.0 eliminates the inefficiencies that have long slowed down AI security. “Security teams are often forced to stitch together multiple point solutions to monitor different parts of their AI environment,” he said. “One tool might scan models, another checks configurations, and a third tests for vulnerabilities. Prisma AIRS 2.0 removes that fragmentation. It unifies AI app, model, data, and agent security, along with AI red-teaming capabilities, under one platform so teams can manage everything through a single lens.”
This consolidation doesn’t just simplify operations - it changes the way teams work. Oswal explained that with Prisma AIRS 2.0, analysts no longer need to chase alerts across different dashboards. Instead, they can see how models, agents, and data interact in one place and act immediately. That real-time correlation makes it easier to detect risks early, automate responses, and reduce time spent on manual investigations.
He also emphasized how the platform supports innovation rather than slowing it down. “The goal with Prisma AIRS 2.0 was to embed security into how organizations develop and deploy AI, not bolt it on after the fact,” Oswal said. “Integrated into the CI/CD pipeline, the platform scans models before deployment and identifies vulnerabilities such as architectural backdoors, deserialization risks, and embedded malicious code for developers to take proactive security actions.”
Because these scans happen seamlessly in the background, development teams can continue shipping models at their normal pace while security teams maintain full visibility. “It’s a faster, safer path to innovation where security and development move in sync,” Oswal added. “Prisma AIRS 2.0 also provides unmatched insight into AI models - analyzing them end-to-end to uncover hidden risks in architecture, operators, and embedded code that legacy scanners can’t detect.”
A Unified Vision for the Autonomous Enterprise
Together, Cortex Cloud 2.0, Cortex AgentiX, and Prisma AIRS 2.0 signal a major step forward in Palo Alto Networks’ strategy to unify cloud, SOC, and AI security. By combining automation, visibility, and governance, the company is creating a connected framework that helps enterprises defend faster and innovate securely.
In this vision, cloud and SOC operations no longer run in isolation, and AI agents are not uncontrolled black boxes - they’re governed, integrated, and secure. For enterprises, this means less complexity, faster decisions, and stronger resilience. For partners, it creates new opportunities to deliver managed AI and security automation services at scale. Palo Alto Networks is positioning these platforms as the foundation for the next phase of cybersecurity, where automation and intelligence work together to protect the modern, AI-powered enterprise.
