Try our new research platform with insights from 80,000+ expert users

AWS Security Hub vs Prisma Cloud by Palo Alto Networks comparison

Amazon Web Services (AWS) and Palo Alto Networks are both solutions in the Cloud Security Posture Management (CSPM) category. Amazon Web Services (AWS) is ranked #12 with an average rating of 7.7, while Palo Alto Networks is ranked #2 with an average rating of 8.5. Amazon Web Services (AWS) holds a 4.6% mindshare in CSPM, compared to Palo Alto Networks’s 14.8% mindshare. Additionally, 87% of Amazon Web Services (AWS) users are willing to recommend the solution, compared to 98% of Palo Alto Networks users who would recommend it.
AWS Security Hub
Read 22 AWS Security Hub reviews
  • 3,684 Views
  • 3,162 Comparison Views
87% willing to recommend
Prisma Cloud by Palo Alto N...
Read 108 Prisma Cloud by Palo Alto Networks reviews
  • 17,006 Views
  • 10,310 Comparison Views
98% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Mar 25, 2025

Prisma Cloud by Palo Alto Networks and AWS Security Hub compete in the domain of cloud security solutions. Based on the data comparisons, Prisma Cloud seems to have an upper hand due to its comprehensive security features.

Features: Prisma Cloud stands out with dynamic workload identity creation, an application dependency map for compliance, and seamless integration with AWS products. Its automated forensics and real-time container scanning add significant value. AWS Security Hub is notable for its tight integration with AWS services and effective fault detection.

Room for Improvement: Prisma Cloud could improve by offering more transparent security checks, reducing manual integration configurations, and better cost structures. Enhancements in user interfaces and customizable reporting are also needed. AWS Security Hub could improve its multi-cloud capabilities, add compliance checks, incorporate real-time scanning, and offer more customization for alerts and dashboards.

Ease of Deployment and Customer Service: Both Prisma Cloud and AWS Security Hub provide robust support across hybrid, public, and private clouds. However, AWS Security Hub is less flexible for on-premises deployments. Prisma Cloud users report mixed customer service experiences, while AWS Security Hub has a mature support framework, with some room for faster interactions and adaptability.

Pricing and ROI: Although Prisma Cloud is often considered expensive, its robust security features and flexibility in licensing models justify the cost. Users acknowledge the high return on investment. AWS Security Hub is seen as cost-effective, aligning with financial expectations, though there is a demand for more flexible purchasing options and broader multi-cloud support.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed AWS Security Hub vs. Prisma Cloud by Palo Alto Networks Report (Updated: March 2025).
Buyer's Guide
AWS Security Hub vs. Prisma Cloud by Palo Alto Networks
March 2025
Download the complete report
Helped 845,040 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

AWS Security Hub
Ranking in Cloud Security Posture Management (CSPM)
12th
Average Rating
7.6
Reviews Sentiment
7.2
Number of Reviews
22
Ranking in other categories
Security Orchestration Automation and Response (SOAR) (5th)
Prisma Cloud by Palo Alto N...
Ranking in Cloud Security Posture Management (CSPM)
2nd
Average Rating
8.4
Reviews Sentiment
7.3
Number of Reviews
108
Ranking in other categories
Web Application Firewall (WAF) (6th), Container Security (1st), Cloud-Native Application Protection Platforms (CNAPP) (1st), Data Security Posture Management (DSPM) (1st)
 

Mindshare comparison

As of April 2025, in the Cloud Security Posture Management (CSPM) category, the mindshare of AWS Security Hub is 4.6%, down from 5.5% compared to the previous year. The mindshare of Prisma Cloud by Palo Alto Networks is 14.8%, down from 18.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Cloud Security Posture Management (CSPM)
 

Featured Reviews

MuhammadAzhar Khan - PeerSpot reviewer
Offers best practice recommendations and supports various compliance standards
Security Hub provides insightful information about what is running and where there might be weaknesses. It offers best practice recommendations and supports various compliance standards such as ISO and PCI DSS. Enabling these compliance checks helps identify non-compliant services and suggests steps to achieve compliance. The main advantage is providing information and compliance insights rather than prevention.
Read full review
Mohammad Qaw - PeerSpot reviewer
It gives you one console to see all of your assets, review their configurations, and build your processes
Most customers use Prisma Cloud for visibility and compliance. Prisma has so many features, but many organizations do not use them. They primarily use the visibility part to connect all their cloud accounts and hosts for visibility to see if they are missing any security controls or if they have any misconfigurations. You can connect it to cloud environments such as Azure, AWS, Oracle Cloud, Alibaba, etc., or to an on-prem data center. Prisma Cloud gives you so many options to automate processes related to your daily operations. When it comes to cybersecurity, you can automate things with their existing APIs. They also have out-of-the-box integrations with many solutions. I have not seen any limitations. Everything is customizable. You can do whatever you want, defining the reporting and custom use cases. They recently updated the UI, so it's much better than before.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The platform has valuable features for security."
"The best feature of AWS Security Hub is that you can get compliance or your cloud's current security posture."
"Currently, our organization utilizes AWS for various purposes, including SaaS (Software as a Service), PaaS (Platform as a Service), and hosting applications in the cloud. We develop our applications and use AWS services as a platform for basic functions and secondary development needs. Additionally, we rely on PaaS for accounting services. Approximately, 50% of our applications are hosted in the cloud environment, making it a significant part of our current setup."
"The most valuable feature of the solution stems from the fact that it is easy to manage...It is a scalable solution."
"Security Hub provides insightful information about what is running and where there might be weaknesses."
"It's a security posture management tool from AWS. Basically, it identifies misconfigurations, similar to Trusted Advisor but on a larger scale."
"The most valuable features of the solution are the scanning of all the cloud environments and most of the compliances available in the cloud."
"The advantage is that it is cloud-native, and we do not need to install agents or sensors to find findings."
More AWS Security Hub pros
"The most valuable feature is that the rule set is managed and that it can be run on a regularly scheduled basis."
"The policies that come prepackaged in the tool have been very valuable to us. They're accurate and they provide good guidance as to why the policy was created, as well as how to remediate anything that violates the policy."
"The dynamic workload identity creation, attestation, and assignment is the best feature. In addition, the application dependency map across heterogeneous environments for compliance is a striking feature."
"The most valuable features are the alerts and auto-remediation because it allows us a lot of flexibility to customize and do things the Palo Alto team never intended. We faced some challenges with certificates because we also have next-gen firewalls. We would like to equip all the traffic because there have been many cases in which the developers have done things by mistake. Deploying certificates on virtual machines can be complex in a development environment, but we managed to do that with Prisma Cloud."
"It has helped us understand the dynamic topology of our containers, and manage security through the application of policies that our pipelines apply straight from Git."
"Technical support is quite helpful."
"The framework to configure controls is pretty good; it's pretty sophisticated. We can implement a fair amount of testing for a fair number of controls."
"The product is quite good for providing multi-clouds or cross-cloud security from a single-pane -of-glass."
More Prisma Cloud by Palo Alto Networks pros
 

Cons

"Although AWS Security Hub does a periodic scan of your overall infrastructure, it doesn't do it in real time."
"It's not user-friendly. Too much going on, too many unnecessary findings, not very visual. You can't do much compared to other similar tools that are cheaper and better."
"Security Hub is currently not worth investing in, as it requires more configurations and integration with other services to work effectively."
"The support must be quicker."
"There is room for improvement in implementing AI capabilities."
"From an improvement perspective, there is a need to add more compliance since, right now, AWS Security Hub only provides four to five compliances to control the tool."
"AWS Security Hub's configuration and integration are areas where it lacks and needs to improve."
"Many findings are too generic or irrelevant to the environment, which can lead to false positives."
More AWS Security Hub cons
"Having auto Defender upgrades so that we do not have to upgrade Defender manually would be helpful."
"Sometimes, on the Azure side, there are issues. Some errors aren't being found on Prisma Cloud."
"Prisma Cloud's application security capabilities should be enhanced."
"To see the full picture, at least when I last used it in April or May, you needed to switch between the modules. To see the cloud infrastructure and pipeline configuration, you need to switch to that module. To see the code security part, you need to switch to the Code Security module. It is the same story with CSPM. Two competitors of Prisma Cloud do it in a better way. They show the full view of a risk. Prisma Cloud unfortunately lacks in that area, but they are catching up."
"We would like it to have more features from the risk and compliance perspectives."
"The Palo Alto support needs to improve."
"They charge seven workloads for monitoring one compute, and that is quite expensive. This makes it difficult to move fully with the compute part because of the workload."
"The feedback that we have given to the Palo Alto team is that the UI can be improved. When you press the "back" button on your browser from the Investigate tab, the query that you're working on just disappears. It won't keep the query on the "back" button."
More Prisma Cloud by Palo Alto Networks cons
 

Pricing and Cost Advice

"The pricing is fine. It is not an expensive tool."
"AWS Security Hub is not an expensive tool. I would consider it to be a cheap solution. AWS Security Hub follows the PAYG pricing model, meaning you will have to pay for whatever you use."
"The cost is based on the number of compliances, core checks, and services required, and for more than 10,000 recommendations, the charge is just one dollar."
"There are multiple subscription models, like yearly, monthly, and packaged."
"The price of AWS Security Hub is average compared to other solutions."
"AWS Security Hub's pricing is pretty reasonable."
"The price of the solution is not very competitive but it is reasonable."
"Security Hub is not an expensive solution."
"From my exposure so far, they have been really flexible on whatever your current state is, with a view to what the future state might be. There's no hard sell. They "get" the journey that you're on, and they're trying to help you embrace cloud security, governance, and compliance as you go."
"Its licensing cost depends on the type of license such as the business license or the enterprise license. The enterprise license is costlier than the business license, but we get more visibility and more modules. If you have a multi-cloud environment and subscribe to each cloud's native CSPM tool, it is costly. If you are using a single tool like Prisma Cloud, with a single license, you can monitor all environments, such as Google Cloud, Azure, AWS, and Oracle Cloud. The cost of Prisma Cloud is less than the cost of subscribing to the CSPM tool of each cloud provider. This is where Prisma Cloud can save costs."
"The Prisma Cloud pricing is good."
"Prisma Cloud is a value-back cloud-managed solution; cloud-native solutions are quite expensive."
"The pricing for Prisma Cloud is high. Providing a pay-as-you-go model or pricing options tailored for medium and small enterprises could help attract more clients."
"In general, Prisma Cloud is much cheaper than cloud-native services."
"Prisma Cloud is quite scalable. In our current licensing model, we're able to heavily extend our cloud workload and onboard a lot of customers. It really helps, and it is on par with other solutions."
"We are encountering some resistance in the African market regarding the cost of Prisma Cloud."
More Prisma Cloud by Palo Alto Networks pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Cloud Security Posture Management (CSPM) solutions are best for your needs.
See recommendations
845,040 professionals have used our research since 2012.
 

Comparison Review

it_user186927 - PeerSpot reviewer
Feb 16, 2015
Cybereason vs. Interset vs. SQRRL
Capture DB - they all use NoSQL db and hence solve the ad hoc query and 'go back in time' problem with current best of breed SIEM and DLP solutions that rely on real time analysis of incoming logs (and don't store them). This means deeper and quicker iterative threat analysis and assessment…
Read full review
 

Top Industries

By visitors reading reviews
Computer Software Company
15%
Financial Services Firm
13%
Manufacturing Company
9%
Government
7%
Educational Organization
17%
Financial Services Firm
13%
Computer Software Company
13%
Manufacturing Company
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Which is better - Azure Sentinel or AWS Security Hub?
We like that Azure Sentinel does not require as much maintenance as legacy SIEMs that are on-premises. Azure Sentinel is auto-scaling - you will not have to worry about performance impact, you will...
See all answers
What do you like most about AWS Security Hub?
The most valuable features of the solution are the scanning of all the cloud environments and most of the compliances available in the cloud.
See all answers
What needs improvement with AWS Security Hub?
There is room for improvement in implementing AI capabilities. It would be beneficial for Security Hub to implement preventative measures and to directly apply recommendations instead of just sugge...
See all answers
What is your primary use case for Prisma Cloud by Palo Alto Networks ?
Prisma Cloud helps support DevSecOps methodologies, making those responsibilities easier to manage.
See all answers
What Cloud-Native Application Protection Platform do you recommend?
We like Prisma Cloud by Palo Alto Networks, since it offers us incredible visibility into our entire cloud system. We are able to easily see where our container vulnerabilities lie and and where cl...
See all answers
What do you think of Aqua Security vs Prisma Cloud?
Aqua Security is easy to use and very manageable. Its main focus is on Kubernetes and Docker. Security is a very valuable feature and their speed of integration is very good. The initial setup was ...
See all answers
 

Comparisons

Microsoft Sentinel vs AWS Security Hub Logo
Microsoft Sentinel vs AWS Security Hub
Compared 39% of the time
Wiz vs AWS Security Hub Logo
Wiz vs AWS Security Hub
Compared 12% of the time
Microsoft Defender for Cloud vs AWS Security Hub Logo
Microsoft Defender for Cloud vs AWS Security Hub
Compared 6% of the time
Google Chronicle Suite vs AWS Security Hub Logo
Google Chronicle Suite vs AWS Security Hub
Compared 5% of the time
Orca Security vs AWS Security Hub Logo
Orca Security vs AWS Security Hub
Compared 4% of the time
More AWS Security Hub Competitors
Wiz vs Prisma Cloud by Palo Alto Networks Logo
Wiz vs Prisma Cloud by Palo Alto Networks
Compared 22% of the time
Microsoft Defender for Cloud vs Prisma Cloud by Palo Alto Networks Logo
Microsoft Defender for Cloud vs Prisma Cloud by Palo Alto Networks
Compared 12% of the time
CrowdStrike Falcon Cloud Security vs Prisma Cloud by Palo Alto Networks Logo
CrowdStrike Falcon Cloud Security vs Prisma Cloud by Palo Alto Networks
Compared 5% of the time
Aqua Cloud Security Platform vs Prisma Cloud by Palo Alto Networks Logo
Aqua Cloud Security Platform vs Prisma Cloud by Palo Alto Networks
Compared 5% of the time
Red Hat Advanced Cluster Security for Kubernetes vs Prisma Cloud by Palo Alto Networks Logo
Red Hat Advanced Cluster Security for Kubernetes vs Prisma Cloud by Palo Alto Networks
Compared 3% of the time
More Prisma Cloud by Palo Alto Networks Competitors
 

Product Reports

Buyer's Guide
AWS Security Hub
March 2025
AWS Security Hub reportDownload AWS Security Hub product report
Buyer's Guide
Prisma Cloud by Palo Alto Networks
March 2025
Prisma Cloud by Palo Alto Networks reportDownload Prisma Cloud by Palo Alto Networks product report
 

Also Known As

SQRRL
Prisma Public Cloud, RedLock Cloud 360, RedLock, Twistlock, Aporeto
 

Overview

AWS Security Hub is a comprehensive security service that provides a centralized view of security alerts and compliance status across an AWS environment. It collects data from various AWS services, partner solutions, and AWS Marketplace products to provide a holistic view of security posture. With Security Hub, users can quickly identify and prioritize security issues, automate compliance checks, and streamline remediation efforts. 

The service offers a range of features including continuous monitoring, threat intelligence integration, and customizable dashboards. It also provides automated insights and recommendations to help users improve their security posture. Security Hub integrates with other AWS services like Amazon GuardDuty, AWS Config, and AWS Macie to provide a unified security experience. Additionally, it supports integration with third-party security tools through its API, allowing users to leverage their existing security investments. 

With its user-friendly interface and powerful capabilities, AWS Security Hub is a valuable tool for organizations looking to enhance their security and compliance posture in the cloud.

Amazon Web Services (AWS)

Prisma Cloud by Palo Alto Networks delivers comprehensive security for cloud environments, focusing on workload protection, identity creation, and seamless AWS integration. Its cloud visibility and control, combined with thorough vulnerability scanning, help maintain robust security across multi-cloud platforms.

Prisma Cloud provides essential capabilities for cloud security posture management, container security, and compliance monitoring. Enterprises utilize it to secure cloud configurations, detect vulnerabilities, and ensure regulatory compliance, spanning AWS, Azure, and Google Cloud. Its runtime management, identity-based micro-segmentation, and threat detection enhance cybersecurity. Despite needing improvements in documentation, integration complexities, UI, and the need for role-based access control refinement, it remains pivotal for securing assets across cloud infrastructures, particularly with its capabilities for vulnerability scanning and CI/CD pipeline integration.

What are the key features?

  • Workload Identity Creation: Establishes identities for cloud workloads, enhancing security through precise access management.
  • Dynamic Workload Protection: Protects applications dynamically, securing resources during runtime.
  • Integration with AWS Products: Seamlessly integrates with AWS services, maximizing the efficiency of cloud operations.
  • Automated Forensics: Provides detailed insights through automated investigations and runtime mapping between containers.
  • Application Dependency Map: Enables compliance and asset management through comprehensive inventory functionality.

What benefits or ROI should users expect?

  • Proactive Threat Prevention: Enhances security measures with advanced threat detection and prevention.
  • Cloud Visibility and Control: Offers control across multi-cloud environments, ensuring users maintain a strong security posture.
  • Prevention Capabilities: Users value its ability to prevent vulnerabilities and threats effectively.
  • Integration Capabilities: Supports seamless integration into existing cloud infrastructures and CI/CD pipelines.

In industries like finance, healthcare, and retail, Prisma Cloud is implemented to strengthen cybersecurity measures, facilitate regulatory compliance, and enhance governance. Organizations leverage its features to secure sensitive data, monitor configurations, and integrate security processes within CI/CD workflows, ensuring robust protection across complex cloud infrastructures.

Palo Alto Networks
 

Sample Customers

Edmunds, Frame.io, GoDaddy, Realtor.com
Amgen, Genpact, Western Asset, Zipongo, Proofpoint, NerdWallet, Axfood, 21st Century Fox, Veeva Systems, Reinsurance Group of America
Buyer's Guide
AWS Security Hub vs. Prisma Cloud by Palo Alto Networks
March 2025
Free Report: AWS Security Hub vs. Prisma Cloud by Palo Alto Networks
Find out what your peers are saying about AWS Security Hub vs. Prisma Cloud by Palo Alto Networks and other solutions. Updated: March 2025.
DOWNLOAD NOW
845,040 professionals have used our research since 2012.
See our AWS Security Hub vs. Prisma Cloud by Palo Alto Networks report.
See our list of best Cloud Security Posture Management (CSPM) vendors.

We monitor all Cloud Security Posture Management (CSPM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.