Palo Alto Networks Cortex Data Lake
Enable AI-based innovations for cybersecurity
Identifying and stopping sophisticated attacks requires using advanced artificial intelligence (AI) and machine learning across all your enterprise’s data. Current approaches leave data hidden in siloes across your security infrastructure, limiting the effectiveness of analytics. As data continues to grow, legacy hardware-based deployments can’t scale, which introduces operational burdens and high costs—all with limited capacity that makes useful data unwieldy or unavailable.
Part of Cortex
Cortex™ is the industry’s only open and integrated AI-based continuous security platform. It delivers radical simplicity and significantly improves security outcomes through automation and unprecedented accuracy
Cortex Data Lake
Cortex Data Lake enables AI-based innovations for cybersecurity with the industry’s only approach to normalizing and stitching together your enterprise’s data. Get public cloud scale and locations with assurance of the security and privacy of your data. Significantly improve the accuracy of security outcomes with trillions of multi-source artifacts for analytics. Cortex Data Lake can:
- Radically simplify your security operations by collecting, integrating, and normalizing your enterprise’s security data.
- Effortlessly run advanced AI and machine learning with cloud-scale data and compute.
- Constantly learns from new data sources to evolve your defenses.
Collect, transform and integrate your enterprise’s security data to enable Palo Alto Networks solutions.
Built for security operations
Radically simplify security operations by collecting, transforming and integrating your enterprise’s security data.
Powers Palo Alto Networks offerings
Facilitate AI and machine learning with access to rich data at cloud native scale.
Drives unprecedented accuracy
Significantly improve detection accuracy with trillions of multi-source artifacts.
Never Worry About Complexity or Scale Again
Deploying massive data collection, storage, and analysis infrastructure is complex. You need to plan for space, power, compute, networking and high availability needs, increasing costs, and operational burden. Once deployed, the infrastructure needs ongoing maintenance and monitoring, taking time away from activities that drive your business forward.
Cortex Data Lake is built to benefit from public cloud scale and locations. The cloud-based service is ready for elastic scale from the start, eliminating the need for local compute and storage. As your needs grow, you can add more capacity with the push of a button. The public cloud architecture lets you take advantage of global locations to solve local data residency and privacy requirements. Infrastructure—including storage and compute—is handled for you, letting you focus on solving new security challenges with apps built on Cortex.
Unified Data That Continues to Expand
Organizations often lack the visibility they need to stop attacks. Data is typically locked in silos across cloud, endpoint, and network assets, preventing tools from effectively to finding, investigating, or automating threat response.
Cortex Data Lake is the industry’s only approach to normalizing and stitching together your enterprise’s data. It automatically collects, integrates and normalizes data across your security infrastructure. With unified data, you can run advanced AI and machine learning to radically simplify security operations with apps built on Cortex. Tight sensor integration allows new data sources and types to be continually added to evolve your defenses.
|You Need To||Cortex Data Lake|
|Stitch together your enterprise’s security data||Collects data from Cortex XDR, Palo Alto Networks Next-Generation Firewalls, Traps™ management service, and Prisma™ Access.|
|Scale your data collection needs||Benefits from public cloud scalability and agility, with capacity increases available in a few clicks. You don’t wait for hardware—just order, activate, and use.|
|Easily access normalized for advanced AI and machine learning||Automatically normalizes data in a consistent format, ensuring the effectiveness of large-scale analytics.|
|Integrate with third-party security tools||Lets you choose to make your data available to third-party security tools via syslog format or email notifications with the Log Forwarding app.|
Size Your Deployment
Use this calculator to determine the storage you need to support innovative apps and services across Cortex and Palo Alto Networks.
Cortex Data Lake integration
Products That Use Cortex Data Lake and Their Requirements
Palo Alto Networks Next-Generation Firewalls and Prisma Access:
- Next-Generation Firewalls and Panorama for network security management with the ability to connect to the cloud service.
- Next-Generation Firewalls and Panorama running PAN-OS 8.0.5+.
- Panorama with the cloud services plugin installed.
Palo Alto Networks Traps for endpoint protection and response:
- Traps running version 5.0+ with Traps management service
- Cortex XDR application (Traps agent included)
- Cortex Data Lake is licensed separately and required for use of Cortex and associated apps.
Download the Palo Alto Networks Cortex Data Lake Datasheet (PDF).
- Pricing subject to change without notice.