https://live.paloaltonetworks.com/t5/prisma-cloud-discussions/runtime-protection-vs-application-security/m-p/590330#M1235 <P>If I already have my containers onboarded in Runtime protection, I don't see much value in adding them to application security.&nbsp; As they both have vulnerability management.&nbsp; Am I missing something?</P> Tue, 25 Jun 2024 14:36:00 GMT humblebumble 2024-06-25T14:36:00Z https://live.paloaltonetworks.com/t5/prisma-cloud-discussions/runtime-protection-vs-application-security/m-p/590330#M1235 <P>If I already have my containers onboarded in Runtime protection, I don't see much value in adding them to application security.&nbsp; As they both have vulnerability management.&nbsp; Am I missing something?</P> Tue, 25 Jun 2024 14:36:00 GMT https://live.paloaltonetworks.com/t5/prisma-cloud-discussions/runtime-protection-vs-application-security/m-p/590330#M1235 humblebumble 2024-06-25T14:36:00Z https://live.paloaltonetworks.com/t5/prisma-cloud-discussions/runtime-protection-vs-application-security/m-p/590712#M1237 <P>Hi Humblebumble,</P> <P>&nbsp;</P> <P>Running runtime scans on your containers protects your application at runtime. Scanning your container images before deployment (application security) protects you from ever running compromised workloads in your environments.</P> <P>You would get value out of application security scanning because it is significantly cheaper to catch the problem before it is deployed to production. This is the idea behind shift left / <A title="Palo Alto Networks from code to cloud" href="https://docs.prismacloud.io/en/enterprise-edition/content-collections/dashboards/dashboards-code-to-cloud" target="_blank" rel="noopener">from code to cloud</A>.</P> <P>&nbsp;</P> <P>Hope that helps.</P> Fri, 28 Jun 2024 13:34:40 GMT https://live.paloaltonetworks.com/t5/prisma-cloud-discussions/runtime-protection-vs-application-security/m-p/590712#M1237 JNeytchev 2024-06-28T13:34:40Z