Palo Alto Prisma — SASE Track

Prisma Access + Prisma Cloud (CNAPP) + Prisma SD-WAN — Palo Alto's full SASE stack, end-to-end.

📚 12 Modules ⏱ 40 Hours 🎥 Live + Recorded 🏆 SASE Cert Aligned
Enroll Now 📄 Download Syllabus PDF 💬 WhatsApp Us

Who Is This For

  • Engineers moving from on-prem firewall to cloud-delivered security
  • L1 / L2 admins upgrading to SASE / cloud security L3
  • Cloud and DevOps engineers responsible for Prisma Cloud posture
  • Architects designing branch / hybrid / multi-cloud SASE

Prerequisites

  • Networking fundamentals — TCP/IP, DNS, BGP basics
  • Some exposure to Palo Alto NGFW or any enterprise firewall
  • Basic cloud concepts (AWS / Azure / GCP) for Prisma Cloud module

Full Syllabus — 12 Modules

M 1SASE Foundation & Prisma Portfolio
  • What is SASE — Gartner definition, components
  • Prisma portfolio — Access, Cloud, SD-WAN, SaaS
  • Prisma vs Zscaler vs Netskope — positioning
  • Strata Cloud Manager (SCM) overview
  • Prisma Access architecture — service infrastructure
M 2Prisma Access — Architecture Deep Dive
  • Service Connections, Mobile Users, Remote Networks
  • Compute Locations & service node selection
  • Bandwidth allocation per location
  • Cloud Identity Engine (CIE) integration
  • Prisma Access on Panorama vs SCM-managed
M 3Mobile Users (GlobalProtect on Prisma Access)
  • GlobalProtect Portal vs Prisma Access portal
  • Auth methods — SAML, certificate, MFA
  • HIP profiles & posture checks
  • Split-tunnel design
  • Common GP / mobile-user troubleshooting
M 4Remote Networks (Branch Onboarding)
  • IPSec tunnel design — primary & secondary
  • BGP advertisement, ECMP
  • Site-to-site routing into Service Connections
  • Branch HA models
  • QoS & bandwidth profiles
M 5Service Connections — Hybrid Reach
  • What Service Connections are for
  • BGP design between SC and DC / cloud
  • HQ data-center connectivity patterns
  • Active-active SC design
M 6Security Policies in Prisma Access
  • Policy ordering — pre / post rules from Panorama
  • App-ID, User-ID, URL Filtering at scale
  • Threat Prevention, WildFire on Prisma Access
  • SSL Decryption in cloud
  • DLP & SaaS Security Inline
M 7ZTNA & Prisma Access App Gateway
  • ZTNA concepts vs VPN
  • Private app publishing
  • Browser Access (clientless) basics
  • Migrating GlobalProtect VPN → ZTNA
M 8Prisma Cloud — CNAPP Foundation
  • What CNAPP covers — CSPM, CWPP, CIEM, IaC
  • Prisma Cloud onboarding — AWS, Azure, GCP
  • Asset Inventory & resource discovery
  • Compliance dashboards (CIS, PCI, ISO)
M 9Prisma Cloud — Workload & Container Security
  • Defender deployment — host, container, serverless
  • Image vulnerability scanning & CI/CD integration
  • Runtime defense, Kubernetes admission control
  • WAAS — Web Application & API Security on Prisma Cloud
M 10Prisma SD-WAN
  • Application-defined SD-WAN concepts (CloudGenix lineage)
  • ION devices — branch and DC
  • Path policies & SLA-based steering
  • Integration with Prisma Access (CloudBlade)
  • SD-WAN troubleshooting basics
M 11Logging, Monitoring & Troubleshooting
  • Prisma Access logs in Strata Logging Service
  • ADEM — Autonomous Digital Experience Management
  • Common Prisma Access break / fix scenarios
  • Mobile user latency diagnosis
  • Remote network tunnel flap troubleshooting
M 12Cert Path & Interview Prep
  • Palo Alto Prisma SASE certification track
  • Prisma Cloud specialty exam blueprint
  • L1 / L2 / L3 SASE interview question bank
  • Real-world design Q&A — branch / cloud / hybrid

What You Get

🎥

40 Hours

Live + recorded sessions for the entire SASE stack.

🔍

Tenant Walkthroughs

Recorded admin demos of Prisma Access, Cloud and SD-WAN — vendor labs are read-only.

🛠️

Real Case Studies

Branch onboarding, SSL break/inspect, WAAS, SD-WAN steering policies.

📝

Interview Q&A

L2 / L3 SASE-grade question bank with model answers.

🏆

Certificate

Techclick Infosec course completion certificate.

💬

WhatsApp Group

Doubt-clearing batch group with the trainer.

Your Instructor

Trained by working senior cloud and network security engineers with 13+ years of hands-on enterprise experience across Palo Alto, Zscaler, Fortinet, F5, Cisco ISE, and large-scale deployments. Every Prisma module ties back to production-grade SASE and CNAPP scenarios.

FAQ

Q 1Should I do PCNSE before Prisma?

Helpful but not required. We recap NGFW concepts where Prisma policies need them.

Q 2Will I get hands-on labs?

Vendor SaaS labs are demo-only. You get recorded admin walkthroughs plus screenshot-based config exercises that mirror what you'd do in production.

Q 3How does this compare with the Zscaler course?

Zscaler is the market leader for cloud proxy and ZTNA; Prisma is Palo Alto's full SASE + CNAPP stack. We also offer a SASE Combo bundle that covers both.

Q 4Duration and batch schedule?

About 40 hours over 5–6 weeks. WhatsApp us for the next start date.

Q 5Is Prisma Cloud covered or just Prisma Access?

Both. Modules 8 and 9 are dedicated to Prisma Cloud (CSPM + CWPP + WAAS), and Module 10 covers Prisma SD-WAN.

Ready to own the SASE conversation?

Talk to us about the next batch — we'll walk you through the schedule, fees, and demo class.

💬 Book Free Demo Class ✉️ Email support@techclick.in