Palo Alto Networks has said it will migrate key internal workloads to Google Cloud and integrate its Prisma AIRS AI security platform deeper into Google Cloud’s developer and runtime tools.

In their joint statement, the companies said that customers will be able to protect live AI workloads and data “from code to cloud”.

In announcing the deal, Palo Alto cited growing risks to AI infrastructure outlined in its December 2025 State of Cloud report, which it said found 99% of respondents experienced at least one attack on AI infrastructure in the last year.

The same report also said 89% of organizations believe cloud and application security should be fully integrated with the SOC, and 97% prioritize consolidating their cloud security footprint.

It further added that 30% of teams take more than a day to resolve an incident, underscoring the operational pressure on security leaders as AI workloads expand.

That expanded partnership also has a large commercial component. A source told Reuters Palo Alto’s commitment to Google Cloud is “approaching $10 billion” over several years, though there is no official confirmation about the figure.

The mechanics of the tie-up focuses on pushing security controls closer to how AI systems are built and operated on Google Cloud. Palo Alto said Prisma AIRS will protect AI workloads and data on Google Cloud services including Vertex AI and “Agent Engine,” and will be used to secure developer tooling such as Google’s Agent Development Kit.

Google’s developer documentation describes Vertex AI Agent Engine as a managed way to deploy, manage and scale AI agents in production, and the partners framed the deal as extending “code-to-cloud” security into developer and runtime layers.

Palo Alto also said the agreement expands integrations around VM-Series firewalls and Prisma SASE, including Prisma Access running on Google’s network and use of Cloud Interconnect for connectivity across clouds and applications.

The companies said they plan “pre-vetted” solutions intended to reduce integration work for security teams operating hybrid and multicloud environments.

Verizon’s 2025 Data Breach Investigations Report said breaches involving a third party doubled from 15% to 30%, and reported a 94-day median time to remediate leaked secrets found in a GitHub repository.

In its State of Cloud Security Report 2025, Palo Alto said 41% of organizations saw a surge in API attacks, while 53% cited lenient IAM practices as a top challenge and a leading vector for data exfiltration.

Google Cloud has been positioning partner-built controls as part of its broader push to secure “models, data, apps, and agents,” including Prisma AIRS for agentic workloads on Google Cloud. In the same blog post, Google Cloud said Palo Alto designed Prisma AIRS to protect AI and agentic workloads on Google Cloud, including Vertex AI and Agentspace.

Reuters linked the expanded partnership to Google Cloud’s efforts to strengthen its security pitch as hyperscalers compete for enterprise AI workloads.

Neither company disclosed a timeline for Palo Alto’s internal workload migration or for general availability milestones tied to the deeper Prisma AIRS integrations.