airs-workshop -- welcome
~/airs workshop init --enablement --app-security

Prisma AIRS
Application & Agent Security

Technical Services Enablement — Application Security Path
4.5 Days • Presentation + Lab + Discussion

4.5
Days
10+
Lab Hours
4
Product Tracks
1
Goal: AIRS-Ready
The Pace of Change

This Is Moving Fast

AI agents aren't coming — they're here. And the pace is accelerating.

2023
ChatGPT hits 100M users
Chatbots. Q&A. Text generation.
Early 2024
RAG & tool use go mainstream
LLMs start calling APIs, querying databases.
Late 2024
Agentic frameworks explode
LangChain, CrewAI, AutoGen, Bedrock Agents. MCP launches.
2025
Autonomous agents in production
Multi-agent systems, tool chains, real decisions, real data.
Now
Every enterprise is deploying — most with zero security
This is the gap. This is why we're here.
The Mindset

Becoming an AI Security Consultant

This isn't optional learning. AI is reshaping every customer conversation, every engagement, every tech stack.

The consultants who lean in now have first-mover advantage.
The ones who wait will be catching up.

This week: Learn AI tooling. Learn AI security. Leave ready to deliver.

Who's in the Room

Introductions

Each person shares:

  1. Name
  2. Role and region
  3. Years at Palo Alto
  4. One AI tool you've used and what you did with it (past month)
  5. One thing you want to walk away with this week
Schedule

The Week at a Glance

Monday
Foundations & Model Security
Welcome • AIRS Overview • Environment Setup • LLM Concepts • Threat Landscape • Model Security • MLOps Lab
Tuesday
Model Security & Red Teaming
Guest: Illya / Protect AI • Deploy to Cloud • AIRS Scanning • Red Teaming Concepts • Red Team Lab
Wednesday
Runtime — API Intercept
Agentic AI Patterns • Runtime Threats • API Intercept Deep Dive • API Intercept Lab • Claude Code Advanced
Thursday
Agents & MCP Security
Multi-Agent Systems • Multi-Agent Lab (3 hrs) • MCP Security • Agentic Big Picture • Cumulative Red Team
Friday
Wrap-Up & Vision
Cloud Integration • PS Delivery Workshop • Guest: Product Roadmap • Synthesis • End at Noon
The Arc

“By Friday, you'll have deployed a model, scanned it, protected an app at runtime, built an agent system, and red-teamed the whole thing.

~14 hrs
Presentations
~10 hrs
Hands-On Labs
~4 hrs
Discussion
Format

How This Workshop Works

💻

Laptops Closed

During presentations, unless noted. When it's lab time, open up. We'll make it clear.

💬

Conversation First

The value of being together onsite is discussion. Ask questions, share war stories, challenge ideas. Don't hold back.

🤖

Claude Code in Labs

Every lab has a Claude-guided workflow. It walks you through steps, answers questions, and helps debug.

🎯

Self-Paced Labs

Fast? Go deeper. Stuck? Ask Claude or flag the instructor. Nobody finishes everything — by design.

#pso-airs on Slack — not just for this week. We're building a community for AI Security Consultants to learn together and help each other in the field.

The Transition

Why You're Here

You already know how to inspect and secure Layer 7 traffic.
AI security is the same discipline applied to a new application layer.

What You Know (NGFW) What You'll Learn (AIRS)
Packets & sessions Prompts & context windows
App-ID AI App discovery
Security profiles (IPS, AV, URL) AI Security profiles (injection, DLP, toxicity)
SSL decryption API Intercept (inspect LLM traffic)
VM-Series in a Security VPC Network Intercept (AI-aware firewall)
Panorama / SCM for policy SCM for AI policy (same console)
WildFire for unknown files Model Security for unknown models
Pen testing before go-live Red teaming before AI deployment
The Opportunity

The Gap Is Wide Open

Your customers have PA-5400s everywhere. Panorama managed. Perfectly segmented.

And their developers are calling OpenAI APIs from production with no inspection, no DLP, no policy.

Palo Alto acquired Protect AI. Built 5 platform pillars. This is not a side project.

First movers win. By Friday, you'll be in the group that can deliver AIRS.

Logistics

The Basics

🕒
Schedule
9:00 AM start daily. Lunch ~noon. End by 5:00 (4:30 some days). Friday ends at noon.
Breaks
Every 90 minutes minimum. If you need to step out, step out.
💬
Slack Channel
Questions, links, screenshots. Invite link coming up.
🖥
Lab Environment
GCP Cloud Run • AWS Bedrock • n8n Workflows • AIRS SCM Tenant
🔑
Credentials
Distributed at first lab session. AIRS deployment profile provided by instructor.
🔒
Materials
Internal only — don't share externally. Lab repos are yours to keep.
airs-workshop -- ready
~/airs workshop start --module 1.2 --next "Prisma AIRS Overview"

Let's Get Started

Next up: Prisma AIRS Platform Overview — the 5 pillars, how it's positioned, and how you'll talk about it with customers.

Deploy
Models & Apps
Attack
Red Team Everything
Defend
With AIRS