OCI Delivers New Security Capabilities that Fortify Cloud Apps and Data Against Emerging Threats

The News: Oracle is expanding the built-in security services and capabilities of Oracle Cloud Infrastructure (OCI) to help customers protect their cloud applications and data against emerging threats. Five new capabilities round out OCI’s existing security offering, including a new built-in and cloud-native firewall service and enhancements to Oracle Cloud Guard and Oracle Security Zones. These new capabilities target ensuring that organizations can secure their cloud deployments and applications with simple, prescriptive, and integrated services that in most cases, do not require additional investment. Read the Oracle Press Release here.

OCI Delivers New Security Capabilities that Fortify Cloud Apps and Data Against Emerging Threats

Analyst Take: OCI is expanding its cloud security capabilities to meet growing enterprise demand for multiple layers of protection that can help identify and rout emerging threats and security breaches swiftly. The new capabilities include:

  • OCI Network Firewall is a cloud-native, managed firewall services that is powered by Palo Alto Networks VM-Series Next-Generation Firewall technology (NFGW).
  • Oracle Threat Intelligence Service is developed to aggregate threat intelligence data across different sources and manages such data to provide actionable guidance for threat detection and prevention in Oracle Cloud Guard and other OCI services.
  • Oracle Cloud Guard Threat Detector identifies misconfigured resources, insecure activity across customer environments, and potential malicious threat activities.
  • Oracle Security Zones are expanded to support customer-defined policy sets and integrated security posture monitoring with Cloud Guard.
  • Oracle Cloud Guard Fusion Applications Detector extends Oracle Cloud Guard beyond cloud security posture management for OCI to also monitor Oracle Fusion Cloud Applications and provide users with a consolidated view of security policies.

I see the five new security capabilities, including especially OCI Network Firewall, providing the cloud security differentiation needed to accelerate overall OCI sales and marketing cycles. Among the five new security capabilities, it is my understanding only the OCI Network Firewall requires additional investment and, as such, merits additional assessment.

For instance, through OCI Network Firewall’s flexible policy enforcement users can apply granular security rules on outbound, inbound (north-south), and lateral (east-west) traffic to both network and application workloads. The solution can be transparently inserted in the traffic path using virtual cloud network (VCN) routing rules and composed with other network functions such as OCI gateways and VCN subnets for security enforcement across arbitrary network topologies.

OCI Network Firewall also offers machine learning-powered capabilities to protect OCI workloads and flexibly consume on OCI. As an OCI native firewall-as-a-service, the solution enables customers to use firewall features without needing to manage and configure additional security infrastructure. The firewall inspects every request including transport layer security (TLS) encrypted traffic that traverses it and can enforce actions such as reject, drop, allow, intrusion detection, or prevention based on the user configured firewall policy rules.

With the OCI partnership, Palo Alto Networks gains a new feather in its marketing cap by enabling OCI to overcome the limitations of using physical firewalls to deliver consistent protection across entire networks and cloud fabrics. Palo Alto NGWFs already have a track record at enabling hyperscalers, such as AWS, to deliver an essential component of cloud security on an automated and integrated basis to organizations throughout their entire network including headquarters, office campuses, mobile and remote workforces, branch office, and data centers. Now OCI also counters the ability of AWS to use the Palo Alto NGFW technology as a cloud security differentiator.

From my view, additional key differentiators include Oracle Security Zone policies, which can act as security guardrails for resources and define allowable configurations, in contrast to people predicated IAM permission. Also, Oracle Cloud Guard Fusion Applications Detector provides pre-configured and customized configurations, promoted as “recipes,” to observe potential security violations in the applications. Since the recipes bundle best practices and lessons learned on a dynamic basis, I anticipate that the feature can make a difference at easing ecosystem-wide adoption of new OCI security capabilities.

Overall, I believe the five new OCI security capabilities fulfill ever-increasing organizational demand for cloud security solutions that improve the threat detection and prevention of their cloud applications and data across OCI. Plus, OCI now offers new security capabilities that counter and differentiate against the existing cloud security capabilities of key cloud rivals AWS, Azure, and Google Cloud. Let the competition intensify.

Disclosure: Futurum Research is a research and advisory firm that engages or has engaged in research, analysis, and advisory services with many technology companies, including those mentioned in this article. The author does not hold any equity positions with any company mentioned in this article.

Analysis and opinions expressed herein are specific to the analyst individually and data and other information that might have been provided for validation, not those of Futurum Research as a whole.

Other insights from Futurum Research:

Oracle Exadata Cloud Infrastructure X9M Raises the Cloud Database Market Stakes

Oracle MySQL HeatWave: Teaching the Competition a Lesson in ML

Oracle Unleashes Multi-VM Autonomous Database on Exadata Cloud@Customer to Transform Data Management

Image Credit: Oracle

 

Author Information

Ron is an experienced, customer-focused research expert and analyst, with over 20 years of experience in the digital and IT transformation markets, working with businesses to drive consistent revenue and sales growth.

Ron holds a Master of Arts in Public Policy from University of Nevada — Las Vegas and a Bachelor of Arts in political science/government from William and Mary.

Related Insights
Compliance as Code Is No Longer Optional: Why Manual Reviews Can’t Keep Up
July 4, 2026

Compliance as Code Is No Longer Optional: Why Manual Reviews Can’t Keep Up

Qodo's 'Compliance as Code' framework automates enterprise AI compliance through PR checks, solving the data privacy and security gaps that plague manual reviews at scale....
Brave's Browser Containers Raise the Bar for Privacy and Workflow Flexibility
July 3, 2026

Brave’s Browser Containers Raise the Bar for Privacy and Workflow Flexibility

As AI platform adoption accelerates to $181.3B projected market size, Brave's v1.92 release introduces native browser containers addressing data privacy concerns for 52.6% of enterprise decision makers managing multi-cloud AI...
The Hard(er) Challenge in Agent Governance Is Authorization
June 25, 2026

The Hard(er) Challenge in Agent Governance Is Authorization

Fernando Montenegro, VP at Futurum Group, argues that the launch of the Agent Control Standard does not close the agent governance gap, and that "shrinkage," not universal coverage, is the...
Can Cisco Widen Splunk’s Agentic SOC Capabilities With WideField
June 25, 2026

Can Cisco Widen Splunk’s Agentic SOC Capabilities With WideField?

Fernando Montenegro, VP at Futurum, examines Cisco's planned acquisition of WideField Security and how deeper identity and session intelligence could strengthen Agentic SOC capabilities as enterprises deploy more AI agents...
HPE Discover 2026: A Coherent AI Story That Now Has to Convert
June 24, 2026

HPE Discover 2026: A Coherent AI Story That Now Has to Convert

Fernando Montenegro and Tom Hollingsworth analyze HPE Discover 2026, where HPE built a networking-centered, full-stack AI story and now must convert that breadth into spending momentum and a security story...
Can Databricks’ Security Upgrades Finally Unify AI Innovation and Compliance at Scale?
June 19, 2026

Can Databricks’ Security Upgrades Finally Unify AI Innovation and Compliance at Scale?

Databricks announces Automatic Identity Management for Entra ID and Okta, removing compliance bottlenecks for regulated industries. New security enhancements enable zero-trust access across all major clouds....

Book a Demo

Welcome

The vision behind everything in Futurum’s Custom Research practice is this: research should show you what is happening, what comes next, and what to do about it. It should be personal to each audience, easy for people to grasp, and structured so LLMs can reason over it accurately. And it should be fast and turnkey; you want answers now, not another project to carry for quarters.

Whether you are defining business, channel, or go-to-market strategy; evaluating vendors or justifying ROI; or commissioning research to fill an emerging market need, we have your back, with a program that answers your questions with the objectivity and credibility to drive real decisions.

To do it, we bring unmatched data to bear: Futurum research, surveys, and market projections; validated market feeds; ETR’s 15 years of insight from 10,000 technology decision-makers; G2’s buyer and user data; and what our analysts hear every day. Add leading primary collection, from AI-moderated voice interviews to surveys and analyst-led interviews, all turnkey, and every project comes out credible, nuanced, and actionable.

And we don’t just drop the results in your lap. For internal work, we provide analyst-led sessions, interactive dashboards, and a range of formats. For market-facing work, Futurum delivers turnkey activation and amplification that actually gets seen, by people and by LLMs, through our media and share of voice. This is research that moves decisions and markets.

We will meet you wherever you are, from a fast-turn brief to a multi-year program, and shape the work to your goals, timeline, and budget. The right program for your moment.

If any of this is useful, I would love to talk.

Benjamin Brown, VP Custom Research, Futurum Research

Benjamin Brown

VP, Custom Research · The Futurum Group

Newsletter Sign-up Form

Get important insights straight to your inbox, receive first looks at eBooks, exclusive event invitations, custom content, and more. We promise not to spam you or sell your name to anyone. You can always unsubscribe at any time.

All fields are required






Thank you, we received your request, a member of our team will be in contact with you.