Wiz

Wiz is a cloud security platform that provides agentless visibility, risk prioritization, and controls for resources across public cloud and containerized environments.

• Cloud Native Application Protection Platform (CNAPP) capabilities for public cloud workloads, containers, and Kubernetes clusters.
• Agentless Cloud Security Posture Management (CSPM) for Infrastructure-as-a-Service (IaaS) accounts and services.
• Workload and data-focused risk analysis across vulnerabilities, misconfigurations, identities, secrets, and network exposure (cloud security).
• Integration with cloud provider APIs and security tools for centralized inventory, policy enforcement, and alerting (security operations).
• Governance and compliance monitoring for cloud environments mapped to security benchmarks and regulatory frameworks.

More About Wiz

Wiz provides a cloud security platform designed for enterprises that run workloads across public cloud environments and container platforms. The platform connects directly to cloud provider APIs to build an inventory of resources, including virtual machines, containers, serverless functions, databases, identities, and network components. By operating at the cloud configuration and metadata layer, Wiz focuses on agentless coverage so that security and platform teams can assess risk across large deployments without installing software on individual workloads.

In enterprise environments, Wiz is positioned as a CNAPP and CSPM solution. It is used by security, DevSecOps, and cloud platform teams to identify and prioritize risks in IaaS, Platform-as-a-Service (PaaS), and container orchestration systems. Typical architectures include multi-account or multi-subscription setups on providers such as Amazon Web Services, Microsoft Azure, and Google Cloud Platform, along with Kubernetes clusters running on managed or self-managed infrastructure. Wiz ingests configuration data, runtime context, and vulnerability scan results to correlate issues across these layers.

The Wiz platform applies a graph-based context model that links resources, permissions, network paths, vulnerabilities, secrets, and data stores. Using this model, the system highlights attack paths and risk scenarios, such as externally exposed workloads with exploitable vulnerabilities and access to sensitive data. The platform supports detection of software vulnerabilities, insecure configurations, excessive identity and access management (IAM) permissions, embedded secrets, and other common cloud risks. These capabilities place Wiz in enterprise categories such as cloud infrastructure security, vulnerability management, and identity-aware risk analysis.

Wiz integrates with existing security and IT operations tools, including Security Information and Event Management (SIEM), IT service management, ticketing, and security orchestration platforms. By exporting alerts, findings, and asset context into these systems, organizations can align remediation workflows with established incident and change management processes. The platform also offers policy and compliance features that map cloud environments to industry benchmarks and regulatory frameworks, enabling continuous assessment against standards such as Collective Intelligence System (CIS) benchmarks or sector-specific requirements.

From a directory and categorization standpoint, Wiz fits into cloud security, CNAPP, CSPM, vulnerability and risk management, and Security Operations (SecOps) enablement. Its focus is on providing a unified view of cloud risk across infrastructure, workloads, identities, and data, supporting enterprise teams responsible for securing large-scale, multi-cloud and container-based environments.