Wiz

Profile

Wiz is a cloud-native application protection platform (CNAPP) that consolidates multiple security functions into a unified solution for protecting multi-cloud infrastructure. Founded in January 2020 by former Microsoft cloud security executives, the platform has achieved significant enterprise adoption, serving a substantial portion of Fortune 100 companies. Wiz operates as a closed-source, commercially-licensed software-as-a-service platform that provides agentless security visibility across Amazon Web Services, Microsoft Azure, Google Cloud Platform, and Oracle Cloud Infrastructure. The platform's distinctive architecture centers on the Wiz Security Graph, which analyzes relationships between cloud entities to identify exploitable attack paths rather than treating security findings in isolation. Alphabet Inc. announced plans to acquire Wiz for thirty-two billion dollars, representing the largest cybersecurity acquisition in history.

Focus

Wiz addresses the fundamental challenge of securing cloud infrastructure where traditional perimeter-based security approaches fail to provide comprehensive visibility across virtualized, ephemeral, and rapidly provisioned resources. The platform solves fragmented security visibility across multi-cloud environments, eliminates alert fatigue through contextual risk prioritization, and integrates security throughout development workflows without impeding innovation velocity. Platform engineers and security teams benefit from unified visibility across infrastructure-as-a-service, containers, platform-as-a-service offerings, serverless functions, and managed databases without deploying agents. Development teams gain security context directly in their workflows, enabling remediation at the source through infrastructure-as-code modifications. The platform serves organizations operating complex cloud infrastructure requiring sophisticated security management across heterogeneous environments, particularly those in security-sensitive industries and rapidly scaling technology companies.

Background

Wiz was founded in January 2020 by Assaf Rappaport, Yinon Costica, Roy Reznik, and Ami Luttwak, who previously collaborated at Adallom, a cloud access security broker acquired by Microsoft in 2015. The founding team led Microsoft's Cloud Security Group before establishing Wiz with deep expertise in cloud security architecture and enterprise sales. The company emerged from stealth in December 2020 with one hundred million dollars in Series A funding and achieved one hundred million dollars in annual recurring revenue within approximately eighteen months. Notable production deployments include DocuSign, Slack, BMW, Morgan Stanley, Plaid, LVMH, Fox, and Priceline across diverse industries. The platform remains actively maintained with continuous product development, demonstrated through regular feature releases and strategic acquisitions including Gem Security and Dazz to expand threat detection and remediation capabilities.

Main features

Agentless multi-cloud security visibility

Wiz connects exclusively through cloud provider APIs rather than requiring agent deployment on monitored systems, delivering comprehensive visibility across virtual machines, containers, platform-as-a-service offerings, serverless functions, and databases. This architecture eliminates operational challenges inherent in agent-based approaches: it provides complete visibility into ephemeral resources created for autoscaling, achieves rapid deployment enabling security visibility within minutes, introduces no performance impact to monitored workloads, and automatically covers managed services where agent installation is impossible. The platform performs multi-layer scanning including API-based configuration analysis, workload metadata extraction from operating systems and applications, data scanning for sensitive information exposure, and identity access management mapping to identify excessive permissions and privilege escalation paths across all major cloud providers.

Graph-based attack path analysis

The Wiz Security Graph models relationships between all cloud entities including virtual machines, containers, databases, storage services, identities, and data flows in a graph database that correlates disparate findings to identify exploitable attack paths. Rather than analyzing vulnerabilities in isolation with theoretical severity scores, the platform identifies specific sequences of misconfigurations, vulnerabilities, and excessive permissions that attackers could chain together to achieve objectives within the actual environment. This approach separates critical threats requiring immediate remediation from low-priority findings that pose minimal exploitable risk. The Security Graph enables detection of complex relationships invisible to tools analyzing individual infrastructure layers independently, such as identifying exposed secrets that grant access to sensitive databases through misconfigured identity permissions.

Code-to-cloud security integration

Wiz automatically correlates running cloud resources back to the code, deployment pipeline, and developer that created them, enabling security enforcement throughout the development lifecycle. The platform scans infrastructure-as-code templates in deployment pipelines to identify misconfigurations before infrastructure provisioning, integrates with CI/CD platforms through the Wiz CLI to provide developers immediate security feedback during code commits and builds, and implements admission controllers in Kubernetes environments to prevent deployment of images or configurations violating security policies. During incident response, complete cloud context and automated forensics collection enable security teams to trace from detection through the compromised resource to the original code, facilitating remediation at the source to prevent similar deployments rather than addressing symptoms in production environments.