#USA #Cloud Security #Palo Alto #CyCognito #Wiz

CyCognito Partners with Wiz: Enhancing Cloud Security through Integration

In a significant move for cloud security management, CyCognito, a leader in external exposure management, has announced its collaboration with Wiz, a premier cloud security provider. This partnership aims to combine the strengths of both platforms to provide a comprehensive security solution for enterprises. The integration was officially unveiled at the RSA Conference, marking a new chapter in cloud safety and risk management practices.

Bridging Visibility Gaps in Cloud Security

The increasing complexity of cloud environments has created critical visibility gaps that can jeopardize an organization’s security posture. Issues such as human errors in account mapping, misconfigurations, and unmanaged workloads often lead to dangerous blind spots. These vulnerabilities provide fertile ground for threat actors to exploit.

CyCognito tackles these significant challenges using its seedless discovery methodology, which automatically identifies unmanaged cloud instances—this is crucial for organizations where traditional security tools fall short. By leveraging an attacker's perspective, CyCognito uncovers both sanctioned and unsanctioned environments without needing APIs from cloud service providers. This innovative approach enhances visibility and helps security teams manage dynamic cloud ecosystems effectively.

Solutions for Identifying and Testing Vulnerabilities

One of the standout features of CyCognito is its application security testing capabilities. The platform employs Continuous Dynamic Application Security Testing (DAST) to scrutinize running applications for vulnerabilities actively. By testing from the network edge through to the application layer, CyCognito provides organizations with essential insights needed to reach their application security goals. Addressing existing gaps in security testing will be crucial for many companies as they look to fortify their defenses against increasingly sophisticated cyber threats.

Randy Streu, Senior Vice President of Global Channels & Alliances at CyCognito, emphasizes the value this integration provides, stating: "By integrating with Wiz, we're incorporating the attacker's perspective into cloud security programs. This partnership allows security teams to gain both internal and external visibility—combining Wiz's robust cloud context with our continuous discovery to uncover and prioritize the most impactful risks."

Benefits of the CyCognito and Wiz Integration

1. Risk Enrichment

The integration allows for direct mapping of Wiz assets to CyCognito, enhancing the context of security findings and facilitating a risk-based prioritization strategy that harnesses the attacker's perspective.

2. Unified Coverage Insights

With access to external asset discovery, joint customers of CyCognito and Wiz can better identify previously unknown or unmanaged assets within their infrastructure, ultimately decreasing exposure to potential risks.

3. Multi-Cloud Attacker's Perspective

CyCognito’s capabilities enrich Wiz's visibility across different cloud platforms, including AWS, Azure, and Google Cloud, enabling comprehensive assessments of web apps and associated risks.

4. Targeted DAST Based on Verified Exposure

Wiz is capable of identifying externally exposed API endpoints through both static and dynamic analyses, which it then forwards to CyCognito for focused DAST scanning.

The Future of Cloud Security Collaboration

The collaboration between CyCognito and Wiz is set to revolutionize the way cloud security is managed. The integration supports a modern operating model where security and cloud teams collaboratively enhance security throughout the development lifecycle. With Wiz's unified platform delivering a seamless code-to-cloud context, the focus remains on minimizing the attack surface effectively. This allows teams to implement shared policies for early risk mitigation within the software development lifecycle (SDLC).

Furthermore, with Wiz Defend, organizations can promptly detect and respond to real-time threats across their cloud environments, ensuring comprehensive visibility and control over their code, cloud services, and runtime activities.

Oron Noah, Vice President of Product, Extensibility & Partnerships at Wiz, expressed enthusiasm regarding the collaboration, stating, "Welcome CyCognito to the Wiz Integration Network! With the fusion of CyCognito’s continuous DAST and external asset discovery combined with Wiz’s comprehensive code-to-cloud context, we empower our customers to proactively identify exposures and prioritize critical risks, significantly enhancing their cloud security posture."

For those interested in learning more about this novel integration, the CyCognito-Wiz presentation at the RSA Conference (booth #3110) offers an insightful showcase. You can also find additional information and resources highlighting how this integration can boost cloud security on CyCognito’s blog page.

About CyCognito

CyCognito is an advanced external exposure management platform dedicated to discovering, testing, and prioritizing security risks. With capabilities that include the comprehensive mapping of external attack surfaces and conducting over 80,000 security tests, CyCognito assists organizations in identifying and addressing vulnerabilities proactively. Trusted by Fortune 500 companies and various government agencies, CyCognito greatly reduces remediation time from months to days. To find out more, visit CyCognito’s website.