Wiz
Blog

Meet Wiz for M365: Bringing SaaS into the Security Graph

Secure Microsoft 365 and the cloud it powers — one platform, one graph, complete context.

Get a demo
Snegha Ramnarayanan, Alma Raziel

Microsoft 365 powers how many modern businesses collaborate — but it also connects deeply into the cloud environments that run those businesses. Sensitive data flows constantly between OneDrive, SharePoint, Azure, and the applications that depend on them.

With Wiz for Microsoft 365, you can now secure both M365 and everything it touches in the cloud — visualizing how SaaS data, identities, and configurations connect across your broader cloud attack surface.

Just as Wiz transformed visibility in the cloud, we’re now bringing that same agentless, graph-based approach to SaaS. This means not only detecting risk in M365 itself, but also enriching the Wiz Security Graph with new context that reveals previously hidden attack paths spanning SaaS and cloud.

This functionality is now available in public preview and you can turn it on in the preview hub. 

See risk in context — from SaaS to cloud

The first step is visibility that makes sense. Wiz surfaces Microsoft 365 posture and data risks directly in context — showing how a simple SaaS issue can open a real attack path in your cloud.

You’ll be able to answer questions like:

  • Which OneDrive or SharePoint sites contain sensitive data or secrets?

  • Who can access them, and are any links shared externally?

  • Which Microsoft 365 misconfigurations could expose connected cloud resources?

  • How do these issues connect to my workloads, identities, or AI pipelines?

M365 Posture issue : High-Risk Data with Anonymous Access links
Risk issue highlighting an attack path

Inside Wiz for Microsoft 365

Wiz brings the same visibility and context that define its cloud security approach directly to Microsoft 365 — spanning posture, data, and access. Each capability below includes a visual example of how insights appear in the Wiz platform.

Configuration and Posture (CSPM)

Identify and remediate misconfigurations across Exchange Online, OneDrive, and SharePoint.

  • Measure your M365 posture against Microsoft and CIS benchmarks

  • Detect overly permissive or risky settings

  • Map issues back to affected users, workloads, or data in the Wiz Security Graph


Data Security and Classification (DSPM)

Discover and protect sensitive data and secrets across OneDrive and SharePoint using Wiz’s AI-driven classification engine, built on the same technology that powers our broader DSPM capabilities.

  • Automatically identify PII, PHI, secrets, and regulated data across your Microsoft 365 environment — building a complete, contextual map of where sensitive data lives, how it’s labeled, and who can access it

  • Integrate Microsoft Purview labels directly into Wiz for unified visibility and consistent data governance

  • Apply AI driven classification methods to identify ‘sensitive’ data tailored to your business.

Access and Exposure

Understand and control how information is shared across Microsoft 365 to prevent accidental or risky exposure by correlating access findings with sensitive data and workload context in the Wiz Security Graph, helping teams prioritize and remediate the most impactful risks.

  • Identify externally shared links and files across OneDrive and SharePoint, and see exactly who can access them

  • Track guest and privileged accounts with elevated permissions or cross-tenant access that increase risk

  • Identify third party access to resources and critical data in Sharepoint. 

Turning visibility into actionable insights

Each Microsoft 365 finding in Wiz becomes more than just an alert — it’s a context-rich insight tied to real risk and impact.

Because M365 data, identities, and misconfigurations are now part of the Wiz Security Graph, each can connect to issues across your broader cloud environment — such as:

  • A SharePoint site exposing regulated data linked to an Azure workload

  • A OneDrive folder containing secrets shared externally

  • A user identity with risky permissions spanning both M365 and cloud resources

These connections reveal the true attack paths that matter most. By visualizing them in one graph, security teams can prioritize faster, focus on the right fixes, and take action directly within Wiz.

Through Wiz’s robust remediation options — from built-in guided fixes and posture adjustments to automated workflows and integrations with ticketing and response tools — teams can seamlessly operationalize every Microsoft 365 finding.

This ensures surfaced risks move from insight to resolution, accelerating response while maintaining context across SaaS and cloud environments.

What’s next

This launch marks the start of a broader journey — bringing SaaS environments into the Wiz Security Graph.

In the coming months, we’ll expand Microsoft 365 coverage with enhanced shadow data detection, new threat-driven insights, and broader SaaS use cases that continue to extend the Wiz Security Graph across where your business runs.

Our vision is simple: one platform, one graph, securing everything from code to cloud to SaaS — giving you a complete picture of your security posture and the context you need to act with confidence.

See more announcements from Wiz 2025

Tags
#Data Security#Wiz Cloud#Product

Continue reading

Get a personalized demo

Ready to see Wiz in action?

"Best User Experience I have ever seen, provides full visibility to cloud workloads."
David EstlickCISO
"Wiz provides a single pane of glass to see what is going on in our cloud environments."
Adam FletcherChief Security Officer
"We know that if Wiz identifies something as critical, it actually is."
Greg PoniatowskiHead of Threat and Vulnerability Management
Get a demo