Wiz is on the FedRAMP Marketplace

What our “in process” milestone means, and why it’s great news for the public sector.

2 minutes read

Here at Wiz, we are actively working towards our FedRAMP® moderate authorization and are excited to be listed as “in process” on the FedRAMP Marketplace.  

Here’s why we’re celebrating:  

FedRAMP is a government-wide program that provides a risk-based approach for the adoption and use of cloud services by the federal government, thereby empowering agencies to use modern cloud technologies securely. By moving to have an authorized FedRAMP solution, we’re on track to make it possible for U.S. federal government organizations to take advantage of our Cloud-Native Application Protection Platform (CNAPP) and further consolidate their cloud security programs to a single platform that is truly built for cloud.  

The timing couldn’t be better for our new Senior Director of Public Sector, Dean Scontras, who just joined Wiz. Dean brings a wealth of experience in building relationships in the federal and SLED space. He will be focused on partnering with government agencies in this key market, helping to change the way they approach risk by gaining context and eliminating noise.   

Wiz’s deca-unicorn status reflects the immense demand for our platform, and its capacity to unlock staggering value for customers within minutes of deployment. We are committed to bringing Wiz's capabilities to the public sector and partnering alongside federal agencies to help them secure the nation from cyberattack. For these reasons we are loudly stating our intent to offer a FedRAMP authorized product, while celebrating this latest milestone.

Dean Scontras, Senior Director of Federal & Public Sector, Wiz

Government agencies and public sector customers are rapidly increasing their reliance on cloud and modernizing operations. A recent article in Government Technology Insider underscores this shift, pointing out:  

The adoption of cloud solutions and cloud services has skyrocketed across government agencies since the launch of the federal Cloud First policy in 2011. By 2020, more than 75 percent of federal agencies had adopted some capacity of cloud computing with more than $8 billion spent on cloud services and solutions in 2022 .

The proliferation of these services has challenged infosec teams, and the rise of CNAPP is a direct response to these pain points. In the recent Market Guide for Cloud-Native Application Protection Platforms Gartner highlights the power of CNAPPs to “address the full life cycle protection requirements of cloud-native applications from development to production.” Simply put, CNAPPs are a way to combat the siloed approach to risk that has led to excessive alerts and wasted developers’ time.  

Wiz’s CNAPP offering is #1 and top ranked by customers because we’ve created a platform that supports the new operating model security organizations need for cloud, bringing development, security, and operations closer together in a unified approach. We’ve also continued to push improvements that drive real value for security and development teams. Recently, we even added data security capabilities that enhanced our cloud security platform with broader coverage for cloud data assets and a customizable data classification engine to support the needs of business stakeholders.  

Ultimately, all the myriad reasons why Wiz has seen massive adoption within the enterprise will now carry through to government organizations, who stand to benefit greatly from the blend of visibility, security, agility, and unmatched ROI that Wiz enables.  

Industry certifications Wiz currently holds include SOC2 Type 2, SOC3, ISO 27001, ISO 27701, ISO 27017, ISO 27018, HIPAA, and CyberGRX.   

Continue reading

Get a personalized demo

Ready to see Wiz in action?

“Best User Experience I have ever seen, provides full visibility to cloud workloads.”
David EstlickCISO
“Wiz provides a single pane of glass to see what is going on in our cloud environments.”
Adam FletcherChief Security Officer
“We know that if Wiz identifies something as critical, it actually is.”
Greg PoniatowskiHead of Threat and Vulnerability Management