Wiz integrates with Amazon Security Lake to improve cloud security through cloud security data sharing

New integration enables customers to consolidate security logs, run investigations and analyze security metrics in their customer-owned data lake.

2 minutes read

We are excited to announce our integration with Amazon Security Lake. This integration enables mutual customers to add Wiz Issues (risks that Wiz has identified in your cloud environment), along with AWS and other third-party security events and log data, to a single customer-owned cloud security data lake. Security teams can benefit from data sharing enabled by the unified lake to break down security product silos, prioritize the highest risk security issues, query security analytics, and gain visibility into their overall security posture.   

Effective threat detection and mitigation strategies involve detecting issues across different attack vectors. Security teams spend too much time and effort collecting and normalizing data from their disparate security investments to run security investigations and analyses. The integration between Wiz and Amazon Security Lake enables cloud security data collection in a single security data lake by leveraging the Open Cybersecurity Schema Framework (OCSF) standard, an open-source standard designed for extensible and normalized security data exchange. 

Wiz has fundamentally reimagined cloud security and enables cloud builders and defenders to know what needs their attention. Wiz provides organizations with instant visibility across their cloud environments without deploying agents and continuously analyzes security data across multiple risk factors—configurations, vulnerabilities, networks, identities and access, and secrets—across accounts, users, and workloads to discover the toxic combinations of risk that create attack paths into cloud environments. The correlated risk data provided by Wiz is powerful for security investigations and gathering security analytics.  

Amazon Security Lake, a service that automatically creates a lake and centralizes an organization’s security data from cloud and on-premises sources into a customer-owned, purpose-built data lake. With support for the OCSF standard, Security Lake reduces the complexity and costs for customers to make their security solutions data accessible to address a variety of security use cases such as threat detection, investigation, and incident response.  Security Lake helps organizations aggregate, manage, and derive value from log and event data in the cloud and on-premises to give security teams greater visibility across their organizations. With Security Lake, customers can use the security and analytics solutions of their choice to simply query that data in place or ingest the OCSF-compliant data to address further use cases.  Security Lake helps customers optimize security log data retention by optimizing the partitioning of data to improve performance and reduce costs.   

The new integration is a testament to the strong partnership between Amazon and Wiz. Customers can leverage the analysis provided by Wiz, including toxic combinations, lateral movement paths, and risk prioritization in the OCSF standard.

Oron Noah, Director of Product Management at Wiz

The integration between Wiz and Amazon Security Lake has been designed keeping both security analysts and application developers in mind. Teams can easily get started and share their cloud security issues and logs in their centralized security data lake to improve their protection of workloads, applications, and data.

Rod Wallace, General Manager for Amazon Security Lake

For more details on Amazon Security Lake, click here

Secure everything you build and run in the cloud

Organizations of all sizes and industries use Wiz to rapidly identify and remove the most critical risks in AWS, Azure, GCP, OCI, and Kubernetes so they can build faster and more securely.

Continue reading

Wiz and BigID expand partnership to extend visibility and control for enterprise data to prevent breaches

Deeper partnership accelerates end-to-end cloud-native data protection from discovery to enforcement.

Wiz becomes the first CNAPP to deliver integrated Data Security Posture Management

Wiz expands its platform to proactively eliminate attack paths to discovered critical data.

Wiz and Google Cloud’s Security Command Center: Modern threat detection and response rooted in risk prioritization

Fully understand the impact and architecture behind any threat to streamline and speed effective response with a first-of-its-kind integration combining the Wiz Security Graph’s deep cloud and multi-cloud risk context with Google Cloud’s Security Command Center’s advanced threat detection.