Implementing NIST Incident Response in the Cloud Era
Wiz Expertenteam
This article explores the NIST IR model and capabilities to look out for when choosing IR tools to support NIST SP 800-61 Rev. 2 implementation.
CloudSec Academy
Willkommen bei der CloudSec Academy, Ihrem Leitfaden zum Navigieren in der Buchstabensuppe der Cloud-Sicherheitsakronyme und des Branchenjargons. Heben Sie sich von der Masse ab mit klaren, prägnanten und fachmännisch gestalteten Inhalten, die von den Grundlagen bis hin zu Best Practices reichen.
Schwachstellen-Scans (Vulnerability Scanning)
Wiz Expertenteam
Beim Schwachstellen-Scanning werden Sicherheitslücken in IT-Systemen, Netzwerken und Software erkannt und bewertet.
Malware Scanning in the Cloud: Everything You Need to Know
Wiz Expertenteam
Malware scanning is the process of inspecting files, systems, and cloud resources for signs of malicious software—before it causes damage.
What is a Data Poisoning Attack?
Wiz Expertenteam
Data poisoning is a kind of cyberattack that targets the training data used to build artificial intelligence (AI) and machine learning (ML) models.
7 Incident Response Plan Templates & Examples
Wiz Expertenteam
Writing your IR plan from scratch? Not sure where to begin? Get a head start with these free templates and examples.
What is Attack Surface Analysis?
Wiz Expertenteam
Attack surface analysis is a cybersecurity practice that identifies and evaluates all potential access points, external and internal, that an attacker could exploit.
On-Premise vs. Cloud Security
Wiz Expertenteam
Let's compare on-premises and cloud security, examine their differences, and explore key cloud-specific security concepts to help you choose the best approaches to security for your entire organization.
Top CIEM Solutions: Which Should You Try?
Wiz Expertenteam
Smart CIEM beats basic visibility. The best platforms prioritize real attack paths and provide actionable fixes, not just permission inventories.
Wiz Alternatives: What to consider (and why there’s no exact substitute)
Wiz Expertenteam
Looking for a Wiz alternative? Learn why Wiz stands apart and when it may take multiple tools to match its coverage.
ABAC vs. RBAC: What’s the difference?
Wiz Expertenteam
Choosing between role-based access control (RBAC) and attribute-based access control (ABAC) sets up how your cloud stack determines who may do what, where, and when. This blog post shows you the functional differences between the two models.
Base Image Vulnerabilities: Risks, Real Examples, & How to Secure Them
Wiz Expertenteam
A base image is the foundational layer of every container—it acts like the container’s operating system (OS), providing core files, dependencies, and configurations needed to run your application.
Top DSPM Solutions: Choosing the Right One for Cloud Data Security
DSPM solutions are essential for effective cloud data security and compliance because they continuously oversee and assess an organization’s cloud data security practices and configurations.
What is Code-to-Cloud Security?
Wiz Expertenteam
Code-to-cloud security protects applications across the entire software development lifecycle (SDLC), from code all the way to runtime in the cloud.
What is a VPC?
Wiz Expertenteam
A VPC is a logically isolated private network within a public cloud that users can fully configure.
Was ist Schwachstellenmanagement? [Vulnerability Management]
Wiz Expertenteam
Schwachstellenmanagement umfasst die kontinuierliche Identifizierung, Verwaltung und Behebung von Schwachstellen in IT-Umgebungen und ist ein integraler Bestandteil jedes Sicherheitsprogramms.
Was ist Cloud-Compliance?
Cloud-Compliance umfasst eine Reihe von Verfahren, Kontrollen und organisatorischen Maßnahmen, die Sie ergreifen müssen, um sicherzustellen, dass Ihre cloudbasierten Ressourcen die Anforderungen der Datenschutzbestimmungen, -standards und -frameworks erfüllen, die für Ihr Unternehmen relevant sind.
What is Data Security in 2025?
Wiz Expertenteam
Data security in 2025 demands a shift from perimeter defenses to continuous, context-aware protection across cloud, SaaS, and on-prem environments.
How to Choose a CNAPP: A Security Leader’s Cheat Sheet
Wiz Expertenteam
In this guide, we’ll show you how to choose a CNAPP that cuts through complexity and gives your team a real path to security: with full-stack visibility, runtime protection, and developer-friendly workflows.
How to Evaluate CSP security: A Checklist
Wiz Expertenteam
Cloud service providers offer on-demand, scalable computing resources like storage services, applications, and cloud-based compute. Using a structured checklist can help your business select a cloud provider that has the features you need to meet your security goals.
Statische Anwendungssicherheitstests (SAST) erklärt
Static Application Security Testing (SAST) ist eine Methode zur Identifizierung von Sicherheitslücken im Quellcode, Bytecode oder Binärcode einer Anwendung, bevor die Software bereitgestellt oder ausgeführt wird.
Cloud Security Tools: A Comprehensive Guide of 10 Types of Tools
Wiz Expertenteam
Compare 10 essential cloud security tool types and their key features and learn how to consolidate your security stack with CNAPP solutions for better protection.
Was ist ASPM? [Application Security Posture Management]
Application Security Posture Management umfasst die kontinuierliche Bewertung von Anwendungen auf Bedrohungen, Risiken und Schwachstellen während des gesamten Software Development Lifecycle (SDLC).
Was ist CWPP? [Cloud Workload Protection Platform]
Wiz Expertenteam
Eine Cloud Workload Protection Platform (CWPP) ist eine Sicherheitslösung, die kontinuierliche Bedrohungsüberwachung und Schutz für Cloud-Workloads in verschiedenen Arten von Cloud-Umgebungen bietet.
What Is Cloud Transformation? Strategy, Phases & Security
Wiz Expertenteam
Cloud transformation is the process of moving IT assets to cloud environments to achieve better agility and efficiency.