CloudSec Academy
Willkommen bei der CloudSec Academy, Ihrem Leitfaden zum Navigieren in der Buchstabensuppe der Cloud-Sicherheitsakronyme und des Branchenjargons. Heben Sie sich von der Masse ab mit klaren, prägnanten und fachmännisch gestalteten Inhalten, die von den Grundlagen bis hin zu Best Practices reichen.
Wiz in Aktion erleben
Sehen Sie, wie Wiz Cloud-Sicherheitsgrundlagen in reale Ergebnisse umsetzt.
AWS Budgets vs. Cost Explorer: Why you need both
Wiz Expertenteam
This article will help you understand the benefits of using both tools together, along with a solution like Wiz to fill the cross-cloud visibility gap and optimize both costs and security.
Wiz in Aktion erleben
Wiz verbindet die Punkte in Ihrer Cloud, vom Code bis zur Laufzeit.
How to Evaluate Wiz: Common FAQs
Wiz Expertenteam
This FAQ is designed to help teams evaluate whether Wiz is the right cloud security solution for them by answering the most common technical, strategic, and logistical questions.
Container Monitoring: Top Tools, Best Practices, Challenges
Container monitoring is the process of collecting, analyzing, and reporting metrics and data related to the performance and health of containerized applications and their hosting environments.
Attack surface discovery: From blind spots to visibility
Wiz Expertenteam
Attack surface discovery (ASD) is the continuous, automated process of identifying and mapping every asset, connection, and service an attacker could target across your entire digital footprint (cloud, hybrid, and on-premises environments).
Runtime container scanning best practices
Wiz Expertenteam
Runtime scanning answers a critical question: 'What is runtime security for containers?' It focuses on detecting live behaviors, active threats, and anomalies that only appear when containers execute under real production traffic.
Source code scanning best practices for cloud security
Wiz Expertenteam
Source code scanning is automated analysis of your code, dependencies, and infrastructure definitions to find security issues before you deploy. This means a tool reads your code the way a careful reviewer would, but at high speed and at scale.
How to implement CI/CD security scanning: Best practices
Wiz Expertenteam
CI/CD security scanning is the practice of adding automated security checks into your build and deployment pipelines. This means every meaningful code change is tested for risk before it can reach production.
What is external vulnerability scanning?
Wiz Expertenteam
External vulnerability scanning is a way to find weaknesses in your public-facing systems by testing them from outside your network. This means you see your environment the same way an attacker on the internet would see it.
Attack surfaces vs. attack vectors: What security teams need to know
Wiz Expertenteam
This blog post will explain strategies for attack surface management (ASM) that integrate both attack surface reduction and attack vector defense into one continuous process, helping you meet the requirements of leading security frameworks like Gartner’s Continuous Threat Exposure Management (CTEM) framework.
Was ist IAM-Sicherheit? Komponenten, Funktionen, Best Practices
Bei der Sicherheit von Identity and Access Management (IAM) handelt es sich um eine Reihe von Richtlinien und Technologien, mit denen Unternehmen steuern können, welche Identitäten Zugriffsberechtigungen auf Ressourcen, Daten, Systeme und Anwendungen haben können.
Was ist ein Prompt-Injection-Angriff?
Prompt-Injection-Angriffe sind eine KI-Sicherheitsbedrohung, bei der ein Angreifer die Eingabeaufforderung in NLP-Systemen (Natural Language Processing) manipuliert, um die Ausgabe des Systems zu beeinflussen.
What Is Cross-Site Request Forgery (CSRF)? Examples, Vulnerabilities, and Prevention
Cross-site request forgery (CSRF), also known as XSRF or session riding, is an attack approach where threat actors trick trusted users of an application into performing unintended actions.
