CloudSec Academy
Bienvenido a CloudSec Academy, tu guía para navegar por la sopa de alfabeto de los acrónimos de seguridad en la nube y la jerga de la industria. Cortar el ruido con contenido claro, conciso y elaborado por expertos que cubra los fundamentos de las mejores prácticas.
Ver a Wiz en acción
Descubre cómo Wiz convierte los fundamentos de la seguridad en la nube en resultados reales.
How to Choose a CIEM Vendor: 8 Criteria That Actually Reduce Identity Risk
Equipo de expertos de Wiz
.
What is Product Security in 2026?
Equipo de expertos de Wiz
Product security secures software as a system across code, cloud, identity, data, and runtime. Learn how modern teams prioritize exploitable risk in cloud environments.
AI-BOM: Building an AI Bill of Materials
An AI bill of materials (AI-BOM) is a complete inventory of all the assets in your organization’s AI ecosystem. It documents datasets, models, software, hardware, and dependencies across the entire lifecycle of AI systems—from initial development to deployment and monitoring.
Ver demostración de 12 minutos
Mira cómo Wiz convierte la visibilidad instantánea en una remediación rápida.
What is API security testing?
API security testing is the process of validating that APIs are protected against abuse, misconfiguration, and sensitive data exposure. Unlike functional testing—which checks whether an API works—security testing looks for ways an API can be misused.
API risk assessment: Tools & techniques
An API risk assessment is a systematic process for evaluating the APIs used across an organization.
¿Qué es la respuesta a incidentes? Una guía rápida para los SOC
Equipo de expertos de Wiz
La respuesta a incidentes es un enfoque estratégico para detectar y responder a los ciberataques con el objetivo de minimizar su impacto en sus sistemas de TI y en su negocio en general.
What is an Incident Response Plan (IRP)?
An incident response plan (IRP) is a detailed framework that provides clear, step-by-step guidelines to detect, contain, eradicate, and recover from security incidents.
How to secure the SDLC with Wiz
Equipo de expertos de Wiz
Learn how to secure the SDLC from code to runtime with DevSecOps best practices: SAST, SCA, IaC scanning, CI/CD hardening, CSPM, CDR, and compliance mapping.
GraphQL API security risks every developer should know about
Equipo de expertos de Wiz
GraphQL API security is a set of specialized practices and controls for protecting GraphQL endpoints.
Unmanaged API security: What cloud teams need to know
Equipo de expertos de Wiz
Unmanaged APIs are undocumented interfaces that operate outside standardized security and governance frameworks.
API security posture management explained
Equipo de expertos de Wiz
API security posture management, or API-SPM, is a security discipline that focuses on maintaining and proactively improving the security health of enterprise APIs.
The Open-Source CNAPP Toolkit
Equipo de expertos de Wiz
With a CNAPP, your team is empowered to pick and choose solutions that best fit your security capability and cost requirements. This article reviews the best open-source CNAPP tools for 2024.
Free Incident Response Playbooks: Learn How to Apply Them
Learn more about incident response playbooks to find gaps in your process. Plus, get free playbooks for your cloud security teams, best practices, and more.
Cloud engineer job description (template, skills, salary)
Equipo de expertos de Wiz
A cloud engineer is a technical expert responsible for architecting, implementing, and managing an organization's cloud infrastructure and services. This role involves working across the full cloud lifecycle, from initial planning and design to deployment and ongoing optimization.