Secure Code Scanning: Basics & Best Practices
In this article, we’ll explore the step-by-step process of code scanning, its benefits, approaches, and best practices.
CloudSec Academy
Bienvenido a CloudSec Academy, tu guía para navegar por la sopa de alfabeto de los acrónimos de seguridad en la nube y la jerga de la industria. Cortar el ruido con contenido claro, conciso y elaborado por expertos que cubra los fundamentos de las mejores prácticas.
Ver a Wiz en acción
Descubre cómo Wiz convierte los fundamentos de la seguridad en la nube en resultados reales.
Kubernetes Security Context: Configuration and Best Practices
Learn how to configure Kubernetes security contexts, avoid common misconfigurations, and apply best practices for running secure clusters in production.
Security logs
Cloud security logs are formatted text records that capture events and activities as they occur in a cloud environment, providing insight into what’s happening within that environment in real time.
Ver demostración de 12 minutos
Mira cómo Wiz convierte la visibilidad instantánea en una remediación rápida.
What is cloud native?
Equipo de expertos de Wiz
Cloud native is a modern approach to building and running applications that fully exploits the advantages of cloud computing, including on-demand scalability, resilience, and automation.
What is continuous pen testing? A cloud security perspective
Equipo de expertos de Wiz
Continuous penetration testing is an always-on, adversarial security testing approach that persistently discovers, exploits, and validates vulnerabilities across your environment rather than testing at a single point in time.
What is a SOAP API? Security and implementation
Simple Object Access Protocol (SOAP) is an XML-based messaging protocol standardized by W3C that’s popular for its predictability, strict contracts, and strong security features. The protocol is the basis for SOAP APIs: The SOAP protocol defines the rules, and SOAP APIs are the actual implementations of those rules.
Minimal vs. hardened base images: Security and selection tips
Simply put, minimal images focus on a smaller footprint (fewer packages, faster pulls), while hardened images focus on secure defaults (non-root users, signed artifacts, provenance).
Container Runtimes Explained
A container runtime is the foundational software that allows containers to operate within a host system.
Essential AI Security Best Practices
To manage risks associated with AI, organizations need a strategic and well-coordinated security approach that extends traditional cybersecurity measures to the unique needs of AI.
What is AI-APP? A security guide to AI Application Protection Platforms
Equipo de expertos de Wiz
An AI Application Protection Platform (AI-APP) is a purpose-built security solution that integrates visibility, risk assessment, and active defense across the AI lifecycle.
Zero Trust Security: Core Pillars and How to Implement
Learn how to implement zero trust security with clear pillars, a practical roadmap, and tactics that solve challenges and cut risk across cloud environments.
Vulnerability Prioritization: Building a Maximum Security Strategy
Vulnerability prioritization helps you manage your cloud risk efficiently. Discover how to pinpoint threats with context, automation, and real-time insights.
Seguridad del código (Code Security)
La seguridad del código, también conocida como codificación segura, se refiere a las prácticas, metodologías y herramientas diseñadas para garantizar que el código escrito para aplicaciones y sistemas esté a salvo de vulnerabilidades y amenazas.
NIST Compliance Checklist: Achieve and Maintain Compliance
Equipo de expertos de Wiz
Learn how to meet NIST compliance with Wiz’s checklist for 2025. Plus, discover best practices and solutions to strengthen your cloud security compliance.
IaC Security: Red Flags to Watch and 6 Best Practices
Equipo de expertos de Wiz
Explore how IaC security protects cloud environments by embedding protection into code templates to catch vulnerabilities early.
Policy as Code: Benefits, Examples, and How to Get Started
Learn how policy as code helps teams enforce security, reduce misconfigurations, and improve cloud governance with automated rules across environments.
9 Azure Security Best Practices to Strengthen Your Cloud
Equipo de expertos de Wiz
Misconfigurations, weak access controls, and data exposure put your Azure workloads at risk. Follow these 9 proven security best practices to stay protected.
Análisis de composición de software (Software Composition Analysis)
Equipo de expertos de Wiz
Las herramientas de análisis de composición de software (SCA) indexan las dependencias de software para obtener visibilidad de los paquetes que está utilizando y de las vulnerabilidades que contienen.