Shaked is a Technical Product Marketing Manager (PMM) focused on Wiz's core capabilities, including CSPM, CIEM, and Vulnerability Management which help organizations establish a secure foundation in the cloud. Previously, she's been part of Public Sector Solutions Architecture team at AWS as well as a Technical Program Manager on the AWS Config team. Outside work, Shaked loves playing volleyball, surfing and anything outdoors.
Cloud data security is the practice of safeguarding sensitive data, intellectual property, and secrets from unauthorized access, tampering, and data breaches. It involves implementing security policies, applying controls, and adopting technologies to secure all data in cloud environments.
Profundizaremos en el panorama de las herramientas de MLSecOps revisando las cinco áreas fundamentales de MLSecOps, explorando la creciente importancia de MLSecOps para las organizaciones y presentando seis interesantes herramientas de código abierto para revisar
AI-SPM (gestión de la postura de seguridad de la IA) es un componente nuevo y crítico de la ciberseguridad empresarial que protege los modelos, las canalizaciones, los datos y los servicios de IA.
La fuga de datos es la exfiltración incontrolada de datos de la organización a un tercero. Se produce a través de varios medios, como bases de datos mal configuradas, servidores de red mal protegidos, ataques de phishing o incluso un manejo de datos descuidado.
Mira cómo Wiz convierte la visibilidad instantánea en una remediación rápida.
Configuration drift is when operating environments deviate from a baseline or standard configuration over time.
ChatGPT security is the process of protecting an organization from the compliance, brand image, customer experience, and general safety risks that ChatGPT introduces into applications.
La gestión de derechos de infraestructura en la nube (CIEM) es un proceso de seguridad que ayuda a las organizaciones a gestionar y controlar los derechos de acceso a los recursos en la nube.
A zero-day vulnerability is a software flaw that the vendor does not yet know about or has not yet patched, giving defenders zero days to prepare before attackers can exploit it.
To manage risks associated with AI, organizations need a strategic and well-coordinated security approach that extends traditional cybersecurity measures to the unique needs of AI.
Learn how to implement zero trust security with clear pillars, a practical roadmap, and tactics that solve challenges and cut risk across cloud environments.
Vulnerability prioritization helps you manage your cloud risk efficiently. Discover how to pinpoint threats with context, automation, and real-time insights.
La gestión de la superficie de ataque es un proceso de seguridad de extremo a extremo que implica descubrir todas las vías de entrada potenciales en los entornos de IT, evaluar su importancia y encontrar formas de asegurarlas o minimizarlas.
El cumplimiento de la nube es el conjunto de procedimientos, controles y medidas organizativas que debe implementar para garantizar que sus activos basados en la nube cumplan con los requisitos de las regulaciones, estándares y marcos de protección de datos que son relevantes para su organización.
Learn how to build an AI-BOM to track AI models, datasets, and dependencies and strengthen AI security, compliance, and governance across your organization.
Enterprise cloud security refers to the comprehensive set of policies, technologies, controls, and practices designed to protect an organization's data, applications, and infrastructure within cloud computing environments.
La gestión de la postura de seguridad en la nube (CSPM) describe el proceso de detección y solución continua de riesgos en entornos y servicios en la nube (por ejemplo, contenedores S3 con acceso de lectura público). Las herramientas CSPM evalúan automáticamente las configuraciones de la nube en función de las mejores prácticas de la industria, los requisitos normativos y las políticas de seguridad para garantizar que los entornos en la nube sean seguros y estén gestionados de forma adecuada.
Data detection and response (DDR) is a cybersecurity solution that uses real-time data monitoring, analysis, and automated response to protect sensitive data from sophisticated attacks that traditional security measures might miss, such as insider threats, advanced persistent threats (APTs), and supply chain attacks.
Discover how AI risk management safeguards your business against threats like bias and cyberattacks while fostering innovation and ensuring compliance.
La gestión de la postura de seguridad de los datos (DSPM) es una solución diseñada para supervisar continuamente las políticas y procedimientos de seguridad de los datos de una organización con el fin de detectar vulnerabilidades y riesgos potenciales.
Learn how to build a strong data security policy in 2026 using DSPM and CIEM to protect your sensitive data, reduce risk, and simplify cloud compliance.
El cumplimiento de la seguridad de los datos es un aspecto crítico de la gobernanza de datos que implica el cumplimiento de las normas y reglamentos centrados en la seguridad establecidos por los organismos supervisores y reguladores, incluidas las agencias federales.
Discover how CSRF attacks work, identify common vulnerabilities, and learn the best methods for preventing CSRF attacks to keep your applications secure.
Los ataques de inyección de avisos son una amenaza para la seguridad de la IA en la que un atacante manipula el mensaje de entrada en los sistemas de procesamiento de lenguaje natural (NLP) para influir en la salida del sistema.
AI data security is a specialized practice at the intersection of data protection and AI security that’s aimed at safeguarding data used in AI and machine learning (ML) systems.
Zero trust is a dynamic, risk-based approach that protects against internal and external threats by eliminating implicit trust within the network.
En esta guía, analizaremos por qué la gobernanza de la IA se ha vuelto tan crucial para las organizaciones, destacaremos los principios y regulaciones clave que dan forma a este espacio y proporcionaremos pasos prácticos para crear su propio marco de gobernanza.
AI compliance standards are changing fast, yet 85% of organizations still use AI tools. Get best practices and frameworks to protect your cloud environment.
Rapid7 vs. Tenable: Compare cloud security capabilities, vulnerability management, and threat detection to see which platform better protects your cloud environment.
Cloud security testing is the process of evaluating your entire cloud infrastructure for security risks and misconfigurations—proactively, systematically, and continuously.
When selecting a cloud compliance tool, look for features like comprehensive framework coverage, multi- and hybrid cloud visibility, context-aware risk prioritization, developer workflow integration, and automated evidence collection and reporting.
In this article we'll cover a tried-and-true governance strategy, a practical five-layer operating model, and guidance on how to operationalize it using the right people, processes, and platforms.
In this article, we’ll go through six of today’s leading cloud security platforms so you can see which one offers the best fit for your organization's unique security needs.
Cloud entitlements are access and administrative privileges that define what resources users can access and how they can interact with those resources.
Cyber asset attack surface management (CAASM) is a security practice that gives teams unified visibility and control over all enterprise assets—cloud, SaaS, on-prem, and beyond. It helps eliminate blind spots and reduce risk by correlating asset data from across your environment and tools. CAASM enables teams to query, prioritize, and act from a single source of truth.
Compare Rapid7 and CrowdStrike: features, threat detection, endpoint protection, and performance to help you choose the right solution for your team.
There are many sneaky AI security risks that could impact your organization. Learn practical steps to protect your systems and data while still leveraging AI's benefits.
AWS ofrece un conjunto completo y escalable para IA que cubre todo, desde la preparación de datos hasta la implementación de modelos, lo que facilita a los desarrolladores innovar rápidamente.
13 essential best practices for every organization + the common tools and services that can support them
AWS security groups (SGs) are virtual firewalls for your EC2 instances that control both inbound and outbound traffic.
Data risk management involves detecting, assessing, and remediating critical risks associated with data. We're talking about risks like exposure, misconfigurations, leakage, and a general lack of visibility.
In this article, we’ll take a closer look at everything you need to know about data flow mapping: its huge benefits, how to create one, and best practices, and we’ll also provide sample templates using real-life examples.
Data sprawl refers to the dramatic proliferation of enterprise data across IT environments, which can lead to management challenges and security risks.
El LLM jacking es una técnica de ataque que los ciberdelincuentes utilizan para manipular y explotar los LLM (grandes modelos de lenguaje) basados en la nube de una empresa.
Streamline pen-testing by unifying findings from bug bounties, manual audits, and Wiz Red Agent into a single, context-rich view.
Delivering enterprise-grade continuous AI-powered risk assessment to hundreds of customers through the combined power of Wiz and Anthropic
The shift from static CVE scoring to risk-based prioritization signals a new era for Vulnerability Managers
Outpacing React2Shell using pre-breach alerts from Wiz ASM to eliminate exploitable risk before attackers find them
How the Kenna sunset is giving security leaders the opportunity to outgrow vulnerability silos and adopt a unified exposure management model.
Moving beyond CVE counts to true exposure management everywhere with new UVM and ASM capabilities, now GA
Wiz launches Attack Surface Scanner to bring context, ownership, and prioritization to every exposure, anywhere.
Improve security posture and remediate risks faster using natural language workflows.
Wiz is now included in the NVIDIA Enterprise AI Factory validated design, integrating with NVIDIA AI to help developers securely build and deploy enterprise AI agents at scale.
Learn how to secure your cloud identities and operationalize Zero Standing Privileges with the Wiz and CyberArk integration
Wiz enhances Slack integration to streamline risk investigation and response and bring security knowledge directly to Slack
Discover key strategies to strengthen your AWS security posture, from applying protection at all layers to understanding shared responsibility in the cloud.
What are the most important KPI’s for a successful DSPM implementation? Let's explore what KPI’s to monitor, why they matter, and how you can take advantage of them for improved security at your org.
Learn about how Wiz helps organizations operationalize vulnerability remediation with true code-to-cloud visibility
See what’s new with Wiz at Re:Invent 2024 and learn about how Wiz and AWS continue to strengthen their strategic partnership, keeping AWS customers’ environments secure
Wiz Research taps Llama 3 model NVIDIA NIM microservices for sensitive data classification
New plugin enables AWS and Wiz customers to leverage generative AI to improve their cloud security posture
Learn how Wiz helps you govern who can access what data in your cloud and protect your critical data
The new AI-powered remediation 2.0 combines the power of GenAI with the Wiz Research Team’s expertise in identifying cloud-native attack paths.
Prioritizing vulnerabilities in the cloud can be overwhelming - Learn how teams adopt a workflow structured for speed and accuracy.
Wiz extends support to Okta with identity modeling on the Wiz Security Graph, visibility, risk assessment, and real-time threat detection for your Okta environment
Gain unified visibility into Snowflake security posture and threats with the same workflows as the rest of your cloud.
Wiz is now the fastest company to be listed FedRAMP Moderate Authorized on the FedRAMP Marketplace, making it easier for government agencies to effectively protect their cloud environment with Wiz’s CNAPP
Wiz is expanding our existing detection capabilities to include pattern-based malware detection using YARA rules written by the Wiz Research team
See what’s new with Wiz at Re:Inforce 2024 with this year’s recap
Great news for State and Local Governments! Wiz for Gov is now StateRAMP authorized
Detect malicious hosted AI models with Wiz AI-SPM and gain confidence in the models your data scientists use
Wiz’s vulnerability scanning is now certified by Red Hat, providing customers with refined assessment of vulnerabilities for Red Hat Products
Prevent misconfigurations in your environment from being exploited with Wiz’s real-time CSPM.
Wiz introduces AI-remediation steps powered by Amazon Bedrock to empower customers to remediate risks quickly.
Organizations can now improve their mean time to remediate (MTTR) with AI-generated remediation steps.
Oracle Cloud Infrastructure customers can now effectively protect their sensitive data with Wiz’s Data Security Posture Management (DSPM) capabilities.
Wiz customers can now secure everything they build and run on Akamai Linode Cloud, providing organizations the broadest cloud coverage out of any CNAPP
Wiz customers can now detect vulnerabilities in MacOS workloads and their software components with agentless scanning, and assess their secure configurations against built-in CIS Benchmarks for Apple MacOS
Secure Microsoft Azure AI Services, including Azure OpenAI, with Wiz AI-SPM providing full visibility into AI pipelines and risks on the Wiz Security Graph
Safeguard Amazon Bedrock with Wiz AI-SPM capabilities to gain visibility into GenAI pipelines and detect and proactively remove risks
Gain visibility into non-human identities in your environment and protect against risky service accounts with the new Non-Human Identities Dashboard.
Wiz becomes the first CNAPP to provide AI security for OpenAI, allowing data scientists and developers to detect and mitigate risk in their OpenAI organization with a new OpenAI SaaS connector.
Ensure you are staying secure as your organization adopts AI by following these four guiding questions
AI-powered security helps organizations improve efficiency and scale their security team, follow this framework to effectively leverage AI in your security org
See what’s new with Wiz at Re:Invent 2023 and learn about how Wiz and AWS continue to strengthen their strategic partnership, keeping AWS customers’ environments secure.
Google Cloud customers can now detect excessive access in their GCP environment based on Google audit logs to effectively right-size permissions.
Wiz extends its platform to secure AI with AI-SPM capabilities, helping organizations accelerate their AI innovation in the cloud.
Gain complete visibility into your environment and its risks to enable a Zero Trust strategy in the cloud
Protect your Google Cloud identities with Wiz's new Google Workspace identity modeling and identify suspicious activity in Google Workspace with new threat detection rules
Learn how government agencies can meet the GAO’s recommended cloud security best practices by establishing continuous risk and compliance monitoring in the cloud
Prioritize critical vulnerabilities based on business impact with Wiz’s agentless Vulnerability Management solution.
See what is new with Wiz at Re:Inforce and learn about how Wiz and AWS continue to strengthen a strategic relationship to secure customers’ AWS environments.
Reduce noise of traditional CSPM tools with context-based deep risk assessment, enabling you to prioritize the misconfigurations that put your environment at critical risk.
Some application misconfigurations are equivalent to remote code execution or information disclosure vulnerabilities, but often go unnoticed. Wiz’s agentless capabilities detect these and correlate them to attack surface and business impact risks, highlighting the most critical misconfigurations.
Stay compliant with Wiz’s 100+ compliance frameworks, generate quick compliance reports, and remediate issues faster with remediation guidance and auto-remediation.
