Zero Trust Security: Checklist to Implement, Tools to Use, and Key Challenges
Understanding how to implement zero trust architecture is crucial for protecting against the complexities of modern cyber threats.
Shaked Rotlevi
Shaked is a Technical Product Marketing Manager (PMM) focused on Wiz's core capabilities, including CSPM, CIEM, and Vulnerability Management which help organizations establish a secure foundation in the cloud. Previously, she's been part of Public Sector Solutions Architecture team at AWS as well as a Technical Program Manager on the AWS Config team. Outside work, Shaked loves playing volleyball, surfing and anything outdoors.
Shaked Rotlevi 기사
AWS AI Security: Securing AI workloads on AWS
AWS offers a complete, scalable suite for AI that covers everything from data prep to model deployment, making it easier for developers to innovate quickly.
13 Essential AWS IAM Best Practices
13 essential best practices for every organization + the common tools and services that can support them
Mastering AWS Security Groups: Essential Best Practices
AWS security groups (SGs) are virtual firewalls for your EC2 instances that control both inbound and outbound traffic.
What is AI-SPM? [AI Security Posture Management]
AI-SPM (AI security posture management) is a new and critical component of enterprise cybersecurity that secures AI models, pipelines, data, and services.
13 Essential Data Security Best Practices in the Cloud
Cloud data security is the practice of safeguarding sensitive data, intellectual property, and secrets from unauthorized access, tampering, and data breaches. It involves implementing security policies, applying controls, and adopting technologies to secure all data in cloud environments.
Unpacking Data Security Policies
A data security policy is a document outlining an organization's guidelines, rules, and standards for managing and protecting sensitive data assets.
What is Data Risk Management?
Data risk management involves detecting, assessing, and remediating critical risks associated with data. We're talking about risks like exposure, misconfigurations, leakage, and a general lack of visibility.
What is Data Detection and Response?
Data detection and response (DDR) is a cybersecurity solution that uses real-time data monitoring, analysis, and automated response to protect sensitive data from sophisticated attacks that traditional security measures might miss, such as insider threats, advanced persistent threats (APTs), and supply chain attacks.
What is Data Flow Mapping?
In this article, we’ll take a closer look at everything you need to know about data flow mapping: its huge benefits, how to create one, and best practices, and we’ll also provide sample templates using real-life examples.
CIEM이란? Cloud Infrastructure Entitlement Management 사용 사례, 과제 및 이점
CIEM(Cloud Infrastructure Entitlement Management)은 조직이 클라우드 리소스에 대한 액세스 권한을 관리하고 제어하는 데 도움이 되는 보안 프로세스입니다.
What Is Cross-Site Request Forgery (CSRF)? Examples, Vulnerabilities, and Prevention
Cross-site request forgery (CSRF), also known as XSRF or session riding, is an attack approach where threat actors trick trusted users of an application into performing unintended actions.
What is Data Sprawl? Causes, Risks, and Management
Data sprawl refers to the dramatic proliferation of enterprise data across IT environments, which can lead to management challenges and security risks.
AI Data Security: Key Principles and Best Practices
AI data security is a specialized practice at the intersection of data protection and AI security that’s aimed at safeguarding data used in AI and machine learning (ML) systems.
Data Security Compliance Explained
Data security compliance is a critical aspect of data governance that involves adhering to the security-centric rules and regulations set forth by supervisory and regulatory bodies, including federal agencies.
Data Leakage: 위험, 원인 및 예방
데이터 유출은 조직 데이터를 제3자에게 무단으로 반출하는 것입니다. 잘못 구성된 데이터베이스, 제대로 보호되지 않은 네트워크 서버, 피싱 공격 또는 부주의한 데이터 처리와 같은 다양한 수단을 통해 발생합니다.
ChatGPT Security for Enterprises: Risks and Best Practices
ChatGPT security is the process of protecting an organization from the compliance, brand image, customer experience, and general safety risks that ChatGPT introduces into applications.
Vulnerability Prioritization in the Cloud: Strategies + Steps
Vulnerability prioritization is the practice of assessing and ranking identified security vulnerabilities based on critical factors such as severity, potential impact, exploitability, and business context. This ranking helps security experts and executives avoid alert fatigue to focus remediation efforts on the most critical vulnerabilities.
AI Risk Management: Essential AI SecOps Guide
AI risk management is a set of tools and practices for assessing and securing artificial intelligence environments. Because of the non-deterministic, fast-evolving, and deep-tech nature of AI, effective AI risk management and SecOps requires more than just reactive measures.
What is LLM Jacking?
LLM jacking is an attack technique that cybercriminals use to manipulate and exploit an enterprise’s cloud-based LLMs (large language models).
무엇인가요 Prompt Injection?
프롬프트 주입 공격은 공격자가 자연어 처리(NLP) 시스템에서 입력 프롬프트를 조작하여 시스템의 출력에 영향을 미치는 AI 보안 위협입니다.
CSPM이란 무엇입니까?
CSPM(Cloud Security Posture Management)은 클라우드 환경 및 서비스(예: 공용 읽기 액세스 권한이 있는 S3 버킷)에서 위험을 지속적으로 감지하고 수정하는 프로세스를 설명합니다. CSPM 도구는 업계 모범 사례, 규정 요구 사항 및 보안 정책에 따라 클라우드 구성을 자동으로 평가하여 클라우드 환경이 안전하고 적절하게 관리되도록 합니다.
AI 보안 도구: 오픈 소스 툴킷
MLSecOps의 5가지 기본 영역을 검토하고, 조직에서 MLSecOps의 중요성이 커지고 있음을 살펴보고, 확인할 수 있는 6가지 흥미로운 오픈 소스 도구를 소개하여 MLSecOps 도구 환경에 대해 자세히 살펴보겠습니다
DSPM(Data Security Posture Management)이란 무엇입니까?
DSPM(Data Security Posture Management)은 조직의 데이터 보안 정책 및 절차를 지속적으로 모니터링하여 취약성 및 잠재적 위험을 감지하도록 설계된 솔루션입니다.
Essential AI Security Best Practices
To manage risks associated with AI, organizations need a strategic and well-coordinated security approach that extends traditional cybersecurity measures to the unique needs of AI.
Cloud compliance가 무엇인가요?
클라우드 규정 준수는 클라우드 기반 자산이 조직과 관련된 데이터 보호 규정, 표준 및 프레임워크의 요구 사항을 충족하도록 하기 위해 마련해야 하는 일련의 절차, 제어 및 조직적 조치입니다.
Configuration Drift Explained
Configuration drift is when operating environments deviate from a baseline or standard configuration over time.
Shaked Rotlevi 게시물
CIEM and Secure Cloud Access: Best Practices from Wiz and CyberArk
Learn how to secure your cloud identities and operationalize Zero Standing Privileges with the Wiz and CyberArk integration
Introducing new Slack AI App for Wiz and Bi-Directional Slack Integration
Wiz enhances Slack integration to streamline risk investigation and response and bring security knowledge directly to Slack
The Basics of AWS Infrastructure Security
Discover key strategies to strengthen your AWS security posture, from applying protection at all layers to understanding shared responsibility in the cloud.
Key Performance Indicators for Effective DSPM Implementation
What are the most important KPI’s for a successful DSPM implementation? Let's explore what KPI’s to monitor, why they matter, and how you can take advantage of them for improved security at your org.
A Cloud-First Approach to Vulnerability Remediation: A Holistic Approach
Learn about how Wiz helps organizations operationalize vulnerability remediation with true code-to-cloud visibility
Wiz at Re:Invent 2024
See what’s new with Wiz at Re:Invent 2024 and learn about how Wiz and AWS continue to strengthen their strategic partnership, keeping AWS customers’ environments secure
Wiz collaborates with NVIDIA to advance ML research for data classification
Wiz Research taps Llama 3 model NVIDIA NIM microservices for sensitive data classification
Introducing new Amazon Q Developer plugin for Wiz
New plugin enables AWS and Wiz customers to leverage generative AI to improve their cloud security posture
Data access governance: Who's got the keys to your data kingdom?
Learn how Wiz helps you govern who can access what data in your cloud and protect your critical data
Introducing the next generation of AI-powered remediation: Choose your own remediation strategy
The new AI-powered remediation 2.0 combines the power of GenAI with the Wiz Research Team’s expertise in identifying cloud-native attack paths.
The essential steps for cloud vulnerability management
Prioritizing vulnerabilities in the cloud can be overwhelming - Learn how teams adopt a workflow structured for speed and accuracy.
Protect your Okta identities with Wiz
Wiz extends support to Okta with identity modeling on the Wiz Security Graph, visibility, risk assessment, and real-time threat detection for your Okta environment
Secure your Data Cloud with Wiz CNAPP for Snowflake
Gain unified visibility into Snowflake security posture and threats with the same workflows as the rest of your cloud.
Wiz achieves FedRAMP Moderate authorization
Wiz is now the fastest company to be listed FedRAMP Moderate Authorized on the FedRAMP Marketplace, making it easier for government agencies to effectively protect their cloud environment with Wiz’s CNAPP
Introducing pattern-based agentless malware detection using YARA rules
Wiz is expanding our existing detection capabilities to include pattern-based malware detection using YARA rules written by the Wiz Research team
Wiz for Gov is in process for DoD IL4 Authorization
We are excited to be ‘in-process’ for DoD IL4, continuing our commitment to helping public sector secure everything they build and run in the cloud
Wiz at Re:Inforce 2024
See what’s new with Wiz at Re:Inforce 2024 with this year’s recap
Wiz achieves StateRAMP authorization
Great news for State and Local Governments! Wiz for Gov is now StateRAMP authorized
Wiz AI-SPM model scanning: Securely innovate with AI community models
Detect malicious hosted AI models with Wiz AI-SPM and gain confidence in the models your data scientists use
Wiz achieves Red Hat Vulnerability Scanner Certification
Wiz’s vulnerability scanning is now certified by Red Hat, providing customers with refined assessment of vulnerabilities for Red Hat Products
The wait is over: Wiz releases real-time CSPM
Prevent misconfigurations in your environment from being exploited with Wiz’s real-time CSPM.
Boosting efficiency with Wiz's AI-driven remediation steps powered by Amazon Bedrock
Wiz introduces AI-remediation steps powered by Amazon Bedrock to empower customers to remediate risks quickly.
Improve MTTR with Wiz’s AI-powered remediation guidance using Microsoft Azure OpenAI service
Organizations can now improve their mean time to remediate (MTTR) with AI-generated remediation steps.
Wiz becomes the first CNAPP to provide DSPM capabilities for Oracle Cloud Infrastructure
Oracle Cloud Infrastructure customers can now effectively protect their sensitive data with Wiz’s Data Security Posture Management (DSPM) capabilities.
Wiz becomes the first CNAPP to provide native security to Akamai Linode Cloud
Wiz customers can now secure everything they build and run on Akamai Linode Cloud, providing organizations the broadest cloud coverage out of any CNAPP
Wiz extends vulnerability scanning support to MacOS instances
Wiz customers can now detect vulnerabilities in MacOS workloads and their software components with agentless scanning, and assess their secure configurations against built-in CIS Benchmarks for Apple MacOS
Wiz AI-SPM extends support to Microsoft Azure OpenAI Service models
Secure Microsoft Azure AI Services, including Azure OpenAI, with Wiz AI-SPM providing full visibility into AI pipelines and risks on the Wiz Security Graph
Wiz Enhances AI-SPM Support for Amazon Bedrock
Safeguard Amazon Bedrock with Wiz AI-SPM capabilities to gain visibility into GenAI pipelines and detect and proactively remove risks
Secure non-human identities with Wiz’s newest CIEM dashboard
Gain visibility into non-human identities in your environment and protect against risky service accounts with the new Non-Human Identities Dashboard.
Wiz extends its AI-SPM offering to OpenAI platform
Wiz becomes the first CNAPP to provide AI security for OpenAI, allowing data scientists and developers to detect and mitigate risk in their OpenAI organization with a new OpenAI SaaS connector.
Choosing an AI-SPM tool: The four questions every security organization needs to ask
Ensure you are staying secure as your organization adopts AI by following these four guiding questions
How to leverage AI-powered security in your organization
AI-powered security helps organizations improve efficiency and scale their security team, follow this framework to effectively leverage AI in your security org
Wiz at Re:Invent 2023
See what’s new with Wiz at Re:Invent 2023 and learn about how Wiz and AWS continue to strengthen their strategic partnership, keeping AWS customers’ environments secure.
Wiz launches support for Google Cloud excessive access findings based on audit logs
Google Cloud customers can now detect excessive access in their GCP environment based on Google audit logs to effectively right-size permissions.
Wiz becomes the first CNAPP to provide AI Security Posture Management
Wiz extends its platform to secure AI with AI-SPM capabilities, helping organizations accelerate their AI innovation in the cloud.
5 Steps to Establishing a Zero Trust Foundation in the Cloud with Wiz
Gain complete visibility into your environment and its risks to enable a Zero Trust strategy in the cloud
Wiz launches support for Google Workspace, helping organizations secure Google Cloud identities
Protect your Google Cloud identities with Wiz's new Google Workspace identity modeling and identify suspicious activity in Google Workspace with new threat detection rules
GAO Study Reveals: Government Faces Challenges with Continuous Monitoring
Learn how government agencies can meet the GAO’s recommended cloud security best practices by establishing continuous risk and compliance monitoring in the cloud
Wiz's agentless approach to cloud-native vulnerability management
Prioritize critical vulnerabilities based on business impact with Wiz’s agentless Vulnerability Management solution.
Wiz at Re:Inforce 2023
See what is new with Wiz at Re:Inforce and learn about how Wiz and AWS continue to strengthen a strategic relationship to secure customers’ AWS environments.
Wiz for CSPM: A modern approach to cloud security
Reduce noise of traditional CSPM tools with context-based deep risk assessment, enabling you to prioritize the misconfigurations that put your environment at critical risk.
Detect critical application misconfiguration risks
Some application misconfigurations are equivalent to remote code execution or information disclosure vulnerabilities, but often go unnoticed. Wiz’s agentless capabilities detect these and correlate them to attack surface and business impact risks, highlighting the most critical misconfigurations.
Compliance made easy with Wiz
Stay compliant with Wiz’s 100+ compliance frameworks, generate quick compliance reports, and remediate issues faster with remediation guidance and auto-remediation.