Wiz has certified its commercial platform in the Spanish National Cryptologic Center (CCN) ICT Security Products and Services Catalog (CPSTIC). Inclusion in this catalogue enables Spanish public and private organizations to adopt Wiz securely in alignment with the Spanish National Security Framework (ENS).

Why This Matters

CPSTIC serves as a key resource for Spanish public sector organizations and the private entities working for them by certifying products or services that have met the Spanish National Security Framework’s stringent standards. By achieving this accreditation, Wiz demonstrates its continued commitment to strict security controls and standards, providing Spanish public sector agencies with the assurance they need to confidently secure their cloud with Wiz.

Trusted Security Platform

Wiz is a cloud-native application protection platform (CNAPP) designed for how modern public sector teams operate. It replaces multiple point solutions — from CSPM and CWPP to KSPM, CIEM, IaC scanning, and vulnerability management — with a single platform that helps agencies:

• Connect in minutes to gain visibility into every layer of infrastructure, including virtual machines, containers, serverless, and AI services, without blind spots.

• Prioritize and reduce real risk: The Wiz Security Graph correlates vulnerabilities, misconfigurations, identities, network exposures, secrets, and malware to uncover toxic combinations that create attack paths.

• Continuously review compliance: Built-in frameworks including many from NIST, ISO, and benchmarks like CIS Linux, Windows, and Red Hat STIG help customers automate evidence collection and monitor posture year-round..

• Secure AI initiatives: Detect shadow AI, monitor AI service usage, and secure AI pipelines to accelerate innovation without adding risk.

• Support a Zero Trust journey: Assess and reduce risk across the five pillars of the Zero Trust Maturity Model, building a secure foundation from the start of any migration.

Build for What Matters Most

Public sector teams are balancing rapid modernization with the need to protect critical systems. Wiz brings everything into one platform, making it easier to see what’s happening, focus on what matters most, and reduce risk fast.

The Wiz commercial platform undergoes regular assessment against SOC 2 Type 2, ISO 27001/27701/27017/27018, PCI DSS, and IRAP (Australia). Wiz’s commitment to aligning with standards allow us to protect the public sector and critical industry globally.

For more information about Wiz’s security practices and compliance, see https://www.wiz.io/trust-center.