Academia CloudSec

Bem-vindo à CloudSec Academy, seu guia para navegar pela sopa de letrinhas dos acrônimos de segurança em nuvem e jargão do setor. Livre-se das distrações com conteúdo claro, conciso e habilmente elaborado, cobrindo os fundamentos para as melhores práticas.

What is Cyber Asset Attack Surface Management (CAASM)?

Cyber asset attack surface management (CAASM) is a security practice that gives teams unified visibility and control over all enterprise assets—cloud, SaaS, on-prem, and beyond. It helps eliminate blind spots and reduce risk by correlating asset data from across your environment and tools. CAASM enables teams to query, prioritize, and act from a single source of truth.

What is a Data Poisoning Attack?

Equipe de especialistas do Wiz

Data poisoning is a kind of cyberattack that targets the training data used to build artificial intelligence (AI) and machine learning (ML) models.

What is Attack Surface Analysis?

Equipe de especialistas do Wiz

Attack surface analysis is a cybersecurity practice that identifies and evaluates all potential access points, external and internal, that an attacker could exploit.

On-Premise vs. Cloud Security

Equipe de especialistas do Wiz

Let's compare on-premises and cloud security, examine their differences, and explore key cloud-specific security concepts to help you choose the best approaches to security for your entire organization.

Top CIEM Solutions: Which Should You Try?

Equipe de especialistas do Wiz

Smart CIEM beats basic visibility. The best platforms prioritize real attack paths and provide actionable fixes, not just permission inventories.

ABAC vs. RBAC: What’s the difference?

Equipe de especialistas do Wiz

Choosing between role-based access control (RBAC) and attribute-based access control (ABAC) sets up how your cloud stack determines who may do what, where, and when. This blog post shows you the functional differences between the two models.

What is Code-to-Cloud Security?

Equipe de especialistas do Wiz

Code-to-cloud security protects applications across the entire software development lifecycle (SDLC), from code all the way to runtime in the cloud.

What is a VPC?

Equipe de especialistas do Wiz

A VPC is a logically isolated private network within a public cloud that users can fully configure.

O que é conformidade na nuvem (Cloud Compliance) ?

A conformidade com a nuvem é a série de procedimentos, controles e medidas organizacionais que você precisa ter em vigor para garantir que seus ativos baseados em nuvem atendam aos requisitos dos regulamentos, padrões e estruturas de proteção de dados relevantes para sua organização.

What is Data Security in 2025?

Equipe de especialistas do Wiz

Data security in 2025 demands a shift from perimeter defenses to continuous, context-aware protection across cloud, SaaS, and on-prem environments.

How to Choose a CNAPP: A Security Leader’s Cheat Sheet

Equipe de especialistas do Wiz

In this guide, we’ll show you how to choose a CNAPP that cuts through complexity and gives your team a real path to security: with full-stack visibility, runtime protection, and developer-friendly workflows.

How to Evaluate CSP security: A Checklist

Equipe de especialistas do Wiz

Cloud service providers offer on-demand, scalable computing resources like storage services, applications, and cloud-based compute. Using a structured checklist can help your business select a cloud provider that has the features you need to meet your security goals.