Wiz CDR and Amazon GuardDuty: Contextualize and prioritize threat detection

Wiz leverages its leading Cloud Security Graph to help Cloud Defenders quickly understand, with the click of a button— what happened, where it happened, and how to respond.

1 min read

Wiz can now seamlessly integrate with Amazon GuardDuty to provide contextualized and prioritized threat detection for a 10x improvement in investigation and response. Wiz leverages its leading Cloud Security Graph to help Cloud Defenders quickly understand, with the click of a button— what happened, where it happened, and how to respond.

Risk-oriented threat detection

Wiz Cloud Detection and Response (CDR) enables cloud defenders to identify threats as they unfold and prioritize remediation based on context and effective risk. The new GuardDuty integration provides teams with advanced threat detections correlated into the Wiz Security stack, helping to achieve:

  • Significant decrease in alert fatigue

  • Prioritized threats according to their effective risk

  • Quick threat analysis and remediation

Consider for example a Brute Force Attack detected by GuardDuty, which could be very common and create hundreds of alerts. Which one should the Cloud Defenders respond to first? By correlating these detections with a Wiz Control that detects an externally exposed VM with a weak SSH password and lateral movement to Admin user, defenders can now prioritize by risk, impact, and blast radius.

10x improvement in investigation and response

Analyzing threats is a time-consuming process for Cloud Defenders, requiring manual triage of several factors such as cloud configurations, network exposure, the associated identity or technologies running on the workload, and more. Wiz provides all this information in a single view, by correlating the events and detections to cloud resources and leveraging the Security Graph to provide instant insights on each resource and asset.

Contact us to schedule a demo and learn more about the magic of Wiz.

Tags:
#Product

Secure everything you build and run in the cloud

Organizations of all sizes and industries use Wiz to rapidly identify and remove the most critical risks in AWS, Azure, GCP, OCI, and Kubernetes so they can build faster and more securely.

Continue reading

Meet the Wiz Research team at fwd:cloudsec

We invite you to attend Wiz Research's four technical sessions as well as the Wiz party at Flight Club Boston.

Wiz extends CNAPP leadership with protection for Alibaba Cloud

Support for Alibaba Cloud follows just weeks after launch of Oracle Cloud Infrastructure (OCI) integration, providing organizations the broadest coverage of any cloud native application protection platform (CNAPP)

The cloud gray zone—secret agents installed by cloud service providers

Wiz Research builds upon previous “OMIGOD” findings with a presentation at RSA Conference 2022; details how cloud middleware use across cloud service providers can expose customers' virtual machines to new attack vectors