We are excited to announce our integration with Amazon Security Lake. This integration enables mutual customers to add Wiz Issues (risks that Wiz has identified in your cloud environment), along with AWS and other third-party security events and log data, to a single customer-owned cloud security data lake. Security teams can benefit from data sharing enabled by the unified lake to break down security product silos, prioritize the highest risk security issues, query security analytics, and gain visibility into their overall security posture.
Effective threat detection and mitigation strategies involve detecting issues across different attack vectors. Security teams spend too much time and effort collecting and normalizing data from their disparate security investments to run security investigations and analyses. The integration between Wiz and Amazon Security Lake enables cloud security data collection in a single security data lake by leveraging the Open Cybersecurity Schema Framework (OCSF) standard, an open-source standard designed for extensible and normalized security data exchange.
Wiz has fundamentally reimagined cloud security and enables cloud builders and defenders to know what needs their attention. Wiz provides organizations with instant visibility across their cloud environments without deploying agents and continuously analyzes security data across multiple risk factors—configurations, vulnerabilities, networks, identities and access, and secrets—across accounts, users, and workloads to discover the toxic combinations of risk that create attack paths into cloud environments. The correlated risk data provided by Wiz is powerful for security investigations and gathering security analytics.
Amazon Security Lake, a service that automatically creates a lake and centralizes an organization’s security data from cloud and on-premises sources into a customer-owned, purpose-built data lake. With support for the OCSF standard, Security Lake reduces the complexity and costs for customers to make their security solutions data accessible to address a variety of security use cases such as threat detection, investigation, and incident response. Security Lake helps organizations aggregate, manage, and derive value from log and event data in the cloud and on-premises to give security teams greater visibility across their organizations. With Security Lake, customers can use the security and analytics solutions of their choice to simply query that data in place or ingest the OCSF-compliant data to address further use cases. Security Lake helps customers optimize security log data retention by optimizing the partitioning of data to improve performance and reduce costs.
The new integration is a testament to the strong partnership between Amazon and Wiz. Customers can leverage the analysis provided by Wiz, including toxic combinations, lateral movement paths, and risk prioritization in the OCSF standard.
Oron Noah, Director of Product Management at Wiz
The integration between Wiz and Amazon Security Lake has been designed keeping both security analysts and application developers in mind. Teams can easily get started and share their cloud security issues and logs in their centralized security data lake to improve their protection of workloads, applications, and data.
Rod Wallace, General Manager for Amazon Security Lake
For more details on Amazon Security Lake, click here.