Snowflake

Integration Benefits

The new Wiz and Snowflake integration helps organizations connect their existing platforms for cloud security and data analytics to break down security silos and bring together the entire security picture. The new best practice is to collect security event data from  all cloud environments into a central security data lake to store, query, analyze, and report on an organization’s cloud footprint and security issues over time.

Organizations can use the Wiz and Snowflake integration for the following use cases:

• Inventory over time: Get the complete picture of your cloud footprint. Analyze and report on your cloud assets, issues, and vulnerabilities over time. For example, you can analyze the number of storage and compute instances being spun up and down without worrying about retention limits or query performance at scale.   

• Report: Report on key security metrics (e.g SLA performance) across the CSF categories Identify, Protect, Detect, Respond, and Recover and see how your teams are progressing. Drill down reporting to specific groups, business units, or projects. Analyze metrics across cloud environments, including AWS, GCP, and Azure. Security teams can easily report on powerful metrics such as the number of outstanding issues per project, gather the number of open vulnerability issues filtered by Wiz project, the percentage of issues older than 30 days and many more.   

• Investigate: Enrich security investigations by bringing the cloud security context into a central repository. When investigating a suspected breach, it’s essential to have details on what an affected system is and what vulnerabilities it may have had at the time of the initial incident.    

• Consolidate: Store all your security data for long term storage that might be required for compliance or your security policy. Retention is cost-effective and flexible, with data always “hot” and ready to query.