How Agoda secures its subsidiaries and migration to the cloud

From securing cloud-native subsidiaries to covering its hybrid cloud deployment and growing cloud migration, Agoda relies on Wiz across the board.

Agoda

Industry

Travel And Transportation

Region

Global

Cloud Platforms

AWS
GCP
Ready to start?
Get a demo

Challenge

  • Agoda needed to get rapid visibility into the cloud environment and a sense of the risk landscape of its cloud-native subsidiaries.

  • Agoda was looking to secure its hybrid cloud deployment as it ramped up its cloud migration.

  • Agoda needed visibility into new DevOps deployments and any associated risks across multiple cloud service providers.

Solution

  • Wiz's agentless solution deployed in minutes to give Agoda full stack visibility into its subsidiaries and a prioritized view of risks.

  • Agoda uses Wiz on-premises and in the cloud to get the context it needs to accurately reduce its attack surface and route and remediate risks.

  • Cloud and security teams across Agoda leverage Wiz to identify, prioritize, and remediate issues like Loq4Shell.

Agoda is a leading global online travel services booking platform, with a significant presence in the Asia Pacific region. Their core technology services have historically been on-premises, and over the past several years, they’ve begun migrating to the cloud. With the addition of overseeing cloud-native subsidiaries on top of this migration, Agoda is working in a multi-cloud estate across Google Cloud and AWS that they need to secure.

Faced with an ongoing migration and managing their subsidiaries, Agoda’s security team set out to get visibility across their hybrid and multi-cloud environments. They wanted to find tooling that could give them a consistent view and help understand and evaluate risks at hand no matter where they come from. They explored some traditional security solutions but found them unsuitable for handling the dynamic nature of the cloud. Then they found Wiz.

Wiz allowed us to consolidate and streamline our capabilities. It gave us a much better level of visibility and sense of what was going on at any given time. Once connected to Wiz, we needed to make sure we had the right dashboards and used the right queries, but that was it. It's so straightforward and easy to operationalize

Yaron Slutzky
CISO, Agoda

Agoda’s original driver for cloud security tooling was to get visibility and risk profiles of their subsidiaries. Within minutes of deploying Wiz, they were able to get a cloud asset inventory, and a prioritized list of the primary risks in their subsidiary environments. With a small security team, this gave them everything they needed to move quickly and stay on top of their risk landscape.

It is important for Agoda to gain immediate visibility into our cloud environments with a comprehensive understanding of our risk landscape. Within a few short minutes, we are able to obtain real-time information in order to identify, prioritize and respond to issues quickly. Wiz showed us what was going on and what we needed to do.

Yaron Slutzky
CISO, Agoda

Moving forward, Agoda is prioritizing their move towards the cloud. Security is vital during this transitional period. With Wiz fully operationalized, Agoda relies on Wiz to offer much needed visibility and risk-centric views of everything that the development or QA teams push in production. For their on-premises deployments, Agoda leverages Wiz queries to uncover information about risks and provide a corresponding remediation framework. Agoda’s top priority is to create a strong security posture across their hybrid cloud deployment as this migration is carried out.

Wiz provides value across our hybrid cloud. For our public cloud, we are fully integrated with Wiz. 90% of our reporting comes from Wiz, and it gives us all the context and information we need to identify what we need to do, how we should act, and which vulnerabilities are the highest priority ones to remediate. For our on-premises environment, Wiz queries give us information and guidance on remediation, which is very helpful for DevOps.

Yaron Slutzky
CISO, Agoda

When Log4Shell struck, Agoda leaned heavily on Wiz for dealing with the issue in their public cloud environments across cloud service providers. The team jumped into Wiz to identify everywhere they had instances of Log4Shell across their systems.

Wiz was the best experience we had with Log4Shell, compared to any other system or vendor anywhere in the company. Wiz was the fastest solution to detect it and identify the risks. It made our mitigation plan on the public cloud so easy because we could see where we had Log4Shell and how we could close it. Compared to our on-premises side, where it took days to find the issue and understand what needed to be done, the speed and accuracy of Wiz was amazing.

Yaron Slutzky
CISO, Agoda

Agoda uses Wiz widely across their public cloud environments and cloud teams. From application security leveraging Wiz for findings and mitigation plans, to GRC using Wiz for compliance efforts around PCI and SOC 2, to the cloud architecture team using Wiz to understand prioritization of issues and policies, Wiz is the first platform teams turn to for their particular cloud security efforts.

From the security perspective, it doesn't matter which cloud provider we're looking at. Wiz gives us the same experience for AWS and Google Cloud. Furthermore, there's no operational lift whatsoever to use Wiz across different cloud providers. It makes our job much easier.

Yaron Slutzky
CISO, Agoda

From securing cloud-native subsidiaries to covering their hybrid cloud deployment and growing cloud migration, Agoda relies on Wiz across the board. As they continue to grow their cloud usage, Agoda has the confidence they need in their understanding of their cloud assets and risks to empower DevOps to move and innovate quickly.

Get a personalized demo

Ready to see Wiz in action?

“Best User Experience I have ever seen, provides full visibility to cloud workloads.”
David EstlickCISO
“Wiz provides a single pane of glass to see what is going on in our cloud environments.”
Adam FletcherChief Security Officer
“We know that if Wiz identifies something as critical, it actually is.”
Greg PoniatowskiHead of Threat and Vulnerability Management