Full Report
See what’s new with Wiz at Re:Invent 2024 and learn about how Wiz and AWS continue to strengthen their strategic partnership, keeping AWS customers’ environments secure
Analysis Summary
# Industry News: Wiz Deepens AWS Integration and Launches New Response Capabilities at re:Invent '24
## Summary
Wiz dominated AWS re:Invent '24 announcements by launching Wiz Defend, a comprehensive detection and response suite, while simultaneously securing major integrations and awards underscoring its deep partnership with AWS. These developments signal a strategic push from cloud-native security providers to move beyond posture management into active runtime protection and developer enablement.
## Key Details
- Date: During AWS re:Invent '24 (Implied late Q4 2024)
- Companies Involved: Wiz, Amazon Web Services (AWS)
- Category: Product Launch, Partnership Expansion, Awards
## The Story
Wiz had a high-profile presence at AWS re:Invent '24, highlighted by several significant announcements centered around expanding security capabilities directly within the AWS ecosystem. The cornerstone launch was **Wiz Defend**, a new suite integrating detection, investigation, and response capabilities, leveraging the Wiz Security Graph, eBPF sensors, and CSP audit logs for comprehensive cloud threat management.
Further cementing its strategic alignment with AWS, Wiz announced a new **Amazon Q Developer plugin** to bring security insights directly into developer workflows, making risk remediation more accessible. Technical integrations were numerous, including the Wiz Runtime Sensor becoming available on the **Amazon EC2 Image Builder Console**, support for new **Resource Control Policies (RCPs)**, achieving the **Security Lake Service Ready Specialization**, and validation for the new **Amazon EKS Auto Mode**. Critically, Wiz was recognized as the **AWS Marketplace Partner of the Year**, validating its strong commercial traction via the marketplace channel.
## Business Impact
### For the Companies Involved
- **Wiz:** The launches position Wiz as a full-lifecycle security platform, evolving from Cloud Security Posture Management (CSPM) into a comprehensive Cloud Native Application Protection Platform (CNAPP) with strong response capabilities (Wiz Defend). The AWS Partner of the Year award validates its sales/GTM motion through the AWS channel.
- **AWS:** Partnerships with leading security vendors like Wiz enhance the native value proposition of AWS services (like Security Lake, EKS, and Q), encouraging deeper customer adoption and reducing friction for security-conscious enterprises migrating to or operating on AWS.
### For Competitors
- Competitors focusing solely on CSPM or point solutions for runtime monitoring face increased pressure to develop integrated platforms that seamlessly connect code-to-cloud context and offer response actions, as Wiz is now bridging the gap between security engineering and SecOps workflows.
### For Customers
- Customers benefit from enhanced workflow integration (via Amazon Q), deeper workload visibility (via EC2 Image Builder and EKS Auto Mode integration), and improved data centralization (via Security Lake). The biggest win is the potential for faster incident response enabled by Wiz Defend's context-rich remediation capabilities.
### For the Market
- This signals the continuing maturation of the CNAPP market, where differentiation is increasingly achieved through integration depth with hyperscalers and the ability to automate security tasks across the development and operational lifecycles (code-to-cloud).
## Technical Implications
Wiz is heavily leveraging AWS-native technologies:
1. **eBPF:** Used in the Runtime Sensor for deep, lightweight visibility into workloads and attack blocking.
2. **Security Graph/Context Fusion:** Wiz is combining static posture data, runtime telemetry, and identity/policy context (like RCPs) to generate highly accurate, actionable security alerts for Wiz Defend.
3. **Developer Experience (DX):** The Amazon Q plugin uses large language model capabilities to translate complex security findings into natural language queries within the AWS console, democratizing security oversight.
## Strategic Analysis
- **Market Positioning:** Wiz is aggressively positioning itself as the indispensable security layer for AWS environments, ensuring its tooling is integrated at the earliest stages (code, build) and the latest stages (runtime, response).
- **Competitive Advantage:** The integration velocity with new AWS services (RCPs, EKS Auto Mode) and the launch of Wiz Defend strengthen the "security graph" advantage—the more context they ingest, the better their detection and response becomes compared to siloed tools.
- **Challenges:** Expanding from detection/visibility into full-fledged response (Wiz Defend) requires significant operational maturity and might draw closer scrutiny from established response and SOAR vendors. Maintaining the lead on integrating new, rapidly evolving AWS features is also a continuous operational challenge.
## Industry Reactions
- **Analyst Opinions:** Analysts likely view these announcements as necessary steps for Wiz to maintain its leading valuation and market share in the cloud security space against growing competition that is also chasing integrated CNAPP capabilities.
- **Market Response:** The awards and significant feature releases typically generate positive momentum for cloud security vendors, reflecting strong customer adoption and vendor alignment.
## Future Outlook
- Expect other major CNAPP vendors to announce similar shifts toward integrated response capabilities, mirroring the functionality introduced by Wiz Defend.
- Watch for further announcements detailing Wiz’s utilization of the Security Lake specialization to offer advanced analytics and threat hunting capabilities across broader enterprise data sets.
## For Security Professionals
Practitioners should evaluate Wiz Defend if their primary security challenge involves bridging the gap between identifying cloud risks (CSPM) and actively managing critical, in-progress threats (Detection and Response). Furthermore, leveraging the Amazon Q plugin could significantly streamline communication and remediation tasks for developers embedded within the AWS console.