Full Report
Oracle Cloud Infrastructure customers can now effectively protect their sensitive data with Wiz’s Data Security Posture Management (DSPM) capabilities.
Analysis Summary
# Industry News: Wiz Extends DSPM Capabilities to Oracle Cloud Infrastructure
## Summary
Wiz has announced the launch of Data Security Posture Management (DSPM) scanning support for Oracle Cloud Infrastructure (OCI). This expansion addresses the critical risk of sensitive data exposure in OCI environments, allowing customers to proactively discover, classify, and map attack paths to data like PII, PHI, and PCI across their cloud assets.
## Key Details
- **Date:** [Implied 'Recently Announced' based on the nature of the announcement]
- **Companies Involved:** Wiz, Oracle Cloud Infrastructure (OCI)
- **Category:** Product Launch/Feature Expansion
## The Story
The article highlights significant risks in cloud data security, noting that 47% of companies studied by Wiz have publicly exposed databases or storage buckets, with attackers capable of discovery within hours. To combat this, Wiz is integrating its DSPM solution directly into OCI, extending its Security Graph capabilities to OCI Object Storage Buckets. This allows users to automatically discover where sensitive data resides, who can access it, how it is configured, and, crucially, map end-to-end attack paths that lead to that data, such as using a network vulnerability on a VM to access exposed OCI storage.
## Business Impact
### For the Companies Involved
- **Wiz:** This move solidifies Wiz’s position as a leading Cloud Native Application Protection Platform (CNAPP) provider by closing a significant gap in multi-cloud security by supporting a major hyperscaler (OCI). It enhances the value proposition for existing and prospective multi-cloud customers who leverage Oracle services.
- **Oracle (OCI):** Gaining native, advanced security integration from a top-tier security vendor like Wiz makes OCI significantly more attractive to larger enterprises and regulated industries concerned about data governance and compliance within their cloud footprint.
### For Competitors
- Other CNAPP or CSPM vendors who have not yet fully integrated comprehensive DSPM for OCI face a competitive disadvantage. Wiz is raising the bar for multi-cloud data visibility, forcing competitors to accelerate their own integrations or risk ceded ground in the OCI ecosystem.
### For Customers
- OCI customers gain a critical tool for preventing costly data breaches and maintaining compliance (PCI, HIPAA). They can now reduce the dwell time for data exposure risks and efficiently manage security posture across their entire Oracle estate integrated with other cloud environments monitored by Wiz.
### For the Market
- This development signals a continued market shift towards unified, data-centric security visibility across all cloud environments. DSPM is becoming a mandatory component of a mature Cloud Security strategy, moving beyond basic asset inventory to understanding the *value* and *exposure* of the data itself.
## Technical Implications
Wiz is implementing DSPM scanning specifically for OCI Object Storage, using classifiers to detect sensitive data types (PII, PHI, PCI). The integration leverages schema matching for data lineage tracking and maps these findings directly onto the Wiz Security Graph. This allows for the detection of complex attack paths that combine network vulnerabilities, identity access, and data location to identify true breach scenarios.
## Strategic Analysis
- **Market Positioning:** Wiz reinforces its strategy to achieve comprehensive visibility across all major public clouds, positioning itself as the unified security layer for hybrid and multi-cloud deployments.
- **Competitive Advantage:** Deep integration with OCI, coupled with advanced context from the Security Graph, provides a superior mechanism for prioritizing remediation compared to point solutions that only scan storage for compliance drift.
- **Challenges:** Continued success relies on maintaining rapid feature parity across all cloud providers as these platforms evolve their storage and compute offerings.
## Industry Reactions
- **Analyst opinions:** Industry analysts generally view expansion into key secondary clouds like OCI as crucial validation for CNAPP leaders. The focus on DSPM is seen as necessary given increasing regulatory scrutiny on data-centric breaches.
- **Market response:** The announcement is likely viewed positively by investors, as it expands Wiz’s achievable Total Addressable Market (TAM) within large enterprise consumption accounts that utilize dedicated Oracle environments.
## Future Outlook
- **Predictions and expectations:** We expect other leading CNAPP vendors to follow suit with deeper, contextual DSPM integrations for OCI. The next step for Wiz will likely involve expanding coverage to OCI compute services (VMs, Kubernetes) to understand data movement *from* compute *to* storage.
- **What to watch for:** Look for announcements regarding automated remediation capabilities specifically targeting OCI data misconfigurations.
## For Security Professionals
Security teams using OCI should immediately assess the Wiz integration if they are current customers, as it offers a powerful way to visualize the greatest risks to their regulated data. Practitioners should prioritize remediation based on attack paths identified by the Wiz Security Graph rather than raw data volume reports.