Full Report
Wiz is excited to announce it is a launch partner for the new Amazon Inspector, bringing Amazon Inspector findings together with Wiz insights to give our customers actionable, prioritized and contextually rich security insights.
Analysis Summary
# Industry News: Wiz Enhances Cloud Security Posture with New Amazon Inspector Integration
## Summary
Wiz has announced its launch partnership with the new Amazon Inspector, integrating Inspector findings directly into the Wiz platform. This synergy aims to deliver customers enriched, prioritized, and context-aware security insights for their AWS environments, primarily focusing on EC2 instances and ECR container images.
## Key Details
- Date: November 30, 2021 (Based on blog post date)
- Companies Involved: Wiz and Amazon Web Services (AWS)
- Category: Partnership / Product Integration
## The Story
Wiz, a prominent Cloud Native Application Protection Platform (CNAPP) vendor, has partnered with AWS to incorporate findings from the newly launched Amazon Inspector service. The goal is to combine Inspector's vulnerability and configuration scanning data with Wiz's agentless, comprehensive look across cloud configurations, workloads, identities, and effective permissions. By ingesting Inspector data for EC2 instances and ECR images, Wiz provides a "single pane of glass" experience, prioritizing risks based on external context like exposure paths and identities—context that Inspector alone might not fully provide.
## Business Impact
### For the Companies Involved
- **Wiz:** Solidifies its dedication to ecosystems integration, positioning itself as the central risk management layer that maximizes the value of native cloud security tools. Reinforces the "agentless" value proposition by augmenting native scanning capabilities.
- **AWS:** Gains a key partner to drive adoption of the new Amazon Inspector offering, demonstrating that AWS services integrate effectively with leading third-party security platforms, thereby improving the overall security ecosystem for mutual customers.
### For Competitors
- Competitors in the CNAPP and CSPM space that lack deep, seamless integration with AWS native services may appear less capable of providing prioritized context. This integration sets a higher bar for cross-platform data correlation in the cloud security market.
### For Customers
- Customers utilizing both Wiz and AWS benefit from superior risk prioritization. Instead of manually correlating data from two consoles, they receive actionable intelligence that connects a discovered vulnerability (from Inspector) to its actual exploitability or impact within their cloud environment (from Wiz's context engine).
### For the Market
- This move exemplifies the trend toward **security consolidation and correlation**. The market increasingly demands platforms that can ingest data from multiple sources (native tools, agent-based scans, API calls) to reduce alert fatigue and focus resources on truly critical risks.
## Technical Implications
Wiz leverages its 100% API-based scanning approach to complement Inspector's workload scanning. Specifically, it enhances Inspector findings by correlating them with:
1. Cloud configuration data.
2. Exposure paths (paths to the internet or high-value assets).
3. Machine identities and effective permissions.
4. Secrets and malware detection.
This correlation transforms basic vulnerability identification into contextualized risk assessment.
## Strategic Analysis
- **Market Positioning:** Wiz reinforces its position as the leading orchestrator of cloud risk intelligence, succeeding where initial visibility tools fall short by offering deep context.
- **Competitive Advantage:** Wiz’s ability to contextually enrich native findings provides a significant advantage over pure CSPM tools or vulnerability scanners, driving stickiness for enterprise adoption.
- **Challenges:** The reliance on AWS service availability and API access remains a dependency. Wiz must continually adapt its correlation logic as AWS evolves both Inspector and the underlying services.
## Industry Reactions
Specific quotes from analysts are not present in the summary, but the integration validates the industry shift toward platforms that harmonize and prioritize native scans. Industry consensus favors solutions that reduce data sprawl rather than adding another siloed security tool.
## Future Outlook
- We expect other major CNAPP vendors to rapidly pursue similar launch partnerships or deep integrations with newly announced AWS security features to remain competitive.
- Future development will likely center on how quickly Wiz can integrate findings from other AWS security innovations (e.g., new identity access management features or container scanning updates).
## For Security Professionals
This integration is highly beneficial as it reduces the Mean Time to Remediate (MTTR) for AWS cloud vulnerabilities. Security teams can trust the prioritized alerts coming from Wiz, knowing they incorporate the foundational runtime and image scanning data provided by Amazon Inspector, ensuring that patching efforts target the highest-risk exposures first.