Team Traceable
Wiz + Traceable – Comprehensive API Security from Code to Cloud
Today, we are excited to announce that Wiz has chosen Traceable to integrate comprehensive API Security into their Cloud Security platform!
From its inception, Traceable has focused on comprehensive API security for cloud native applications. Using context for API Security has been the core foundation of the Traceable platform. Capabilities ranging from native deployment options in AWS, Azure, GCP, and Kubernetes, to protecting against known and unknown threats, as well as inline/out-of-band blocking, were built with that in mind.
Complete Context for Complete API Security in the Cloud
The Traceable API Data Lake is the backbone for our API security platform. It is enriched with metadata, request/response parameters, authentication, scopes and roles, threat data, API risk and cloud attributes, that provide complete context for API security in cloud native applications. This helps our customers leverage the capabilities of the platform – catalog, protection, testing and analytics capabilities – for 360 degree context of APIs.
Purpose-built for the cloud, Wiz delivers full stack visibility, accurate risk prioritization, and enhanced business agility. Wiz connects in minutes to scan the full cloud environment without agents. It performs a deep assessment that goes beyond point solutions and surfaces toxic combinations of exposure that represent real risk.
We found these capabilities to be immensely useful to augment the context of applications and API’s that Traceable uses to build a unified view of threats at the API endpoints level. Traceable protects API’s which are hosted in the cloud infrastructure and are used to implement business logic for applications.
Since the API layer is the attack surface used to exploit cloud native applications as we have seen in recent attacks, the correlation of threats between Wiz and Traceable can help build a strong layer of defense for our joint customers.
Since the API layer is the attack surface used to exploit cloud native applications as we have seen in recent attacks, the correlation of threats between Wiz and Traceable can help build a strong layer of defense for our joint customers.
As part of the integration, Traceable identifies threats for every API endpoint. These threats and issues in Wiz can be mapped directly in the Traceable Threat Activity screen. This allows Infosec and Appsec teams to understand the overall risks for the cloud native application across API, Kubernetes, serverless and underlying infrastructure. Infosec teams can accordingly prioritize addressing the threats at both the layers, depending on the overall risk exposure.
Infosec teams can accordingly prioritize addressing the threats at both the layers, depending on the overall risk exposure. Remedial action includes blocking and alerting on Traceable and enforcing built-in Wiz policies compliance frameworks and custom policies on Wiz side.
“Cloud native applications are powered by APIs so securing them needs a deep understanding of the threats at the API, Authorization layers and the underlying cloud and containers layers. We are excited to partner with Wiz so that our joint customers can have complete protection of the cloud native apps stack” said Sudeep Padiyar, Senior Director of Product Management at Traceable who worked closely with the Wiz team on this integration.
“We’re glad to integrate with Traceable to support mutual customers who are looking to augment API security, gain visibility and prioritize the most important risks across their cloud infrastructure.” said Oron Noah, Director of Product Management at Wiz.
More details of the integration can be found at https://www.traceable.ai/resources/lp/datasheet-wiz-integration and https://docs.traceable.ai/docs/wiz-integration and by contacting alliances@traceable.ai
About Traceable
Traceable is the industry’s leading API Security company that helps organizations achieve API protection in a cloud-first, API-driven world. With an API Data Lake at the core of the platform, Traceable is the only intelligent and context-aware solution that powers complete API security – security posture management, threat protection and threat management across the entire Software Development Lifecycle – enabling organizations to minimize risk and maximize the value that APIs bring to their customers. To learn more about how API security can help your business, book a demo with a security expert.
