Freak is a cloud security platform that enables organizations to protect everything they build and run in the cloud by quickly identifying and eliminating critical risks. More than 40% of Fortune 100 companies rely on Wiz's purpose-built cloud security platform for complete visibility, accurate risk prioritization, and greater business agility. Organizations can connect Wiz in minutes to scan their entire cloud environment without agents and identify issues that pose a real risk. Cloud and security teams can then proactively eliminate risks and harden cloud environments with remediation workflows.
artificial intelligence (ai) has revolutionized the way organizations operate, paving the way for automation and improving efficiency in various traditionally manual tasks. One such use case is the use of ai in security organizations to improve security processes and increase their overall security posture. One of the main challenges in cloud security is discerning the best ways to resolve an identified issue in the most effective way that allows you to respond quickly.
Wiz has harnessed the power of generative ai to help organizations eliminate risks in their cloud environment faster. With Wiz's new integration with amazon Bedrock, Wiz customers can now generate guided remediation steps supported by core models (FM) running on amazon Bedrock to reduce their mean time to remediation (MTTR). amazon Bedrock is a fully managed service that offers a selection of high-performance foundation models (FMs) from leading ai companies such as AI21 labs, Anthropic, Cohere, Meta, Mistral ai, Stability ai and amazon through a single API, along with a broad set of capabilities to build generative ai applications with security, privacy, and responsible ai.
“The integration of Wiz and amazon Bedrock enables organizations to further enhance security and improve remediation time by leveraging a selection of powerful foundation models to generate GenAI-powered remediation steps.”
– Vivek Singh, Senior Manager, Product Management technology, AWS ai
In this post, we share how Wiz uses amazon Bedrock to generate solution guidance for customers to quickly address security risks in their cloud environment.
Detecting cloud security risks with Wiz Security Graph
Wiz scans agentless cloud environments and performs deep risk assessment across network exposures, vulnerabilities, misconfigurations, identities, data, secrets, and malware. Wiz stores the entire technology stack as well as any detected risks in the Wiz Security Graph, which is powered by amazon Neptune. Neptune allows Wiz to quickly traverse the graph and understand in seconds interconnected risk factors and how they create an attack path. Security Graph allows Wiz to reveal these critical attack paths in the form of Wiz issues. For example, a Wiz issue may alert you to a publicly exposed amazon Elastic Compute Cloud (amazon EC2) instance that is vulnerable, has administrator permissions, and can access sensitive data. The following graphic illustrates this attack path.
With its Security Graph, Wiz provides customers with accurate alerts about security risks in their environment, reduces the noise faced by traditional security tools, and allows organizations to focus on the most critical risks in their environment.
Remediate cloud risks with guided remediation provided by amazon Bedrock
To help customers address security risks even faster, Wiz uses amazon Bedrock to analyze Wiz Issues metadata and generate effective solution recommendations for customers. With amazon Bedrock, Wiz combines its deep risk context with cutting-edge FM to deliver enhanced remediation guidance to clients. Customers can scale their remediation workflow and minimize their MTTR by generating easy-to-use copy-and-paste remediation steps that can be implemented directly in the tool of their choice, such as the AWS Command Line Interface (AWS CLI) , Terraform, AWS CloudFormation. , Pulumi, Go and Python, or directly using the cloud environment console. The following screenshot shows an example of the solution steps generated by amazon Bedrock for a Wiz issue.
<img loading="lazy" class="alignnone size-full wp-image-78192" style="margin: 10px 0px 10px 0px;border: 1px solid #CCCCCC" src="https://technicalterrence.com/wp-content/uploads/2024/06/1718482134_551_How-Wiz-is-empowering-organizations-to-remediate-security-risks-faster.png" alt="An example of the solution steps generated by amazon Bedrock for a Wiz issue” width=”1086″ height=”775″/>
Wiz sends a message with all relevant context about a security risk to amazon Bedrock with instructions on how to present the results depending on the target platform. amazon Bedrock's native APIs allow Wiz to select the best model for the use case to respond to the request, so when it is received, it is easily analyzed and presented in the Wiz portal.
To operationalize this functionality in production, the Wiz backend has a service running on amazon Elastic Kubernetes Service (amazon EKS) that receives the request from the client to generate remediation steps, collects the context of the alert that the client wants to remediate and executes personally identifiable information. redaction of information information (PII) of the data to remove any sensitive data. Another service running on amazon EKS then extracts the resulting data and sends it to amazon Bedrock. Such a flow can run in each AWS Region needed and supported by amazon Bedrock to address any compliance needs of your customers. Additionally, to ensure least privilege use of amazon Bedrock, Wiz uses AWS permission sets and follows AWS best practices. The Wiz service that sends the message to amazon Bedrock has a dedicated AWS Identity and Access Management (IAM) feature that allows it to communicate only with the specific amazon Bedrock service and generate only those requests. amazon Bedrock also has restrictions to block any data coming from an unauthorized service. Using these AWS services and Wiz Security Graph, Wiz helps its customers adopt the most advanced LLMs to accelerate the process of addressing complex security issues in a simple and secure way. The following diagram illustrates this architecture.
Wiz customers are already experiencing the benefits of our new ai-based solution:
“The faster we can remediate security risks, the more we can focus on driving broader strategic initiatives. “With Wiz’s ai-powered solution, we can quickly generate solution steps that our security team and developers can simply copy and paste to fix the issue.”
– Rohit Kohli, Deputy CISO, Genpact
By using amazon Bedrock to generate ai-based remediation steps, we learned that security teams can minimize the time spent investigating complex risks by 40%, allowing them to focus on mitigating more risks. Additionally, they can empower developers to remediate risks by eliminating the need for security expertise and providing them with exact steps to follow. Wiz not only uses ai to improve customer security processes, but also makes it easier for customers to safely adopt ai in their organization with its ai-security-posture-management” target=”_blank” rel=”noopener”>ai Security Posture Management capabilities, allowing them to protect their ai models while increasing innovation.
Conclusion
The use of generative ai to generate improved remediation steps marks a significant advance in the field of problem resolution and automation. By leveraging the power of ai models powered by amazon Bedrock, Wiz users can quickly remediate risks with simple remediation guidance, reducing manual efforts and improving MTTR. Learn more about Wiz and take a look at a live demo.
About the authors
Rotlevi shaken He is a technical director of product marketing at Wiz and focuses on ai security. Prior to Wiz, he was a solutions architect at AWS, working with public sector clients, as well as a technical program manager for a security services team. In his free time he likes to play beach volleyball and go hiking.
itay arbel He is a Senior Product Manager at Wiz. Before joining Wiz, Itay was a product manager at Microsoft and did an MBA at the University of Oxford, specializing in high technology and emerging technologies. Itay is Wiz's product lead in the effort to help organizations secure their ai pipeline and use of this new emerging technology.
Eitan Sela is a solutions architect specializing in generative artificial intelligence and machine learning at AWS. He works with AWS customers to provide guidance and technical support, helping them build and operate generative ai and machine learning solutions on AWS. In his free time, Eitan likes to jog and read the latest articles on machine learning.
Adi Avni is a Senior Solutions Architect at AWS based in Israel. Adi works with AWS ISV customers and helps them build innovative, scalable, and cost-effective solutions on AWS. In his free time he likes sports and traveling with family and friends.
