Wiz and Netskope: Making IaaS Zero Trust Magic

Netskope and Wiz help organizations simplify and automate policy management across complex cloud environments. This partnership highlights the seamless integration between Wiz sharing security risk and threat insights to enable Netskope to modify existing policies or craft new ones automatically. 

Below, we present two of the primary use cases that customers leverage with our joint integration:

Use Case #1: Monitor and Control Access

The risk of unauthorized data movement is a significant concern for security administrators. They must identify data movement, understand its destination, and implement policies to restrict it. Insider risks, like sensitive data being downloaded from corporate instances and uploaded to personal instances, are one of today’s top reasons for data loss. Instance controls are highly effective in this context, providing administrators with the ability to allow, inspect, and/or block data movement. This gives them immense control over data security.

The Wiz and Netskope integration leverages Wiz’s deep visibility into cloud environments and Netskope’s App Instance Awareness to lock down access to only sanctioned (corporate) cloud workloads. It does this by Wiz providing issues across your cloud environments. This insight then allows for the automatic creation of App Instances in the Netskope platform for each bucket with an affected issue. This simplifies policy creation and modification and allows for more granular CASB and DLP capabilities on the Netskope platform.

Use Case #2: Secure Cloud Onramp

In today’s complex cloud landscape, ensuring secure and seamless access to cloud resources is paramount. The Netskope and Wiz integration leverages the strengths of both platforms, allowing for dynamic policy changes in Netskope based on vulnerabilities detected by Wiz for your AWS, Azure, and GCP resources. These policies are linked to decisions to permit or prohibit access to the workload, dictating user connectivity through the Netskope platform with our ZTNA Next 360 solution. Users attempting to access the compromised workload are promptly blocked using a predefined blocking template, mitigating additional risk and helping DevOps or Incident Response (IR) teams address the issue effectively. Once the workload is restored to its secure state, Netskope automatically detects the resolution, dynamically restoring access without manual intervention. This continuous feedback loop exemplifies the use of zero trust principles in action, constantly adapting policies based on security signals and workload context. 

Additionally, users can further enhance security measures by incorporating User Entity Behavior Analytics (UEBA) assessments of individuals identified as high-risk by Netskope. This advanced analysis allows for dynamic adjustments, enabling the system to promptly downgrade or revoke access for these individuals when interacting with sensitive workloads. This proactive approach helps safeguard critical assets by swiftly responding to potential threats identified through behavioral patterns, ensuring robust protection against unauthorized access.

Why is this important?

Our integration provides security teams with a fast and proactive response to security incidents. By swiftly blocking access to unmanaged or risky workloads, we drastically reduce the attack surface for organizations. Conversely, as risk diminishes or is eliminated through resolution, full access is seamlessly restored, ensuring operational efficiency without compromising security. The Netskope and Wiz integration provides unique and significant benefits, helping mutual customers achieve: 

• Comprehensive cloud protection through consistent security policies, powered by Wiz intelligence and Netskope inline protection and access controls, across Azure, GCP, and AWS resources.
• Enhanced security posture by proactively addressing security threats before they escalate with dynamic policy changes based on Wiz intelligence and enforced by Netskope, minimizing the risk of data breaches and compliance violations.
• Streamlined cloud security operations through centralized policy management and incident response with full context provided by integrated Netskope and Wiz platforms.

Ready to revolutionize your security strategy? Download our comprehensive solution brief today and find detailed implementation instructions in our solution guide. Don’t miss out on securing your digital ecosystem–take action now!