Wiz

  • icon tag Technology | Cloud and Runtime
Partner background

Revolutionize AppSec with a Code to Cloud Approach

The Checkmarx and Wiz integration connects all the moving parts in the development life cycle, from the first line of code to deployment and runtime in the cloud.

Introduction

Securing applications and cloud environments is a necessity. The partnership between Checkmarx and Wiz addresses this critical need by combining Checkmarx’ application security expertise with Wiz’s Cloud-Native Application Protection Platform (CNAPP). This results in a comprehensive security approach, protecting the first line of code to deployment and runtime in the cloud.

 

Explaining the Partnership

Checkmarx and Wiz have integrated their solutions to deliver actionable insights and prioritized vulnerability remediation for mutual customers. This partnership extends the capabilities of Checkmarx One by incorporating Wiz’s runtime data, which offers a unified security posture across the software development life cycle (SDLC). This integration enhances collaboration among development and security teams while also ensuring the efficient mitigation of business-critical vulnerabilities.

Want to learn more?

Request a demo of Checkmarx and Wiz

See how Checkmarx & Wiz can help you:

  • Gain visibility from code to cloud
  • Identify attack paths
  • Contextualize risk management

Checkmarx & Wiz. Better together.

Get more value from your AppSec investments by connecting your application and cloud security

Visibility from Code to Cloud

image (4)

Map your cloud environments assets (clusters, pods and container images) to your source code repositories

Identify Attack Paths

image (5)

Identify the attack paths for exposed container images to the source code repositories vulnerabilities.

Actionable Insights and Prioritized Remediation

image (6)

Identify and map vulnerabilities in Kubernetes clusters, container images, and code repositories with runtime data for better risk management.

Contextual Risk Management

image (7)

Correlate Checkmarx SAST results with Wiz’s cloud asset inventory to prioritize vulnerability remediation based on exploitable risks in running applications.

Extended Security Coverage

image (8)

Apply the “Shift Left, Shield Right” strategy to secure every stage of the SDLC. Enhancing security insights within development environments allows you to foster collaboration across teams.

Dynamic Cloud Security

image (9)

Checkmarx’ application security findings enrich Wiz’s platform. This combination provides actionable visibility to address significant risks to critical assets.

  • Visibility from Code to Cloud

    Map your cloud environments assets (clusters, pods and container images) to your source code repositories

  • Identify Attack Paths

    Identify the attack paths for exposed container images to the source code repositories vulnerabilities.

  • Actionable Insights and Prioritized Remediation

    Identify and map vulnerabilities in Kubernetes clusters, container images, and code repositories with runtime data for better risk management.

  • Contextual Risk Management

    Correlate Checkmarx SAST results with Wiz’s cloud asset inventory to prioritize vulnerability remediation based on exploitable risks in running applications.

  • Extended Security Coverage

    Apply the “Shift Left, Shield Right” strategy to secure every stage of the SDLC. Enhancing security insights within development environments allows you to foster collaboration across teams.

  • Dynamic Cloud Security

    Checkmarx’ application security findings enrich Wiz’s platform. This combination provides actionable visibility to address significant risks to critical assets.

image (4)
image (5)
image (6)
image (7)
image (8)
image (9)

Related Resources

“This partnership exemplifies our commitment to equipping developers and security teams with comprehensive solutions to streamline vulnerability detection and mitigation from code to cloud. Together with Checkmarx, we’re helping organizations safeguard their cloud infrastructure and applications with a unified and prioritized view into the cloud vulnerabilities that have the largest impact on their business.”

Oron Noah
Oron Noah — VP Product Extensibility & Partnerships at Wiz

Frequently asked questions

What Checkmarx subscription or license do I need?

The integration with Wiz requires subscription to one of the Checkmarx One packages, excluding the entry “Start with SAST” subscription.

What Wiz subscription or license do I need?

The integration requires subscription to the Wiz “Advanced” plan

How do I setup the integration?

Within the Wiz settings generate a Client ID with Secret. These credentials are then entered in the Checkmarx Integration settings. For a step-by-step guide please refer to our documentation.