AI-powered security only matters if it helps teams work smarter — seeing risk with more context, acting with precision, and scaling security without adding friction. That vision is now reality with the first AI Agents in Wiz — purpose-built to turn intelligence into action across investigation and remediation.
Built on the trusted Wiz Security Graph, Wiz brings explainable, high-quality context directly into how teams work — across code, cloud, and runtime. This deep dive explores the first Wiz Agents and the many ways AI now powers every stage of the security lifecycle.
The Issues Agent helps teams move from detection to resolution by connecting findings, ownership, and impact — surfacing the most efficient path to fix what matters.It cuts noise, clarifies ownership, and accelerates progress toward Zero Criticals.
How it works : You can access the Agent’s insights directly from any issue by selecting Investigate. It automatically evaluates the best remediation paths and highlights recommended actions and owners.You can then dig deeper through AI to take further steps — for example, explore dependencies, confirm ownership, or preview the most efficient remediation sequence.
To start using the Issues Agent, head to the Preview Hub.
The SecOps Agent helps SOC teams investigate and respond faster by automatically analyzing every threat in our environment. It mimics a full human investigation — gathering context, evaluating evidence, and producing a clear verdict with confidence and reasoning.
How it works: The SecOps Agent automatically triages every new or updated Threat in your environment. It analyzes detection data, timeline details, involved entities, and related cloud activity, retrieving additional Wiz context like past detections, cloud events, resource metadata, and risk findings.
The result is a verdict— complete with a conclusion, confidence level, and a summary of the investigation process.
You can then review the results to take further action — validate the reasoning, accept or adjust the verdict, or use the summary to guide response workflows. The Agent conducts the initial triage and investigation of threats, enabling your SOC team to accelerate investigation and focus their expertise on Threats requiring deeper analysis.
Together, these Agents mark the beginning of a broader evolution of AI inside Wiz.
They’re the first of many purpose-built Agents that will extend across code, risk, and threat domains — each designed to help teams act faster and with greater confidence.
(For a broader look at our AI vision click here.)
AI in Wiz isn’t a separate destination — it’s woven into how teams already build, secure, and operate.From identifying new services to investigating live alerts, AI-Powered Wiz amplifies every part of the workflow by meeting users where they are — in the console, in the IDE, through Wiz MCP integrations, in Slack, or even in the browser.
The following story follows a company preparing to launch a new product — and how Wiz AI connects their teams across discovery, remediation, development, and response.
Security starts the day by clicking into Ask AI within the Wiz UI — available anywhere across the platform — to assist with tasks or questions in real time.
They ask: “What new services were deployed this week?” or “Which have the highest risk?”
Mika summarizes the results, listing new services, related assets, and critical issues so the team can focus where it matters most.
You’ll use: Ask AI (Mika)
From Mika’s findings, the team opens one of the identified issues and selects Investigate to view the Issues Agent’s recommendations.
The Agent evaluates the most efficient remediation paths, clarifies ownership, and provides actionable guidance on how to resolve the issue — whether through configuration changes, automated alerts, or code updates.In this case, the fix triggers a suggested pull request to the development team, linking the suggested change and context directly in Slack.
You’ll use: Issues Agent
Developers receive the pull request and use the Wiz MCP Server to access Wiz insights directly in their environment.
They review risk findings, resource metadata, and dependency context right where they work — ensuring every change aligns with security and compliance expectations.
Through connected experiences like the IDE and Wiz Extend, they can surface the same insights during development or code review, keeping security embedded from build to production.
With Wiz intelligence woven into their workflow, developers can build and fix securely — preventing misconfigurations before they ship and strengthening every release.
You’ll use: Wiz MCP Server, Wiz IDE extension
Soon after, a new vulnerability surfaces — and an alert in Wiz indicates possible exposure related to the same service.
Using Wiz Extend, a security engineer highlights the CVE in the browser and asks “Is this relevant in our environment?” Wiz instantly provides environment-aware context, showing whether the organization is affected and which assets are at risk.
In parallel, the SecOps Agent automatically investigates the triggered alert, analyzes associated detections and cloud activity, and produces a verdict (for example, suspicious or not malicious) with full reasoning and confidence.
The analyst reviews the details, confirms the outcome, and closes the alert — with complete transparency and control.
You’ll use: Wiz Extend • SecOps Agent
Across every step — from identifying new services to responding to new threats — Wiz AI works seamlessly within the tools teams already use.It powers decisions with shared context and explainable intelligence, all built on the trusted Wiz Security Graph that keeps teams aligned and ahead of risk.
AI-Powered Wiz unifies investigation, action, and response in one connected experience — helping every team move faster and with greater confidence.
The result: less noise, clearer ownership, and a stronger security foundation for what’s next.
此内容由惯性聚合(RSS阅读器)自动聚合整理,仅供阅读参考。 原文来自 — 版权归原作者所有。