Palo Alto, California – April 24, 2025
CyCognito, the leader in external exposure management, today announced its partnership with leading cloud security provider Wiz and joins Wiz Integrations (WIN). The integration, launching at the RSA Conference, enables joint customers to combine the visibility and coverage of Wiz's CNAPP with the power of continuous DAST and external asset discovery across global organizations and enabling enhanced cloud security coverage.
Organizations often face critical visibility gaps that weaken their cloud security posture. Misconfigurations and human oversight—like incorrect identity mappings or missed CSPM controls—can leave assets exposed. Mergers and acquisitions frequently introduce shadow environments with inconsistent standards, while third-party applications and outsourced projects expand the attack surface beyond the organization’s view.
These blind spots leave organizations vulnerable to threats that traditional tools may overlook. Closing them requires both internal cloud visibility and an attacker’s external perspective.
CyCognito uses seedless discovery to automatically identify cloud assets across sanctioned, unsanctioned, and subsidiary environments—without relying on cloud provider APIs. While Wiz delivers deep, internal context across code, cloud, and runtime, CyCognito complements it by discovering externally exposed assets and validating real-world risks. This joint approach gives security teams deeper insight into external exposures, helping them manage risk across complex, distributed cloud environments.
CyCognito uses dynamic application security testing (DAST) to examine running apps for vulnerabilities. CyCognito enables organizations to reach their ideal app sec goals by testing from the network edge—through the infrastructure—and into the application. CyCognito addresses the testing gaps that, until now, organizations have struggled to close.
"By integrating with Wiz, we're bringing the attacker's perspective directly into cloud security programs,” said Randy Streu, SVP Global Channels & Alliances, CyCognito. “This partnership empowers security teams with both internal and external visibility—combining Wiz’s deep cloud-native context with our continuous external discovery to help teams surface, prioritize, and respond to the risks that matter most.”
Mutual customers receive the following benefits:
- Risk Enrichment: CyCognito's integration directly maps to Wiz assets and sends external perspective, additional issue findings, context, and risk-based prioritization to Wiz to provide customers with the attacker perspective.
- Unified Coverage Insights: CyCognito’s external asset discovery complements Wiz’s internal cloud visibility, helping joint customers identify previously unknown or unmanaged assets.
- Multi-cloud Attacker’s Perspective: CyCognito enhances Wiz’s visibility into exposed web apps and risks across AWS, Microsoft Azure, and Google Cloud Platform.
- Targeted DAST Based on Verified Exposure: Wiz identifies externally exposed API endpoints through static and dynamic network analysis, and sends only those endpoints to CyCognito for DAST scanning.
The integration with Wiz supports a modern cloud security operating model, where security and cloud teams work together across the entire development lifecycle. Wiz’s unified platform delivers code-to-cloud context to reduce the attack surface—using shared policies to stop risks earlier in the SDLC and ensure posture is enforced in production. With Wiz Defend, teams can also detect and respond to real-time threats in their cloud environments, enabling complete visibility and control across code, cloud, and runtime.
"We’re excited to welcome CyCognito to the Wiz Integration Network,” said Oron Noah, VP of Product, Extensibility & Partnerships at Wiz. “By combining CyCognito’s continuous DAST and external asset discovery with Wiz’s comprehensive code-to-cloud context and real-time threat detection, we’re enabling our customers to proactively identify exposures, prioritize critical risks, and strengthen their cloud security posture across the entire development lifecycle."
To learn more about the CyCognito-Wiz integration at RSA, please visit booth #3110.
To see how this integration empowers cloud security teams with greater visibility and control, please visit the dedicated blog page.
