Wiz

Wiz

Overview

The Wiz integration in the Praetorian Guard Platform (PGP) enables continuous monitoring of your cloud environment for internet-facing vulnerabilities. By connecting PGP to your Wiz instance, you can track open security findings, monitor asset status, and manage vulnerabilities detected across your infrastructure.

Features

  • Real-time vulnerability monitoring for internet-exposed virtual machines

  • Detailed vulnerability information including CVSS scores, vendor severity, and remediation guidance

  • Asset tracking with cloud provider and subscription mapping

  • Continuous monitoring for new security findings

  • Automatic mapping of vulnerabilities to affected assets

  • Operating system and IP address tracking for virtual machines

Prerequisites

Before configuring the Wiz integration, you will need:

  • A Wiz account with administrative access

  • Wiz Active Scanner license, which is a part of the Wiz Advanced License

  • Client ID and Client Secret for API access 

  • Your Wiz API endpoint URL

Creating a Service Account in Wiz

1. Access Service Account Settings

  1. Sign in to Wiz

  2. Navigate to Settings > Access Management > Service Accounts

2. Create New Service Account

Click "Add Service Account" 

3. Configure Service Account

On the New Service Account page, configure the following:

  • Name

  • Select "Custom Integration (GraphQL)" 

  • Description (optional)

  • Projects (optional)

  • Expiration date (optional)

  • API Scopes

    • Select "All - Read all entities [read:all]"

  • Click "Add Service Account"

4. Save Credentials

After creation, you'll see your credentials with the message: "The following keys are your OAuth credentials. They will only be shown once, so copy them now and keep them safe!"

Make sure to copy and securely store both the Client ID and Client Secret.

Configure PGP Integration

1. Access Integrations

  1. Log in to PGP

  2. Navigate to Integrations

2. Add Integration

  1. Click "Add Integration" 

  2. Under "Cloud Security Posture Management" find the Wiz integration

  3. Click Connect

3. Configure Integration

To obtain the Wiz API URL

  1. Click your initials at the upper right corner of http://Wiz.io

  2. Select Tenant Info

  3. Under Tenant Info you can find your API Endpoint URL

Then configure the integration with:

  1. Add API endpoint URL from Tenant Info

  2. Add Client ID from Service Account

  3. Add Client Secret from Service Account

This completes the integration setup.

Data Collection

Once configured, the Wiz integration will collect:

Assets

  • Virtual machine details

  • Operating system information

  • IP addresses

  • Cloud provider metadata

  • Subscription information

Vulnerabilities

  • CVE details

  • CVSS scores

  • Vendor severity ratings

  • Vulnerability descriptions

  • Remediation guidance

  • Affected versions

  • Fix versions

  • Related documentation links

Once configured, PGP will import data daily based on your selected import settings.

For assistance with integration setup or optimization, contact our support team at support@praetorian.com.