Cloud security company Wiz has introduced a set of AI-driven capabilities spanning agents, workflow automation, attack simulation, and application-layer protection, positioning AI as an operational layer embedded directly into cloud security workflows rather than a standalone tool.
At the core of the release is a new agent model integrated into the Wiz platform. These agents are designed to execute discrete security tasks, such as issue investigation and threat triage, using contextual data from across cloud environments. For example, an Issues Agent correlates findings, ownership, and remediation paths to prioritize fixes, while a SecOps Agent automates threat investigation by assembling telemetry, analyzing activity, and producing a verdict with supporting reasoning. This shifts early-stage analysis from manual workflows to machine-led triage, reducing time spent on investigation and allowing human analysts to focus on higher-complexity decisions.
Complementing these agents, Wiz introduced workflow orchestration capabilities that connect AI outputs directly to execution environments such as developer tools, collaboration platforms, and CI/CD systems. Rather than surfacing insights in isolation, the platform embeds recommendations into operational systems – for example, triggering pull requests or remediation actions – effectively closing the loop between detection and response. This reflects a broader enterprise trend toward integrating AI into existing systems of record rather than introducing parallel interfaces.
Wiz also expanded its platform with a Red Agent, designed to simulate adversarial behavior across cloud environments. Unlike traditional point-in-time penetration testing, the Red Agent continuously identifies exploitable paths and misconfigurations at scale, providing a persistent “attacker perspective.” This introduces continuous validation into cloud security programs, aligning with enterprise demand for real-time assurance rather than periodic testing.
In parallel, the company launched an AI Application Protection Platform (AI-APP), extending its cloud-native application protection model to AI systems. The platform focuses on securing the full lifecycle of AI applications, covering models, data pipelines, agents, and infrastructure, within a single control plane. This is paired with AI Security Posture Management (AI-SPM), which provides visibility into AI assets, maps their access and dependencies, and monitors runtime behavior to detect drift or anomalous activity.
Together, these releases indicate a shift from static posture management toward continuous, AI-assisted operations. The emphasis is on embedding intelligence into workflows, maintaining explainability in automated decisions, and extending security coverage to AI-driven systems themselves.
Cloud security company Wiz has introduced a set of AI-driven capabilities spanning agents, workflow automation, attack simulation, and application-layer protection, positioning AI as an operational layer embedded directly into cloud security workflows rather than a standalone tool.
At the core of the release is a new agent model integrated into the Wiz platform. These agents are designed to execute discrete security tasks, such as issue investigation and threat triage, using contextual data from across cloud environments. For example, an Issues Agent correlates findings, ownership, and remediation paths to prioritize fixes, while a SecOps Agent automates threat investigation by assembling telemetry, analyzing activity, and producing a verdict with supporting reasoning. This shifts early-stage analysis from manual workflows to machine-led triage, reducing time spent on investigation and allowing human analysts to focus on higher-complexity decisions.
Complementing these agents, Wiz introduced workflow orchestration capabilities that connect AI outputs directly to execution environments such as developer tools, collaboration platforms, and CI/CD systems. Rather than surfacing insights in isolation, the platform embeds recommendations into operational systems – for example, triggering pull requests or remediation actions – effectively closing the loop between detection and response. This reflects a broader enterprise trend toward integrating AI into existing systems of record rather than introducing parallel interfaces.
Wiz also expanded its platform with a Red Agent, designed to simulate adversarial behavior across cloud environments. Unlike traditional point-in-time penetration testing, the Red Agent continuously identifies exploitable paths and misconfigurations at scale, providing a persistent “attacker perspective.” This introduces continuous validation into cloud security programs, aligning with enterprise demand for real-time assurance rather than periodic testing.
In parallel, the company launched an AI Application Protection Platform (AI-APP), extending its cloud-native application protection model to AI systems. The platform focuses on securing the full lifecycle of AI applications, covering models, data pipelines, agents, and infrastructure, within a single control plane. This is paired with AI Security Posture Management (AI-SPM), which provides visibility into AI assets, maps their access and dependencies, and monitors runtime behavior to detect drift or anomalous activity.
Together, these releases indicate a shift from static posture management toward continuous, AI-assisted operations. The emphasis is on embedding intelligence into workflows, maintaining explainability in automated decisions, and extending security coverage to AI-driven systems themselves.
