News, news analysis, and commentary on the latest trends in cybersecurity technology.
Cloud Security Startup Wiz to Acquire Dazz in Risk Management Play
Dazz's remediation engine will boost risk management in Wiz's cloud security portfolio.
Cloud security provider Wiz announced on Thursday that it has entered into a deal to acquire Dazz, a Israeli startup specializing in security remediation and risk management. This is Wiz's third acquisition in 12 months, following Raftt and Gem Security.
Earlier this year Wiz launched Wiz Code, a cloud application security product that helps security and development teams identify and fix cloud risks directly in code before they become critical issues. Dazz's platform, which uses automation and artificial intelligence to identify, prioritize, and remediate vulnerabilities in cloud environments, will be integrated into Wiz Code.
"Everything we do is rooted in customer need. Wiz has always been driven by a desire to help organizations actually improve their security posture — not just by reporting risks, but by prioritizing and resolving issues where it matters most," wrote Wiz CEO and founder Assaf Rappaport in the company's blog post announcing the deal. The combined companies plan to "reinvent" application security posture management and code-to-cloud remediation.
Wiz currently ingests data from Amazon Web Services, Azure, Google Cloud, and other cloud environments in order to scan applications, data, and network processes for security risk factors and show users where those risks exist. Wiz's all-in-one platform offers organizations access to products for code security, container environment security, and supply chain security. Dazz will strengthen Wiz's existing vulnerability remediation and prioritization tools.
Dazz aggregates millions of alerts from various detection tools, prioritizes critical vulnerabilities, and provides developers with clear, automated instructions on how and where in code to resolve issues. The combination of Dazz’s root-cause analysis and remediation engine and Wiz's cloud detection capabilities will give organizations visibility from code to cloud, including misconfigurations, runtime vulnerabilities, and continuous integration/continuous delivery pipeline issues.
"In today’s world, organizations must connect risks across the entire application life cycle — from code to cloud and on-prem infrastructure. They need tools that prioritize issues with precision and make collaboration effortless," Rappaport wrote. "Their advanced mapping capabilities pinpoint root issues, enabling engineers to address vulnerabilities directly in the code while seamlessly integrating vital cloud context into security workflows."
While financial terms were not officially disclosed, TechCrunch reports the cash-and-share deal is worth $450 million. Earlier this year Wiz raised $1 billion for strategic acquisitions and rejected a $23 billion acquisition offer from Google.
About the Author
You May Also Like