Legit Security, the leading platform for enabling companies to manage their application security posture across the complete developer environment, has officially announced a partnership with Wiz to help its customers seamlessly integrate the latter’s cloud security platform into their existing workflows. Conceived for workflows across the Legit-powered AppSec program, the stated partnership will Legit joining Wiz Integrations (WIN) program, something which will help both the companies share prioritized security findings with context, including inventory, vulnerabilities, issues, and configuration findings. Hence, as a result of that, they should be able to streamline security for organizations on a cloud journey, regardless of how far along they may be. But what is this WIN program? Well, it is an effort geared towards enabling a cloud security operating model where security and cloud teams work collaboratively to understand and control risks across their CI/CD pipeline. Anyway, talk about the wider value proposition on a slightly deeper level; we begin from the promise of shift left remediation and correlation of code to cloud. This involves Legit’s complete visibility and code to cloud technology helping customers correlate and prioritize vulnerabilities, and therefore, reach runtime effectively. Not just that, Legit’s technological prowess should also come in handy especially when the agenda is to find all application risks, such as static analysis issues or misconfigured CI/CD pipelines.
Next up, we must get into how the partnership under focus will play a massive role in helping users discover shadow assets. You see, once integrated with Wiz, Legit’s pipeline discovery will a have chance of leveraging Wiz’s runtime inventory to detect more shadow assets, such as artifact registries, assets that can be further integrated for complete posture management. Then, there is the facility to centrally manage all vulnerabilities discovered throughout the SDLC. Thanks to Legit Security platform, this the user can markedly do in a single plane of glass. On top of that, Legit’s SDLC context is also more than well-equipped to enrich findings with crucial information like source code and owner that makes remediation faster, ensures a more robust DevSecOps pipeline, and the same time, thwarts any issues right at the source.
“We are thrilled to announce our partnership with Wiz,” said Liav Caspi, Co-Founder and CTO at Legit Security. “This integration provides our joint enterprise customers with best-in-class ASPM to better protect applications through ‘secure-by-design.’ The result is the ability to both release secure applications and protect these assets at cloud runtime. We look forward to working with Wiz to provide these enhanced security capabilities to our customers.”
Rounding up the highlights would be contextual prioritization of risk where the partnership will effectively combine Wiz and Legit’s capabilities to let mutual customers monitor and manage their security posture from code to cloud. Furthermore, the stated integration will also allow for customer to identify risks across cloud, code and CI/CD pipelines so to avail the context necessary to fix risks at a faster clip.
Making the whole development even more important is, of course, Legit Security’s own stature in regards to helping enterprises get a cleaner, easier way of managing and scaling application security, as well as addressing risks from code to cloud. On a granular level, such an offering translates to overcoming the most challenging problems facing security teams, including GenAI usage, proliferation of secrets, and an uncontrolled dev environment. The company’s excellence in actually executing the given operation can be understood once you consider it has already shown to be a trusted partner for the likes of AIG, Chipotle, Google, Freddie Mac, Palo Alto Networks, netskope, and many other heavyweights.