Wiz
Wiz is a security platform that allows teams to find and fix issues in their code. Cortex integrates with Wiz to bring cloud and container vulnerabilities into your catalog.
Integrating Wiz with Cortex allows you to:
Automatically map projects to entities, eliminating the overhead of manually maintaining project-to-entity relationships
View Wiz issues directly on entity pages in Cortex
Leverage Wiz scanning capabilities earlier in the development lifecycle and enable visibility into security issues
Create Scorecards that track progress and drive alignment on projects involving Wiz projects and issues
How to configure Wiz with Cortex
Prerequisites
Before getting started:
Obtain your region and authentication provider from Wiz.
If you have IP restrictions in place in Wiz, add Cortex's public IPs to your allowlist to ensure that Cortex is allowed to make requests to Wiz.
Contact the Cortex Customer Engineering team for a list of IPs.
Configure the integration in Cortex
In Cortex, navigate to the Wiz integration settings page:
Click Integrations from the main nav. Search for and select Wiz.
Click Add configuration.
Configure the Wiz integration form:
Client ID and Client secret: Enter your client ID and client secret from Wiz.
Tenant region: Enter the region from Wiz.
Authentication provider: Select your authentication provider. You can confirm the provider in Wiz under User Settings > Tenant.
Click Save.
If you see a "No address associated with hostname" error, verify that you have entered the correct authentication provider.
How to connect Cortex entities to Wiz
Match entity names to Wiz projects
By default, Cortex will use the Cortex tag (e.g. my-service) as the "best guess" for Wiz project. For example, if your entity name is "My Service" or your tag is my-service, then the corresponding project name in Wiz should also be My Service or my-service.
If your Wiz project names don’t cleanly match the Cortex entity name or tag, you can override this in the Cortex entity descriptor.
Considerations for mapping Wiz projects to entities
Expand the tile below to see how Cortex customers have modeled their data when mapping Wiz projects to entities.
Editing the entity descriptor
Define the following block in your Cortex entity descriptor:
Using the Wiz integration
View Wiz information on entity pages
On an entity details page, you'll see Wiz issues, listed by risk level, under the Code and Security header.
In the entity's sidebar, click Code & Security > Wiz to view a list of Wiz issues including their severity, status, basic details, and a link to view the issue directly in Wiz:
Scorecards and CQL
With the Wiz integration, you can create Scorecard rules and write CQL queries based on Wiz projects.
See more examples in the CQL Explorer in Cortex.
View integration logs
On the integration settings page, click the Logs tab to view logs from the last 7 days. Learn more in Troubleshooting with integration logs.
Still need help?
The following options are available to get assistance from the Cortex Customer Engineering team:
Email: [email protected], or open a support ticket in the in app Resource Center
Slack: Users with a connected Slack channel will have a workflow added to their account. From here, you can either @CortexTechnicalSupport or add a
:ticket:reaction to a question in Slack, and the team will respond directly.
Don’t have a Slack channel? Talk with your Customer Success Manager.
Last updated
Was this helpful?