Cloud

Wiz CSPM rollout and vulnerability management uplift

Acted as SME for the rollout of Wiz to expand cloud vulnerability coverage, then refreshed vulnerability management policies, SLAs, and metrics around attack-path-based prioritisation.

Challenge

Cloud vulnerability data was scattered, prioritisation was driven by raw scanner severity, and remediation SLAs no longer matched the actual risk posture.

Approach

Led Wiz deployment across the cloud estate to expand coverage. Used attack-path analysis to focus remediation on issues that mattered, and refreshed vulnerability management policies, SLAs, dashboards, and metrics. Connected the rollout to broader application security outcomes, including Wiz Code adoption.

Results

Cloud vulnerability coverage expanded with attack-path-aware prioritisation
Updated vulnerability management policies, SLAs, and metrics adopted across teams
Stronger remediation throughput on the issues most likely to be exploited

Stack

WizTenable.ioAWS Security Hub

Next case study

ISO 27001 + vCISO for a digital health platform →