Skip to content

Interpres Application - Wiz

  • Type: Cloud
  • Vendor: Wiz

The Wiz app will process Wiz data and map it to the Interpres data model.

Vendor setup

  1. Click on Settings > Access Management > Service Accounts
  2. Click on Add Service
  3. On service account type select "Custom Integration (GraphQL API)"
  4. Select the project/s to access

  5. When Global Admins create Service Accounts in Wiz, they must assign them specific permissions during the creation process. In order for a Wiz Service Account to use the developer APIs, it must possess these listed permissions:

  6. Report management - read:projects, create:reports, read:reports

  7. Pull Assets - read:resources
  8. Pull Vulnerability Findings - read:vulnerabilities
  9. Pull Issues - read:issues
  10. Pull Controls, Cloud Event Rules and Cloud Configuration Rules - read:controls read:cloud_event_rules read:cloud_configuration

App Configuration

App Parameters:

  • Client ID: Wiz Service Account Client ID created
  • Secret: Wiz Service Account Client Secret created
  • Environment: "Specifies the deployment environment. Use 'app' by default, 'fedramp' for app.wiz.us or 'gov' for gov.wiz.io"

App Validation

Check there is connectivity (green light) in the integration created.

Implemented Actions

  • Get Assets: Get Assets will query GraphQL filtering by types "CONTAINER", "CONTAINER_IMAGE", "SERVERLESS", "VIRTUAL_DESKTOP", "VIRTUAL_MACHINE", "VIRTUAL_MACHINE_IMAGE" and "VIRTUAL_WORKSTATION".

  • Get Vulnerability: This action processes the vulnerability findings detected by Wiz.

  • Get Recommended Actions: Get Recommended Actions will query controls, cloudEventRules and cloudConfigurationRules.

  • Get Policies: Get Policies will query the IssuesTable query to obtain a set of Issues.