Wiz
- 08 May 2023
- 2 Minutes to read
- DarkLight
Wiz
- Updated on 08 May 2023
- 2 Minutes to read
- DarkLight
Article Summary
Wiz is a cloud security company that provides a platform for identifying and addressing security risks in cloud environments.
To create Wiz integrations in Torq you need some of the following permissions in Wiz:
- Project Admin
- Global Contributor
- Global Admin
Create a Wiz trigger in Torq
- Go to Integrations > Steps > Wiz
- Click Add.
- Give the integration a unique and meaningful name.
- Under Authentication headers:
- Click Generate random secret. Copy the secret that you generated; you will need it later.
- Name the header Authorization.
- Click Add.
- From the integration table, copy the URL of the integration you created.
Create a Torq integration in Wiz
- In Wiz go to Settings > Integrations > Add new integration.
- Search for Torq in the search bar.
- Give the integration a unique and meaningful name.
- Select the scope you want the integration to have.
- Paste the URL from Torq you created earlier.
- Under Parameters > Authentication, select Token authentication and paste the secret you created in step 4 of the Torq trigger creation.
- Click Add Integration to save the integration in Wiz.
Create an Automation Action to send issues to Torq
- In Wiz, go to the Settings > Response and Automation > Actions page, then click Add Action.
- Give the new Action a unique and meaningful name.
- From the Action drop-down, select Integrate with Torq.
- Set the scope of the new Action to either:
- All projects
- A selected project
- (Optional) Restrict the new Action to only Global Contributor and Global Admins
- (Optional) Restrict the Action to users with the Global Contributor and Global Admin roles.
- For the URL, paste the URL you made in Torq.
- You can modify the fields in the body request based on the workflow you want to build with Torq. See the list of supported template variables.
- Click Add Action.
Create an Automation Rule
Automation Rules trigger Automation Actions. After you've added the Action to send Issues to Torq, you must create a Rule that triggers it. See the page on Automation Rules.
Create a service account
To interact with the Wiz API from Torq workflows, you must create a service account, which will allow you to create the required API token, Client ID, and Client Secret. You'll need these when you create the Wiz steps integration in Torq.
For more information, see the Wiz API documentation.
Create a Wiz steps integration
- Go to Integrations > Steps > Wiz.
- Click Add.
- Type a meaningful name for the integration.
- Enter the values for the following fields. You copied and saved these earlier.
- Wiz Client ID
- Wiz Client Secret
- Wiz Region
- Click Add.
Premade steps
- Add note to issue
- Create inventory report
- Create issues report
- Create session
- Create vulnerabilities
- Get issue information
- List issues
- List vulnerability findings
- Run GraphQL query
- Set issue status
Available templates
- CVE search in Wiz, Snyk, and Armis with Jira issue tracking
- Enable AWS S3 bucket encryption on alert from Wiz
- Enable AWS S3 bucket versioning on alert from Wiz
- Enable GCP bucket versioning on a Wiz alert
- Find AWS instance information by private IP address in Wiz
- Handle AWS S3 bucket allows HTTP requests on Wiz alert
- Handle Wiz alert for AWS admin principals inactive over 90 days
- Handle Wiz alert for public AWS S3 bucket with sensitive data
- Handle Wiz alert for public Azure container with sensitive data
- Remediate AWS EC2 instance with open SSH access from Wiz alert
- Remediate Wiz alert on Azure VM with open SSH access - Slack
- Remediate Wiz alert on Azure VM with open SSH access - Teams
- Search for CVE in Wiz and Snyk via Slack mention
- Wiz GraphQL query for AWS instance with open SSH access
Was this article helpful?