Full Report
Joint customers can now detect and prioritize public exposures with Wiz and automatically remediate unwanted exposures with FortiGate NGFW.
Analysis Summary
# Industry News: Wiz and Fortinet Deepen Cloud Security Posture and Network Enforcement Integration
## Summary
Wiz and Fortinet have formalized and deepened their integration through a new partnership, involving participation in each other's primary partner programs. This collaboration aims to leverage Wiz's Cloud Native Application Protection Platform (CNAPP) visibility with Fortinet’s network security enforcement capabilities to automatically detect, contextualize, and remediate public cloud exposure risks.
## Key Details
- Date: [Implied recent announcement]
- Companies Involved: Wiz, Fortinet
- Category: Partnership, Product Integration
## The Story
Wiz, a leader in CNAPP, and Fortinet, a leader in networking cybersecurity, have announced a formal partnership that deepens the integration between their respective platforms. As part of this, Wiz has joined the Fortinet Fabric-Ready Technology Alliance Partner Program, and Fortinet has joined the Wiz Integration (WIN) Program. The core of the integration is enabling joint customers to automatically protect cloud workloads by using Wiz to identify critical network exposure risks—especially those that combine multiple risk factors to create exploitable attack paths. This context is then fed directly into Fortinet's Security Fabric, allowing FortiGate Firewalls (both VM and CNF instances) to automatically enforce security policies, such as blocking specific internet traffic to or from exposed virtual machines based on criticality determined by the joint solution. Key outcomes include automated removal of unwanted public exposures and real-time threat response based on comprehensive cloud context.
## Business Impact
### For the Companies Involved
- **Wiz:** Solidifies its position as a critical platform within the enterprise cloud security stack by integrating tightly with core network enforcement points, moving beyond posture management into automated remediation alongside a major infrastructure security vendor. Joining the Fabric-Ready program expands its reach into Fortinet’s existing enterprise network customer base.
- **Fortinet:** Enhances the value proposition of the Fortinet Security Fabric by ingesting high-fidelity, contextual cloud risk data from Wiz, making its firewall enforcement capabilities smarter and more relevant in modern, dynamic cloud environments. Joining the WIN program acknowledges Wiz's importance in the CNAPP space.
### For Competitors
- This partnership establishes a strong, integrated offering addressing the 'exposure-to-enforcement' gap in cloud security, putting pressure on other CNAPP vendors that lack tight integration with infrastructure enforcement layers, and on competitors whose network security solutions cannot automatically ingest and act upon detailed cloud context.
### For Customers
- Joint customers gain a significant reduction in alert fatigue and remediation time by automating the blocking of critical network exposures based on business-impacting context. They benefit from linking high-level cloud risk (Wiz) directly to grassroots network policing (FortiGate).
### For the Market
- This move signals a continued maturation of the cloud security market away from siloed point solutions toward integrated platforms that provide unified visibility and automated enforcement across the network and workload layers—a convergence trend between CNAPP and network security enforcement.
## Technical Implications
The integration uses Wiz Issues and Cloud Events to dynamically inform and control FortiGate-VM and FortiGate CNF. This allows for context-aware security enforcement—for instance, a VM with a known vulnerability *and* public exposure *and* access to sensitive data can be automatically isolated from the internet via the FortiGate appliance based on this combined risk score from Wiz.
## Strategic Analysis
- Market Positioning: Both companies are strategically aligning to own the critical path from cloud anomaly detection to network policy enforcement, positioning themselves as essential partners for organizations managing complex, hybrid cloud environments where network perimeters are fluid.
- Competitive Advantage: The combined strength addresses a primary enterprise pain point: the gap between knowing a risk exists (visibility) and stopping the attack (enforcement). The co-marketing and program participation signal a long-term commitment to integration depth.
- Challenges: Successful deployment relies heavily on the configuration and maintenance of the Security Fabric and FortiGate policies, requiring coordination between cloud security and network operations teams—a classic SOC/NetOps integration hurdle.
## Industry Reactions
- Analyst opinions likely view this as a necessary validation of ecosystem thinking. Experts often cite the difficulty of manually translating cloud risk scores into firewall rules; this partnership automates that crucial translation layer. The market response suggests strong demand for solutions that reduce mean time to remediation (MTTR) in the cloud.
## Future Outlook
- We can expect further integrations focusing on deeper automation, potentially extending enforcement beyond basic traffic blocking to more granular policy adjustments on Fortinet devices based on Wiz findings. Watch for other CNAPP vendors to pursue similar integrations with major firewall providers, or for Fortinet to announce deeper native capabilities in their platform to reduce reliance on third-party context providers.
## For Security Professionals
This integration is highly relevant for SecOps, Cloud Security Engineers, and Network Security staff. It means fewer manual tasks for locking down exposed resources, faster response times to internet-facing threats in the cloud, and a greater need for practitioners to understand how context derived from CNAPP platforms translates into network access control lists (ACLs) and firewall policies.