Keeper & Wiz link cloud risk findings to remediation

Keeper Security has launched an integration with Wiz that links Wiz findings with Keeper's privileged access management platform.

The integration places Keeper in the Wiz Integration Network and is designed to let security teams act on identity-related vulnerabilities found in cloud environments from Keeper's Cloud Security dashboard.

Wiz identifies issues affecting human users, machine identities, AI agents and database accounts, then surfaces those findings in Keeper for review and remediation. Security teams can rotate compromised credentials, bring unmanaged accounts under privileged access management controls, reduce excessive privileges and link findings to existing records or new resources.

The integration also sends resolutions back to Wiz after action is taken, creating a single workflow between detection and remediation.

Cloud risks

The announcement comes as companies contend with a broader attack surface in cloud systems, particularly from non-human identities, service accounts and software agents that can accumulate access rights over time. In response, firms have been trying to reduce the manual work between spotting a problem and correcting it.

Keeper said the integration is intended to shorten that process by automatically receiving relevant Wiz issues inside its platform, rather than requiring teams to move between separate tools. That could reduce mean time to remediation and shorten the period in which a vulnerability remains exploitable.

Wiz, now part of Google Cloud, has built its position around cloud visibility and risk analysis. Keeper focuses on identity security and privileged access management, which involves controlling elevated access to systems, credentials and sensitive resources.

At the centre of the arrangement is a workflow that turns a Wiz issue into a remediation action in Keeper. Once a customer enables the integration, Wiz scans the cloud environment for identity security vulnerabilities that fall within Keeper's remediation scope.

Keeper's listed remediation options include vaulting updated secrets after a credential rotation, applying privileged access controls to unmanaged accounts and reducing permissions assigned to users, service accounts and identity and access management roles.

AI focus

The companies also pointed to AI-related security concerns as a driver of the link-up. They said autonomous agents and service accounts can quickly gain broad access across cloud infrastructure, creating a growing management problem for security teams.

Keeper said Wiz's AI Application Protection Platform can detect over-privileged AI agents and insecure service configurations, while Keeper can apply least-privilege policies and just-in-time access controls in response.

Craig Lurey, Chief Technology Officer and Co-founder of Keeper Security, said the integration is intended to move customers beyond detection alone.

"Finding a vulnerability is the first half of the battle," said Craig Lurey, Chief Technology Officer and Co-founder of Keeper Security. "By integrating with Wiz, Keeper helps customers rotate compromised credentials, enforce privileged access management and reduce over-permissioned identities, turning Wiz's detection power into faster, more decisive risk reduction. This is the future of cloud security - detection and remediation working as one, giving security teams a clear path from vulnerability discovery to resolution across the identities and workloads that matter most."

Wiz described the partnership as a way to connect cloud risk findings to access controls through a more direct workflow.

"We're happy to welcome Keeper to the Wiz Integration Network," said Oron Noah, Vice President of Product, Extensibility & Partnerships at Wiz. "Together, we're helping customers connect cloud risk findings with privileged access controls, making it easier to move from discovery to remediation. By bringing cloud visibility and access management into a unified workflow, teams can better secure both human and machine identities at scale."

Platform reach

Keeper said the integration extends across several identity types rather than focusing only on employee accounts. These include machine identities, database accounts and AI agents, which have become more important as organisations automate workloads and distribute applications across hybrid and multi-cloud systems.

Keeper positions KeeperPAM as a cloud-based platform that combines password management, secrets management, privileged session controls, endpoint privilege management and related access tools. In this case, the practical significance of the Wiz tie-up is that identity issues discovered in one system can trigger corrective action in the other without a separate manual process.

The integration is available now.