1Inventory cloud connectors, attack paths, vulnerabilities, identities, data exposure, Kubernetes posture, cloud inventory, and remediation owners, including owners, administrators, connectors, policies, exceptions, alerts, evidence, reports, and business dependencies.
2Define production scope for Wiz cloud security platform: pilot groups, high-risk assets, data sources, service owners, success criteria, and rollback conditions.
3Validate permissions, MFA, API access, log collection, policy coverage, alert routing, data retention, and ticket workflow before full rollout.
4Tune policies with documented exceptions, thresholds, user communications, owner signoff, and evidence requirements for closure.
5Test realistic scenarios such as phishing, cloud misconfiguration, DLP incident, SIEM use case, SOAR playbook, or executive report review.
6Review monthly for drift, stale assets, failed connectors, noisy alerts, expired exceptions, unresolved findings, and missing leadership metrics.