Can’t say I’m surprised. Been using Wiz for a short while and it really fills in a lot of gaps left by teams going to “The Cloud”. It seems like devs working in cloud environments all forgot that security is a thing and so we get an absolute shit-show of misconfigured containers, networks, K8s clusters, etc. Add to that Google, AWS and Azure all seeming to treat security as an afterthought as well, and organizations need a Wiz or something like it to trawl through the cesspool and point out, “hey, maybe you should update that Wordpress plugin with several known RCE CVEs.”
The long and short of the current state of cloud security reminds me an awful lot of the early 2000’s view of on-prem security. People just throw up firewalls (excuse me, VPS configurations) and call it a day. Once the attack gets past the edge (and they always get past the edge) visibility and response actions fall off a cliff. We’re at a point where we need EDR and NDR for the cloud; but, there isn’t much in that space yet. Wiz is one of the options and I can see Google wanting to own a piece of that growing pie.