Skip to main content

Wiz

Integrate Wiz with Torq to set up automations for proactive risk management in the cloud.

Updated today

Wiz is a cloud security company that provides a platform for identifying and addressing security risks in cloud environments.

To create Wiz integrations in Torq, you need a Project Admin, Global Contributor, or Global Admin Role in Wiz.

Torq enables quick and easy integration with Wiz, so you can automate anything and everything within moments. Torq's public Wiz steps include:

  • List Issues

  • List Vulnerability Findings

  • Run GraphQL Query

  • Set Issue Status

  • +6 more...

If you don't see a step you need, you can create your own in various ways, such as using the Send an HTTP Request step or Torq’s Step Builder, and share it across your organization.

To trigger a Torq workflow based on events sent from Wiz, look here.

To use Wiz steps in Torq workflows, look here.

Use Wiz to Trigger Workflows in Torq

Step One: Create a Wiz Trigger Integration in Torq

  1. Add the Integration: Navigate to Build > Integrations > Triggers > Wiz and click Add Instance.

  2. Configure the Integration:

    1. Enter a unique and meaningful name.

    2. Add an authentication header by entering a name and secret. There are two available options for the authentication headers: Bearer Authentication (i) or Basic Authentication (ii).

      1. Bearer Authentication (recommended):

        1. Name the header Authorization.

        2. Write the secret value as: Bearer <bearer_token_value>

        3. For example, a Bearer authentication that uses "abc12345" as the token would be written as: Bearer abc12345

      2. Basic Authentication:

        1. Name the header Authorization.

        2. Write the secret value as: Basic <base64_value_of_username:password>

        3. For example, the Base64 value for a username "user@example.com" with the password "abc123" would be dXNlckBleGFtcGxlLmNvbTphYmMxMjM=, so the value of the Authorization would be Basic dXNlckBleGFtcGxlLmNvbTphYmMxMjM=

  3. Finalize: Click Add and Copy the generated endpoint. You will need the URL for the webhook.

Step Two: Add the Integration in Wiz

  1. Open Wiz: Navigate to Settings > Integrations and click Add Integration.

  2. Select the Integration: Go to Integrations > SOAR & Automation and click Torq.

  3. Configure the Integration:

    1. Name: Enter a unique and meaningful name.

    2. Project Scope: Set the Project scope.

    3. URL: Paste the Torq endpoint you generated earlier.

    4. (Optional) Authentication: If you added an authentication header, select Basic (if you used Basic authentication) and enter the username and password used in Torq, or select Token (if you used Bearer authentication) and enter the token generated in Torq.

  4. Finalize: Click Add Integration.

Now that you've successfully created a Wiz trigger, you can build your first Wiz–initiated workflow!

In Torq, go to Build > Workflows > Create a Workflow > New Blank Workflow, and select the trigger type: Integrations > Wiz. Find your new trigger, and automate away!


Use Wiz Steps in Torq

Step One: Create a Service Account in Wiz

  1. Open Wiz: Navigate to Settings > Access Management > Service Accounts and click Add Service Account.

  2. Configure the Service Account:

    1. Name: Enter a meaningful name.

    2. Type: Select Custom Integration (GraphQL API)

    3. Projects: Select a Project.

    4. API Scopes: Select the permissions for the account. We recommend giving it the minimal number required to perform its goal.

  3. Finalize: Click Add Service Account, Copy the Client ID and Client Secret to save them for later, and click Finish.

Step Two: Create a Wiz Steps Integration in Torq

  1. Navigate to the Integration: Go to Build > Integrations > Steps > Wiz and click Add Instance.

  2. Configure the Integration:

    1. Enter a unique and meaningful name.

    2. Paste the Wiz Client ID and Client Secret you copied earlier.

    3. Enter the region of your Wiz tenant.

  3. Finalize: Click Add.


Templates

Now that you've added your integrations, check out these specially crafted templates by Torq's security experts. Visit Torq's template library for more.

Did this answer your question?