Wiz is leveraging a trio of AI agents (Red, Green, Blue) to automate the entire security lifecycle. This includes proactive vulnerability discovery, AI-assisted remediation with auto-generated fixes, and real-time threat detection and response.
The speaker introduces the concept of "shifting down," which contrasts with the traditional "shift left" model. Instead of just moving security responsibility to developers, this philosophy abstracts and embeds security directly into the underlying platforms and AI agents.
Wiz is focused on meeting developers in their native environments. Through plugins for popular AI coding agents and IDEs, the platform provides real-time security feedback as code is being generated, preventing vulnerabilities from ever being committed.
The discussion highlights a trend where non-technical teams like HR and finance are using AI agents to build applications ('vibe-coding'). While this boosts productivity, it also introduces significant security risks from builders who lack security expertise.
Keep pulling the thread on Salman Ladha.