# Wiz

### Integration Setup

To configure the Wiz Security integration, follow these steps:

#### Create Wiz Service Account

1. In the the Wiz Application, Search "Service Accounts"

<div align="center" data-full-width="true"><figure><img src="/files/6QofByOjgGn5ihhwL5jx" alt=""><figcaption></figcaption></figure></div>

1. Click "Add Service Account"

<div align="center" data-full-width="true"><figure><img src="/files/dX1ZQsJCUJQahfq9Pn0W" alt=""><figcaption></figcaption></figure></div>

1. Enter a name, Choose "Custom Integration (GraphQL API)" from the Type drop down.

<div align="center" data-full-width="true"><figure><img src="/files/vt5Yz66s6DCl7L3zs3FY" alt=""><figcaption></figcaption></figure></div>

1. Select Projects you want Gomboc to have access to.

<div align="center" data-full-width="true"><figure><img src="/files/vIBmemLbSoZXALKfrUSf" alt=""><figcaption></figcaption></figure></div>

1. Select the following scopes:
   * Read graph resource
   * Issues
   * Issue Comments
   * Integratons
   * Automation Rules
   * Read report
   * Read cloud configuration rules, list cloud configuration rules
   * Detections
   * Issue Status
   * Comments
2. Click "Add Service Account" and collect Client ID and Client Secret. You will need them in future steps.

<div align="center" data-full-width="true"><figure><img src="/files/AKLoXVSC89czEM8cV1f6" alt=""><figcaption></figcaption></figure></div>

#### Create Integration in Gomboc Portal

1. In Wiz click your profile icon and "Tenant Info"

<div align="center" data-full-width="true"><figure><img src="/files/J9Uo4LjeTm1lvowkTWdG" alt=""><figcaption></figcaption></figure></div>

2. Collect API Endpoint URL and Authentication URL for future steps

<div align="center" data-full-width="true"><figure><img src="/files/ZjbhyaWbMPFoL1fIA3Di" alt=""><figcaption></figcaption></figure></div>

3. Within the Gomboc portal, create an access token, either a personal or organization API token will work. Once the token is created, copy it to your clipboard.

<div align="center" data-full-width="true"><figure><img src="/files/tDwVbGlXQvm1IXLhbbay" alt=""><figcaption></figcaption></figure></div>

4. Go to Settings > Integrations > Wiz

<div align="center" data-full-width="true"><figure><img src="/files/YjYnmTiK3pN46K6PqQcZ" alt=""><figcaption></figcaption></figure></div>

5. Insert the Gomboc Token from step 3. Wiz Client ID, Wiz Client Secret from Service Account setup. Wiz API URL, Wiz Auth URL from step 2. Click "Integrate"

<div align="center"><figure><img src="/files/ZXiecLIUj1JEsNjQXnzJ" alt=""><figcaption></figcaption></figure></div>

6. Once the integration is complete you will receive an Access token you will need to use to create the webhook on Wiz

<div align="center" data-full-width="true"><figure><img src="/files/sCZjVMhxypc5U2fzJF0h" alt=""><figcaption></figcaption></figure></div>

#### Create Integration in Wiz Application

1. Back on the Wiz Application, search "Integrations"

<div align="center"><figure><img src="/files/JxbhxCcPlWkO2bXkaEsn" alt=""><figcaption></figcaption></figure></div>

2. Click "Add Integration"

<div align="center"><figure><img src="/files/mGQq0ZmzZx1VYTznmtpD" alt=""><figcaption></figcaption></figure></div>

3. Search "Webhook"

<div align="center"><figure><img src="/files/ISdlVco5jq9LUz4vKB2g" alt=""><figcaption></figcaption></figure></div>

4. Enter a name. Under URL enter "<https://cspm.prod.gcp.gomboc.ai/api/v1/observations/wiz>"
5. Select All projects you want to integrate with, It should be the same as the Service Account
6. Under Authentication select Token, Enter the Token received after creating the integraion in Gomboc portal, click "Add Integration"

<div align="center"><figure><img src="/files/GZRyyRIPjoXRAcUAgEpx" alt=""><figcaption></figcaption></figure></div>

#### Setup Wiz Webhook Rules

1. Search "Automation Rules"

<div align="center"><figure><img src="/files/8SYgB1iUx2XDtb8nxqcP" alt=""><figcaption></figcaption></figure></div>

2. Click "Add Rule"

<div align="center"><figure><img src="/files/SreJWTOyhtJU8trUvOI0" alt=""><figcaption></figcaption></figure></div>

3. Enter name "Issue Webhook"
4. Select same projects from Service Account setup
5. Under "When" select Issue
6. Under "IF" click Add Filter, select "Severity", then select all the options.

<div align="center"><figure><img src="/files/TfRe4QHUyEjxSzZLhubh" alt=""><figcaption></figcaption></figure></div>

7. Under "THEN" click add Action and select "POST a Webhook" for the created Integration. Click "Continue", then "Add Action"

<div align="center"><figure><img src="/files/e1GVkOpkKWjMnYnyktIY" alt=""><figcaption></figcaption></figure></div>

8. Click "Add Rule"

<div align="center"><figure><img src="/files/iplQTL42JlUJBidcw9dD" alt=""><figcaption></figcaption></figure></div>

9. Repeat Steps 2 - 8 changing to "Cloud Configuration Finding" and "Detection" under "WHEN" in step 5

<div align="center"><figure><img src="/files/otUD5PZZm72IlVObODGr" alt=""><figcaption></figcaption></figure></div>

<div align="center"><figure><img src="/files/O1ZcgRZGzZgtQZr9e7q9" alt=""><figcaption></figcaption></figure></div>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.gomboc.ai/integrations/cloud-security-posture-management-cspm/wiz.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.