A few days ago, IBM released their 2025 Cost of a Data Breach Report. For the first time in five years, global breach costs actually dropped to $4.44 million (down from $4.88 million). There are plenty of useful insights to help you spot shifting trends, though, like most of these reports, it skews heavily American.
One item that caught my attention was page 42: "Factors that increase or decrease breach costs." The number one cost-reducing factor? DevSecOps approaches, delivering a $227,492 reduction from the average breach cost.
Now, with anything, these numbers can be hard to measure. But most people would accept that having a "shift-left" approach - reducing security issues before they occur rather than catching them after they've happened - seems logical.
DevSecOps is followed by three additional cost-reducing factors:
- AI-driven and ML-driven Insights (-$223,503)
- Security Analytics and SIEM (-$212,061)
- Threat Intelligence (-$211,906)
So why relate these trends to Wiz? Well, let's run through those points again.
DevSecOps Approach
Through Wiz Code and Wiz Cloud, Wiz delivers capabilities that not only promote a DevSecOps and shift-left approach, but they do so in a way that empowers the teams creating your code and building your infrastructure. For once, you have a security platform that's actually intuitive to use. Function and form go hand in hand.
AI-driven & ML-driven Insights
Wiz has impressive built-in analytics capabilities, but that's table stakes these days. What Wiz brings to the party is AI-driven Remediation across Wiz Code, Wiz Cloud and Wiz Defend. Working out how to remediate a problem without breaking everything can be half the battle, causing unnecessary delays. This capability will only get better.
Security Analytics & SIEM
You might not think of Wiz in this light, but it's time to think again. Wiz’s lightweight Runtime Sensor monitors activity on your workloads. Wiz is also ingesting cloud logs and expanding this capability. While arguably not a SIEM, Wiz is beginning to ingest more time-series event data to supplement the structured data it already has.
Threat Intelligence
Like all good platforms, Wiz makes use of high-quality commercial threat intelligence, as well as producing their own via their research team. Wiz maintains their own Cloud Threat Landscape database available at threats.wiz.io.
Going wider with Wiz
At this point, you might ask: "But Wiz is only focused on public cloud, right?". Far from it. Wiz is focused on infrastructure and is broadening their support rapidly. Wiz just announced the "Wiz Sensor Workload Scanner", which expands scanning capabilities to hybrid environments. Wiz also integrates with over 300 different platforms via the Wiz Integration Network.
As Wiz expands its footprint further beyond public cloud, the value it provides across these key areas of reducing the cost of a breach will all begin to make much more sense.
