HackerOne, a global leader in Continuous Threat Exposure Management (CTEM), today announced an integration with Wiz, now part of Google Cloud, that brings HackerOne findings directly into the Wiz cloud and AI security platform. By combining verified exploitability with cloud context, the integration helps security teams identify which vulnerabilities pose the greatest risk and prioritize remediation based on real exploitability.
As organizations expand across cloud and AI environments, security teams face a growing imbalance: more findings and less capacity to prioritize what can actually be exploited. The rise of advanced AI models speeds vulnerability discovery, while remediation efforts struggle to keep pace. Recent data from the HackerOne platform shows vulnerability submissions rose 76 percent year-over-year in March, while the remediation rate fell from 73 percent to 27 percent over the past year, driving an increasing backlog of unresolved findings.
The integration between HackerOne and Wiz tackles this challenge by linking continuous testing results to the Wiz Security Graph and Attack Surface Management capabilities. Validated vulnerabilities from bug bounty programs, vulnerability disclosure, penetration testing and AI red teaming are mapped directly to the cloud environments they affect, giving teams real-time risk insights across infrastructure, identities and data.
“Context is what turns security findings into meaningful action,” says Oron Noah, VP Product, Extensibility & Partnerships at Wiz. “Through our partnership with HackerOne, customers gain access to verified exploitability within the broader context of their cloud environments. The integration helps teams focus on the highest risks so they can prioritize remediation with greater clarity and confidence.”
The Wiz integration is part of HackerOne’s PartnerOne Technology Alliance Program, which brings integrations together into a connected ecosystem designed to reduce exploitable risk by compressing the cycle from discovery to remediation across identification, validation, prioritization and resolution.
“PartnerOne is built on a simple idea: customers get better security outcomes when the tools they rely on work better together,” says John Addeo, Vice President of Global Channels at HackerOne. “Our partnership with Wiz reflects that mission by integrating validated risk into the cloud security workflows teams already use. Together, we help organizations close the gap between discovery and remediation—moving from reactive vulnerability management to proactive exposure reduction.”
Security teams can use the integration to:
- Understand the scope of exploitable vulnerabilities in cloud environments
- Prioritize issues supported by evidence of actual exploitation rather than theoretical risk
- Bridge security and cloud workflows to accelerate remediation
- Ensure validated risks move from discovery to resolution instead of falling into growing backlogs
The integration between HackerOne and Wiz is available today.
About HackerOne:
HackerOne is a global leader in Continuous Threat Exposure Management (CTEM). The HackerOne platform combines AI-driven agent solutions with the ingenuity of the world’s largest community of security researchers to continuously discover, validate, prioritize and remediate exposures across code, cloud and AI systems.
Through offerings such as bug bounty, vulnerability disclosure, agent-based penetration testing, AI red teaming and code security, HackerOne delivers measurable, continuous reduction of cyber risk for enterprises. Industry leaders like Anthropic, Crypto.com, General Motors, Goldman Sachs, Lufthansa, Uber, the UK Ministry of Defence and the US Department of Defense rely on HackerOne to protect their digital ecosystems.
HackerOne was recognized in Gartner’s Emerging Tech Impact Radar: AI Cybersecurity Ecosystem for its leadership in AI security testing and was named one of the most admired workplaces for young professionals in 2024.