Google & Wiz: The Age of Cloud-to-Cloud Security at AI Speed

Google has officially finalised its acquisition of Wiz, the cloud and AI security company, in a deal that could reshape the landscape of enterprise cybersecurity.

The deal's completion signals Google Cloud's commitment to bolstering its security capabilities at a time when organisations face an increasingly sophisticated threat landscape.

Thomas Kurian, CEO of Google Cloud, says the acquisition of Wiz adds to Google Cloud's "robust security portfolio as companies across all industries face a growing number of cybersecurity threats". 

He adds: "Wiz enables organisations to secure cloud and AI applications by connecting code, cloud and runtime into a single shared context, allowing customers to identify risks, harden environments and protect applications continuously.

"Together, we will offer an AI-powered cybersecurity platform that combines Google’s Threat Intelligence and Security Operations with Wiz’s Cloud and AI Security Platform to detect, prevent and respond to threats across all environments, enabling further innovation."

AI-driven threats

The acquisition arrives as AI fundamentally transforms the threat landscape. Cyber adversaries are leveraging AI to automate attacks, discover vulnerabilities faster and evade traditional detection mechanisms – forcing defenders to rethink their approach to security operations.

With applications being deployed at unprecedented velocity, manual security processes can no longer match the speed of AI-powered development cycles or AI-enabled attacks. This gap has created an urgent demand for platforms that can provide real-time visibility and automated response across complex cloud environments. 

Traditional perimeter-based security models have become increasingly inadequate in cloud-native environments where infrastructure is ephemeral and attack surfaces expand dynamically.

The convergence of AI-powered development tools and AI-enabled threat actors has compressed the timeline between vulnerability introduction and exploitation. Organisations must now assume that adversaries can identify and weaponise security gaps faster than ever before, necessitating proactive defence strategies rather than reactive incident response.

Assaf Rappaport, Co-Founder and CEO at Wiz, comments: "Nearly a year ago, we shared that Wiz would be joining Google. At the time, we spoke about a belief that, by bringing together Wiz's innovation and Google's scale, we could meaningfully change what security looks like in the cloud.

"As we officially begin our journey as a Google company, that belief feels real in a much deeper way."

Assaf emphasises that Wiz's mission "remains bold and unwavering", armed with the mission "to help every organisation protect everything they build and run".

"What has changed is the world around us," Assaf continues. "Now, we must do this at the speed of AI."

Code-to-cloud security becomes reality

The combined entity aims to deliver what cybersecurity teams have long needed: comprehensive visibility from development through production.

Wiz's platform maps software architecture and runtime behaviour in real time, enabling security teams to identify vulnerabilities, misconfigurations and potential attack paths before exploitation occurs.

This capability integrates with Google's Unified Security vision: a consolidated, AI-driven defensive architecture designed to protect every layer of enterprise infrastructure.

For security operations centres, this could mean fewer blind spots, faster threat detection and more contextual intelligence for incident response.

 This end-to-end visibility allows organisations to understand how code vulnerabilities translate into runtime risks, providing context that helps prioritise remediation efforts based on actual exploitability rather than theoretical severity scores.

Phil Bues, Senior Research Manager of Cloud Security at IDC, says: "Complexity is the primary challenge in the cloud today and Google is addressing the need for a simplified 'code-to-cloud' security strategy that works across any environment.

"By integrating Wiz's proactive multicloud visibility and risk assessment with its own AI-driven operations, Google is positioned to deliver a unified, predictive defence customers need, raising the bar in a critical market."

Broader implications for security industry

Beyond its immediate impact on enterprise security postures, the acquisition could signal broader trends within the Cloud-Native Application Protection Platform (CNAPP) market.

Amiram Shachar, Co-Founder and CEO of Upwind, says the news is great "for the broader cybersecurity community".

He continues: "For the rest of the industry, this moment reinforces just how large and important this market has become.

"Wiz has helped demonstrate that this category truly has no ceiling – it's one of the fastest-growing and most important markets as organisations and cloud providers continue to prioritise securing cloud infrastructure and workloads.

"The escalating geopolitical climate, which has given rise to an accelerating wave of AI-driven cyber attacks, will intensify demand for cybersecurity solutions, drive up company valuations and ultimately catalyse an acquisition spree by global enterprises – much in the same vein as the landmark Wiz–Google transaction."

For security teams currently using Wiz, the company has confirmed it will maintain its multi-cloud approach, continuing to protect workloads across major cloud platforms whilst leveraging Google's global infrastructure and AI capabilities to enhance detection and response capabilities.