Google completed its $32 billion acquisition of cloud security company Wiz on March 11, 2026 — the largest cybersecurity acquisition in history. Wiz’s Cloud-Native Application Protection Platform (CNAPP), which provides agentless security scanning across AWS, Azure, GCP, and Oracle Cloud, is now part of Google Cloud. For network engineers managing multi-cloud environments, this deal signals that cloud security posture management is no longer a separate concern from network infrastructure — it’s converging into the hyperscaler platforms you already manage.
Key Takeaway: The Google-Wiz deal means cloud security is becoming a built-in feature of hyperscaler platforms, not an aftermarket add-on. Network engineers who understand CNAPP, cloud posture management, and network exposure analysis will be positioned for the hybrid roles that are replacing traditional perimeter-focused security jobs.
What Did Google Actually Buy With Wiz?
Wiz is a Cloud-Native Application Protection Platform (CNAPP) that provides agentless security scanning across multi-cloud environments. Founded in 2020 by Assaf Rappaport and team (who previously sold Adallom to Microsoft), Wiz grew to over $500 million in annual recurring revenue in under four years — making it one of the fastest-growing enterprise software companies ever.
According to Forrester’s analysis, the $32 billion price tag surpasses Cisco’s $28 billion Splunk acquisition in 2024 as the largest cybersecurity deal on record.
Here’s what Wiz actually does that matters to network engineers:
| Wiz Capability | What It Does | Network Engineering Relevance |
|---|---|---|
| Cloud Security Posture Management (CSPM) | Continuously scans cloud configs for misconfigurations | Catches open security groups, overly permissive NACLs, public-facing resources you didn’t intend |
| Cloud Workload Protection (CWPP) | Detects vulnerabilities in running workloads | Identifies exposed services across VPC/VNet boundaries |
| Network Exposure Analysis | Maps cloud network paths and identifies reachable resources | Shows which resources are internet-facing through actual network path analysis, not just security group rules |
| Cloud Infrastructure Entitlement Management (CIEM) | Maps IAM permissions and identifies excessive access | Reveals service accounts that can modify network configurations |
| Kubernetes Security Posture (KSPM) | Secures Kubernetes clusters and container networks | Flags CNI misconfigurations, exposed services, and network policy gaps |
The critical differentiator: Wiz is agentless. It connects via cloud APIs and scans your entire environment without deploying software to every workload. For network engineers who’ve fought the battle of getting agents deployed and maintained on thousands of endpoints, this architecture is significant.
Why Is This the Largest Cybersecurity Deal in History?
The $32 billion price tag reflects the reality that cloud security has become the most critical — and most fragmented — part of enterprise security. According to Google’s announcement, Google Cloud CEO Thomas Kurian framed the acquisition as making “security a catalyst for innovation, not a barrier.”
Several factors drove the price:
Market timing. Cloud misconfigurations are the leading cause of cloud security incidents, responsible for approximately 80% of breaches according to Gartner. Every enterprise migrating to cloud needs CSPM, and most have inadequate tooling.
Multi-cloud reality. According to CRN’s reporting, Wiz will continue supporting AWS, Azure, and Oracle Cloud after the acquisition. This is crucial — Google is buying a tool that monitors competitors’ clouds. Rappaport stated: “We remain committed to our open approach, ensuring Wiz continues to support all major cloud and code environments.”
AI security. The combined Google Cloud + Wiz platform will detect threats created using AI models, protect against threats to AI models, and use AI to help security professionals hunt threats. As AI workloads explode across cloud infrastructure, securing them becomes a hyperscaler-scale problem.
Competitive positioning. Google Cloud trails AWS and Azure in market share. Embedding best-in-class security directly into the platform is a differentiation play — GCP becomes the cloud with built-in Wiz.
How Does This Change Multi-Cloud Security for Network Engineers?
If you manage network infrastructure across AWS VPC, Azure vWAN, or GCP NCC, the Google-Wiz acquisition changes your security toolchain dynamics in three ways.
1. Cloud Security Posture Becomes a Network Team Responsibility
Traditionally, cloud security posture management lived with the security team or DevSecOps. But CNAPP platforms like Wiz analyze network exposure — which security groups allow traffic, which resources are internet-reachable, which VPC peering connections create unintended lateral movement paths.
This is network engineering work wearing a security hat. Here’s what a CNAPP network exposure finding looks like in practice:
Finding: RDS instance db-prod-users is reachable from the internet
Path: Internet → IGW → Public Subnet SG (port 3306 open) → RDS
Risk: Critical — database directly exposed via misconfigured security group
Fix: Remove 0.0.0.0/0 ingress rule on sg-0a1b2c3d, add private subnet route
Network engineers already understand routing, subnets, and access control. CNAPP just surfaces the misconfigurations you’d find during a manual audit — but continuously and at scale.
2. Google Cloud Gets a Competitive Security Advantage
The hyperscaler security landscape before and after the acquisition:
| Hyperscaler | Native Security Platform | CNAPP Integration | Network Security |
|---|---|---|---|
| AWS | Security Hub + GuardDuty + Inspector | Third-party CNAPP (CrowdStrike, Palo Alto) | VPC Flow Logs, Network Firewall, WAF |
| Azure | Defender for Cloud + Sentinel | Partially integrated CSPM | NSG Flow Logs, Azure Firewall, Front Door |
| GCP (post-Wiz) | Security Command Center + Wiz CNAPP | First-party CNAPP | VPC Flow Logs, Cloud Armor, Cloud IDS |
| Oracle Cloud | Cloud Guard | Third-party | NSG, Web Application Firewall |
GCP is now the only hyperscaler with a first-party, enterprise-grade CNAPP built into the platform. For network engineers evaluating cloud platforms, this changes the security assessment matrix. GCP’s native security tooling jumps from “adequate” to “best-in-class” overnight.
3. Multi-Cloud Security Gets More Complex, Not Simpler
Here’s the paradox: Wiz promises to remain multi-cloud, but it’s now owned by a competitor. If you run a multi-cloud environment with AWS as primary and GCP secondary, you’re now sending your AWS network topology data through a Google-owned security scanner.
According to SDxCentral’s analysis, this acquisition “formalizes a trend that has been building across the cloud workload security market: hyperscalers increasingly want tighter control over the security stack around their platforms.”
For network engineers managing multi-cloud connectivity, the practical implication is clear: evaluate whether your organization is comfortable with Google-owned tooling scanning non-Google infrastructure. If not, alternatives like CrowdStrike Falcon Cloud Security, Palo Alto Prisma Cloud, and Orca Security still offer independent multi-cloud CNAPP.
What Is CNAPP and How Does It Differ From Traditional Network Security?
CNAPP consolidates capabilities that network engineers previously handled with separate tools. According to Wiz’s documentation, a CNAPP platform unifies:
- CSPM (Cloud Security Posture Management) — continuous compliance and misconfiguration detection
- CWPP (Cloud Workload Protection Platform) — vulnerability scanning for running workloads
- CIEM (Cloud Infrastructure Entitlement Management) — identity and access control analysis
- KSPM (Kubernetes Security Posture Management) — container and Kubernetes security
- CDR (Cloud Detection and Response) — real-time threat detection
For comparison with traditional network security tools:
| Traditional Network Security | Cloud-Native Equivalent (CNAPP) |
|---|---|
| Firewall rules audit | Security group / NACL posture check |
| Vulnerability scanner (Nessus) | Agentless workload scanning |
| Network access control (Cisco ISE) | Cloud IAM entitlement analysis |
| SIEM correlation | Cloud detection and response |
| Penetration test / network path analysis | Automated network exposure analysis |
The key difference: CNAPP operates at API level, not packet level. It doesn’t inspect traffic — it reads cloud configurations and maps exposure. This is a fundamentally different security model from the perimeter-based approach that most network engineers trained on.
For CCIE Security candidates studying zero trust architecture, understanding CNAPP is increasingly relevant. The exam blueprint covers security architecture principles, and cloud-native security platforms represent the practical implementation of zero trust in cloud environments.
What Skills Should Network Engineers Develop?
The Google-Wiz deal accelerates the convergence of networking and cloud security. Network engineers who position themselves at this intersection will capture the highest-value roles. Here’s what to focus on:
Cloud Security Posture Management (CSPM)
Learn to read and interpret cloud security posture reports. Understand the relationship between VPC architecture, security groups, NACLs, and actual network exposure. This is the cloud equivalent of understanding firewall rule ordering and NAT traversal.
Infrastructure as Code (IaC) Security
Wiz and similar CNAPP platforms scan Terraform, CloudFormation, and Pulumi templates for security misconfigurations before deployment. Network engineers who can write secure IaC templates are worth more than those who fix misconfigurations after deployment.
Multi-Cloud Network Architecture
The ability to design network architectures that are secure across AWS, Azure, and GCP simultaneously is rare and high-value. Understanding each cloud’s native network security controls — and how they interact with CNAPP scanning — is the sweet spot. Our multi-cloud networking comparison covers the networking fundamentals.
Cloud-Native Identity and Access Management
Network engineers traditionally think in terms of IP addresses and ports. Cloud security thinks in terms of identities and permissions. Learning IAM policy analysis — understanding which service accounts can modify route tables, create peering connections, or open security groups — bridges the gap.
What Does This Mean for the Cloud Security Market?
The $32 billion price tag validates cloud security as a foundational market, not a niche. Here’s the competitive landscape post-acquisition:
| Company | CNAPP Approach | Multi-Cloud | Acquisition Status |
|---|---|---|---|
| Wiz (Google) | Agentless, graph-based | AWS, Azure, GCP, OCI | Acquired ($32B) |
| CrowdStrike | Agent + agentless hybrid | AWS, Azure, GCP | Independent |
| Palo Alto (Prisma Cloud) | Agent-based, code-to-cloud | AWS, Azure, GCP, OCI | Independent |
| Orca Security | Agentless, SideScanning | AWS, Azure, GCP, Alibaba | Independent |
| Microsoft Defender for Cloud | Native Azure + multi-cloud | Azure-first, AWS/GCP supported | Hyperscaler-owned |
| Check Point CloudGuard | Agent-based, integrates with Wiz | AWS, Azure, GCP | Independent (Wiz integration) |
The acquisition creates pressure on AWS and Azure to either build or buy comparable CNAPP capabilities. AWS has been incrementally enhancing Security Hub, and Microsoft has Defender for Cloud, but neither matches Wiz’s depth in agentless multi-cloud scanning.
For network engineers, this consolidation means cloud security tooling will increasingly be bundled with cloud infrastructure — similar to how SD-WAN security features got absorbed into SASE platforms. Understanding the native security capabilities of each cloud becomes as important as understanding their networking primitives.
How Does the Regulatory Approval Process Affect You?
The deal took a full year to close, from announcement in March 2025 to completion on March 11, 2026. The EU specifically evaluated whether the acquisition would reduce competition in cloud security.
According to CRN’s reporting, Google faced a $3.2 billion breakup fee if the deal fell through. The EU ultimately approved it, concluding that customers had “credible alternatives” in cloud security.
The practical takeaway: if your organization uses Wiz today, expect integration changes over the next 12-18 months. Wiz’s roadmap will increasingly prioritize GCP-native integrations while maintaining multi-cloud support. If you’re selecting a CNAPP vendor now, factor in the Google ownership when evaluating long-term vendor independence.
Frequently Asked Questions
How much did Google pay for Wiz?
Google paid $32 billion in cash for Wiz, making it the largest cybersecurity acquisition in history and Google’s biggest acquisition ever. The deal surpasses Cisco’s $28 billion Splunk acquisition in 2024. It was announced in March 2025 and closed on March 11, 2026 after EU regulatory approval.
Will Wiz still support AWS and Azure after the Google acquisition?
Yes. Wiz CEO Assaf Rappaport confirmed the platform will maintain its multi-cloud commitment, continuing to support AWS, Azure, GCP, and Oracle Cloud. Google Cloud CEO Thomas Kurian emphasized the company’s “commitment to openness.” However, expect deeper GCP integrations to develop over time.
What is CNAPP and why should network engineers care?
CNAPP (Cloud-Native Application Protection Platform) unifies cloud security posture management (CSPM), workload protection (CWPP), identity entitlement management (CIEM), and network exposure analysis in a single platform. For network engineers, CNAPP replaces fragmented security tools with unified visibility across cloud networks — and network exposure analysis is fundamentally a networking discipline.
How does the Google-Wiz deal affect CCIE candidates?
Cloud security posture management is increasingly part of network engineer responsibilities in hybrid and multi-cloud roles. Understanding CNAPP capabilities, cloud network exposure analysis, and multi-cloud security architecture builds skills relevant to CCIE Security, cloud networking career paths, and the growing demand for engineers who bridge networking and security.
The convergence of cloud networking and cloud security is creating the highest-paying roles in infrastructure engineering. Ready to build the skills that bridge both disciplines? Reach out on Telegram @phil66xx for a free assessment.