Learn how to automatically test your controls using Wiz
Supported 6clicks Authorities are:
- ISO 27001:2013 Annex A
- ISO 27001:2022 Annex A
- NIST CSF 2.0
- NIST CSF
- Essential-8
Getting started
Once the connection is established by following the steps here, you can proceed to Controls and automate them.
- Navigate to the control set and ensure the status is set to Edit
- Select the control you want to configure for automation
- Choose Linked data
- Click on the test that you intend to automate
You will be directed to your test side panel to configure automation for that specific test.
- Enable Automatically monitor using CSMP integration
- Under Data source select Wiz
- Enter your External URL/ID which is obtained from your Wiz environment
- Hit Save
After completing the automation setup for your tests, Publish the control set again to apply the automation settings.
To view which tests within a specific control set have been integrated with Wiz and automated, click on your control and go to Linked data. The symbols indicate whether your test is automated with wiz and any results will be fetched in automatically every 24hrs or whether it has been set up manually.
Error Scenarios
There are two scenarios when the system will give you an error.
1. If you are using a provision from an authority that is not supported, for instance, you want to create a test for "Address Unauthorized Assets" which is from ISO/IEC 2700:2013 authority.
You will receive the following error "We're unable to monitor this control".
2. You will get an error if you try to automate a test which has no authority provision linked to that control, please see the example below.
You will receive the following error "Link control to authority provisions".
