Aviatrix Cloud Network Heroes labor to keep networks secure, effective, and performant. We’re proud to highlight people who have taught themselves the necessary skills, designed and managed successful networks, and have the expertise to share. In this Cloud Networking Hero guest post, Irwan Prabowo, Director of Information Technology, shares his expertise on how the Aviatrix-Wiz partnership provides defense-in-depth at his company.
All over the world, companies are scrambling to meet compliance regulations for data storage and encryption, network performance, user verification, and logging. In southeast Asia, Indonesia’s regulatory trio—BI SNAP(Standar Nasional Open API Pembayaran, Bank Indonesia’s open-API security standard), OJK (Otoritas Jasa Keuangan, the national financial services authority), and BI SLIK(Sistem Layanan Informasi Keuangan, the central credit bureau system)—requires on-shore, encrypted traffic, sub-100 ms latency, and audit-ready logs.
All three requirements are difficult to meet, but together, they’re a formidable challenge. Traffic encryption is expensive and can introduce latency, and audit-ready logs require comprehensive visibility and telemetry across clouds and environments.
My company was able to meet all three requirements across multiple clouds by pairing Aviatrix (the encrypted transit fabric) with Wiz (the contextual risk radar).
Wiz clarifies and simplifies threat identification and risk by prioritizing alerts and flagging “toxic combinations” – showing us key vulnerabilities and potential threats before they can do any damage.
Aviatrix implements zero trust principles and enforces security policies across networks.
Together, Aviatrix and Wiz help stop attacks before they start by offering actionable insights and rapid remediation.
How the Aviatrix-Wiz Duo Works
Capability | Result of our rollout |
Unified overlay (Aviatrix) | Alicloud Jakarta hosts core systems today; adding AWS Asia Pacific (Jakarta) ap-southeast-3 for burst analytics will reuse the same policy file, no route rewrites. |
Contextual CNAPP (Wiz) | Agentless scans tie every CVE to the real blast radius. Example: An outdated library on a VM, combined with write access to an open bucket, surfaced as a single actionable alert, requiring a three-click fix before production. |
Audit-grade observability | Aviatrix tags every packet; Wiz links findings to Terraform lines, so BI SLIK log requests export straight to dashboards, no spreadsheet marathons. |
Benefits of the Aviatrix-Wiz Partnership
Using Aviatrix and Wiz together has resulted in significant operational benefits:
~ 18% lower egress and transit costs by shifting east-west traffic onto Aviatrix encrypted peering.
Faster remediation: We were able to apply a critical patch in under 30 minutes thanks to Wiz’s prioritized alerts.
Future-proof scalability: New regions integrate seamlessly without requiring the rewriting of security or IaC modules.
Aviatrix and Wiz simplify and streamline the complex and never-ending challenge of finding and fixing vulnerabilities, sorting through thousands of alerts, and neutralizing threats. The partnership helps us both achieve multicloud security and prove the strength of our network’s defenses for compliance audits.
Key Takeaway
Security is a strategy, not a SKU. Aviatrix lays down the cloud network security fabric. Wiz acts as the X-ray, scanning every layer agentlessly, mapping each CVE to its real blast radius, and surfacing only issues that threaten data or compliance. Together, we can add or drop a cloud tomorrow without rewriting code.
Explore how the Aviatrix-Wiz partnership unlocks cloud security.
Learn more about Aviatrix’s Cloud Native Security Fabric.
