TrojAI is pleased to announce our Wiz integration as part of Wiz’s AI Application Protection Platform (AI-APP) launch. At a high level, the integration connects Wiz’s AI asset discovery with TrojAI’s AI security testing and runtime protection, bringing together a continuous AI security workflow around visibility, testing, and protection.
What is the TrojAI + Wiz integration?
As enterprises continue to deploy AI apps and agents, they are increasingly challenged with both visibility and security of their AI estate. TrojAI and Wiz address these concerns through a closed-loop system centered around Discovery, Testing, and Protection.
Wiz identifies and inventories AI models and endpoints across your environment, while TrojAI ingests that inventory to perform automated red teaming. Once inventoried, TrojAI Detect’s agent-led red teaming leverages adversarial agents to test models for risks like prompt injection, data leakage, and unsafe behavior. The results are then pushed back into Wiz, enriching its security graph with AI-specific findings and context. With better context on AI risks, TrojAI users can actively monitor and protect their AI in runtime with TrojAI Defend.
Why it matters
Most enterprises today face a fragmented AI security landscape. They lack a clear inventory of AI systems. They struggle to test models for real-world vulnerabilities and want to accelerate their AI deployments. They don’t have a unified way to prioritize and remediate risks.
This integration addresses these concerns. By combining Wiz and TrojAI, security teams gain full visibility into AI assets and can continuously identify exploitable risks like jailbreaks or data exfiltration. From here, they can use the Wiz console to prioritize threats based on real attack paths and cloud context, and leverage TrojAI Defend to monitor and protect their AI assets with runtime policies that actively block against AI threats like prompt injection, data leakage, and toxic content.
How it works
- Discover: Wiz scans the environment to identify AI models and endpoints.
- Test: TrojAI pulls this inventory and runs automated red teaming to uncover vulnerabilities like prompt injection or sensitive data exposure.
- Enrich and prioritize: Findings are pushed back into Wiz, where they are correlated with cloud infrastructure context to identify real attack paths.
- Protect: TrojAI enforces runtime guardrails to prevent potential exploits, blocking malicious prompts, redacting sensitive data, and monitoring live interactions.
The bigger picture
Wiz tells you where your AI is and how it connects to your cloud risk. TrojAI tells you how that AI can be attacked, and gives you the tools to stop it in real time. By combining Wiz’s cloud and AI visibility and TrojAI’s deep AI security testing and enforcement, organizations can finally move from reactive security to a proactive, lifecycle-based approach, securing AI from development through production.
About TrojAI
TrojAI's mission is to enable the secure rollout of AI in the enterprise. TrojAI delivers a comprehensive security platform for AI. The best-in-class platform empowers enterprises to safeguard AI models, applications and agents both at build time and runtime. TrojAI Detect automatically red teams AI models, safeguarding model behavior and delivering remediation guidance at build time. TrojAI Defend is an AI application and agent firewall that protects enterprises from real-time threats at runtime. TrojAI Defend for MCP monitors and protects agentic AI workflows.
By assessing AI risk during the development lifecycle and protecting AI systems at runtime, TrojAI delivers end-to-end security across agents, applications and models.
To learn more, please visit us at www.troj.ai.
