Hebert Ntse
Back to systems
Case Study · API · GraphQL

Wiz API and GraphQL automation for scalable security operations.

Built API-driven workflows for querying Wiz issues, mapping controls, updating automation logic, and supporting security operations at scale.

Auth
Query
Filter
Normalize
Decide
Report
Challenge

Manual issue review does not scale.

Cloud security operations often need to query large sets of issues, controls, projects, and resource metadata. The goal was to make Wiz data easier to retrieve, filter, and feed into repeatable automation workflows.

Approach

Use GraphQL to retrieve precise security context.

  • Authenticated to the Wiz API and queried issues using GraphQL.
  • Filtered by severity, status, control, project, resource type, and cloud account.
  • Normalized results into structures that Python playbooks can consume consistently.
  • Mapped findings to automation decisions, reporting views, and operational queues.
  • Handled pagination, API failures, and missing fields as explicit workflow states.
Implementation

API output becomes automation input.

query issues($filter: IssueFilters) {
  issues(filterBy: $filter) {
    nodes {
      id
      severity
      status
      entitySnapshot { name type }
      control { name }
    }
  }
}