.jpg)
Upwind, the runtime-first cloud security leader, has integrated its cloud-native application protection platform (CNAPP) with the Extended plan in AWS Security Hub. This enables AWS customers to access real-time, context-rich visibility into workloads, reduce alert noise, and prioritize genuine risks through a simplified single-vendor procurement experience.
Upwind announces a key integration that brings its runtime-first CNAPP directly into AWS Security Hub's Extended plan. This partnership allows organizations to enhance cloud security operations with live, production-context insights while simplifying vendor management and procurement.
Cloud environments have evolved rapidly with containerized applications, serverless architectures, and AI workloads outpacing legacy security models reliant on periodic scans and static posture assessments. Security teams require real-time systems that detect, correlate, and respond continuously based on what is actually happening in production. Upwind addresses this by enriching AWS-native detections with deep runtime telemetry, shifting focus from assumptions to verifiable, live signals.
The integration merges AWS Security Hub's correlated findings and attack path analysis with Upwind's runtime-level context. This combination validates threats, eliminates noise from irrelevant alerts or low-risk CVEs, and enables teams to concentrate on active, exploitable risks. The result is a more connected workflow that reduces investigation friction, accelerates remediation, and aligns security, engineering, and cloud operations around a shared, accurate source of truth.
"Cloud infrastructure has changed faster than the security models designed to protect it. The next era of cloud security must be built on runtime signals; that’s actually the only way to understand what is truly happening in production. By integrating Upwind's runtime-first cloud security platform with Security Hub Extended Plan, customers can base their decisions on live signals, not assumptions. That changes how teams prioritize risk, how they operate, and how fast they can move. This is the direction cloud security is heading.” — Amiram Shachar, CEO & Co-founder at Upwind.
Large enterprises benefit from centralized visibility paired with precise runtime intelligence, especially in distributed, multi-team environments. Waste Management, after evaluating multiple CNAPP solutions, selected Upwind for its AWS and broader cloud footprint. Deployment delivered substantial reductions in security alerts and irrelevant findings, enabling efficient prioritization and real-time data interrogation that saves time and resources while building engineer trust.
“Upwind provides deep visibility and clarity across our AWS environment, allowing us to focus on real, actionable risk,” said Jerich Beason, CISO at Waste Management. “After an in-depth evaluation of CNAPP platforms and extensive hands-on testing, we chose Upwind and rolled it out across our AWS and broader cloud infrastructure. Since deployment, we’ve seen a significant reduction in security alerts and fewer irrelevant CVEs. That level of clarity enables our teams to prioritize what actually matters and operate far more efficiently. Cloud security has lacked meaningful context for too long. Upwind shows us what is happening in our environment and why it matters. The agent built on the platform allows us to interrogate our data in real time, saving time and money while strengthening our overall security operations. Just as important, they have earned the trust of our engineers and security teams and continue to operate at the speed we expect from modern cloud partners.”
As cloud-native and AI-driven architectures continue to expand, integrations like this mark the evolution toward runtime-powered, context-aware security strategies that keep pace with modern infrastructure.
The Extended plan for AWS Security Hub is immediately available in all commercial AWS regions.
About Upwind
Upwind is the next-generation cloud security platform built to lead the Runtime revolution. Headquartered in San Francisco, California, Upwind brings together a unified vision for cloud and application-layer protection, empowering organizations to run faster, detect threats earlier and secure their environments with unmatched precision. The company was founded by Amiram Shachar and the founding team behind Spot.io (acquired by NetApp for $450 million) and is backed by leading investors including Bessemer, Salesforce Ventures, Greylock, Cyberstarts, Leaders Fund, Craft Ventures,TCV, Alta Park, Cerca Partners, Swish Ventures and Penny Jar Capital. Upwind has raised $430 million since its founding in 2022 and is trusted by forward-thinking enterprises globally to bring real-time runtime intelligence to modern cloud security.
TechIntelPro empowers B2B technology decision-makers with the latest industry trends, deep insights, leadership perspectives and actionable intelligence to drive both organizational and professional milestones—and thrive on the tech pulse.