Easily Prioritize Cloud Misconfigurations with Upwind

A colorful flowchart with interconnected circles featuring icons, including a lock, globe, fingerprint, and gears. The chart branches into various paths, visually representing a complex data or process structure.
Denise Ashur

By Denise Ashur

Feb 18, 2025

We are excited to introduce a new capability in the Upwind platform, automatically prioritizing cloud posture findings by severity based on real environmental variables: Under our Secure Configurations module. This is the first of many CSPM features coming from Upwind in the coming weeks, and it offers a powerful enhancement to posture management that automatically prioritizes misconfiguration findings based on their real-world impact and severity.

A Smarter, Next-Generation Approach to CSPM 

With the rise of CNAPP (a consolidated cloud security platform that encapsulates posture management, workload protection, vulnerability management and more), CSPM capabilities are also inevitably evolving. The need for maintaining a strong security posture has become more important and widely recognized. However, the biggest issue with CSPM has always been that teams are often burdened with hundreds – or even thousands – of alerts about misconfigurations and other posture findings, making it difficult to prioritize critical risks for remediation. 

One of Upwind’s core beliefs is that the future of cloud security is runtime. Building on this core principle, we are now leveraging this invaluable context to reinvent CSPMs. This new capability cuts through the noise, automatically surfacing high-impact misconfiguration findings that represent the greatest risk to your environment based on real usage of your applications that run in the cloud.

Screenshot of a security findings dashboard showing findings related to AWS SQS Queue with unrestricted cross-account access. The overview diagram shows the data flow, with sections for analysis, correlated risks, and JSON details of the evidence.

A New Approach to Misconfiguration Findings

With this new capability, Upwind provides a new, prioritized approach to handling misconfiguration findings. With Upwind’s Findings Tab, you can:

  • Quickly assess risk: View findings ranked by severity, powered by real environmental context.
  • Track progress: Monitor each finding’s status over time to see what’s been addressed and what still needs attention.
Screenshot of a security findings dashboard in Upwind. The sidebar lists various findings, such as “AWS RDS database exposure.” The main section displays an overview and a Findings over time graph highlighting data points from January to March 2023.
  • Accelerate remediation: Access clear, actionable remediation steps for each finding, helping your team resolve issues faster.
Screenshot of a security dashboard showing findings related to a publicly exposed AWS S3 bucket with read or write access. The left panel lists various risk items, and the main area displays a network graph detailing resource interactions and risks.

Coming Soon: Reinventing Custom Policies with Upwind’s Topology Graph

Screenshot of a web interface titled Upwind. It displays a table with details on AWS EC2 instances, including resource names, public accessibility, and security groups. A search and filter section is at the top, with options to search, take a graph, or manage data.

In the coming weeks, we will expand our CSPM offerings even further with the Upwind Topology Graph – giving you increased visibility into posture findings and custom policies. With the Upwind Topology Graph, you can easily:

  • Easily Query Inventory: filter resources, machines and users based on specific criteria, and view relevant risk information and attached policies.
  • Visualize Resource Policies: generate a graph view of resource types, machines and users that meet specific query criteria and easily understand the attached policies and privileges.
  • Understand Policy Impact: discover how custom policies impact resources or users and influence environmental risk.
A flowchart diagram showing users connected through various admin policies to a High privilege node. Each user is represented by a pink icon. Labels include user names and policy types. The service name Upwind appears at the top left.

By focusing on what matters most, Upwind’s posture capabilities help you accelerate remediation efforts, improve efficiency, and strengthen your overall cloud security posture. Want to see how Upwind’s runtime-powered CSPM can transform your security operations? Schedule a demo today.

Easily Prioritize Cloud Misconfigurations with Upwind

Further Reading

Icon set with cloud symbols in red, blue, green, and yellow circles connected by lines in a curved layout. upwind is written in the top left corner.
Product

Visualize End-to-End Google Cloud Cross-Account Traffic with Upwind 

Denise Ashur

By Denise Ashur

Feb 20, 2025

We are excited to introduce a major enhancement to the Upwind platform – comprehensive end-to-end traffic visibility across accounts and clusters in Google Cloud. For organizations that build cloud infrastructure hosted in Google Cloud, viewing cross-account and cross-cluster traffic can be a major challenge. Upwind’s latest release solves this problem, offering end-to-end visibility of resource […]

Logos of Upwind, AWS, and Kubernetes on a white background with red diagonal stripes. The Upwind logo is in the top left corner.
Product

Upwind’s EKS Add-On Featured in AWS Marketplace Blog

Denise Ashur

By Denise Ashur

Feb 14, 2025

In March 2024, we announced that Upwind is one of the few ISVs accepted as an AWS Marketplace add-on for Amazon Elastic Kubernetes Service (Amazon EKS). Now, Upwind has been featured by AWS – highlighting the deep runtime container security that Upwind’s EKS Add-on provides. Upwind’s EKS Add-on gives customers the ability to automatically deploy […]

A grid of light purple shopping bag icons with one prominent dark purple bag icon in the center. The word upwind is in the top left corner. The background is white with a mix of solid and outlined icons.
Product

Location and Paths Forensics for your Vulnerability Findings

Denise Ashur

By Denise Ashur

Feb 13, 2025

We are excited to introduce a new functionality in the Upwind platform that directly addresses a key challenge in vulnerability management: quickly pinpointing the location of specific package versions. With this enhancement, you can now effortlessly track where your vulnerabilities reside, eliminating guesswork and speeding up your response time. Understanding the full impact and scope […]

Stay in touch

Product

CNAPP
Vulnerability Management
CSPM
Container Security
CWPP
CDR
API Security
Identity Security

General

About
Contact
Careers
Feed
Events
Case Studies
Get A Demo
Glossary

Social

Twitter
LinkedIn
Facebook

Resources

Documentation

Privacy Policy
Terms of Use

© 2025, Upwind Security