Cloudflare and Wiz Join Forces to Tackle Shadow AI Risks in Enterprise Applications
Cloudflare (NET) and Wiz, now part of Google Cloud, announced a strategic partnership on April 14 to help enterprises secure AI-powered applications from emerging risks, particularly shadow AI — the unauthorized or unmanaged use of AI tools within an organization.
The collaboration integrates Cloudflare’s AI Security for Apps with Wiz’s Security Graph, creating a unified map of an organization’s AI footprint. This allows security teams to automatically discover unprotected large language model (LLM) endpoints, enforce real-time guardrails, and block threats like prompt injections and data exfiltration — all without adding latency.
“This isn’t just another security integration,” said Mark Delaney, a cybersecurity analyst at Redpoint Strategies. “It’s a pragmatic response to a blind spot that most enterprises are only now waking up to. Shadow AI is the new shadow IT, and it’s far more dangerous.”
By combining Cloudflare’s edge-based traffic inspection with Wiz’s deep data flow mapping, the solution gives CISOs a prioritized remediation path based on actual exploitability. The platform is model-agnostic, working across any cloud provider or LLM without requiring custom workflows or additional agents.
“I’ve seen too many vendors promise ‘full visibility’ and deliver a dashboard that looks great but tells you nothing useful,” said Elena Torres, a former CISO turned independent consultant. “This actually maps the data flows and tells you where the real risk is. That’s rare.”
Not everyone is convinced the partnership will be a quick fix. James Kowalski, a senior engineer at a mid-sized fintech firm, was blunt: “Great, another layer of security tools. Meanwhile, my developers are still spinning up LLM endpoints on personal accounts because procurement takes three months. The tech is fine, but the culture problem remains.”
The announcement comes as enterprises accelerate AI adoption, often without corresponding security controls. Industry analysts note that shadow AI — ranging from employees using unapproved chatbots to rogue LLM integrations — is becoming a top concern for compliance and data protection teams.
Cloudflare, known for its connectivity cloud services, continues to expand its security portfolio beyond traditional web performance. The company has positioned itself as a key player in AI security, a market expected to grow rapidly as regulation tightens and breach costs rise.
For investors, the partnership signals Cloudflare’s intent to deepen its enterprise value proposition. While the stock has been volatile, some analysts see the move as a step toward capturing a larger share of the AI infrastructure spend.