BigID Next and Wiz compete in the field of data protection and cloud security, respectively. While BigID offers comprehensive data management, Wiz leads in threat detection and cloud vulnerability management, giving it an edge in cybersecurity.
Features: BigID Next offers robust data discovery and scanning, identifying both structured and unstructured data and excelling in data protection, compliance, and governance. It integrates smoothly with existing systems and offers extensive deployment options. Wiz specializes in cloud security with advanced risk evaluation and Security Graph for prioritizing vulnerabilities. It provides a cloud-native application protection platform and excels in threat intelligence, integrating security across cloud environments.
Room for Improvement: BigID Next requires enhancements in file viewing, data security, scan reliability, and automation capabilities. Its user interface needs improvement, and better scan interruption management is necessary. Wiz could improve in logging integrations, executive reporting, on-demand scanning, and API integration. Better customization and flexibility in dashboards and reporting are also areas for improvement.
Ease of Deployment and Customer Service: BigID Next supports deployment across various environments, including private, public, and hybrid clouds, as well as on-premises settings. Its technical support receives praise but occasionally has delayed resolutions. Wiz operates primarily in public and hybrid cloud spaces, offering a straightforward deployment process and strong support, though it needs better system integration.
Pricing and ROI: BigID Next is often seen as expensive but offers modular pricing, making it economical for large enterprises. It provides a good return on investment for regulatory compliance. Wiz is perceived as a high-cost solution, with concerns about pricing trends. It offers good value relative to features, emphasizing security and compliance improvements over direct financial savings.
It is one of the best tools in the market.
We have seen returns across all three aspects: fewer employees needed, money saved, and time saved with BigID.
I have seen a return on investment from using BigID, particularly as it is a regulatory and compliance tool that helps avoid potential penalties for non-compliance.
We have seen ROI from Wiz and we continued to see value in Wiz.
We estimate a cost reduction of around 35% to 50%, or even more, due to consolidating our security management into one platform.
I have seen a return on investment with Wiz by reducing our budget spent on other tools, saving time, and needing fewer employees.
BigID has one of the best technical support teams.
I would rate the customer support a six because you cannot directly reach out to L3 or L2 support if there's a major issue.
developing the custom connectors was relatively easy because of the courses I attended at BigID University and the support given by the BigID engineering team.
On a scale from 1 to 10, I would give Wiz's support a 10.
The vendor was readily available to assist us over calls, clarifying both technical aspects and theoretical insights.
We have a dedicated channel with Wiz and are always in communication with them.
I have added very large data sources to the BigID environment, and it remains stable.
BigID is scalable, allowing you to purchase as many scanners as you want.
We have deployed Wiz in three organizations on AWS, each with approximately 70 to 80 accounts, totaling more than 120 accounts.
Scalability-wise, I rate the solution a ten out of ten.
Our environment quadrupled in size. We didn’t have to make any adjustments or configuration changes; it just accommodated the growth.
BigID is generally stable, however, there is a noted issue with bulk tagging that can affect scan results.
The stability of Wiz has been good, with no downtime, bugs, or glitches.
Stability-wise, I rate the solution an eight to nine out of ten.
The solution is very stable.
There is also an issue with incident tagging, where all objects get tagged without an option to untag specific ones, and reverting changes is only possible through MongoDB Central, which can lead to data loss for certain periods.
I want them to focus on data mapping, assessment, automation workflow, and privacy incident management.
BigID deserves recognition for the data discovery part, which has been wonderful and quite accurate, along with the confidence level process that allows us to fine-tune results for better accuracy from the database.
We would like to see preventive controls that can be applied through Wiz to protect against vulnerabilities that we're not going to be able to remediate immediately.
One significant area for improvement would be increasing automation. While they excel at identifying issues, we need assistance in minimizing the human hours required for tasks.
We need an agent that can be installed, or that can overview all the containers and Kubernetes so that it can detect malicious activities that are happening in them.
BigID might be expensive as it involves various paid services, like data retention and graphic rights management.
The pricing is competitive in the market, however, I need to ask for the right price.
We are paying 250k per year.
In some cases, it has a very aggressive price, so very cheap.
I don’t think there’s anyone else out there offering the same level, scale, or efficiency.
One of the best features of BigID is its strength in data discovery and governance.
BigID simplifies things by integrating both data protection and data privacy in one environment, making it easier for end users.
The most valuable feature of BigID is its large number of classifiers, which allow us to scan for specific data such as SSN numbers.
The feature leads to minimal false positives and a low volume of alerts, which is highly valuable for our operations.
It's highly customizable, allowing us to manage many custom features effectively.
Regarding compliance and governance, Wiz streamlines our vulnerability management to meet specific needs effectively.
| Product | Market Share (%) |
|---|---|
| Wiz | 16.5% |
| BigID | 5.6% |
| Other | 77.9% |
| Company Size | Count |
|---|---|
| Small Business | 5 |
| Large Enterprise | 11 |
| Company Size | Count |
|---|---|
| Small Business | 9 |
| Midsize Enterprise | 8 |
| Large Enterprise | 20 |
BigID Next offers advanced data discovery, classification, and governance tools, streamlining compliance with privacy laws while integrating seamlessly with Microsoft platforms.
BigID Next provides comprehensive data management through machine learning-enhanced capabilities, supporting data discovery and classification for both structured and unstructured data. By simplifying processes for GDPR and CCPA compliance, and facilitating data scanning and mapping across databases, it optimizes data management. Automation is central to its design, with solutions for DSAR requests, organizing data with security labels, and ensuring a holistic organizational data view. Improvements in navigation, bug fixes, and scan reliability remain essential, along with enhancing classifiers for broader region coverage.
What features does BigID Next offer?BigID Next is commonly implemented in industries needing robust data governance, such as finance and healthcare, where data privacy and compliance with regulations are critical. It aids in scanning and classifying extensive data volumes, helping businesses maintain regulatory compliance while managing data risks effectively.
Wiz is a highly efficient solution for data security posture management (DSPM), with a 100% API-based approach that provides quick connectivity and comprehensive scans of platform configurations and workloads. The solution allows companies to automatically correlate sensitive data with relevant cloud context, such as public exposure, user identities, entitlements, and vulnerabilities.This integration enables them to understand data accessibility, configuration, usage, and movement within their internal environments.
Wiz's Security Graph delivers automated alerts whenever risks emerge, allowing teams to prioritize and address the most critical issues before they escalate into breaches. Furthermore, Wiz ensures rapid and agentless visibility into critical data across various repositories, enabling organizations to easily determine the location of their data assets.
Wiz provides various features in the following categories:
Agentless Scanning: The solution can scan every layer of a cloud environment without requiring agents, managing the entire process and providing comprehensive visibility.
Workflow Integration: Users can create customized workflows within Wiz to identify and assign actions based on urgency, integrating them with ticketing systems for quick and efficient remediation.
Vulnerability Management: Wiz's vulnerability management modules provide detailed analytics and visibility across cloud systems, streamlining the manual process of vulnerability discovery. The automated attack path analysis helps identify risks and trace potential points of exposure, allowing users to understand and mitigate them effectively and proactively.
CSPM (Cloud Security Posture Management): Wiz's CSPM module offers instant visibility into high-level risks to an enterprise’s cloud environment, covering all accounts without the need for agents.
Out-of-the-Box Reporting and Custom Queries: The service supports comprehensive reporting with asset context, allowing users to perform complex custom queries on the solution’s user-friendly interface.
Automation Roles and Dashboards: The solution facilitates automation by providing essential roles and dedicated dashboards that enable teams to understand security information quickly, even those with limited expertise.
Contextual Risk Evaluation: The service contextualizes the various components contributing to an issue, providing a risk evaluation framework that helps prioritize remediation efforts.
Security Graph and Visibility: Wiz's security graph offers visibility across the entire organization, even with multiple accounts, enabling users to understand their environment and assets effectively.
Wiz offers the following benefits:
Comprehensive agentless scanning
Effective identification and mitigation of vulnerabilities
Streamlined vulnerability management
Robust reporting capabilities and customizable queries
Enhanced automation and role-based access control
Prioritized risk evaluation for efficient remediation
Security posture across multiple accounts
Kamran Siddique, VP Information Security at boxed.com, remarks his company has seen a ROI while using Wiz, as it simplifies the process by integrating multiple useful tools into one solution.
According to a Senior Security Architect at Deliveroo, Wiz has given their company a fresh approach to vulnerability management, as Wiz's native integrations are extremely useful and paramount to the operational success of their platform.
We monitor all Data Security Posture Management (DSPM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
