Try our new research platform with insights from 80,000+ expert users

Skybox Security Suite vs Wiz comparison

Tufin and Wiz are both solutions in the Vulnerability Management category. Tufin is ranked #39 with an average rating of 7.0, while Wiz is ranked #1 with an average rating of 8.8. Tufin holds a 0.6% mindshare in VM, compared to Wiz’s 7.5% mindshare. Additionally, 81% of Tufin users are willing to recommend the solution, compared to 96% of Wiz users who would recommend it.
Sponsored
Zafran Security
Read 6 Zafran Security reviews
  • 3,470 Views
  • 2,533 Comparison Views
100% willing to recommend
Skybox Security Suite
Read 38 Skybox Security Suite reviews
  • 2,916 Views
  • 642 Comparison Views
81% willing to recommend
Wiz
Read 33 Wiz reviews
  • 25,976 Views
  • 10,910 Comparison Views
96% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Dec 14, 2025

Skybox Security Suite and Wiz compete in the domain of cybersecurity management. Wiz appears to have the upper hand in cloud environments due to its security graph and contextual risk analysis features.

Features: Skybox Security Suite offers robust firewall and network assurance capabilities, making it ideal for large-scale networks. It includes modules like Change Manager and Firewall Assurance for complex environments. Wiz provides a security graph, contextual risk analysis, and excellent cloud vulnerability detection, which helps prioritize vulnerabilities with minimal false positives.

Room for Improvement: Skybox Security Suite's interface and deployment are complex, and its transition to a web-based GUI is incomplete. Users seek improved automation and better cloud integration. Wiz needs enhancements in reporting, risk prioritization, and vulnerability detection speed. Users desire more control over alerts and better DevSecOps tool integration.

Ease of Deployment and Customer Service: Skybox Security Suite, used in on-premises environments, is complex to deploy and configure, with mixed support experiences. Wiz, used in cloud deployments, is simple and effective, but users wish for better executive reporting. Both receive satisfactory but varied reviews on support quality.

Pricing and ROI: Skybox Security Suite is expensive with concerns about licensing complexity, but offers good ROI for large organizations. Wiz is also priced high, justified by its cloud-native capabilities, though users worry about future cost increases. Both provide value depending on organization size and infrastructure complexity.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Skybox Security Suite vs. Wiz Report (Updated: December 2025).
Buyer's Guide
Skybox Security Suite vs. Wiz
December 2025
Download the complete report
Helped 881,114 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Zafran Security
Sponsored
Ranking in Vulnerability Management
18th
Average Rating
9.6
Reviews Sentiment
7.8
Number of Reviews
6
Ranking in other categories
Continuous Threat Exposure Management (CTEM) (3rd)
Skybox Security Suite
Ranking in Vulnerability Management
39th
Average Rating
7.6
Reviews Sentiment
6.2
Number of Reviews
38
Ranking in other categories
Firewall Security Management (6th)
Wiz
Ranking in Vulnerability Management
1st
Average Rating
9.0
Reviews Sentiment
7.1
Number of Reviews
33
Ranking in other categories
Container Security (2nd), Cloud Workload Protection Platforms (CWPP) (3rd), Cloud Security Posture Management (CSPM) (1st), Cloud-Native Application Protection Platforms (CNAPP) (1st), Data Security Posture Management (DSPM) (1st), Compliance Management (1st), Cloud Detection and Response (CDR) (1st)
 

Mindshare comparison

As of January 2026, in the Vulnerability Management category, the mindshare of Zafran Security is 1.1%, up from 0.2% compared to the previous year. The mindshare of Skybox Security Suite is 0.6%, up from 0.4% compared to the previous year. The mindshare of Wiz is 7.5%, down from 12.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Vulnerability Management Market Share Distribution
ProductMarket Share (%)
Wiz7.5%
Zafran Security1.1%
Skybox Security Suite0.6%
Other90.8%
Vulnerability Management
 

Featured Reviews

Reviewer6233 - PeerSpot reviewer
Reviewer6233
Works at a healthcare company with 10,001+ employees
Has become an indispensable tool in our cybersecurity arsenal
While Zafran Security is already a powerful tool, there are areas where it could be further improved to provide even greater value. One key area for enhancement is the searching capabilities within its vulnerabilities module. By incorporating the ability to create Boolean searches, users would gain the ability to apply more complex filters and customize their search criteria. This would greatly enhance the precision and efficiency with which security teams can identify and prioritize vulnerabilities. Having such tailored search capabilities would save time and resources by narrowing down vast lists of vulnerabilities to those that meet specific parameters relevant to our unique risk environment. Additionally, integrating more robust reporting and visualization tools would be advantageous. Enhanced dashboards that offer customizable visual representations of risk configurations and threat landscapes would facilitate better communication with stakeholders, making it easier to explain vulnerabilities and the rationale behind certain security measures. This would also aid in demonstrating the improvements and value derived from existing security investments to leadership and non-technical team members.
Read full review
reviewer2697804 - PeerSpot reviewer
reviewer2697804
Security Engineer at a financial services firm with 10,001+ employees
Tool identifies vulnerabilities and monitors connectivity effectively
Skybox Security Suite was a very good tool for my organization. I used it for monitoring connectivity between internal and external sites, monitoring our AWS instances, and ensuring workstations and Layer 3 devices met security specifications. The tool successfully helped in preventing vulnerabilities and breaches, but unfortunately, operations ceased before completing a migration to SaaS.
Read full review
Marcel Velica - PeerSpot reviewer
Marcel Velica
Senior Program Manager, Security at Eventbrite
Unified cloud visibility has transformed our risk prioritization and reduced alert fatigue while improving collaboration across security and DevSecOps teams
The standout features of Wiz that make it valuable for me include good multi-cloud environment support, data governance, shadow IT detection, DevSecOps governance, automation, level reporting, threat detection, and good infrastructure detection. Wiz has positively impacted my organization by implementing zero trust authorization, providing good reporting that shows the top attack path, critical assets, overall risk posture, and demonstrating AI and ML workload capabilities towards my team, as well as good infrastructure detection and vulnerability detection accuracy with security posture management at massive scale and identity exposure. There is a massive reduction in risk exposure, immediate visibility across the entire cloud estate, reduced noise and better prioritization, stronger DevSecOps collaboration, continuous compliance instead of ad hoc panic, faster incident response with real context, significant cost savings through tool consolidation, and stronger AI and data governance.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"We saw benefits from Zafran Security almost immediately after deploying it."
"We are able to see the real risk of a vulnerability on our environment with our security tools."
"Zafran has become an indispensable tool in our cybersecurity arsenal."
"Zafran is an excellent tool."
"Overall, we have seen about eighty-seven percent reduction of the number of vulnerabilities that require urgency to remediate, specifically the number of criticals."
"With Zafran Security, it integrates with your security controls, allowing you to take that risk score and reduce it based on the controls in place or increase the risk based on different factors, such as if the issue is internet reachable or if there's an exploit in the wild."
"Key features for us include the firewall change audit every week. Also, being able to track firewall ACL usage, so that we can produce semiannual reports on ACL usage and shadowed and redundant rules on the firewall."
"It's very supportive and very user-friendly."
"Aside from Firewall Assurance, we are using Network Assurance and Change Manager for an overview of the whole network and for documenting requests and the recertification of the ruleset."
"When you import all the assets that you have, like desktops, servers, networks, devices, routers, and then firewalls, and other products, then Skybox makes like, a model of the network, but with context. So, it is not just a model in VIZIO. Or something like it like that. You get the model with context, and, like, it looks like a real network in a real-time. So you can check your network and the security of your network on that model."
"Correlates logs and threats and prioritizes; provides network maps;p provides change result context and resulting vulnerability."
"The features that I have found most valuable with Skybox Security Suite, and this is because I work on the security side, are the firewall assurance, the change manager and the vulnerability control. These three features are the most impressive from Skybox Security."
"The most impressive feature is optimization and clean-up."
"I think that compliance checks and policy compliance are the product's good features."
More Skybox Security Suite pros
"The first thing that stood out was the ease of installation and the quick value we got out of the solution."
"The product's most valuable feature combines different contexts and attributes to produce highly confident alerts."
"The product supports out-of-the-box reporting with context about the asset and allows us to perform complex custom queries on UI."
"The automation roles are essential because we ultimately want to do less work and automate more. The dashboards are easy to read and visually pleasing. You can understand things quickly, which makes it easy for our other teams. The network and infrastructure teams don't know as much about security as we do, so it helps to have a tool that's accessible and nice to look at."
"The tool's most valuable feature is its attack path analysis."
"Our most important features are those around entitlement, external exposure, vulnerabilities, and container security."
"Wiz has positively impacted my organization by implementing zero trust authorization, providing good reporting that shows the top attack path, critical assets, overall risk posture, and demonstrating AI and ML workload capabilities towards my team, as well as good infrastructure detection and vulnerability detection accuracy with security posture management at massive scale and identity exposure."
"What I appreciate most about Wiz is that the compliance and CSPM aspects of this cloud-native application protection offering are genuinely better than other products available in the market."
More Wiz pros
 

Cons

"Initially, we were somewhat concerned about the scalability of Zafran due to our large asset count and the substantial amount of information we needed to process."
"I think the ability to have some enhanced reporting capabilities is something they can improve on, as they have good reports but we have asked for some specific reporting enhancements."
"The dashboarding and reporting functionality of Zafran Security is an area that definitely could use some improvements."
"The most recent update was not tested with all of the vendors before it was released, so some of the features are misbehaving."
"The cloud site could be better. They should provide some use cases to help users."
"The solution needs to move improve its interface to a full web browser version that is more accessible and doesn't require installation for use."
"They are not satisfied with the complexity of the solution and the price."
"There is room for improvement in the technical support."
"Reporting. A lot of the reports, out of the box, are limited to a certain number of either configuration violations or access rule violations. So when you first set up a new firewall to be monitored by Skybox, you don't get a real full report. You have to really tweak it to get everything."
"The support could be improved."
"The price could be cheaper."
More Skybox Security Suite cons
"In Brazil, the cost is a significant issue due to the currency exchange rate."
"They could improve the product's visibility in the internal network topology."
"As the tool is a good fit for small and medium-sized businesses, the solution should focus on making the product suitable for large-scale businesses."
"The remediation workflow within the Wiz could be improved."
"FinOps is an area where Wiz needs enhancement."
"More or less, Wiz is doing well, but the false alerts at random times would be another area for improvement."
"I have seen some lagging or downtime a couple of times, but I am not sure why it happened."
"Not having an on-prem version can be an obstacle for customers who have a large workload in an on-prem environment."
More Wiz cons
 

Pricing and Cost Advice

Information not available
"The licensing fee is paid yearly and is approximately $100,000."
"Licensing is normally on a yearly basis. There may also be a perpetual license. Normally, the customers ask for a lower price. If you want to sell more, you have to think about it."
"The product's pricing is excellent value. In terms of licensing, make sure you understand your network components, all your hops through your network, thoroughly, before you decide on the total cost. If you want to do point-to-point flow analysis and such, you need to have the configuration of all the devices in between point A and point B. A lot of people don't realize all their network components until they start using this product."
"I think for the cost, what we got definitely is worth it. The only caution I would give is that whenever you license for Firewall Assurance at the same time, for some weird reason, you have to get one Network Assurance license, just to manage one firewall. That's a little bit of overkill. But otherwise, in general, the pricing is fairly okay."
"I rate the pricing two on a scale of one to ten, where one is very expensive, and ten is cost-effective."
"With licensing, the number of network nodes becomes very expensive to the point where you have to rationalize if the tools are warranted anymore."
"Fully understand the total cost of ownership. They have gone to a new model where you have to replace the hardware every X amount of years at a very substantial cost and fully understand your intended number of nodes. To operate a firewall, you have to pay two licenses, a firewall node and a network node. If you are a reasonable-sized organization, this gets expensive very quickly."
"The software is expensive. I rate its pricing an eight out of ten."
More Skybox Security Suite pricing and cost advice
"I wish the pricing was more transparent."
"Based on the features and capabilities, the product pricing seems reasonable."
"If one is cheap and ten is expensive, I rate the tool's price as a five out of ten."
"The pricing is fair. Some of the more advanced features and functionalities and how the tiers are split can be somewhat confusing."
"The cost of the other solutions is comparable to Wiz."
"The pricing is fair and comparable to their competitors. The cost seems to be going up, which is a concern. There are potential savings from consolidating tools, but we're uncertain how Wiz's pricing will change over time."
"Wiz is a moderately priced solution, where it is neither cheap nor costly."
"The pricing seems pretty simple. We don't have to do a lot of calculations to figure out what the components are. They do it by enabling specific features, either basics or advanced, which makes it easy to select."
More Wiz pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.
See recommendations
881,114 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
11%
Manufacturing Company
8%
Computer Software Company
8%
Outsourcing Company
6%
Financial Services Firm
18%
Computer Software Company
11%
Manufacturing Company
10%
Energy/Utilities Company
6%
Financial Services Firm
15%
Computer Software Company
12%
Manufacturing Company
9%
Healthcare Company
5%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
By reviewers
Company SizeCount
Small Business21
Midsize Enterprise4
Large Enterprise21
By reviewers
Company SizeCount
Small Business9
Midsize Enterprise8
Large Enterprise20
 

Questions from the Community

What is your experience regarding pricing and costs for Zafran Security?
Since we stood Zafran Security up in our private cloud, we handle the maintenance on our side. As we opted not to use...
See all answers
What needs improvement with Zafran Security?
In terms of areas for improvement, Zafran Security is doing a really great job as a new and emerging company. Oftenti...
See all answers
What is your primary use case for Zafran Security?
My use cases for Zafran Security revolve around two primary areas. One is around vulnerability management and priorit...
See all answers
What do you like most about Skybox Security Suite?
Overall, the tool has helped us reduce risks. If any step is missing, it's easier for my team or engineers to identif...
See all answers
What is your experience regarding pricing and costs for Skybox Security Suite?
From a commercial perspective, AlgoSec is more expensive compared to Skybox Security Suite. Skybox Security Suite is ...
See all answers
What needs improvement with Skybox Security Suite?
The features that I appreciated the most in Skybox Security Suite were not comparable with Tufin, as Tufin was far ah...
See all answers
What do you like most about Wiz?
With Wiz, we get timely alerts for leaked data or any vulnerabilities already existing in our environment.
See all answers
What is your experience regarding pricing and costs for Wiz?
My experience with pricing, setup cost, and licensing for Wiz was through an RFP where they offered us a good price, ...
See all answers
What needs improvement with Wiz?
I feel there is a delay in detection, though I am uncertain whether this is due to our implementation disadvantage. W...
See all answers
 

Comparisons

Wiz Code vs Zafran Security Logo
Wiz Code vs Zafran Security
Compared 24% of the time
Tenable Vulnerability Management vs Zafran Security Logo
Tenable Vulnerability Management vs Zafran Security
Compared 10% of the time
Vulcan Cyber vs Zafran Security Logo
Vulcan Cyber vs Zafran Security
Compared 10% of the time
Nucleus vs Zafran Security Logo
Nucleus vs Zafran Security
Compared 8% of the time
More Zafran Security Competitors
AlgoSec vs Skybox Security Suite Logo
AlgoSec vs Skybox Security Suite
Compared 25% of the time
Tufin Orchestration Suite vs Skybox Security Suite Logo
Tufin Orchestration Suite vs Skybox Security Suite
Compared 24% of the time
FireMon Security Manager vs Skybox Security Suite Logo
FireMon Security Manager vs Skybox Security Suite
Compared 14% of the time
Qualys VMDR vs Skybox Security Suite Logo
Qualys VMDR vs Skybox Security Suite
Compared 4% of the time
ManageEngine Firewall Analyzer vs Skybox Security Suite Logo
ManageEngine Firewall Analyzer vs Skybox Security Suite
Compared 3% of the time
More Skybox Security Suite Competitors
Microsoft Defender for Cloud vs Wiz Logo
Microsoft Defender for Cloud vs Wiz
Compared 8% of the time
Prisma Cloud by Palo Alto Networks vs Wiz Logo
Prisma Cloud by Palo Alto Networks vs Wiz
Compared 7% of the time
Orca Security vs Wiz Logo
Orca Security vs Wiz
Compared 6% of the time
Upwind vs Wiz Logo
Upwind vs Wiz
Compared 4% of the time
SentinelOne Singularity Cloud Security vs Wiz Logo
SentinelOne Singularity Cloud Security vs Wiz
Compared 3% of the time
More Wiz Competitors
 

Product Reports

Buyer's Guide
Zafran Security
January 2026
Zafran Security reportDownload Zafran Security product report
Buyer's Guide
Skybox Security Suite
January 2026
Skybox Security Suite reportDownload Skybox Security Suite product report
Buyer's Guide
Wiz
January 2026
Wiz reportDownload Wiz product report
 

Overview

Zafran Security integrates with existing security tools to identify and mitigate vulnerabilities effectively, proving that most critical vulnerabilities are not exploitable, optimizing threat management.

Zafran Security introduces an innovative operating model for managing security threats and vulnerabilities. By leveraging the threat exposure management platform, it pinpoints and prioritizes exploitable vulnerabilities, reducing risk through immediate remediation. This platform enhances your hybrid cloud security by normalizing vulnerability signals and integrating specific IT context data, such as CVE runtime presence and internet asset reachability, into its analysis. No longer reliant on patch windows, Zafran Security allows you to manage risks actively.

What are the key features of Zafran Security?

  • Threat Exposure Management: Utilizes existing tools to prioritize vulnerabilities and manage threats.
  • Integrative Analysis: Combines security data with IT context for precise vulnerability management.
  • Real-time Risk Reduction: Enables immediate risk management without waiting for patches.
  • Hybrid Cloud Compatibility: Functions across diverse cloud environments for comprehensive security.

What benefits can users expect from Zafran Security?

  • Improved Security: Enhances protection by efficiently identifying and mitigating risks.
  • Cost Efficiency: Reduces unnecessary patching expenses by confirming non-exploitable vulnerabilities.
  • Time Savings: Frees developers to focus on root causes by handling immediate threats.
  • Comprehensive Insight: Offers a holistic view of security threats and vulnerabilities.

In industries where security is paramount, such as finance and healthcare, Zafran Security provides invaluable protection by ensuring that only exploitable vulnerabilities are addressed. It allows entities to maintain robust security measures while allocating resources efficiently, fitting seamlessly into existing security strategies.

Zafran Security

Skybox Security Suite provides comprehensive tools for network and firewall compliance, vulnerability management, and change management, with a focus on risk reduction and network optimization.

Skybox Security Suite supports over 130 vendors with massive scalability and seamless integration, notably with Nessus and Qualys. Its features include network path analysis and offline attack simulation, which enhance management effectiveness. Despite its robust offering, improvements are needed in its UI, web interface, reporting detail, and customization. Automation, orchestration, and device policy provisioning require better support, and integration with tools like Rapid7 could be improved. Enhancements in firewall configuration checks, cloud connectivity, pricing, and marketing awareness are also called for, alongside a transition from Java GUI to a consistent web-based system.

What Are Key Features of Skybox Security Suite?
  • Network Assurance: Enhances visibility and optimization of network paths.
  • Firewall Assurance: Facilitates firewall rule set audits for compliance.
  • Vulnerability Management: Offers path detection and risk prioritization.
  • Compliance Management: Ensures adherence to standards like PCI.
  • Change Management: Simplifies management across extensive infrastructures.
What Benefits and ROI Can Users Expect?
  • Scalability: Supports numerous vendors and large-scale deployments.
  • Integration: Seamlessly connects with tools like Nessus and Qualys.
  • Risk Reduction: Improves security across network infrastructures.
  • Simplified Management: User-friendly interface and reporting tools enhance usability.
  • Network Optimization: Streamlines processes and improves performance.

Skybox Security Suite is commonly used in industries requiring strict compliance like finance and healthcare. Firms employ it for firewall audits, enhancing network visibility, and managing configurations against standards such as PCI, ensuring security and policy compliance across expansive networks.

Tufin

Wiz is a highly efficient solution for data security posture management (DSPM), with a 100% API-based approach that provides quick connectivity and comprehensive scans of platform configurations and workloads. The solution allows companies to automatically correlate sensitive data with relevant cloud context, such as public exposure, user identities, entitlements, and vulnerabilities.This integration enables them to understand data accessibility, configuration, usage, and movement within their internal environments.

Wiz's Security Graph delivers automated alerts whenever risks emerge, allowing teams to prioritize and address the most critical issues before they escalate into breaches. Furthermore, Wiz ensures rapid and agentless visibility into critical data across various repositories, enabling organizations to easily determine the location of their data assets.

Wiz Features

Wiz provides various features in the following categories:

  • Agentless Scanning: The solution can scan every layer of a cloud environment without requiring agents, managing the entire process and providing comprehensive visibility.

  • Workflow Integration: Users can create customized workflows within Wiz to identify and assign actions based on urgency, integrating them with ticketing systems for quick and efficient remediation.

  • Vulnerability Management: Wiz's vulnerability management modules provide detailed analytics and visibility across cloud systems, streamlining the manual process of vulnerability discovery. The automated attack path analysis helps identify risks and trace potential points of exposure, allowing users to understand and mitigate them effectively and proactively.

  • CSPM (Cloud Security Posture Management): Wiz's CSPM module offers instant visibility into high-level risks to an enterprise’s cloud environment, covering all accounts without the need for agents.

  • Out-of-the-Box Reporting and Custom Queries: The service supports comprehensive reporting with asset context, allowing users to perform complex custom queries on the solution’s user-friendly interface.

  • Automation Roles and Dashboards: The solution facilitates automation by providing essential roles and dedicated dashboards that enable teams to understand security information quickly, even those with limited expertise.

  • Contextual Risk Evaluation: The service contextualizes the various components contributing to an issue, providing a risk evaluation framework that helps prioritize remediation efforts.

  • Security Graph and Visibility: Wiz's security graph offers visibility across the entire organization, even with multiple accounts, enabling users to understand their environment and assets effectively.

The Benefits of Wiz

Wiz offers the following benefits:


  • Comprehensive agentless scanning

  • Effective identification and mitigation of vulnerabilities

  • Streamlined vulnerability management

  • Robust reporting capabilities and customizable queries

  • Enhanced automation and role-based access control

  • Prioritized risk evaluation for efficient remediation

  • Security posture across multiple accounts

Reviews from Real Users

Kamran Siddique, VP Information Security at boxed.com, remarks his company has seen a ROI while using Wiz, as it simplifies the process by integrating multiple useful tools into one solution.

According to a Senior Security Architect at Deliveroo, Wiz has given their company a fresh approach to vulnerability management, as Wiz's native integrations are extremely useful and paramount to the operational success of their platform.



Get a demo | Wiz

Wiz
 

Sample Customers

Information Not Available
ADP, Blue Cross Blue Shield, BT, USAID, Delta Dental, EDF Energy, EMC, HSBC, Johnson & Johnson
Wiz is the fastest growing software company ever - $100M ARR in 18 months: Wiz becomes the fastest-growing software company ever | Wiz Blog  Discover why companies, including Salesforce, Morgan Stanley, Fox, and Bridgewater choose Wiz as their cloud security partner. Read their success stories here: Customers | Wiz
Buyer's Guide
Skybox Security Suite vs. Wiz
December 2025
Free Report: Skybox Security Suite vs. Wiz
Find out what your peers are saying about Skybox Security Suite vs. Wiz and other solutions. Updated: December 2025.
DOWNLOAD NOW
881,114 professionals have used our research since 2012.
See our Skybox Security Suite vs. Wiz report.
See our list of best Vulnerability Management vendors.

We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.