Try our new research platform with insights from 80,000+ expert users

Vanta vs Wiz comparison

Vanta and Wiz are both solutions in the Compliance Management category. Vanta is ranked #5 with an average rating of 8.4, while Wiz is ranked #1 with an average rating of 8.9. Vanta holds a 19.4% mindshare in CM, compared to Wiz’s 25.0% mindshare. Additionally, 100% of Vanta users are willing to recommend the solution, compared to 100% of Wiz users who would recommend it.
Vanta
Read 6 Vanta reviews
  • 2,718 Views
  • 2,455 Comparison Views
100% willing to recommend
Wiz
Read 19 Wiz reviews
  • 4,457 Views
  • 3,175 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Vanta and Wiz based on real PeerSpot user reviews.

Find out in this report how the two Compliance Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Vanta vs. Wiz Report (Updated: September 2024).
Buyer's Guide
Vanta vs. Wiz
September 2024
Download the complete report
Helped 813,418 peers since 2012
 

Categories and Ranking

Vanta
Ranking in Compliance Management
5th
Average Rating
8.4
Number of Reviews
6
Ranking in other categories
Compliance Consulting (1st), Data Governance (11th)
Wiz
Ranking in Compliance Management
1st
Average Rating
9.0
Number of Reviews
19
Ranking in other categories
Vulnerability Management (4th), Container Security (2nd), Cloud Workload Protection Platforms (CWPP) (2nd), Cloud Security Posture Management (CSPM) (2nd), Cloud-Native Application Protection Platforms (CNAPP) (2nd), Data Security Posture Management (DSPM) (2nd)
 

Mindshare comparison

As of October 2024, in the Compliance Management category, the mindshare of Vanta is 19.4%, down from 22.2% compared to the previous year. The mindshare of Wiz is 25.0%, up from 21.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Compliance Management
 

Featured Reviews

Anupam Dutta - PeerSpot reviewer
Oct 25, 2023
Helps us maintain compliance with standards like SOC 2 and various data policies, but the customer support needs improvement
It helps us track the compliance of the components listed in our partner's directory. We can also check if the password manager, XML, and three log policies have been properly implemented on the desktop. We use JEM Cloud, which is a SaaS solution, and sometimes it experiences access issues. With Vanta, we can work on resolving these issues and ensuring policy compliance. Vanta also helps us maintain compliance with standards like SOC 2 and various data policies, which are essential for our documentation and communication requirements, ultimately ensuring enterprise software policy compliance. In my role, which primarily involves IT responsibilities, I often deal with various policies. There are instances where specific policies, especially those related to quality, may not be implemented correctly. This primarily occurs with mainframes and devices owned by particular users. In such cases, Vanta helps us enable these policies on the devices and assign them to the relevant users. It also highlights when certain policies, such as version 86.x, are not assigned through SAP. Vanta provides guidance on configuring and mitigating these issues. Additionally, it helps us with GitHub account provisioning and deprovisioning, as well as managing GitHub and Google Workspace Flex. We also use the 1Password password manager, which Vanta assists in overseeing.
Read full review
Mindaugas Dailidonis - PeerSpot reviewer
Sep 10, 2024
Advanced security insights and comprehensive risk visibility across multi-cloud environments
The time savings and the many moments of "if I was building a CNAPP, this is how I would do it" were where Wiz had already implemented what I wished for. Wiz also saves time by validating a network misconfiguration by not only looking at the cloud asset configuration but also by testing if a port that is stated to be open is actually open. The Wiz product team recognises that the world doesn't revolve around Cyber Security teams. This is evident in their emphasis on providing clear and simple remediation advice and offering explanations of the alerts, making it easy for non-security team members to understand what’s happening and why. This was one of the key criteria why Wiz has been selected over the competitors. My favourite is the EASM/External Exposure view and overall package - full risk visibility. It allows us to prioritize, and I mean truly prioritize, what should be addressed first. We can now see cloud workloads exposed to the internet in case of critical vulnerabilities, and if these workloads hold or can access sensitive data, we can act fast and patch these workloads first, and therefore reduce our overall risk exposure time. Another favourite feature is the ability to give feedback and quickly raise a support case, as well as the comment option for each finding in Wiz web portal. It enables simple, yet effective collaboration between security, cloud, infrastructure and development teams.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Task management and vendor assurance are the most valuable features. It is also an easy tool to use."
"It helps us track the compliance of the components listed in our partner's directory. We can also check if the password manager, XML, and three log policies have been properly implemented on the desktop."
"The most valuable feature of Vanta is its prebuilt control frameworks."
"They integrate into New Relic as a performance monitoring tool."
"The most valuable feature of Vanta would be the time savings from the automation and the continuous compliance monitoring once set up."
"The product has provided automated security controls for our cloud provider. It helps to automate security checks. Vanta offers a list of things that can be done to achieve ISO 27001 compliance."
"The most valuable feature of Wiz is that it keeps information up to date without needing to perform scans or schedule maintenance windows. It provides a fresh snapshot of our vulnerability metrics."
"With Wiz, we get timely alerts for leaked data or any vulnerabilities already existing in our environment."
"The product supports out-of-the-box reporting with context about the asset and allows us to perform complex custom queries on UI."
"The solution is very user-friendly."
"The CSPM module has been the most effective. It was easy to deploy and covered all our accounts through APIs, requiring no agents. Wiz provides instant visibility into high-level risks that we need to address."
"The vulnerability management modules and the discovery and inventory are the most valuable features. Before using Wiz, it was a very manual process for both. After implementing it, we're able to get all of the analytics into a single platform that gives us visibility across all the systems in our cloud. We're able to correspond and understand what the vulnerability landscape looks like a lot faster."
"The product's most valuable feature combines different contexts and attributes to produce highly confident alerts."
"The granularity of visibility that the platform provides is the most valuable aspect."
More Wiz pros
 

Cons

"Scalability could be improved."
"There is a delay with customer support and they are unsure of the answers we need."
"Some of the tool's automated tests do not work the way it should."
"They have an AI generator for the system description for SOC 2, however, the outline is a little sketchy."
"The main area for improvement in Vanta is the user interface's refresh rate."
"Currently, Vanta's user access review module is still in development, and we've been giving them continuous feedback to help them improve that."
"We would like to see improvements to executive-level reporting and data reporting in general, which we understand is being rolled out to the platform."
"In Brazil, the cost is a significant issue due to the currency exchange rate."
"The only thing that needs to be improved is the number of scans per day."
"The reporting isn't that great. They have executive summaries, but it's only a compliance report that maps all current issues to specific controls. Whether you look at one subscription or project, regardless of the size, you will get a multipage report on how the issues in that account map to that control. Our CSO isn't going to read through that. He won't filter that out or show that to his leadership and say, "Here's what we're doing." It isn't a helpful report. They're working on it, but it's a poor executive summary."
"The APIs are currently quite limited and not very mature, which makes integration with Splunk difficult."
"We're looking at some of the data compliance stuff that they've got Jon offer. I know they're looking at container security, which we gonna be looking at next."
"One significant issue is that the searches are case-sensitive, so finding a misconfigured resource can become very challenging."
"The only small pain point has been around some of the logging integrations. Some of the complexities of the script integrations aren't supported with some of the more automated infrastructure components. So, it's not as universal. For example, they have great support for cloud formation and other services, but if you're using another type of management utility or governance language for your infrastructure-as-code automation components, it becomes a little bit trickier to navigate that."
More Wiz cons
 

Pricing and Cost Advice

"Vanta is expensive."
"The pricing seems pretty simple. We don't have to do a lot of calculations to figure out what the components are. They do it by enabling specific features, either basics or advanced, which makes it easy to select."
"If one is cheap and ten is expensive, I rate the tool's price as a five out of ten."
"Regarding pricing, it’s more than $100k because we have a very big infrastructure. Our environment supports around three thousand people, and we offer business-to-client financial services to around one million clients, so we rely heavily on Wiz."
"The pricing is fair. Some of the more advanced features and functionalities and how the tiers are split can be somewhat confusing."
"Based on the features and capabilities, the product pricing seems reasonable."
"The cost of the other solutions is comparable to Wiz."
"Wiz is a moderately priced solution, where it is neither cheap nor costly."
"The pricing is fair and comparable to their competitors. The cost seems to be going up, which is a concern. There are potential savings from consolidating tools, but we're uncertain how Wiz's pricing will change over time."
More Wiz pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Compliance Management solutions are best for your needs.
See recommendations
813,418 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
21%
Financial Services Firm
9%
University
7%
Retailer
5%
Computer Software Company
15%
Financial Services Firm
15%
Manufacturing Company
9%
Government
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What do you like most about Vanta?
The most valuable feature of Vanta is its prebuilt control frameworks.
See all answers
What needs improvement with Vanta?
Scalability could be improved.
See all answers
What is your primary use case for Vanta?
We use the solution for automated security and compliance. Most of the time, it is about getting people to certifications.
See all answers
How would you compare Wiz vs Lacework?
Wiz and Lacework sucks... Buy Orca.
See all answers
What do you like most about Wiz?
With Wiz, we get timely alerts for leaked data or any vulnerabilities already existing in our environment.
See all answers
What is your experience regarding pricing and costs for Wiz?
The cost depends on workload, features, and modules, and it is not inexpensive. Other technologies, like Orca, a competitor, are also expensive.
See all answers
 

Comparisons

Drata vs Vanta Logo
Drata vs Vanta
Compared 45% of the time
Sprinto vs Vanta Logo
Sprinto vs Vanta
Compared 21% of the time
Thoropass vs Vanta Logo
Thoropass vs Vanta
Compared 10% of the time
Microsoft Purview Compliance Manager vs Vanta Logo
Microsoft Purview Compliance Manager vs Vanta
Compared 4% of the time
Microsoft Purview Data Governance vs Vanta Logo
Microsoft Purview Data Governance vs Vanta
Compared 4% of the time
More Vanta Competitors
Prisma Cloud by Palo Alto Networks vs Wiz Logo
Prisma Cloud by Palo Alto Networks vs Wiz
Compared 16% of the time
Orca Security vs Wiz Logo
Orca Security vs Wiz
Compared 10% of the time
Microsoft Defender for Cloud vs Wiz Logo
Microsoft Defender for Cloud vs Wiz
Compared 8% of the time
Snyk vs Wiz Logo
Snyk vs Wiz
Compared 5% of the time
CrowdStrike Falcon Cloud Security vs Wiz Logo
CrowdStrike Falcon Cloud Security vs Wiz
Compared 5% of the time
More Wiz Competitors
 

Product Reports

Buyer's Guide
Compliance Management
October 2024
Vanta reportDownload Vanta product report
Buyer's Guide
Wiz
September 2024
Wiz reportDownload Wiz product report
 

Learn More

Vanta
Wiz
 

Overview

Vanta helps companies scale security practices and automate compliance for the industry’s most sought after standards - SOC 2, ISO 27001, HIPAA, PCI DSS, GDPR, and CCPA.

Wiz is a highly efficient solution for data security posture management (DSPM), with a 100% API-based approach that provides quick connectivity and comprehensive scans of platform configurations and workloads. The solution allows companies to automatically correlate sensitive data with relevant cloud context, such as public exposure, user identities, entitlements, and vulnerabilities.This integration enables them to understand data accessibility, configuration, usage, and movement within their internal environments.

Wiz's Security Graph delivers automated alerts whenever risks emerge, allowing teams to prioritize and address the most critical issues before they escalate into breaches. Furthermore, Wiz ensures rapid and agentless visibility into critical data across various repositories, enabling organizations to easily determine the location of their data assets.

Wiz Features

Wiz provides various features in the following categories:

  • Agentless Scanning: The solution can scan every layer of a cloud environment without requiring agents, managing the entire process and providing comprehensive visibility.

  • Workflow Integration: Users can create customized workflows within Wiz to identify and assign actions based on urgency, integrating them with ticketing systems for quick and efficient remediation.

  • Vulnerability Management: Wiz's vulnerability management modules provide detailed analytics and visibility across cloud systems, streamlining the manual process of vulnerability discovery. The automated attack path analysis helps identify risks and trace potential points of exposure, allowing users to understand and mitigate them effectively and proactively.

  • CSPM (Cloud Security Posture Management): Wiz's CSPM module offers instant visibility into high-level risks to an enterprise’s cloud environment, covering all accounts without the need for agents.

  • Out-of-the-Box Reporting and Custom Queries: The service supports comprehensive reporting with asset context, allowing users to perform complex custom queries on the solution’s user-friendly interface.

  • Automation Roles and Dashboards: The solution facilitates automation by providing essential roles and dedicated dashboards that enable teams to understand security information quickly, even those with limited expertise.

  • Contextual Risk Evaluation: The service contextualizes the various components contributing to an issue, providing a risk evaluation framework that helps prioritize remediation efforts.

  • Security Graph and Visibility: Wiz's security graph offers visibility across the entire organization, even with multiple accounts, enabling users to understand their environment and assets effectively.

The Benefits of Wiz

Wiz offers the following benefits:


  • Comprehensive agentless scanning

  • Effective identification and mitigation of vulnerabilities

  • Streamlined vulnerability management

  • Robust reporting capabilities and customizable queries

  • Enhanced automation and role-based access control

  • Prioritized risk evaluation for efficient remediation

  • Security posture across multiple accounts

Reviews from Real Users

Kamran Siddique, VP Information Security at boxed.com, remarks his company has seen a ROI while using Wiz, as it simplifies the process by integrating multiple useful tools into one solution.

According to a Senior Security Architect at Deliveroo, Wiz has given their company a fresh approach to vulnerability management, as Wiz's native integrations are extremely useful and paramount to the operational success of their platform.



Get a demo | Wiz

 

Sample Customers

Care Directives, Shortcut , Nayya, Heizenrader, Treasury Prime
Wiz is the fastest growing software company ever - $100M ARR in 18 months: Wiz becomes the fastest-growing software company ever | Wiz Blog  Discover why companies, including Salesforce, Morgan Stanley, Fox, and Bridgewater choose Wiz as their cloud security partner. Read their success stories here: Customers | Wiz
Buyer's Guide
Vanta vs. Wiz
September 2024
Free Report: Vanta vs. Wiz
Find out what your peers are saying about Vanta vs. Wiz and other solutions. Updated: September 2024.
DOWNLOAD NOW
813,418 professionals have used our research since 2012.
See our Vanta vs. Wiz report.
See our list of best Compliance Management vendors.

We monitor all Compliance Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.