Wiz Reviews

Vendor: Wiz

4.5 out of 5

21 reviews
100% willing to recommend

275 followers

What is Wiz?

Wiz is a highly efficient solution for data security posture management (DSPM), with a 100% API-based approach that provides quick connectivity and comprehensive scans of platform configurations and workloads. The solution allows companies to automatically correlate sensitive data with relevant cloud context, such as public exposure, user identities, entitlements, and vulnerabilities.This integration enables them to understand data accessibility, configuration, usage, and movement within their internal environments.

Get the Wiz Buyer's Guide and find out what your peers are saying about Wiz, Microsoft Defender for Cloud, Prisma Cloud by Palo Alto Networks and more!

Wiz is the #1 ranked solution in top Vulnerability Management solutions, #1 ranked solution in Cloud Workload Protection Platforms, #1 ranked solution in top Cloud Security Posture Management (CSPM) solutions, #1 ranked solution in top Compliance Management solutions, #1 ranked solution in top Cloud Detection and Response (CDR) solutions, #2 ranked solution in Container Security Solutions, #2 ranked solution in top Cloud-Native Application Protection Platforms (CNAPP) solutions, and #2 ranked solution in top Data Security Posture Management (DSPM) solutions. PeerSpot users give Wiz an average rating of 9.0 out of 10. Wiz is most commonly compared to Microsoft Defender for Cloud: Wiz vs Microsoft Defender for Cloud. Wiz is popular among the large enterprise segment, accounting for 65% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a computer software company, accounting for 15% of all views.

Helped 849,686 peers since 2012

Featured Wiz reviews

Pietro Villivà

Business Line Manager at S2E

The tool keeps improving on a weekly basis. Wiz enters into a lot of partnerships with other technologies. I don't have any idea about the improvements needed in the tool at the moment. For me, Wiz is a very complete product, but it is not the perfect one. Other technologies are better for our customers' specific use cases. A possible way to grow the tool is by introducing new functionality or features. In the future, the tool can introduce an on-prem infrastructure or platform. Not having an on-prem version can be an obstacle for customers who have a large workload in an on-prem environment. The onboarding can be done in five minutes or five to ten minutes. Then, there is the configuration, and it depends on the type of the use case of the customer. There is a customer that has simple use cases for whom the onboarding can be done in four to eight hours a day. If there are some customers with a lot of use cases and a lot of different cloud providers, more time is needed. In general, we don't need more than five days to deploy the tool, even in the case of a very complex architecture and hybrid cloud environment. To deploy the tool, we need to have access to the account of the customer, and Wiz is a stuff that we need to make with the customer. We do the onboarding together. The customer creates the correct authorization in the cloud platform and gives us the key to connect to the platform, and then the platform connector starts and begins to collect information.

Read full review

Mindaugas Dailidonis

Security Solutions Architect - Cloud Security Consultant at a consultancy with 10,001+ employees

The time savings and the many moments of "if I was building a CNAPP, this is how I would do it" were where Wiz had already implemented what I wished for. Wiz also saves time by validating a network misconfiguration by not only looking at the cloud asset configuration but also by testing if a port that is stated to be open is actually open. The Wiz product team recognises that the world doesn't revolve around Cyber Security teams. This is evident in their emphasis on providing clear and simple remediation advice and offering explanations of the alerts, making it easy for non-security team members to understand what’s happening and why. This was one of the key criteria why Wiz has been selected over the competitors. My favourite is the EASM/External Exposure view and overall package - full risk visibility. It allows us to prioritize, and I mean truly prioritize, what should be addressed first. We can now see cloud workloads exposed to the internet in case of critical vulnerabilities, and if these workloads hold or can access sensitive data, we can act fast and patch these workloads first, and therefore reduce our overall risk exposure time. Another favourite feature is the ability to give feedback and quickly raise a support case, as well as the comment option for each finding in Wiz web portal. It enables simple, yet effective collaboration between security, cloud, infrastructure and development teams.

Read full review

reviewer2129682

Senior Information Security Engineer at a financial services firm with 1,001-5,000 employees

The reporting isn't that great. They have executive summaries, but it's only a compliance report that maps all current issues to specific controls. Whether you look at one subscription or project, regardless of the size, you will get a multipage report on how the issues in that account map to that control. Our CSO isn't going to read through that. He won't filter that out or show that to his leadership and say, "Here's what we're doing." It isn't a helpful report. They're working on it, but it's a poor executive summary. All the other reports look great when you try to create them. I can pull a report of issues for a specific project, but it's a CSV file with findings, which isn't helpful. I expect a slick visual summary that looks like what they have on the dashboard. They spend a lot of time making the dashboard easy to understand, but you can't get that information into a report for our executive leadership. We want to show them the trends and what we're doing. It's critical for our team to demonstrate the tool's value. At the end of the year, we have to go to a meeting and show management the progress we made this year. I can only do that by going into open issues, putting them all in notepad, and taking a couple of screenshots. I would also like the dashboards to be customizable. They have excellent dashboards, but you can't create or customize them. At the same time, Wiz seems open to that feedback, and I think they're relatively new. They're growing fast and implementing new features quickly, so I hope this will be added soon. A third issue is that we can't provide email notifications on connector status. Everything comes into Wiz through a connector. Our AWS environment is added as a connector, and there's no way to notify anyone if an issue is detected. We could wake up the next morning and not have any data from our AWS cloud environment because there was an issue with the connector, but no one would've known about it. I think that's something that needs to be fixed. Wiz has room for improvement in terms of risk assessment. It has a severity meter with five levels: critical, high, medium, low, or informational. If I click on the highs, it sorts the issues by the control with the most total issues. They're all high, but it doesn't prioritize based on anything other than the number of issues that are impacted by that control. It's not a priority. It tells you you'll get the most bang for your buck if you fix this one. There's no risk score or anything like that. For example, if a public-facing device has a significant vulnerability, it will consider that business context and label it "critical," but that's all it does. All the severity levels have the same weight. Wiz prioritizes well in terms of sorting the issues into broad categories. However, it doesn't prioritize those. I'm looking at all the highs right now, and I don't know if one of these is more impactful to fix than the other. It helps to have an overview showing that 103 resources will be impacted if we fix this control. We can fix the control at the global level, put guardrails around it, and prevent the issue from happening in the future. You can start thinking that way, but it doesn't tell you this is more severe than other issues in the same severity category.

Read full review

Wiz mindshare

Product category:

As of May 2025, the mindshare of Wiz in the Cloud-Native Application Protection Platforms (CNAPP) category stands at 26.0%, up from 23.2% compared to the previous year, according to calculations based on PeerSpot user engagement data.

Cloud-Native Application Protection Platforms (CNAPP)

PeerResearch reports based on Wiz reviews

Type	Title	Date
Category	Cloud-Native Application Protection Platforms (CNAPP)	Apr 30, 2025	Download
Product	Reviews, tips, and advice from real users	Apr 30, 2025	Download
Comparison	Wiz vs Prisma Cloud by Palo Alto Networks	Apr 30, 2025	Download
Comparison	Wiz vs SentinelOne Singularity Cloud Security	Apr 30, 2025	Download
Comparison	Wiz vs Microsoft Defender for Cloud	Apr 30, 2025	Download

Title	Rating	Mindshare	Recommending
Microsoft Defender for Cloud	4.0	11.1%	94%	76 interviews Add to research
Prisma Cloud by Palo Alto Networks	4.2	16.8%	98%	110 interviews Add to research

Valuable Features

Wiz's most valuable features include its ability to contextualize vulnerabilities, prioritize risk, and provide comprehensive visibility. The Security Graph, CSPM, and agentless scanning are highly praised. Users appreciate its ease of use, quick installation, and the granular view it provides of risks and threats within systems. The platform's integration capabilities and intuitive dashboards also stand out, enhancing operational efficiency and collaboration across teams, reducing false positives, and aiding effective vulnerability management.

"A valuable feature is that Wiz helps in identifying vulnerabilities."
"Wiz is a very powerful product technologically."
"The granularity of visibility that the platform provides is the most valuable aspect."

Room for Improvement

Wiz requires enhancements in reporting, making dashboards customizable, and improving API integration. Improvements in managing vulnerabilities, integrating logging, refining risk assessment, and executive reporting are needed. The implementation of alert profiles for threat indications is suggested. Security functionalities for Kubernetes require expansion. Email notifications for connector issues would be beneficial. Enhancing container security and internal network visibility is important. Managing multi-platform tenants and improving scanning frequency are also areas to consider. Wiz isn’t cost-effective for some users.

"In Wiz, if there is one vulnerability that occurs multiple times, it is listed only once. However, even if it is a single vulnerability in the same category, it repeats multiple times. This feature can be time-consuming as it requires continuous scrolling."
"We are still analyzing its behavior as we are in the midst of the implementation."
"In Brazil, the cost is a significant issue due to the currency exchange rate."

ROI

Many express satisfaction with Wiz's return on investment, highlighting asset management, vulnerability identification, and real-time analysis as major benefits. It consolidates multiple tools, which reduces costs by 35-50%. Adoption is ongoing, but value is evident in simplifying compliance and improving security posture. Operational impact is notable with fewer resources needed for tasks like malware detection. Despite challenges with high costs in Brazil, users recognize significant financial and operational advantages.

Pricing

Enterprise buyers found Wiz's pricing model generally fair and comparable to competitors, though some advanced features can be costly and confusing. Initial deals for early adopters were favorable, but future pricing changes raise concerns. Some users highlight Wiz as expensive compared to competitors like Lacework. While pricing is based on resources and features, transparency and clarity need improvement. Credits are available for selecting specific features, and users appreciate the agentless model for efficient onboarding.

"If one is cheap and ten is expensive, I rate the tool's price as a five out of ten."
"Based on the features and capabilities, the product pricing seems reasonable."
"Regarding pricing, it’s more than $100k because we have a very big infrastructure. Our environment supports around three thousand people, and we offer business-to-client financial services to around one million clients, so we rely heavily on Wiz."

Popular Use Cases

Wiz is widely employed for cloud security posture management, identifying vulnerabilities, misconfigurations, and risk combinations in various cloud environments like AWS, Azure, and GCP. Users benefit from agentless deployment, visibility into security issues, resource tracking, and comprehensive vulnerability data collection. Many integrate Wiz with existing tools like ServiceNow, Azure DevOps, and Jira to automate issue tracking. The platform aids in monitoring cluster security and easing compliance, facilitating cross-functional team access to security findings.

Service and Support

Wiz customer service and support are highly rated, with users praising accessibility to account representatives and quick technical assistance. They transitioned from a chat app to Zendesk, improving the experience. Having Slack channels with account teams enhances support. While initial response times are fast, users note varying resolution times. Users recommend more public documentation access. Century Data's engineering team provides local support in Brazil. Overall, users find communication and support excellent.

Deployment

Users describe Wiz's initial setup as straightforward and seamless. It integrates across multiple public clouds with minimal effort, often completed within hours or a few weeks for complex deployments. Many found significant value early on, with easy visibility into cloud assets and issues. It requires little to no maintenance, and technical support is praised for its effectiveness. The deployment often involves minimal personnel, and automation is well-supported for tasks like scanning and compliance.

Scalability

Wiz scales effortlessly, with users noting its seamless integration in cloud environments and ability to handle substantial demand. Many rate its scalability highly, recognizing that it supports diverse organizational needs. Some mention potential challenges in cost management but emphasize its success in adapting to expanding infrastructures. Though there may be a few challenges in remediation workflows, users find its cloud-based structure advantageous, minimizing concerns about back-end management. It suits both small and large enterprises.

Stability

Wiz exhibits high stability, receiving consistent praise for its reliable performance. Users have noted previous minor issues, such as timeouts and login challenges, but highlighted quick resolutions. No recent downtime has been observed, and slow loading has ceased. Downtime mainly results from scheduled maintenance, with pre-notification provided. Users consistently rate stability highly, often around eight to ten. Minor discrepancies due to new policies were swiftly addressed, ensuring seamless functionality during ongoing implementation assessments. Stability is a standout feature of Wiz.

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our Wiz Buyer's Guide for additional reliable information.

Review data by company size

By reviewers

By visitors reading reviews

Top industries

By visitors reading reviews

Financial Services Firm

15%

Computer Software Company

15%

Manufacturing Company

10%

Healthcare Company

Government

Insurance Company

Retailer

University

Educational Organization

Media Company

Comms Service Provider

Energy/Utilities Company

Real Estate/Law Firm

Non Profit

Construction Company

Legal Firm

Transportation Company

Wholesaler/Distributor

Outsourcing Company

Hospitality Company

Recreational Facilities/Services Company

Performing Arts

Consumer Goods Company

Pharma/Biotech Company

Logistics Company

Compare Wiz with alternative products

Learn more about Wiz

Wiz's Security Graph delivers automated alerts whenever risks emerge, allowing teams to prioritize and address the most critical issues before they escalate into breaches. Furthermore, Wiz ensures rapid and agentless visibility into critical data across various repositories, enabling organizations to easily determine the location of their data assets.

Wiz Features

Wiz provides various features in the following categories:

Agentless Scanning: The solution can scan every layer of a cloud environment without requiring agents, managing the entire process and providing comprehensive visibility.
Workflow Integration: Users can create customized workflows within Wiz to identify and assign actions based on urgency, integrating them with ticketing systems for quick and efficient remediation.
Vulnerability Management: Wiz's vulnerability management modules provide detailed analytics and visibility across cloud systems, streamlining the manual process of vulnerability discovery. The automated attack path analysis helps identify risks and trace potential points of exposure, allowing users to understand and mitigate them effectively and proactively.
CSPM (Cloud Security Posture Management): Wiz's CSPM module offers instant visibility into high-level risks to an enterprise’s cloud environment, covering all accounts without the need for agents.
Out-of-the-Box Reporting and Custom Queries: The service supports comprehensive reporting with asset context, allowing users to perform complex custom queries on the solution’s user-friendly interface.
Automation Roles and Dashboards: The solution facilitates automation by providing essential roles and dedicated dashboards that enable teams to understand security information quickly, even those with limited expertise.
Contextual Risk Evaluation: The service contextualizes the various components contributing to an issue, providing a risk evaluation framework that helps prioritize remediation efforts.
Security Graph and Visibility: Wiz's security graph offers visibility across the entire organization, even with multiple accounts, enabling users to understand their environment and assets effectively.

The Benefits of Wiz

Wiz offers the following benefits:

Comprehensive agentless scanning
Effective identification and mitigation of vulnerabilities
Streamlined vulnerability management
Robust reporting capabilities and customizable queries
Enhanced automation and role-based access control
Prioritized risk evaluation for efficient remediation
Security posture across multiple accounts

Reviews from Real Users

Kamran Siddique, VP Information Security at boxed.com, remarks his company has seen a ROI while using Wiz, as it simplifies the process by integrating multiple useful tools into one solution.

According to a Senior Security Architect at Deliveroo, Wiz has given their company a fresh approach to vulnerability management, as Wiz's native integrations are extremely useful and paramount to the operational success of their platform.

Get a demo | Wiz

Wiz customers

Wiz is the fastest growing software company ever - $100M ARR in 18 months: Wiz becomes the fastest-growing software company ever | Wiz Blog

Discover why companies, including Salesforce, Morgan Stanley, Fox, and Bridgewater choose Wiz as their cloud security partner. Read their success stories here: Customers | Wiz