I like Wiz's reporting, and it's easy to do queries. For example, it's pretty simple to find out how many servers we have and the applications installed on each. I like Wiz's security graph because you can use it to see the whole organization even if you have multiple accounts.
Senior Information Security Engineer at a financial services firm with 1,001-5,000 employees
Real User
Top 20
2023-03-15T20:04:00Z
Mar 15, 2023
The automation roles are essential because we ultimately want to do less work and automate more. The dashboards are easy to read and visually pleasing. You can understand things quickly, which makes it easy for our other teams. The network and infrastructure teams don't know as much about security as we do, so it helps to have a tool that's accessible and nice to look at.
Chief Information Security Officer (CISO) at a outsourcing company with 501-1,000 employees
Real User
Top 20
2023-02-23T23:36:00Z
Feb 23, 2023
The CSPM module has been the most effective. It was easy to deploy and covered all our accounts through APIs, requiring no agents. Wiz provides instant visibility into high-level risks that we need to address.
Director Information Security at a computer software company with 501-1,000 employees
Real User
Top 20
2022-12-22T21:05:00Z
Dec 22, 2022
The vulnerability management modules and the discovery and inventory are the most valuable features. Before using Wiz, it was a very manual process for both. After implementing it, we're able to get all of the analytics into a single platform that gives us visibility across all the systems in our cloud. We're able to correspond and understand what the vulnerability landscape looks like a lot faster.
CyberSecurity Sr Manager at a retailer with 10,001+ employees
Real User
Top 20
2022-12-01T21:56:00Z
Dec 1, 2022
Out of all the features, the one item that has been most valuable is the fact that Wiz puts into context all the pieces that create an issue, and applies a particular risk evaluation that helps us prioritize when we need to address a misconfiguration, vulnerability, or any issue that would put our environment into risk.
Hello Peers,
I am a Cybersecurity Sales Specialist at a medium-sized tech services company.
I'm curious if anyone could share the biggest differences between Wiz and Orca. Which vendor scales best? I am more looking at CNAPP as a whole.
Thank you for your help.
Wiz and Orca Security are both cloud-native application protection platforms (CNAPPs) that can help you secure your cloud workloads, but the tool that may be best for CNAPP would depend on your organization's needs.
Wiz may be a good choice for organizations seeking an easy-to-use and affordable CNAPP. Orca Security may be better for organizations looking for a more mature and comprehensive CNAPP.
Here are some differences between the two platforms:
Wiz
Pros:
Automated cloud security posture management (CSPM)
Automated cloud workload protection (CWPP)
Continuous cloud compliance monitoring
Easy to use and deploy
Affordable
Cons:
Not as mature as Orca Security
Limited support for some cloud providers
Orca Security
Pros:
More mature than Wiz
Supports a broader range of cloud providers
More comprehensive set of features
Cons:
More complex to use and deploy
More expensive than Wiz
As for which of the two scales best, Wiz is designed to scale to large organizations, but it may not be as scalable as Orca Security. Orca Security is designed to scale to very large organizations and can handle a large number of workloads.
If you are unsure which platform is right for you, contact a sales representative from each vendor.
CyberSecurity Sr Manager at a retailer with 10,001+ employees
Dec 1, 2022
Most of our use cases are within cloud security posture management, in which we identify misconfigurations and any type of what they call "toxic combinations" of risk and vulnerabilities that are affecting our cloud deployments.
Director Information Security at a computer software company with 501-1,000 employees
Dec 22, 2022
Our adoption has primarily been centered around understanding vulnerabilities in the environment and the configuration landscape in terms of creating hardening rules, policies, and other components like that. We're also able to see what the true risk landscape looks like by vulnerability tracking.
I like Wiz's reporting, and it's easy to do queries. For example, it's pretty simple to find out how many servers we have and the applications installed on each. I like Wiz's security graph because you can use it to see the whole organization even if you have multiple accounts.
The solution is very user-friendly.
The automation roles are essential because we ultimately want to do less work and automate more. The dashboards are easy to read and visually pleasing. You can understand things quickly, which makes it easy for our other teams. The network and infrastructure teams don't know as much about security as we do, so it helps to have a tool that's accessible and nice to look at.
The CSPM module has been the most effective. It was easy to deploy and covered all our accounts through APIs, requiring no agents. Wiz provides instant visibility into high-level risks that we need to address.
The vulnerability management modules and the discovery and inventory are the most valuable features. Before using Wiz, it was a very manual process for both. After implementing it, we're able to get all of the analytics into a single platform that gives us visibility across all the systems in our cloud. We're able to correspond and understand what the vulnerability landscape looks like a lot faster.
Out of all the features, the one item that has been most valuable is the fact that Wiz puts into context all the pieces that create an issue, and applies a particular risk evaluation that helps us prioritize when we need to address a misconfiguration, vulnerability, or any issue that would put our environment into risk.