Sold by: WizÂ
Deployed on AWS
Free Trial
Vendor Insights
Wiz provides an entirely new approach to cloud security that for the first time identifies the actual risks hidden in your cloud infrastructure.
Overview
Wiz performs a deep assessment of your entire cloud and then correlates a vast number of security signals to trace the real infiltration vectors that attackers can use to break in. Wiz also gives you the tools to bring your DevOps and development teams into the process to fix these risks, creating a culture of security in your cloud operations that results in a stronger, more secure cloud. For more information visit: https://www.wiz.ioÂ
*Wiz provides custom pricing for customers via Private Offer. Please contact marketplace@wiz.io for a better understanding of our pricing model and products.
Highlights
- Covers every resource across your full cloud stack, multi-cloud environment using a 100% API approach that deploys in minutes.
- Models overlapping cloud policies, configurations, and compensating controls that interact in ways that are often unpredictable to calculate their end result.
- Maps all of the issues in your cloud together in a single graph database, revealing which of them combined pose the greatest risk.
Details
Sold by
Delivery method
Deployed on AWS
Features and programs
Trust Center
Access real-time vendor security and compliance information through their Trust Center powered by Drata. Review certifications and security standards before purchase.
Buyer guide
Gain valuable insights from real users who purchased this product, powered by PeerSpot.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Skip the manual risk assessment. Get verified and regularly updated security info on this product with Vendor Insights.
Security credentials achieved
(10)
SOC2
ISO27001
AWS Security Specialization
GDPR
PCIDSS
FedRAMP
FedRAMP
FedRAMP
HIPAA
FedRAMP
Pricing
Free trial
Try this product free according to the free trial terms set by the vendor.
Pricing is based on the duration and terms of your contract with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Description | Cost/12 months |
|---|---|---|
Wiz Essential | Protect 100 cloud workloads | $24,000.00 |
Wiz Advanced | Protect 100 cloud workloads | $38,000.00 |
Wiz Sensor | 100 Wiz Sensors. Add-on for Wiz Advanced | $28,000.00 |
Wiz Code | 100 Wiz Code Licenses. Add-on for Wiz Cloud | $58,500.00 |
Wiz Defend | Ingest 300 GBs of logs per month. Add-on for Wiz Advanced | $18,000.00 |
Vendor refund policy
Please contact us at info@wiz.ioÂ
Custom pricing options
Request a private offer to receive a custom quote.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA)Â .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Resources
Support
Vendor support
Wiz provides custom pricing for customers via Private Offer. Please contact marketplace@wiz.io for a better understanding of our pricing model and products. tel:+01-240.823.5670
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By Rapid7
By SentinelOne
Top
10
In Application Development, Continuous Integration and Continuous Delivery, Security
Top
10
In Vulnerability and Patch Management, Data Governance
Top
25
In Observability, Software Development
Sentiment is AI generated from actual customer reviews
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Cloud Infrastructure Scanning
"Performs comprehensive assessment across entire cloud infrastructure using 100% API-based approach with rapid deployment"
Risk Correlation Mechanism
"Correlates multiple security signals to trace potential infiltration vectors and identify complex attack paths"
Multi-Cloud Support
"Provides unified security coverage across diverse cloud environments and resource types"
Policy Interaction Modeling
"Analyzes overlapping cloud policies, configurations, and compensating controls to predict complex security interactions"
Graph-Based Visualization
"Generates comprehensive cloud security mapping using graph database to reveal interconnected security issues and risk relationships"
Vulnerability Management
Real-time vulnerability assessment and endpoint analytics with live risk visualization
Cloud Security Monitoring
Continuous security and compliance risk reduction across major cloud service providers
Threat Detection
Advanced detection and response capabilities with embedded threat intelligence and automated workflows
Application Security
Security integration throughout software development lifecycle with comprehensive application security testing
Web Threat Intelligence
Comprehensive monitoring of clear, deep, and dark web to identify and mitigate potential security threats
Cloud Security Posture Management
Agentless CNAPP with offensive security engine, including asset inventory, graph explorer, and comprehensive cloud security scanning
Cloud Workload Protection
Real-time AI-powered protection for servers, VMs, and containers across public and private cloud environments with runtime threat detection
Infrastructure Security Scanning
Comprehensive scanning capabilities including Infrastructure as Code (IaC), secrets scanning, and vulnerability assessment
Malware Detection
AI-powered malware detection for cloud object storage with zero-day threat identification and automated remediation actions
AI Model Security
Security protection for AI models and pipelines deployed on cloud AI services with advanced threat monitoring capabilities
Validated by AWS Marketplace
FedRAMP
GDPR
HIPAA
ISO/IEC 27001
PCI DSS
SOC 2 Type 2
No security profile
No security profile
Standard contract
No
No
No
Customer reviews
4
2 ratings
2 AWS reviews
|
714 external reviews
Star ratings include only reviews from verified AWS customers. External reviews can also include a star rating, but star ratings from external reviews are not averaged in with the AWS customer star ratings.
Samuel Egbaiyelo
Enables efficient management of vulnerabilities and project inventories
Reviewed on May 08, 2025
Review provided by PeerSpot
What is our primary use case?
We are using Wiz for many deployments in terms of vulnerability and also our Microsoft tenants, two different Microsoft tenants. We use it to manage our projects.
Wiz 's automated compliance checks are the reason for our use case. I am actually working on the GCCR audit, which is the reason I was looking at it. There are still some things I need clarity on in my own meeting this morning.
Wiz 's automated compliance checks are the reason for our use case. I am actually working on the GCCR audit, which is the reason I was looking at it. There are still some things I need clarity on in my own meeting this morning.
What is most valuable?
I might not be able to give substantial information as I do not use the most valuable features of Wiz day-to-day in full capacity. I can check managing each of my projects and check vulnerabilities across each of those projects across each of the tenants. It allows you to manage your inventories that you have in different subscriptions or different tenants on your technology. Then you can configure different kinds of policies that you use around each of those.
What needs improvement?
I have not used Wiz in full capacity, so I cannot provide detailed improvement suggestions. I just started fully going through each feature to have a basic, comprehensive understanding of the product itself.
I cannot recommend Wiz to others until I have a clear understanding of its full capacity and benefits. In my organization, we have Rapid7, which is a vulnerability management tool, we have Wiz, and we have Microsoft Defender. I need to understand the reason for that decision in the first place to be able to look at the benefit to my organization.
I cannot recommend Wiz to others until I have a clear understanding of its full capacity and benefits. In my organization, we have Rapid7, which is a vulnerability management tool, we have Wiz, and we have Microsoft Defender. I need to understand the reason for that decision in the first place to be able to look at the benefit to my organization.
For how long have I used the solution?
I started with Wiz some months ago.
What was my experience with deployment of the solution?
I do not know how long it took for us to actually deploy Wiz, as I was not within the corporation when it was deployed.
What do I think about the stability of the solution?
So far, I would say Wiz is stable to the best of my knowledge.
What do I think about the scalability of the solution?
My thoughts on the scalability of Wiz so far is that it is scalable for me and good for us.
On a scale of one to ten, I would rate the scalability of Wiz as nine.
On a scale of one to ten, I would rate the scalability of Wiz as nine.
How are customer service and support?
I rate Wiz's customer service as ten out of ten.
How would you rate customer service and support?
Positive
How was the initial setup?
I find the initial setup of Wiz straightforward in my opinion.
On a scale of one to ten, I would rate how easy it is to set up Wiz as nine, if ten is the easiest.
On a scale of one to ten, I would rate how easy it is to set up Wiz as nine, if ten is the easiest.
What about the implementation team?
I do not know how many people it took to deploy Wiz. However, it is always the vendor and probably my director that was in the position which I was before.
What was our ROI?
I do not know if Wiz has impacted our operational costs related to cloud security or any kind of return on investment or operational impact that it has for us.
Which other solutions did I evaluate?
I do not really know the main differences between Wiz and other vulnerability management solutions such as Defender, but they perform similar functions.
When comparing Wiz to Defender, I think they do almost the same thing. The only difference is that Defender will give you RISK call. However, Wiz can give you a risk call against your investment because it is not a Microsoft solution.
When comparing Wiz to Defender, I think they do almost the same thing. The only difference is that Defender will give you RISK call. However, Wiz can give you a risk call against your investment because it is not a Microsoft solution.
What other advice do I have?
I work in accounting with Wiz in a large enterprise business.
Wiz does not require a lot of maintenance on our side. It is just ease of use. Wiz maintains most of it.
I have not used Wiz's AI capabilities to enhance our security threat detection as I just started looking at it. I have not really done much with that so far.
Overall, I would rate Wiz as good. I get everything I want, just the same way it is for every other solution, so I am going to rate it nine out of ten.
I rate Wiz a nine out of ten instead of a ten until I use the solution based on use cases and exploitation of the product, and what it gives me. If I am able to do that in full capacity, then I will give it ten. This is just based on what I still see so far. Until I get to see the benefits and everything, then my rating might be different in two weeks' time. At this moment, this is how it is.
RISC call is what I mean by that, RISC (R I S K).
Wiz does not require a lot of maintenance on our side. It is just ease of use. Wiz maintains most of it.
I have not used Wiz's AI capabilities to enhance our security threat detection as I just started looking at it. I have not really done much with that so far.
Overall, I would rate Wiz as good. I get everything I want, just the same way it is for every other solution, so I am going to rate it nine out of ten.
I rate Wiz a nine out of ten instead of a ten until I use the solution based on use cases and exploitation of the product, and what it gives me. If I am able to do that in full capacity, then I will give it ten. This is just based on what I still see so far. Until I get to see the benefits and everything, then my rating might be different in two weeks' time. At this moment, this is how it is.
RISC call is what I mean by that, RISC (R I S K).
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Kevin W.
Wiz's Product Expansion And Its Impact On Cloud Security
Reviewed on May 05, 2025
Review provided by G2
What do you like best about the product?
1- The way Wiz proactively gives us threat info, especially those alerts that come with ready-to-use searches to see if we're affected, has been super helpful for finding and fixing important weaknesses fast. It's now just part of what our security team does every day.
2- The querying in Wiz, based on KQL, is seriously strong and flexible. Being able to create our own specific searches means our team can really dig deep and spot anomalies in our environment that we wouldn't be able to do otherwise.
3- It's cool to see Wiz moving into other areas like Wiz Code and Defend. It shows they're not standing still and could become a central place for all our cloud security tools, which would be awesome.
2- The querying in Wiz, based on KQL, is seriously strong and flexible. Being able to create our own specific searches means our team can really dig deep and spot anomalies in our environment that we wouldn't be able to do otherwise.
3- It's cool to see Wiz moving into other areas like Wiz Code and Defend. It shows they're not standing still and could become a central place for all our cloud security tools, which would be awesome.
What do you dislike about the product?
1 - Even though it's mostly comprehensive, the support for Google Cloud isn't quite as good as it is for AWS in some specific things, like how it handles tags and finds leftover domain names. It also feels like when we ask for GCP improvements, they don't always get get the attention they deserve.
2 - Most of the support folks we've dealt with have been fantastic, even helping us with things beyond what we originally asked. But with how fast Wiz is growing, we've noticed a slight dip in how quickly they get back to us sometimes, and the quality of the answers a be a bit hit or miss now and then.
2 - Most of the support folks we've dealt with have been fantastic, even helping us with things beyond what we originally asked. But with how fast Wiz is growing, we've noticed a slight dip in how quickly they get back to us sometimes, and the quality of the answers a be a bit hit or miss now and then.
What problems is the product solving and how is that benefiting you?
Wiz enhances our security posture by providing a valuable complement to our existing tools. Its risk-based approach is particularly beneficial, allowing us to prioritize and address the most critical issues within our cloud environment. Furthermore, we leverage Wiz to streamline our regulatory reporting obligations. The seamless integration with Jira has significantly simplified our workflows, and its connectivity with our XDR and SIEM platforms enables efficient threat identification and triage by our security operations team
Anshu Kumari
Identifying vulnerabilities efficiently and providing remediation options
Reviewed on Apr 29, 2025
Review provided by PeerSpot
What is our primary use case?
We are primarily using Wiz for vulnerability scanning on our servers. If there is a vulnerability, we work on remediating it.
What is most valuable?
A valuable feature is that Wiz helps in identifying vulnerabilities. We can get information like remediation suggestions and links to understand vulnerabilities better. Additionally, we can download reports for all servers at the same time, which saves us the need to check each server individually.
What needs improvement?
In Wiz, if there is one vulnerability that occurs multiple times, it is listed only once. However, even if it is a single vulnerability in the same category, it repeats multiple times. This feature can be time-consuming as it requires continuous scrolling.
For how long have I used the solution?
I have been using Wiz for one year.
How are customer service and support?
Our team manager and the director have communicated with the vendor for support.
How would you rate customer service and support?
Neutral
What about the implementation team?
There is another team responsible for the deployment part, so I did not work on that.
Which other solutions did I evaluate?
We also use Qualys.
What other advice do I have?
We use both cloud and on-premises versions. I mainly work on the cloud side but we use on-premises as well. I would rate the overall solution an eight out of ten.
Which deployment model are you using for this solution?
Hybrid Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Other
Stavros M.
Empowering Cloud Security and Risk Management
Reviewed on Apr 11, 2025
Review provided by G2
What do you like best about the product?
Wiz provides the visibility that a modern cloud-based company needs when it comes to prioritizing what really matters, maximizing the risk reduction, and the overall strength of security for the organization.
What do you dislike about the product?
The dashboard reporting could be improved. Currently, it lacks the ability to report on multiple projects in a single view, which would enhance its utility for managing complex environments.
What problems is the product solving and how is that benefiting you?
Wiz is assisting me in prioritizing critical aspects, enabling enhanced risk and vulnerability management, streamlined remediation operations, and improved resource allocation.
Kishor A.
Wiz- The Wizard! It’s wonderul
Reviewed on Mar 14, 2025
Review provided by G2
What do you like best about the product?
Wiz connects to your cloud environment and gives you complete visibility and actionable context on your most critical misconfigurations in real-time, so your teams can proactively and continuously improve your cloud security posture.
The best part about Wiz is that is provides recommendations which can be applied to address the threat
The best part about Wiz is that is provides recommendations which can be applied to address the threat
What do you dislike about the product?
When I launch Wiz , I can view threats from all the projects . In our organisation we have more than 100 subscripts so it’s cumbersome to filter. Suggest Wiz to build a capability to only display threats related to the project which I am interested in. Like SNYk
What problems is the product solving and how is that benefiting you?
Wiz identifies vulnerabilities, misconfigurations in cloud environment (all Azure resource) also scanning code to find out the risk