Listing Thumbnail

    Wiz MCP Server

     Info
    Sold by: Wiz 
    Deployed on AWS
    The Wiz Model Context Protocol (MCP) Server acts as an MCP-compatible service that translates plain-language queries into Wiz-specific operations, like querying resources, or assessing risks.
    4.7

    Overview

    The Wiz Model Context Protocol (MCP) Server elevates the impact of Wiz's security offerings by providing a unified security data source, enhanced cloud visibility, and contextual intelligence. The MCP Server connects multiple security data sources through a central host and server setup, creating a single, contextual view of the security posture to simplify investigations and accelerate incident response and remediation. It offers instant access to cloud inventory, configurations, and security issues via a single host with a simple prompt. By enriching security investigations with precise business context, the MCP Server allows security teams to prioritize responses based on relevance, drastically improving the accuracy and effectiveness of threat mitigation. The Wiz MCP Server enhances Wiz Code by translating plain-language queries into powerful workflows, streamlining everything from issue discovery to pull request creation. Integrated with Wiz Defend, the MCP Server helps security teams identify and contain active threats faster with AI generated insights and action paths.

    Highlights

    • Unified security data source for cloud security posture.
    • Completed visibility into cloud inventory, configurations, and security issues
    • Contextual intelligence that enriches security investigations with context, enabling security teams to prioritize responses to critical threats.

    Details

    Sold by

    Delivery method

    Type

    Supported services

    Delivery option
    v0.1.1s

    Latest version

    Operating system
    Linux

    Deployed on AWS
    New

    Introducing multi-product solutions

    You can now purchase comprehensive solutions tailored to use cases and industries.

    Multi-product solutions

    Features and programs

    Trust Center

    Trust Center
    Access real-time vendor security and compliance information through their Trust Center powered by Drata or Vanta. Review certifications and security standards before purchase.

    Financing for AWS Marketplace purchases

    AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
    Financing for AWS Marketplace purchases

    Pricing

    Wiz MCP Server

     Info
    This product is available free of charge. Free subscriptions have no end date and may be canceled any time.
    Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator  to estimate your infrastructure costs.

    Vendor refund policy

    n/a

    How can we make this page better?

    Tell us how we can improve this page, or report an issue with this product.
    Tell us how we can improve this page, or report an issue with this product.

    Legal

    Vendor terms and conditions

    Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .

    Content disclaimer

    Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.

    Usage information

     Info

    Delivery details

    v0.1.1s

    Supported services: Learn more 
    • Amazon Bedrock AgentCore
    Container image

    Containers are lightweight, portable execution environments that wrap server application software in a filesystem that includes everything it needs to run. Container applications run on supported container runtimes and orchestration services, such as Amazon Elastic Container Service (Amazon ECS) or Amazon Elastic Kubernetes Service (Amazon EKS). Both eliminate the need for you to install and operate your own container orchestration software by managing and scheduling containers on a scalable cluster of virtual machines.

    Version release notes

    We are excited to share that the Wiz Model Context Protocol (MCP) Server is now available in the new AWS Marketplace AI Agents and Tools category.

    The Wiz Model Context Protocol (MCP) Server is an innovative implementation that enables any MCP-compatible, LLM-powered application to interact with Wiz using plain language. It unifies diverse security data sources into a single, contextual view of your cloud security posture. This empowers teams to gain instant access to cloud inventory, configurations, and security issues, facilitating real-time cloud investigations, blast radius assessments, and AI-driven remediation actions through natural language prompts.

    Additional details

    Usage instructions

    To allow the Wiz Model Context Protocol (MCP) Server to access your Wiz tenant, you need to configure specific environment variables.

    Steps to Configure Wiz MCP Integration:

    Navigate to Integrations in Wiz:

    1. In the Wiz console, go to the Connect to Wiz > Integrations page. 2. Under the "Security Data Management" section, choose Wiz MCP. 3. On the "New Wiz MCP Integration" page: Enter a Display Name. Keep the default API scopes (Recommended). Click Add Integration. 4. After creation, copy the generated Client ID and Client Secret. These are crucial for authentication.

    Set Environment Variables:

    1. Using AWS CLI:

    Add the Client ID and Client Secret using the --environment-variables flag in your deployment command.

    --environment-variables '{ "WIZ_CLIENT_ID":"your_client_id", "WIZ_CLIENT_SECRET":"your_client_secret" }'

    2. Using GUI for Host Agent Deployment:

    If you are deploying via AWS Console GUI, 1) Click "Use on Amazon Bedrock AgentCore" 2) Click "Host Agent" add these variables under the "Advanced configurations" section.

    For more detailed instructions and customer-specific access, please refer to the official documentation at https://docs.wiz.io/docs/set-up-wiz-mcp-server  (Wiz customer access only).

    AWS command line examples:

    1. Create an agent/MCP server This command creates a new agent runtime for the Wiz MCP server. Ensure you replace placeholders like 'your AmazonBedrockAgentCoreRuntimeDefaultServiceRole arn', '{your wiz client id}', and '{your wiz client secret}' with your actual values.

    aws bedrock-agentcore-control create-agent-runtime --region us-east-1
    --agent-runtime-name "wiz-mcp-server-stateless"
    --description "Wiz MCP server"
    --agent-runtime-artifact '{ "containerConfiguration": { "containerUri": "709825985650.dkr.ecr.us-east-1.amazonaws.com/wiz/wiz-mcp:v0.1.1-stateless" } }'
    --role-arn "your AmazonBedrockAgentCoreRuntimeDefaultServiceRole arn"
    --network-configuration '{ "networkMode": "PUBLIC" }'
    --protocol-configuration '{ "serverProtocol": "MCP" }'
    --environment-variables '{ "WIZ_CLIENT_ID": "{your wiz client id}", "WIZ_CLIENT_SECRET": "{your wiz client secret}", "Wiz_MCP_TRANSPORT": "http", "Wiz_MCP_PORT": "8000", "Wiz_MCP_HOST": "0.0.0.0" }'

    1. List Agent Runtime Use this command to retrieve details about the created agent runtime. Replace '{your agentRuntimeId in the output of create command}' with the actual ID from the previous step.

    aws bedrock-agentcore-control get-agent-runtime
    --agent-runtime-id {your agentRuntimeId in the output of create command}
    --region us-east-1

    1. List Agent Runtime Endpoints This command lists the endpoints associated with your agent runtime. Replace '{your agentRuntimeId in the output of create command}' with the actual ID.

    aws bedrock-agentcore-control list-agent-runtime-endpoints
    --agent-runtime-id {your agentRuntimeId in the output of create command}
    --region us-east-1

    1. Invoke Agent Runtime This command invokes the agent runtime to perform an action, e.g., listing tools. Replace '{your agentRuntimeArn in the output of create command}' with the actual ARN.

    PAYLOAD_JSON='{"jsonrpc": "2.0", "id": 1, "method": "tools/list", "params": { "_meta": { "progressToken": 1}}}' PAYLOAD_BASE64=$(echo -n "$PAYLOAD_JSON" | base64) AGENT_ARN={your agentRuntimeArn in the output of create command}

    aws bedrock-agentcore invoke-agent-runtime
    --agent-runtime-arn "${AGENT_ARN}"
    --payload="${PAYLOAD_BASE64}"
    --content-type "application/json"
    --accept "application/json, text/event-stream"
    --qualifier "DEFAULT"
    "output.json"

    Resources

    Vendor resources

    Support

    Vendor support

    AWS infrastructure support

    AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.

    Similar products

    Customer reviews

    Ratings and reviews

     Info
    4.7
    819 ratings
    5 star
    4 star
    3 star
    2 star
    1 star
    83%
    16%
    1%
    0%
    0%
    0 AWS reviews
    |
    819 external reviews
    External reviews are from G2 .
    Media Production

    One of the Best CSPM Tools with Highly Granular Findings

    Reviewed on Jul 01, 2026
    Review provided by G2
    What do you like best about the product?
    Its one of the best tools out there for CSPM, with about the granularity of Findings and issues in the tool
    What do you dislike about the product?
    Its too vast, and will be difficult for people who use it instantly
    What problems is the product solving and how is that benefiting you?
    it solves the Cloud misconfigs and issues ,vulnerabilities gab, and vast integrations with all the cloud platforms, which even doesnt impact its performance , with proper license and its AI capabilities are too good, with proper support
    Financial Services

    From Noise to Real Risk with Wiz

    Reviewed on Jul 01, 2026
    Review provided by G2
    What do you like best about the product?
    What I like most about Wiz is how it helps you focus on what actually matters instead of drowning in findings. The security graph and attack path analysis, especially the way it highlights risky or “toxic” combinations, make a big difference in day‑to‑day work. Instead of reviewing huge vulnerability spreadsheets, you can quickly see which issues are actually exploitable and worth prioritizing. The agentless approach is also a big plus, since it gives you fast visibility without adding extra overhead.

    Another thing I really appreciate is the overall depth of the platform without it feeling too heavy to use. Features like data security insights, contextual vulnerability details, and built‑in remediation guidance are genuinely useful.

    The Advanced license adds a lot of value, and the Outpost setup is important for us because it allows sensitive data processing to stay within our environment while Wiz mainly works on metadata. On top of that, the support from our TAM has been excellent, very responsive and hands‑on, especially during onboarding and tuning phases.
    What do you dislike about the product?
    Wiz is a very powerful platform, but that also means there’s a bit of a learning curve at the beginning. It takes some time to understand how to best use the different features (like projects, dashboards, and integrations) and to set up a structure that fits your organisation. In larger environments, initial scoping and configuration can require coordination across multiple teams.

    Since the platform evolves quickly, some features are still maturing and from time to time that can lead to minor instability or changes in behavior that require adjustment. Also, because it provides so much visibility, it can feel a bit overwhelming at first until you fine‑tune filtering and prioritisation. That said, once everything is properly set up, it becomes much easier to manage and the value is very clear.
    What problems is the product solving and how is that benefiting you?
    We use Wiz to get a clear and prioritized view of cloud risk across our environment, instead of dealing with fragmented findings from different tools. A big problem it solves is reducing noise. By correlating vulnerabilities, misconfigurations, identity risks, and data exposure into a single context, it helps us focus on what is actually exploitable rather than spending time on low‑impact issues.

    It’s also very useful for improving collaboration between security and engineering teams. Findings can be scoped, contextualized, and shared in a way that makes remediation more practical and easier to track. In addition, the platform helps with ongoing posture management and compliance by providing continuous visibility, which makes it easier to identify gaps early and avoid reactive work.
    Computer Software

    Concise, Precise Risk Detection with Automated Triage Agents

    Reviewed on Jun 29, 2026
    Review provided by G2
    What do you like best about the product?
    The best thing about Wiz is its "Conciseness." Being able to pinpoint actual risks and threats, and not just "shout" about every vulnerability, combined with the new agents that automatically triage and even attack where needed, is priceless.
    What do you dislike about the product?
    Since Wiz has grown into a much larger platform, the UI/UX has become somewhat messy and it’s sometimes hard to find the right path. Configuration for some features isn’t very straightforward, and the documentation is inconsistent (SSO, for example). Where possible, I prefer guided wizards to having to dig through docs.
    What problems is the product solving and how is that benefiting you?
    Wiz helps us stay on top of security across a fairly complex cloud environment without needing a large team to do it. We have a lot of moving parts, and before Wiz it was hard to know what actually needed attention versus what was just noise. Wiz pulls everything into one place, and more usefully it connects the dots - it shows us when something is exposed and vulnerable and sitting near sensitive data or privileged access, which is what really matters. That's saved us a lot of time, because instead of working through a long list of findings we can go straight to the handful that represent real risk and fix those first. It also runs checks earlier in our development process, so we catch a lot of issues before they ever reach production. And since we're a security company ourselves, holding that standard on our own environment matters to us - it's the same level of protection our customers expect.
    Financial Services

    Wiz Delivers Instant Agentless Visibility and Actionable Security Graphs

    Reviewed on Jun 29, 2026
    Review provided by G2
    What do you like best about the product?
    What I like best about Wiz is the security graph and the agentless setup. Connecting it across our Azure subscriptions took minutes and there was nothing to install or keep running. We had full visibility on day one with no impact on production.
    The graph is the part I'd actually recommend it for. Instead of a flat list of CVEs, it correlates misconfigurations, exposure, secrets and identity permissions into real attack paths, so you can see the toxic combinations that genuinely matter rather than chasing thousands of low-priority findings. That prioritisation has been the single biggest win — it tells us what to fix first and why, and an analyst that might have spent days hunting a toxic combination now gets it surfaced in hours.
    It fits how we work too. The Terraform and CI/CD integration catches secrets and misconfigurations before they ship, and being able to write scoped ignore rules for findings we've already accepted keeps the dashboard clean without losing visibility around them. On the AI side, Mika is genuinely handy — it answers security questions in plain language and can write graph queries for you — and the newer agents have noticeably cut time-to-remediation on some issues.
    It's become the tool I check when I want to know whether our cloud is actually in good shape, and it answers in a way I can act on.
    What do you dislike about the product?
    The main downside is that Wiz gives you so much information it can feel overwhelming at first. There's a lot of functionality and it takes time to learn how to navigate it and prioritise findings, especially early on - the lenses and the various capabilities have a real learning curve before you're comfortable using it the way it's demo'd.
    What problems is the product solving and how is that benefiting you?
    Wiz solves the problem of not having a clear, single view of our cloud estate. Before, risks were scattered across subscriptions and services with no easy way to see them all in one place, so things could go unnoticed. Now we have full visibility across the environment and can spot exposures and misconfigurations wherever they are, which makes it much easier to stay on top of our security posture.
    Media Production

    Simplifying Cloud Security and Risk Prioritization

    Reviewed on Jun 28, 2026
    Review provided by G2
    What do you like best about the product?
    What I like best about Wiz is the visibility it provides into cloud assets and security risks. It makes it easier to identify critical issues by correlating vulnerabilities and misconfigurations in one place. The platform is intuitive, easy to use, and helps reduce manual effort while improving security prioritization.
    What do you dislike about the product?
    One challenge with Wiz is that new users may face a learning curve when understanding complex findings in large cloud environments. Improved customization and easier prioritization of alerts would make the platform even more effective.
    What problems is the product solving and how is that benefiting you?
    Wiz solves the problem of fragmented cloud security visibility by consolidating vulnerabilities, misconfigurations, and asset risks into one platform. This helps us reduce manual effort, prioritize critical risks faster, and improve overall security efficiency.
    View all reviews