Sold by: Wiz
Deployed on AWS
The Wiz Model Context Protocol (MCP) Server acts as an MCP-compatible service that translates plain-language queries into Wiz-specific operations, like querying resources, or assessing risks.
4.7
Overview
The Wiz Model Context Protocol (MCP) Server elevates the impact of Wiz's security offerings by providing a unified security data source, enhanced cloud visibility, and contextual intelligence. The MCP Server connects multiple security data sources through a central host and server setup, creating a single, contextual view of the security posture to simplify investigations and accelerate incident response and remediation. It offers instant access to cloud inventory, configurations, and security issues via a single host with a simple prompt. By enriching security investigations with precise business context, the MCP Server allows security teams to prioritize responses based on relevance, drastically improving the accuracy and effectiveness of threat mitigation. The Wiz MCP Server enhances Wiz Code by translating plain-language queries into powerful workflows, streamlining everything from issue discovery to pull request creation. Integrated with Wiz Defend, the MCP Server helps security teams identify and contain active threats faster with AI generated insights and action paths.
Highlights
- Unified security data source for cloud security posture.
- Completed visibility into cloud inventory, configurations, and security issues
- Contextual intelligence that enriches security investigations with context, enabling security teams to prioritize responses to critical threats.
Details
Sold by
Categories
Delivery method
Type
Supported services
Delivery option
v0.1.1s
Latest version
Operating system
Linux
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Trust Center
Access real-time vendor security and compliance information through their Trust Center powered by Drata or Vanta. Review certifications and security standards before purchase.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
This product is available free of charge. Free subscriptions have no end date and may be canceled any time.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Vendor refund policy
n/a
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
v0.1.1s
Supported services: Learn more
- Amazon Bedrock AgentCore
Container image
Containers are lightweight, portable execution environments that wrap server application software in a filesystem that includes everything it needs to run. Container applications run on supported container runtimes and orchestration services, such as Amazon Elastic Container Service (Amazon ECS) or Amazon Elastic Kubernetes Service (Amazon EKS). Both eliminate the need for you to install and operate your own container orchestration software by managing and scheduling containers on a scalable cluster of virtual machines.
Version release notes
We are excited to share that the Wiz Model Context Protocol (MCP) Server is now available in the new AWS Marketplace AI Agents and Tools category.
The Wiz Model Context Protocol (MCP) Server is an innovative implementation that enables any MCP-compatible, LLM-powered application to interact with Wiz using plain language. It unifies diverse security data sources into a single, contextual view of your cloud security posture. This empowers teams to gain instant access to cloud inventory, configurations, and security issues, facilitating real-time cloud investigations, blast radius assessments, and AI-driven remediation actions through natural language prompts.
Additional details
Usage instructions
To allow the Wiz Model Context Protocol (MCP) Server to access your Wiz tenant, you need to configure specific environment variables.
Steps to Configure Wiz MCP Integration:
Navigate to Integrations in Wiz:
1. In the Wiz console, go to the Connect to Wiz > Integrations page. 2. Under the "Security Data Management" section, choose Wiz MCP. 3. On the "New Wiz MCP Integration" page: Enter a Display Name. Keep the default API scopes (Recommended). Click Add Integration. 4. After creation, copy the generated Client ID and Client Secret. These are crucial for authentication.Set Environment Variables:
Add the Client ID and Client Secret using the --environment-variables flag in your deployment command.
--environment-variables '{ "WIZ_CLIENT_ID":"your_client_id", "WIZ_CLIENT_SECRET":"your_client_secret" }'
2. Using GUI for Host Agent Deployment:If you are deploying via AWS Console GUI, 1) Click "Use on Amazon Bedrock AgentCore" 2) Click "Host Agent" add these variables under the "Advanced configurations" section.
For more detailed instructions and customer-specific access, please refer to the official documentation at https://docs.wiz.io/docs/set-up-wiz-mcp-server (Wiz customer access only).
AWS command line examples:
- Create an agent/MCP server This command creates a new agent runtime for the Wiz MCP server. Ensure you replace placeholders like 'your AmazonBedrockAgentCoreRuntimeDefaultServiceRole arn', '{your wiz client id}', and '{your wiz client secret}' with your actual values.
aws bedrock-agentcore-control create-agent-runtime --region us-east-1
--agent-runtime-name "wiz-mcp-server-stateless"
--description "Wiz MCP server"
--agent-runtime-artifact '{
"containerConfiguration": {
"containerUri": "709825985650.dkr.ecr.us-east-1.amazonaws.com/wiz/wiz-mcp:v0.1.1-stateless"
}
}'
--role-arn "your AmazonBedrockAgentCoreRuntimeDefaultServiceRole arn"
--network-configuration '{ "networkMode": "PUBLIC" }'
--protocol-configuration '{ "serverProtocol": "MCP" }'
--environment-variables '{
"WIZ_CLIENT_ID": "{your wiz client id}",
"WIZ_CLIENT_SECRET": "{your wiz client secret}",
"Wiz_MCP_TRANSPORT": "http",
"Wiz_MCP_PORT": "8000",
"Wiz_MCP_HOST": "0.0.0.0"
}'
- List Agent Runtime Use this command to retrieve details about the created agent runtime. Replace '{your agentRuntimeId in the output of create command}' with the actual ID from the previous step.
aws bedrock-agentcore-control get-agent-runtime
--agent-runtime-id {your agentRuntimeId in the output of create command}
--region us-east-1
- List Agent Runtime Endpoints This command lists the endpoints associated with your agent runtime. Replace '{your agentRuntimeId in the output of create command}' with the actual ID.
aws bedrock-agentcore-control list-agent-runtime-endpoints
--agent-runtime-id {your agentRuntimeId in the output of create command}
--region us-east-1
- Invoke Agent Runtime This command invokes the agent runtime to perform an action, e.g., listing tools. Replace '{your agentRuntimeArn in the output of create command}' with the actual ARN.
PAYLOAD_JSON='{"jsonrpc": "2.0", "id": 1, "method": "tools/list", "params": { "_meta": { "progressToken": 1}}}' PAYLOAD_BASE64=$(echo -n "$PAYLOAD_JSON" | base64) AGENT_ARN={your agentRuntimeArn in the output of create command}
aws bedrock-agentcore invoke-agent-runtime
--agent-runtime-arn "${AGENT_ARN}"
--payload="${PAYLOAD_BASE64}"
--content-type "application/json"
--accept "application/json, text/event-stream"
--qualifier "DEFAULT"
"output.json"
Resources
Vendor resources
Support
Vendor support
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
Wiz provides an entirely new approach to cloud security that for the first time identifies the actual risks hidden in your cloud infrastructure.
By Wiz
All in one solution to reduce risk from code to runtime. Wiz Go includes 300 Cloud Advanced workloads, 150 Defend Ingestion Units (GBs), 100 Runtime Sensors, and 50 Code Active Developers per month.
The Wiz Outpost Workload Scanner STIG AMI is intended for Wiz for Gov customers who want to deploy a Wiz Outpost to an AWS environment. Subscribing to this product is a prerequisite for successfully deploying an Outpost.
Accelerate your AWS security with WIZ for LZA, delivering best-in-class Cloud Security Posture Management (CSPM) and Cloud Workload Protection (CWPP) through a fast, agentless deployment on the AWS Landing Zone Accelerator (LZA) foundation. Get comprehensive, real-time visibility into vulnerabilities, misconfigurations, and attack paths to achieve rapid risk reduction and continuous compliance.
Customer reviews
Information Technology and Services
Agentless Visibility and AI Agents That Cut Alert Noise and Save Time
Reviewed on Jun 18, 2026
Review provided by G2
What do you like best about the product?
What I like best about Wiz is its agentless visibility and how it eliminates alert noise. The Wiz AI Agents are also fantastic, they save our team massive amounts of time by autonomously fixing code vulnerabilities and accelerating our threat-hunting workflows.
What do you dislike about the product?
What I dislike most is the inability to manually input or upload a custom list of specific CVEs to test against our environment and generate an immediate findings review. Currently, we have to rely strictly on automated environment-wide scans rather than targeted, ad-hoc CVE queries.
What problems is the product solving and how is that benefiting you?
Wiz eliminates multi-cloud blind spots and stops alert fatigue by mapping how different risks connect into actual attack paths.
sharif M.
Wiz Makes Cloud Risk Visibility and Prioritization Effortless
Reviewed on Jun 18, 2026
Review provided by G2
What do you like best about the product?
What I like best about Wiz is how easy it is to get a clear view of cloud security risks in one place. It helps prioritize what matters most, and the setup is quick and straightforward.
What do you dislike about the product?
One area for improvement would be the customization of dashboards and reporting, as more flexibility would make it easier to tailor insights for different teams and stakeholders.
What problems is the product solving and how is that benefiting you?
Wiz helps solve the challenge of gaining full visibility into cloud security risks across complex environments. It brings vulnerabilities, misconfigurations, and access risks into one place, making it easier to prioritize what needs attention. This saves time, reduces noise, and helps our team respond faster to real security issues.
Financial Services
Security Graph Makes Cloud Triage and Quantitative Prioritization Easy
Reviewed on Jun 18, 2026
Review provided by G2
What do you like best about the product?
Security Graph are extremely helpful when triaging our cloud environment. Additionally, being able to prioritize issues based on quantitative assessments is highly effective for building consensus across our group companies.
What do you dislike about the product?
For services that run a large number of containers from the exact same image, we want to optimize our license usage by only scanning the shared image repository. However, even when we exclude those container scans, BUs (Billing Units) are still consumed because CSPM functions working, which defeats the purpose of trying to save licenses.
What problems is the product solving and how is that benefiting you?
Wiz has significantly accelerated our process of investigating vulnerability details (such as CVSS, EPSS, KEV, and PoC) to assess exploitability and determine the impact on our organization. Furthermore, it provides a shared context that allows us to communicate more efficiently and have well-aligned discussions with our product teams.
Education Management
Cloud Security with Wiz!
Reviewed on Jun 16, 2026
Review provided by G2
What do you like best about the product?
A pleasant surprise has been the steady pace of new features and capabilities. Over the time we've been customers, the platform has kept expanding — deeper code-to-cloud correlation, broader coverage across our environment, and new capabilities that arrive without us having to re-architect anything. It's reassuring to invest in a tool that keeps getting more useful rather than standing still.
What do you dislike about the product?
that it isn't free! no complaints with the product
What problems is the product solving and how is that benefiting you?
Adopting Wiz has meaningfully changed how our team manages cloud risk. The single biggest differentiator for us is its ability to correlate environment context — the Security Graph stitches together misconfigurations, identities, network exposure, and sensitive data into a coherent picture, so instead of drowning in isolated alerts we see the actual attack paths that matter. That "so what" prioritization is unmatched by the competitors we evaluated; other tools surfaced findings, but none connected them into reachable, exploitable risk the way Wiz does.
Alasdair R.
Clear Cloud Risk Visibility and Actionable Insights with Wiz
Reviewed on Jun 16, 2026
Review provided by G2
What do you like best about the product?
From a CIO perspective, Wiz has helped us strengthen how we understand and manage cloud security risk. It provides clear visibility across complex cloud environments, helps teams prioritise the issues that matter most, and supports more effective collaboration between security, infrastructure, and engineering teams.
One of the things I value most is the way Wiz turns cloud security findings into actionable insight. It helps technical teams focus remediation effort where it has the greatest impact, while giving leadership a clearer view of risk and progress.
Overall, Wiz has been a strong enabler of better cloud governance, improved risk management, and more confident decision making. It has helped us move faster while maintaining the deep levels of security oversight we expect.
One of the things I value most is the way Wiz turns cloud security findings into actionable insight. It helps technical teams focus remediation effort where it has the greatest impact, while giving leadership a clearer view of risk and progress.
Overall, Wiz has been a strong enabler of better cloud governance, improved risk management, and more confident decision making. It has helped us move faster while maintaining the deep levels of security oversight we expect.
What do you dislike about the product?
I've not yet found any downsides, they're an excellent partner
What problems is the product solving and how is that benefiting you?
Cloud security in a massive and highly complex software engineering environment