Wiz MCP Server

Sold by: Wiz

The Wiz Model Context Protocol (MCP) Server acts as an MCP-compatible service that translates plain-language queries into Wiz-specific operations, like querying resources, or assessing risks.

0 AWS reviews

708 external reviews

View purchase options

Overview

The Wiz Model Context Protocol (MCP) Server elevates the impact of Wiz's security offerings by providing a unified security data source, enhanced cloud visibility, and contextual intelligence. The MCP Server connects multiple security data sources through a central host and server setup, creating a single, contextual view of the security posture to simplify investigations and accelerate incident response and remediation. It offers instant access to cloud inventory, configurations, and security issues via a single host with a simple prompt. By enriching security investigations with precise business context, the MCP Server allows security teams to prioritize responses based on relevance, drastically improving the accuracy and effectiveness of threat mitigation. The Wiz MCP Server enhances Wiz Code by translating plain-language queries into powerful workflows, streamlining everything from issue discovery to pull request creation. Integrated with Wiz Defend, the MCP Server helps security teams identify and contain active threats faster with AI generated insights and action paths.

Highlights

Unified security data source for cloud security posture.
Completed visibility into cloud inventory, configurations, and security issues
Contextual intelligence that enriches security investigations with context, enabling security teams to prioritize responses to critical threats.

Details

Sold by

Wiz

Unlock automation with AI agent solutions

Fast-track AI initiatives with agents, tools, and solutions from AWS Partners.

Explore AI agent solutions

Features and programs

Trust Center

Access real-time vendor security and compliance information through their Trust Center powered by Drata. Review certifications and security standards before purchase.

View Trust Center

Financing for AWS Marketplace purchases

AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.

View financing details

Pricing

Wiz MCP Server

Info

View purchase options

This product is available free of charge. Free subscriptions have no end date and may be canceled any time.

Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.

Vendor refund policy

n/a

How can we make this page better?

We'd like to hear your feedback and ideas on how to improve this page.

Legal

Vendor terms and conditions

Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .

Content disclaimer

Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.

Usage information

Info

Delivery details

v0.1.1s

Supported services: Learn more

Amazon Bedrock AgentCore - Preview

Container image

Containers are lightweight, portable execution environments that wrap server application software in a filesystem that includes everything it needs to run. Container applications run on supported container runtimes and orchestration services, such as Amazon Elastic Container Service (Amazon ECS) or Amazon Elastic Kubernetes Service (Amazon EKS). Both eliminate the need for you to install and operate your own container orchestration software by managing and scheduling containers on a scalable cluster of virtual machines.

Version release notes

We are excited to share that the Wiz Model Context Protocol (MCP) Server is now available in the new AWS Marketplace AI Agents and Tools category.

The Wiz Model Context Protocol (MCP) Server is an innovative implementation that enables any MCP-compatible, LLM-powered application to interact with Wiz using plain language. It unifies diverse security data sources into a single, contextual view of your cloud security posture. This empowers teams to gain instant access to cloud inventory, configurations, and security issues, facilitating real-time cloud investigations, blast radius assessments, and AI-driven remediation actions through natural language prompts.

Additional details

Usage instructions

To allow the Wiz Model Context Protocol (MCP) Server to access your Wiz tenant, you need to configure specific environment variables.

Steps to Configure Wiz MCP Integration:

Navigate to Integrations in Wiz:

1. In the Wiz console, go to the Connect to Wiz > Integrations page. 2. Under the "Security Data Management" section, choose Wiz MCP. 3. On the "New Wiz MCP Integration" page: Enter a Display Name. Keep the default API scopes (Recommended). Click Add Integration. 4. After creation, copy the generated Client ID and Client Secret. These are crucial for authentication.

Set Environment Variables:

1. Using AWS CLI:

Add the Client ID and Client Secret using the --environment-variables flag in your deployment command.

--environment-variables '{ "WIZ_CLIENT_ID":"your_client_id", "WIZ_CLIENT_SECRET":"your_client_secret" }'

2. Using GUI for Host Agent Deployment:

If you are deploying via AWS Console GUI, 1) Click "Use on Amazon Bedrock AgentCore" 2) Click "Host Agent" add these variables under the "Advanced configurations" section.

For more detailed instructions and customer-specific access, please refer to the official documentation at https://docs.wiz.io/docs/set-up-wiz-mcp-server (Wiz customer access only).

AWS command line examples:

Create an agent/MCP server This command creates a new agent runtime for the Wiz MCP server. Ensure you replace placeholders like 'your AmazonBedrockAgentCoreRuntimeDefaultServiceRole arn', '{your wiz client id}', and '{your wiz client secret}' with your actual values.

aws bedrock-agentcore-control create-agent-runtime --region us-east-1
--agent-runtime-name "wiz-mcp-server-stateless"
--description "Wiz MCP server"
--agent-runtime-artifact '{ "containerConfiguration": { "containerUri": "709825985650.dkr.ecr.us-east-1.amazonaws.com/wiz/wiz-mcp:v0.1.1-stateless" } }'
--role-arn "your AmazonBedrockAgentCoreRuntimeDefaultServiceRole arn"
--network-configuration '{ "networkMode": "PUBLIC" }'
--protocol-configuration '{ "serverProtocol": "MCP" }'
--environment-variables '{ "WIZ_CLIENT_ID": "{your wiz client id}", "WIZ_CLIENT_SECRET": "{your wiz client secret}", "Wiz_MCP_TRANSPORT": "http", "Wiz_MCP_PORT": "8000", "Wiz_MCP_HOST": "0.0.0.0" }'

List Agent Runtime Use this command to retrieve details about the created agent runtime. Replace '{your agentRuntimeId in the output of create command}' with the actual ID from the previous step.

aws bedrock-agentcore-control get-agent-runtime
--agent-runtime-id {your agentRuntimeId in the output of create command}
--region us-east-1

List Agent Runtime Endpoints This command lists the endpoints associated with your agent runtime. Replace '{your agentRuntimeId in the output of create command}' with the actual ID.

aws bedrock-agentcore-control list-agent-runtime-endpoints
--agent-runtime-id {your agentRuntimeId in the output of create command}
--region us-east-1

Invoke Agent Runtime This command invokes the agent runtime to perform an action, e.g., listing tools. Replace '{your agentRuntimeArn in the output of create command}' with the actual ARN.

PAYLOAD_JSON='{"jsonrpc": "2.0", "id": 1, "method": "tools/list", "params": { "_meta": { "progressToken": 1}}}' PAYLOAD_BASE64=$(echo -n "$PAYLOAD_JSON" | base64) AGENT_ARN={your agentRuntimeArn in the output of create command}

aws bedrock-agentcore invoke-agent-runtime
--agent-runtime-arn "${AGENT_ARN}"
--payload="${PAYLOAD_BASE64}"
--content-type "application/json"
--accept "application/json, text/event-stream"
--qualifier "DEFAULT"
"output.json"

Resources

Vendor resources

Product Video

Support

Vendor support

Get support

AWS infrastructure support

AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.

Get support

Similar products

WIZ Cloud Infrastructure Security Platform

By Wiz

Wiz provides an entirely new approach to cloud security that for the first time identifies the actual risks hidden in your cloud infrastructure.

View product

Wiz Go Bundle

By Wiz

All in one solution to reduce risk from code to runtime. Wiz Go includes 300 Cloud Advanced workloads, 150 Defend Ingestion Units (GBs), 100 Runtime Sensors, and 50 Code Active Developers per month.

View product

Wiz [Private Offer Only]

By Carahsoft Technology Corp.

Wiz for Government is FedRAMP Moderate authorized cloud security solution that provides full visibility and continuous risk reduction in the cloud, securing everything government agencies build and run in the cloud.

View product

Wiz Outpost Workload Scanner STIG AMI (x86)

By Wiz for Gov

The Wiz Outpost Workload Scanner STIG AMI is intended for Wiz for Gov customers who want to deploy a Wiz Outpost to an AWS environment. Subscribing to this product is a prerequisite for successfully deploying an Outpost.

View product

Customer reviews

Leave a review

Ratings and reviews

Info

0 ratings

5 star

4 star

3 star

2 star

1 star

0 AWS reviews

708 external reviews

Star ratings include only reviews from verified AWS customers. External reviews can also include a star rating, but star ratings from external reviews are not averaged in with the AWS customer star ratings.

Alex P.

Fantastic product and team!

Reviewed on Aug 28, 2025

Review provided by G2

What do you like best about the product?

Immediately gained actionable insight into our cloud security posture which was previously considered a 'security black hole'.

The onboarding process was a breeze and the team we are working with know their stuff!

It's very intuitive, even for someone with no prior devsecops experience.

What do you dislike about the product?

Not an issue with Wiz itself but we are still working on buy-in and utilization from all our devs on the Wiz Code component.

What problems is the product solving and how is that benefiting you?

Lack of visibility into cloud security posture. No dedicated DevSecOps staff.

Financial Services

Engineer-Friendly Cloud Risk Management

Reviewed on Aug 28, 2025

Review provided by G2

What do you like best about the product?

Wiz provides comprehensive visibility across AWS without agents (so really easy to get started). The security graph highlights risks by factoring in exposure, lateral movement, known vulnerabilities, so only the most relevant issues surface. This reduces false positives and alert fatigue compared to for example AWS native Security Hub. Dashboards, root cause analysis, and Terraform fix snippets make it engineer-friendly and actionable, not just a compliance tool.

What do you dislike about the product?

The platform can feel overwhelming at first due to the breadth of features and data. Role-based access and project scoping require careful setup to avoid visibility gaps.

What problems is the product solving and how is that benefiting you?

Wiz solves the lack of visibility across a complex AWS environment. It consolidates security findings, eliminates noise from false positives, and prioritizes risks based on exposure and business impact. This reduces alert fatigue, accelerates remediation, and frees engineers from manual triage. Also supports compliance audits (useful if you have yearly audits), and enables proactive risk reduction.

Computer Games

Single pane of glass for multicloud security

Reviewed on Aug 27, 2025

Review provided by G2

What do you like best about the product?

Security starts with visibility, in WIZ we have the complete inventory, starting from the cloud layer up to the application deployed on workloads, including data and identity. Posture and behavior rules are based on this solid basement.

What do you dislike about the product?

The product is constantly evolving, pretty hard to follow and some changes are a bit not expected.

What problems is the product solving and how is that benefiting you?

We have a single window that is enough for solving 85%+ of questions for a multi-cloud enterprise environment. There is a solution for each stage from code to cloud, and everything is visible in a single console.

Jay L.

Wiz is helping us better secure our company

Reviewed on Aug 27, 2025

Review provided by G2

What do you like best about the product?

Visibility and Team Ownership: Setting up projects and dashboards has helped our teams take ownership of their areas of the organization.

Risk Prioritization: We know exactly what to work on because Wiz helps identify assets with external exposure, vulnerabilities, data findings, misconfigurations, etc.

Solve issues, not just identify them: This is where I think Wiz has the secret sauce so to speak. Not only can it identify issues in your environment, but generating code fixes or steps how to remediate an issue makes it much easier for development teams to solve.

Setup: Integrations are seamless, easy to implement and work right away.

Dashboard: Allows you to quickly check each day the status of your environment and what needs to be tackled next.

Support Team: Support is fast and has a ton of helpful documents to assist you in the need arises.

What do you dislike about the product?

Custom Dashboards: The board views right now are limited to some predefined queries. While very good and useful. I would like to see this expanded in the future to allow more customizations.

Some of the views and issues do require some time in seat being in the application. If you want your dev team to be in the console, you will need to provide some training or use the integrations to send the information to them elsewhere.

What problems is the product solving and how is that benefiting you?

Lack of Visibility and Context: It can be hard to know exactly what is going on in your cloud environments and that's where Wiz has shined for us. Integrating from our code repository to our cloud service provides us with a really cool security graph that shows potential attack paths. The context of not only a vulnerability or exploit in your environment, but seeing how it impacts your organization is huge.

Overwhelming Security Alerts and "Alert Fatigue": While Wiz doesn't completely remove false positives, my team knows when alerts come in, it means action is needed.

Slow Remediation and Collaboration Issues: Remediation steps provided directly to the engineering teams shortens investigation time and allows our team to actually resolve issues rather than Jira tickets sitting in a backlog.

Vulnerability Management: Connecting to our code repository we can instantly create PRs to update packages in our repositories.

Computer Software

CIO review on Wiz

Reviewed on Aug 27, 2025

Review provided by G2

What do you like best about the product?

Wiz is intuitive, easy to use, and gives clear visibility into our environment while saving time with smart automation

What do you dislike about the product?

At times, Wiz can feel a bit overwhelming with the amount of data it surfaces, and some advanced features take time to fully understand. More streamlined reporting and customization options would make it even better

What problems is the product solving and how is that benefiting you?

Wiz helps us identify security risks across our cloud environment in real time, from misconfigurations to vulnerabilities. By having a unified view and automated prioritization, we can address the most critical issues faster and reduce risk. This saves time for the team, improves compliance, and strengthens overall security posture

View all reviews