Wiz is an agentless cloud assets vulnerability scanner. You don't need to install anything to use any of the machines. It takes snapshots and then scans it. It is interesting because all other scanners need to install some agent.
External reviews
783 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Visibility into your cloud env
What do you like best about the product?
The intuitive and user-friendly, making navigation and use straightforward.
The customer support is amazing! They are always available for urgent situations, with representatives ready to assist and jump on calls as needed.
Security graph allows you proactive threat hunting by utilizing Wiz capabilities effectively.
The customer support is amazing! They are always available for urgent situations, with representatives ready to assist and jump on calls as needed.
Security graph allows you proactive threat hunting by utilizing Wiz capabilities effectively.
What do you dislike about the product?
In complex scenarios, sometimes, it is difficult to determine why an alert is high or critical. There are many factors that determine the severity, and sometimes it is not clear what is the root cause.
What problems is the product solving and how is that benefiting you?
Wiz has helped us gain a unique and comprehensive view of our company's security posture. Integrating AWS, GCP, and Azure into a single dashboard has been incredible.
The Best Cloud Security Platform
What do you like best about the product?
Very easy to use user-interface
Easy to get access to customer support
The constant release of new features to add to an already broad feature set
The attack path mapping creates a contextual view beyond that of cloud native security services such as AWS Inspector/Security hub.
Easy to get access to customer support
The constant release of new features to add to an already broad feature set
The attack path mapping creates a contextual view beyond that of cloud native security services such as AWS Inspector/Security hub.
What do you dislike about the product?
Due to the scope of the product offering, the users of Wiz and Administrators, developers or SOC analysts, need to have a clear understanding of cloud service providers to make maximum use of it.
What problems is the product solving and how is that benefiting you?
Understanding cloud misconfigurations
Assisting us in cloud vulnerability management
Demonstrating compliance to CIS/PCI DSS to our regulators
Assisting us in cloud vulnerability management
Demonstrating compliance to CIS/PCI DSS to our regulators
Wiz helped us solve multiple challenges and has identified multiple ongoing risks in our cloud
What do you like best about the product?
Ability to detect vulnerabilities without network scanning. How it portrays our cloud network environment and shows the exposure points.
What do you dislike about the product?
I wish it did a better job at network threat detection. It mostly focuses on workload threat detection.
What problems is the product solving and how is that benefiting you?
Wiz helped us solve the problem of detecting vulnerabilities in a poorly architected cloud environment with overlapping subnets and inconsistent network reachability.
An agentless cloud assets vulnerability scanner which akes snapshots and then scans
What is our primary use case?
How has it helped my organization?
This solution is designed to be agentless. This approach saves bandwidth and other resources. Nobody needs to report anything or send packages to the backend. Everything operates as a SaaS solution. They perform snapshots and alerting, converting the data into metadata, which they then analyze and return. Thus, the SaaS solution handles the entire process without requiring additional effort from us.
What is most valuable?
Wiz is a very powerful and easy-to-use tool. It's highly customizable, allowing us to manage many custom features effectively.
What needs improvement?
You need to enter numbers manually. Now, everyone has to press to proceed. Wiz still requires managing all the numbers on the web page. Wiz could enhance API integration with ServiceNow and Jira.
For how long have I used the solution?
I have been using Wiz for six months.
Which solution did I use previously and why did I switch?
How was the initial setup?
The initial setup is straightforward and takes two to three weeks to complete.
What's my experience with pricing, setup cost, and licensing?
Wiz is quite expensive. However, having a comprehensive view of your cloud environment is essential. On-premises systems are much easier to track, but managing numerous instances in the cloud requires enhanced visibility.
We are paying 250k per year.
For our business case, we needed Wiz to meet regulatory requirements and quickly identify public exposure vulnerabilities, such as publicly accessible instances or resources. This information immediately helps prevent vulnerabilities within your business environment, providing a cybersecurity advantage. While this doesn't translate to direct financial benefits, it helps prevent potential breaches and escalations, which is invaluable. Like other security tools, Wiz incurs a cost, but its value lies in enhanced security rather than financial gain.
What other advice do I have?
Wiz's scanning and detection capabilities can identify vulnerabilities potentially affecting the cloud or exposure. It's not solely focused on database issues. It performs various tasks effectively. The categorization is excellent, the dashboards are informative, and the reporting features are robust. Additionally, you can create highly customizable reports.
Everything works using a CI/CD pipeline, which is very good because every DevOps engineer can manage it by simply creating some code around the message request. Wiz works fine and is fully compliant with CI/CD. The workflow and the tasks align with industry standards.
We can configure any compliance framework for checking with Wiz. For example, you can select frameworks such as GDPR, AWS Fundamentals, and CI/CD. You can configure the tool based on the recommendations provided by these frameworks. If your company has specific requirements, like allowing an 8-character password while the state requires 12 characters, you can customize the settings accordingly. Wiz will then assess compliance based on these customized parameters, and if everything meets the set criteria, it will confirm that you are compliant.
You have everything in one dashboard. The dashboard and reports are quite literally perfect. Since everything is in one dashboard, you can customize the reports to show only the columns you want to see. For example, you can exclude low-risk items so you don't get notifications about low-risk issues that do not impact your compliance status.
Wiz has some AI features for consolidation, but it's not customizable. What VMware offers is similar, but there's not much to choose between. You either have a batch compliance agreement, or you don't. Wiz's framework complies with requirements, or it doesn't. It's a vulnerability management tool similar to Kangaroo but with better AI documentation features. You can ask questions about how to do something, and the AI will provide the relevant information. This feature is built into the system.
Overall, I rate the solution a ten out of ten.
Best CSPM I’ve used plus much more
What do you like best about the product?
We looked at Wiz to replace our previous CSPM and it did a great job at that. However, we found that it's also awesome at dependency management and showing context around alerts.
What do you dislike about the product?
The automation capabilities aren't as strong as other competitors, and what was once a single-SKU, everything-you-need platform has become more fragmented as they acquire other companies and add features. I like the new features, but the pricing is becoming less friendly.
What problems is the product solving and how is that benefiting you?
Wiz takes care of pretty much our entire cloud security stack and DevSecOps efforts. We've licensed Wiz Code for CI/CD scans and will use their SAST product as soon as it launches.
Wiz Is a Great Vendor
What do you like best about the product?
Their team is responsive and engaging in regards to addressing issues and answering questions.
What do you dislike about the product?
Some of their functions can be wonky at times.
What problems is the product solving and how is that benefiting you?
Wiz is helping us with our vulnerability management. It gives full visibility of what's vulnerable and a trending topic that could affect us.
Security engineer that manages the platform
What do you like best about the product?
The tool is easy to use. Easy to implement into various public clouds. Also the support from Wiz.
What do you dislike about the product?
The vulnerability management aspect of the tool could ne improved on.
There is no easy to conduct analysis in Wiz, if there is a significant difference in vulnerability findings by day, one has to do the analysis in another tool.
There is no easy to conduct analysis in Wiz, if there is a significant difference in vulnerability findings by day, one has to do the analysis in another tool.
What problems is the product solving and how is that benefiting you?
We are using the tool to conduct IAM cleanup and enforce the principles of least privilege.
An unified cloud security platform for cloud security and development teams that includes prevention, active detection and response
What is our primary use case?
We are evaluating security configuration and compliance. We also use it to scan for security vulnerabilities in our pipelines.
What is most valuable?
The security baseline and vulnerability assessments are a very valuable feature.
What needs improvement?
We're looking at some of the data compliance stuff that they've got on offer. I know they're looking at container security, which we gonna be looking at next.
For how long have I used the solution?
I have been using Wiz for four months.
What do I think about the stability of the solution?
The stability is a nine out of ten.
What do I think about the scalability of the solution?
Five users are using the solution. The scalability is a ten out of ten.
How was the initial setup?
The initial setup is straightforward. The deployment takes five hours. So scanning storage accounts, storage account compliance, public endpoint scanning, you know, all of the usual things that we would be looking at as part of deployment.
What other advice do I have?
Overall, I rate the solution a ten out of ten.
Wiz is the best CSPM
What do you like best about the product?
Wiz is great for identifying security issues in our cloud environments.
What do you dislike about the product?
There are no downsides to using wiz. It beats the brakes off of its competitors. Buy wiz
What problems is the product solving and how is that benefiting you?
Wiz provides us all of the context we need into our cloud environments and it allows us to be data driven with our approaches in the cloud.
I loved using the wiz for security tracking
What do you like best about the product?
Vulnerabilities at very specifics and at each level
What do you dislike about the product?
Some times it doesn't tag the right team and it has improved a lot
What problems is the product solving and how is that benefiting you?
Security vulnerabilities inAWS CLOUD
showing 111 - 120