We are using Wiz for many deployments in terms of vulnerability and also our Microsoft tenants, two different Microsoft tenants. We use it to manage our projects.
Wiz's automated compliance checks are the reason for our use case. I am actually working on the GCCR audit, which is the reason I was looking at it. There are still some things I need clarity on in my own meeting this morning.
External reviews
715 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Enables efficient management of vulnerabilities and project inventories
What is our primary use case?
What is most valuable?
I might not be able to give substantial information as I do not use the most valuable features of Wiz day-to-day in full capacity. I can check managing each of my projects and check vulnerabilities across each of those projects across each of the tenants. It allows you to manage your inventories that you have in different subscriptions or different tenants on your technology. Then you can configure different kinds of policies that you use around each of those.
What needs improvement?
I have not used Wiz in full capacity, so I cannot provide detailed improvement suggestions. I just started fully going through each feature to have a basic, comprehensive understanding of the product itself.
I cannot recommend Wiz to others until I have a clear understanding of its full capacity and benefits. In my organization, we have Rapid7, which is a vulnerability management tool, we have Wiz, and we have Microsoft Defender. I need to understand the reason for that decision in the first place to be able to look at the benefit to my organization.
I cannot recommend Wiz to others until I have a clear understanding of its full capacity and benefits. In my organization, we have Rapid7, which is a vulnerability management tool, we have Wiz, and we have Microsoft Defender. I need to understand the reason for that decision in the first place to be able to look at the benefit to my organization.
For how long have I used the solution?
I started with Wiz some months ago.
What was my experience with deployment of the solution?
I do not know how long it took for us to actually deploy Wiz, as I was not within the corporation when it was deployed.
What do I think about the stability of the solution?
So far, I would say Wiz is stable to the best of my knowledge.
What do I think about the scalability of the solution?
My thoughts on the scalability of Wiz so far is that it is scalable for me and good for us.
On a scale of one to ten, I would rate the scalability of Wiz as nine.
On a scale of one to ten, I would rate the scalability of Wiz as nine.
How are customer service and support?
I rate Wiz's customer service as ten out of ten.
How would you rate customer service and support?
Positive
How was the initial setup?
I find the initial setup of Wiz straightforward in my opinion.
On a scale of one to ten, I would rate how easy it is to set up Wiz as nine, if ten is the easiest.
On a scale of one to ten, I would rate how easy it is to set up Wiz as nine, if ten is the easiest.
What about the implementation team?
I do not know how many people it took to deploy Wiz. However, it is always the vendor and probably my director that was in the position which I was before.
What was our ROI?
I do not know if Wiz has impacted our operational costs related to cloud security or any kind of return on investment or operational impact that it has for us.
Which other solutions did I evaluate?
I do not really know the main differences between Wiz and other vulnerability management solutions such as Defender, but they perform similar functions.
When comparing Wiz to Defender, I think they do almost the same thing. The only difference is that Defender will give you RISK call. However, Wiz can give you a risk call against your investment because it is not a Microsoft solution.
When comparing Wiz to Defender, I think they do almost the same thing. The only difference is that Defender will give you RISK call. However, Wiz can give you a risk call against your investment because it is not a Microsoft solution.
What other advice do I have?
I work in accounting with Wiz in a large enterprise business.
Wiz does not require a lot of maintenance on our side. It is just ease of use. Wiz maintains most of it.
I have not used Wiz's AI capabilities to enhance our security threat detection as I just started looking at it. I have not really done much with that so far.
Overall, I would rate Wiz as good. I get everything I want, just the same way it is for every other solution, so I am going to rate it nine out of ten.
I rate Wiz a nine out of ten instead of a ten until I use the solution based on use cases and exploitation of the product, and what it gives me. If I am able to do that in full capacity, then I will give it ten. This is just based on what I still see so far. Until I get to see the benefits and everything, then my rating might be different in two weeks' time. At this moment, this is how it is.
RISC call is what I mean by that, RISC (R I S K).
Wiz does not require a lot of maintenance on our side. It is just ease of use. Wiz maintains most of it.
I have not used Wiz's AI capabilities to enhance our security threat detection as I just started looking at it. I have not really done much with that so far.
Overall, I would rate Wiz as good. I get everything I want, just the same way it is for every other solution, so I am going to rate it nine out of ten.
I rate Wiz a nine out of ten instead of a ten until I use the solution based on use cases and exploitation of the product, and what it gives me. If I am able to do that in full capacity, then I will give it ten. This is just based on what I still see so far. Until I get to see the benefits and everything, then my rating might be different in two weeks' time. At this moment, this is how it is.
RISC call is what I mean by that, RISC (R I S K).
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Wiz's Product Expansion And Its Impact On Cloud Security
What do you like best about the product?
1- The way Wiz proactively gives us threat info, especially those alerts that come with ready-to-use searches to see if we're affected, has been super helpful for finding and fixing important weaknesses fast. It's now just part of what our security team does every day.
2- The querying in Wiz, based on KQL, is seriously strong and flexible. Being able to create our own specific searches means our team can really dig deep and spot anomalies in our environment that we wouldn't be able to do otherwise.
3- It's cool to see Wiz moving into other areas like Wiz Code and Defend. It shows they're not standing still and could become a central place for all our cloud security tools, which would be awesome.
2- The querying in Wiz, based on KQL, is seriously strong and flexible. Being able to create our own specific searches means our team can really dig deep and spot anomalies in our environment that we wouldn't be able to do otherwise.
3- It's cool to see Wiz moving into other areas like Wiz Code and Defend. It shows they're not standing still and could become a central place for all our cloud security tools, which would be awesome.
What do you dislike about the product?
1 - Even though it's mostly comprehensive, the support for Google Cloud isn't quite as good as it is for AWS in some specific things, like how it handles tags and finds leftover domain names. It also feels like when we ask for GCP improvements, they don't always get get the attention they deserve.
2 - Most of the support folks we've dealt with have been fantastic, even helping us with things beyond what we originally asked. But with how fast Wiz is growing, we've noticed a slight dip in how quickly they get back to us sometimes, and the quality of the answers a be a bit hit or miss now and then.
2 - Most of the support folks we've dealt with have been fantastic, even helping us with things beyond what we originally asked. But with how fast Wiz is growing, we've noticed a slight dip in how quickly they get back to us sometimes, and the quality of the answers a be a bit hit or miss now and then.
What problems is the product solving and how is that benefiting you?
Wiz enhances our security posture by providing a valuable complement to our existing tools. Its risk-based approach is particularly beneficial, allowing us to prioritize and address the most critical issues within our cloud environment. Furthermore, we leverage Wiz to streamline our regulatory reporting obligations. The seamless integration with Jira has significantly simplified our workflows, and its connectivity with our XDR and SIEM platforms enables efficient threat identification and triage by our security operations team
Identifying vulnerabilities efficiently and providing remediation options
What is our primary use case?
We are primarily using Wiz for vulnerability scanning on our servers. If there is a vulnerability, we work on remediating it.
What is most valuable?
A valuable feature is that Wiz helps in identifying vulnerabilities. We can get information like remediation suggestions and links to understand vulnerabilities better. Additionally, we can download reports for all servers at the same time, which saves us the need to check each server individually.
What needs improvement?
In Wiz, if there is one vulnerability that occurs multiple times, it is listed only once. However, even if it is a single vulnerability in the same category, it repeats multiple times. This feature can be time-consuming as it requires continuous scrolling.
For how long have I used the solution?
I have been using Wiz for one year.
How are customer service and support?
Our team manager and the director have communicated with the vendor for support.
How would you rate customer service and support?
Neutral
What about the implementation team?
There is another team responsible for the deployment part, so I did not work on that.
Which other solutions did I evaluate?
We also use Qualys.
What other advice do I have?
We use both cloud and on-premises versions. I mainly work on the cloud side but we use on-premises as well. I would rate the overall solution an eight out of ten.
Which deployment model are you using for this solution?
Hybrid Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Other
Empowering Cloud Security and Risk Management
What do you like best about the product?
Wiz provides the visibility that a modern cloud-based company needs when it comes to prioritizing what really matters, maximizing the risk reduction, and the overall strength of security for the organization.
What do you dislike about the product?
The dashboard reporting could be improved. Currently, it lacks the ability to report on multiple projects in a single view, which would enhance its utility for managing complex environments.
What problems is the product solving and how is that benefiting you?
Wiz is assisting me in prioritizing critical aspects, enabling enhanced risk and vulnerability management, streamlined remediation operations, and improved resource allocation.
Wiz- The Wizard! It’s wonderul
What do you like best about the product?
Wiz connects to your cloud environment and gives you complete visibility and actionable context on your most critical misconfigurations in real-time, so your teams can proactively and continuously improve your cloud security posture.
The best part about Wiz is that is provides recommendations which can be applied to address the threat
The best part about Wiz is that is provides recommendations which can be applied to address the threat
What do you dislike about the product?
When I launch Wiz , I can view threats from all the projects . In our organisation we have more than 100 subscripts so it’s cumbersome to filter. Suggest Wiz to build a capability to only display threats related to the project which I am interested in. Like SNYk
What problems is the product solving and how is that benefiting you?
Wiz identifies vulnerabilities, misconfigurations in cloud environment (all Azure resource) also scanning code to find out the risk
Visibility and addressing core issues
What do you like best about the product?
Wiz provides a single pane of glass view across all cloud environments. It only flags issues that requires immediate attention based on the exposure and criticality. There are many features that exists already and added continuosly. Security score, framework and threat impacts are taken into account. Visual understanding of the issue with suggestion of remedial action.
What do you dislike about the product?
Nothing major to call out, may be just further integrations with other security platforms
What problems is the product solving and how is that benefiting you?
Wiz provides us with a visibility of issues relating to vulnerabilities or misconfigurations that could be exploit. It helps us to identify and prioritise them. Integration with Teams and JIRA also helps us to address them swiftly.
One of the best security solutions I have ever used
What do you like best about the product?
- Very clean UI
- Impressive functionality and detailed functions, you always find a new way to tackle problems
- No alert fatigue due to the very good contextualization
- Fast and supportive support team
- Onboarding was the smoothest process I have ever experienced with a provider
- Engineers who work with Wiz love it, which is not usual for a security tool, I would say
- Impressive functionality and detailed functions, you always find a new way to tackle problems
- No alert fatigue due to the very good contextualization
- Fast and supportive support team
- Onboarding was the smoothest process I have ever experienced with a provider
- Engineers who work with Wiz love it, which is not usual for a security tool, I would say
What do you dislike about the product?
- Sometimes you are overwhelmed by the many ways to tackle issues
- A few teething problems in some areas, but really negligible
- A few teething problems in some areas, but really negligible
What problems is the product solving and how is that benefiting you?
- Holistic overview of the entire cloud infrastructure
- Contextualization of all cloud resources
- Inventory
- Exploration of logs
- Contextualization of all cloud resources
- Inventory
- Exploration of logs
Quick setup, fast value, clear visibility, and actionable cloud security.
What do you like best about the product?
Wiz was quick and easy to set up. We found once it was set up there was a quick realization of value with the tool. It integrated quickly and smoothly with our other tools via APIs. The documentation was easy to understand and support was very helpful with guiding us through the entire set up. The interface is nice and clean with an intuitive onboarding guide built into the dashboard. We really like how quickly Wis was able to identify critical risks as well as place prioritization based on impact. This provided actionable insights into the cloud environment we did not have previously. I really like the agentless architecture that keeps things lightweight and easy to adapt the dynamic nature of the cloud.
What do you dislike about the product?
While Wiz excels in many areas, its pricing can be on the higher side for smaller teams or organizations, and the vast amount of data and alerts can sometimes feel overwhelming without proper tuning.
What problems is the product solving and how is that benefiting you?
Wiz solves the tough challenge of getting full visibility across our multiple cloud environments by giving a clear, comprehensive view of all cloud assets and their vulnerabilities. One of its biggest strengths is its agentless approach with no need to install or manage vulnerability agents every time a VM spins up or shuts down. This was a challenge in ensuring every VM had a vulnerability agent on it. It even takes on the issues of serverless infrastructure like Docker and Kubernetes.
Great security copilot
What do you like best about the product?
Wiz being Kubernetes native gives it a huge leg up in this area. It's a great copilot for monitoring security issues in the environment and simple to deploy.
What do you dislike about the product?
For them to surface thing simplistically takes complex amounts of background logic they will often miss chains of logic within. For example, failing to build a path from an ILB all the way to the backend pool it supports with a vulnerability in it. These don't happen too often.
What problems is the product solving and how is that benefiting you?
Wiz is helping us shift further left by exposing issues in the pipeline early to the committer of the code, but also helping us visually dig through existing runtime exposures with a clean UI.
Setting the Standard for cloud security products.
What do you like best about the product?
After more then 2 years of managing and deploying Wiz platform on our company i can say that this is one of the best in class cloud security products .
Integration and ease of total implementation compare to other vendors was amazing.
the new features that Wiz deploying to the product is very fast.
Customer support (specialy the tech sales team ) are top in compare to other vendors as well.
Integration and ease of total implementation compare to other vendors was amazing.
the new features that Wiz deploying to the product is very fast.
Customer support (specialy the tech sales team ) are top in compare to other vendors as well.
What do you dislike about the product?
Only thing i can think about is adding more exclusions capabilities to the Issues and Policies for K8s.
Granularity is very important on large scale of deployments.
Granularity is very important on large scale of deployments.
What problems is the product solving and how is that benefiting you?
The main issue that Wiz solve was getting clear visability for all the cloud environment + having the ability to check and handle the most important issues .
showing 11 - 20