Wiz: Simplifying Cloud Security Visibility and Risk Management
What do you like best about the product?
Wiz offers comprehensive visibility across cloud infrastructure without requiring agents, making it incredibly easy to deploy and scale. Its security graph provides a clear view of vulnerabilities, misconfigurations, and potential attack paths in a unified interface. The platform integrates seamlessly with major cloud providers and supports rapid detection and remediation workflows, which helps security teams respond faster.
What do you dislike about the product?
While powerful, the interface can feel overwhelming at first due to the sheer volume of data presented. Custom policy creation and fine-tuning require a learning curve. Additionally, pricing may be a concern for smaller organizations or teams with limited cloud footprints.
What problems is the product solving and how is that benefiting you?
Wiz is solving the problem of fragmented and complex cloud security by providing agentless, full-stack visibility into cloud infrastructure. It identifies vulnerabilities, misconfigurations, secrets, malware, and exposed services across virtual machines, containers, and serverless functions—all in a single, unified platform.
This benefits me by drastically reducing the time and effort required to gain security insights across multi-cloud environments. Instead of juggling multiple tools or manual audits, I get a clear risk prioritization view that helps focus on what truly matters—like exploitable paths attackers might use. It improves security posture, supports compliance efforts, and enables faster remediation with less operational overhead.
WIZ a CSPM for CISO's
What do you like best about the product?
powerful tools bring a lot of features and innovations in one platform
What do you dislike about the product?
not very intuitive , controls and issues need to be defined separately
What problems is the product solving and how is that benefiting you?
mainly CSPM and vulnerability management on hybrid and decentralized could environment including aws and gcp
Enables efficient management of vulnerabilities and project inventories
What is our primary use case?
We are using
Wiz for many deployments in terms of vulnerability and also our Microsoft tenants, two different Microsoft tenants. We use it to manage our projects.
Wiz's automated compliance checks are the reason for our use case. I am actually working on the GCCR audit, which is the reason I was looking at it. There are still some things I need clarity on in my own meeting this morning.
What is most valuable?
I might not be able to give substantial information as I do not use the most valuable features of Wiz day-to-day in full capacity. I can check managing each of my projects and check vulnerabilities across each of those projects across each of the tenants. It allows you to manage your inventories that you have in different subscriptions or different tenants on your technology. Then you can configure different kinds of policies that you use around each of those.
What needs improvement?
I have not used Wiz in full capacity, so I cannot provide detailed improvement suggestions. I just started fully going through each feature to have a basic, comprehensive understanding of the product itself.
I cannot recommend Wiz to others until I have a clear understanding of its full capacity and benefits. In my organization, we have Rapid7, which is a vulnerability management tool, we have Wiz, and we have Microsoft Defender. I need to understand the reason for that decision in the first place to be able to look at the benefit to my organization.
For how long have I used the solution?
I started with Wiz some months ago.
What was my experience with deployment of the solution?
I do not know how long it took for us to actually deploy Wiz, as I was not within the corporation when it was deployed.
What do I think about the stability of the solution?
So far, I would say Wiz is stable to the best of my knowledge.
What do I think about the scalability of the solution?
My thoughts on the scalability of Wiz so far is that it is scalable for me and good for us.
On a scale of one to ten, I would rate the scalability of Wiz as nine.
How are customer service and support?
I rate Wiz's customer service as ten out of ten.
How was the initial setup?
I find the initial setup of Wiz straightforward in my opinion.
On a scale of one to ten, I would rate how easy it is to set up Wiz as nine, if ten is the easiest.
What about the implementation team?
I do not know how many people it took to deploy Wiz. However, it is always the vendor and probably my director that was in the position which I was before.
What was our ROI?
I do not know if Wiz has impacted our operational costs related to cloud security or any kind of return on investment or operational impact that it has for us.
Which other solutions did I evaluate?
I do not really know the main differences between Wiz and other vulnerability management solutions such as Defender, but they perform similar functions.
When comparing Wiz to Defender, I think they do almost the same thing. The only difference is that Defender will give you RISK call. However, Wiz can give you a risk call against your investment because it is not a Microsoft solution.
What other advice do I have?
I work in accounting with Wiz in a large enterprise business.
Wiz does not require a lot of maintenance on our side. It is just ease of use. Wiz maintains most of it.
I have not used Wiz's AI capabilities to enhance our security threat detection as I just started looking at it. I have not really done much with that so far.
Overall, I would rate Wiz as good. I get everything I want, just the same way it is for every other solution, so I am going to rate it nine out of ten.
I rate Wiz a nine out of ten instead of a ten until I use the solution based on use cases and exploitation of the product, and what it gives me. If I am able to do that in full capacity, then I will give it ten. This is just based on what I still see so far. Until I get to see the benefits and everything, then my rating might be different in two weeks' time. At this moment, this is how it is.
RISC call is what I mean by that, RISC (R I S K).
Identifying vulnerabilities efficiently and providing remediation options
What is our primary use case?
We are primarily using
Wiz for vulnerability scanning on our servers. If there is a vulnerability, we work on remediating it.
What is most valuable?
A valuable feature is that
Wiz helps in identifying vulnerabilities. We can get information like remediation suggestions and links to understand vulnerabilities better. Additionally, we can download reports for all servers at the same time, which saves us the need to check each server individually.
What needs improvement?
In Wiz, if there is one vulnerability that occurs multiple times, it is listed only once. However, even if it is a single vulnerability in the same category, it repeats multiple times. This feature can be time-consuming as it requires continuous scrolling.
For how long have I used the solution?
I have been using Wiz for one year.
How are customer service and support?
Our team manager and the director have communicated with the vendor for support.
What about the implementation team?
There is another team responsible for the deployment part, so I did not work on that.
Which other solutions did I evaluate?
What other advice do I have?
We use both cloud and on-premises versions. I mainly work on the cloud side but we use on-premises as well. I would rate the overall solution an eight out of ten.
Empowering Cloud Security and Risk Management
What do you like best about the product?
Wiz provides the visibility that a modern cloud-based company needs when it comes to prioritizing what really matters, maximizing the risk reduction, and the overall strength of security for the organization.
What do you dislike about the product?
The dashboard reporting could be improved. Currently, it lacks the ability to report on multiple projects in a single view, which would enhance its utility for managing complex environments.
What problems is the product solving and how is that benefiting you?
Wiz is assisting me in prioritizing critical aspects, enabling enhanced risk and vulnerability management, streamlined remediation operations, and improved resource allocation.
Wiz- The Wizard! It’s wonderul
What do you like best about the product?
Wiz connects to your cloud environment and gives you complete visibility and actionable context on your most critical misconfigurations in real-time, so your teams can proactively and continuously improve your cloud security posture.
The best part about Wiz is that is provides recommendations which can be applied to address the threat
What do you dislike about the product?
When I launch Wiz , I can view threats from all the projects . In our organisation we have more than 100 subscripts so it’s cumbersome to filter. Suggest Wiz to build a capability to only display threats related to the project which I am interested in. Like SNYk
What problems is the product solving and how is that benefiting you?
Wiz identifies vulnerabilities, misconfigurations in cloud environment (all Azure resource) also scanning code to find out the risk
Visibility and addressing core issues
What do you like best about the product?
Wiz provides a single pane of glass view across all cloud environments. It only flags issues that requires immediate attention based on the exposure and criticality. There are many features that exists already and added continuosly. Security score, framework and threat impacts are taken into account. Visual understanding of the issue with suggestion of remedial action.
What do you dislike about the product?
Nothing major to call out, may be just further integrations with other security platforms
What problems is the product solving and how is that benefiting you?
Wiz provides us with a visibility of issues relating to vulnerabilities or misconfigurations that could be exploit. It helps us to identify and prioritise them. Integration with Teams and JIRA also helps us to address them swiftly.
Great security copilot
What do you like best about the product?
Wiz being Kubernetes native gives it a huge leg up in this area. It's a great copilot for monitoring security issues in the environment and simple to deploy.
What do you dislike about the product?
For them to surface thing simplistically takes complex amounts of background logic they will often miss chains of logic within. For example, failing to build a path from an ILB all the way to the backend pool it supports with a vulnerability in it. These don't happen too often.
What problems is the product solving and how is that benefiting you?
Wiz is helping us shift further left by exposing issues in the pipeline early to the committer of the code, but also helping us visually dig through existing runtime exposures with a clean UI.
Setting the Standard for cloud security products.
What do you like best about the product?
After more then 2 years of managing and deploying Wiz platform on our company i can say that this is one of the best in class cloud security products .
Integration and ease of total implementation compare to other vendors was amazing.
the new features that Wiz deploying to the product is very fast.
Customer support (specialy the tech sales team ) are top in compare to other vendors as well.
What do you dislike about the product?
Only thing i can think about is adding more exclusions capabilities to the Issues and Policies for K8s.
Granularity is very important on large scale of deployments.
What problems is the product solving and how is that benefiting you?
The main issue that Wiz solve was getting clear visability for all the cloud environment + having the ability to check and handle the most important issues .
Wiz - much better than the rest!
What do you like best about the product?
Having used many other CSPM and CNAPP tools, I've found Wiz to be by far the best. It is incredibly easy to use and provides a great amount of detail - we have teams using Wiz just to understand our environments better, regardless of the security findings (which are also incredibly rich). I'm in the tool daily, for all manner of reasons - inventory, security findings, end of life technologies, compliance reporting, absolutely all sorts.
Implementation was a breeze, including integrations with Jira which we use for ticketing - unlike many of the competitors the integration is way more developed so we can get issues to our teams much quicker and in a reliable way.
Customer support has been fantastic, with dedicated resource as well as an easy to use support portal.
What do you dislike about the product?
It does feel like Wiz has expanded very quickly so it sometimes feels like parts are a little disjointed. The querying is very powerful but sometimes when you have results in a table there are quality of life items missing - for example you can only sort by specific fields, even though you have many columns available.
They have also been changing the licensing model recently which has been quite disappointing - previously as an Advanced customer we had access to everything, but now there are a number of add-ons. Even more disappointingly, this wasn't for new features but some features were taken from our license and added to an add-on.
What problems is the product solving and how is that benefiting you?
Wiz covers our cloud estate and ensures we have visibility of the risks in it - whether that's misconfigurations, vulnerabilities or data findings. This helps us to remediate and fix these risks. We also use Wiz for shifting left in our SDLC.
