Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
The perfect auditor to acquire a better Azure security posture
What do you like best about the product?
The intuitive nature of the tool and its easy use. Due to its powerful engine, it allows you to have a real-time snapshot of the main risks in the Azure environment and, above all, it clearly indicates how to correct them.
What do you dislike about the product?
Due to its great functionality, it is necessary to spend many hours becoming familiar with the tool to exploit its full potential. They have dedicated a lot to publishing small videos as a guide but it still takes time to know it in detail.
What problems is the product solving and how is that benefiting you?
The migration of the On-prem environment is increasingly necessary and Azure does not offer the visibility that WIZ offers us. The systems and integration area moves much faster than the security area and therefore it takes us longer to identify vulnerabilities and risks that need to be corrected. In this sense, WIZ offers us an immediate position on our environment in terms of security.
- Leave a Comment |
- Mark review as helpful
Wiz : Finally the vulnerability management tool I was looking for !
What do you like best about the product?
Wiz is very easy to install. Nonetheless it can perform great things. Inventories, patch management infos, use of different compiance frameworks. The remediation steps are also well detailed making resolution of issues very easy.
What do you dislike about the product?
Sometimes confusing, the ways to find the right information could be improved. Adding some sorting in columns would be nice. It then takes some time to master the interface.
What problems is the product solving and how is that benefiting you?
Wiz provides all the necessary information about the company assets in a single interface. You can then see the vulnerabilities, the external posture, issues with configuration, data issues,... All in one place
Refreshing, easy to use and full of features
What do you like best about the product?
As an azure cloud user we appreciate greatly the added value over Azure advisor. It allows us to prioritize vulnerabilities and focus on those with the highest risk.
We also see that, although already a lot of functionality exists, a constant flow of new features are being added, all of this implemented with a single click.
We also love the regular followup meetings and feel we are heard and our needs are really what they need. With NIS2 coming up it really becomes something crucial in managing our assets.
We also see that, although already a lot of functionality exists, a constant flow of new features are being added, all of this implemented with a single click.
We also love the regular followup meetings and feel we are heard and our needs are really what they need. With NIS2 coming up it really becomes something crucial in managing our assets.
What do you dislike about the product?
Wiz is activated on a subscription which is an all or nothing approach. Although this seems the right way to do, a more granular approach would be better manageable from a timing and budget perspective.
What problems is the product solving and how is that benefiting you?
Next to the typical asset inventory, it is providing a clear view on the attack surface and helping us to identify vulnerabilites and setting the right priorities.
Wiz will take you to your next security level
What do you like best about the product?
I like Wiz because it elevates my security to the next level. Its advanced features and user-friendly interface provide comprehensive protection and ensure that my data and systems are always secure. With Wiz, I have peace of mind knowing that my security measures are robust and reliable.
The deployment of the product is very easy and in the organization level so you can be sure you won't have any blindspots.
We are using Wiz on a daily based as part of our oncall shifts, a lot around the threat center and critical issues.
Also we are using the API of Wiz for external automation and process to enrich our data with more cloud data.
The deployment of the product is very easy and in the organization level so you can be sure you won't have any blindspots.
We are using Wiz on a daily based as part of our oncall shifts, a lot around the threat center and critical issues.
Also we are using the API of Wiz for external automation and process to enrich our data with more cloud data.
What do you dislike about the product?
If I don;t like something we give them feedback and they fix it :)
What problems is the product solving and how is that benefiting you?
Identify what you don't know you didn't know.
Help with remediation steps to quickly & independently solve the issue by the DevOps team.
Identify the scope of the issues.
Help with remediation steps to quickly & independently solve the issue by the DevOps team.
Identify the scope of the issues.
Wiz gives us confidence and peace of mind.
What do you like best about the product?
Wiz has proven to be an invaluable asset in our cybersecurity toolkit. One of the best features for us is the dashboard overview that presents actionable insights that have a direct, measurable impact on our overall security posture using their "Toxic Three" formula. Not only does it tell you what is wrong, but it also explains why it is an issue and proposes a solution including relevant instructions. This approach allows our team to prioritize the real important and critical issues without getting bogged down by a noisy alert system. It is really easy to create a dashboard of widgets that you deem most important and use that to display on a dedicated monitor.
We especially appreciate the rapid anomaly detection capabilities. It consistently identifies unusual patterns or behaviors in our environment with remarkable speed and accuracy, enabling us to respond swiftly to potential threats.
An other feature that has proven valuable is the compliance posture reporting. As we pursue SOC 2 certification, and want to maintain several already achived cerifications, these reports have been instrumental in guiding our compliance efforts. They provide a clear, comprehensive view of our current compliance status, highlighting areas that need attention and offering specific recommendations for improvement. This has streamlined our certification process considerably.
We where pleasantly surprised by how easy it was to implement and intigrate Wiz into our environment. Together with a dedicated customer support agent we've had our whole enviroment monitored in a couple of hours.
We especially appreciate the rapid anomaly detection capabilities. It consistently identifies unusual patterns or behaviors in our environment with remarkable speed and accuracy, enabling us to respond swiftly to potential threats.
An other feature that has proven valuable is the compliance posture reporting. As we pursue SOC 2 certification, and want to maintain several already achived cerifications, these reports have been instrumental in guiding our compliance efforts. They provide a clear, comprehensive view of our current compliance status, highlighting areas that need attention and offering specific recommendations for improvement. This has streamlined our certification process considerably.
We where pleasantly surprised by how easy it was to implement and intigrate Wiz into our environment. Together with a dedicated customer support agent we've had our whole enviroment monitored in a couple of hours.
What do you dislike about the product?
While the "Toxic Three" feature helps prioritize critical issues, the general vulnerability findings page can still be quite noisy. This is somewhat inherent to the nature of comprehensive vulnerability scanning, but further refinement in this area would be appreciated.
The ability to mark findings or rules for future ignoring is useful, but the process isn't always consistent. Sometimes it prompts for a reason (which is helpful for audits), while other times it simply ignores the rule without explanation.
The same goes for marking findings as resolved. Most often you can mark a finding as resolved and allowing you to connect a (Jira) ticket and add some additional information. Other times it can only be resolved by making sure the scanner does not detect the issue anymore, effectifly solving the issue, which is beneficial but not always possible.
The ability to mark findings or rules for future ignoring is useful, but the process isn't always consistent. Sometimes it prompts for a reason (which is helpful for audits), while other times it simply ignores the rule without explanation.
The same goes for marking findings as resolved. Most often you can mark a finding as resolved and allowing you to connect a (Jira) ticket and add some additional information. Other times it can only be resolved by making sure the scanner does not detect the issue anymore, effectifly solving the issue, which is beneficial but not always possible.
What problems is the product solving and how is that benefiting you?
Wiz helps us manage our cloud security more effectively by focusing on key issues. It filters out less important alerts and highlights the most critical problems, allowing us to respond quickly to potential threats. Because of the (cloud) misconfiguration detection and the always updated best practice rules from Wiz, we are confident in our current setup and environment, which gives us peace of mind.
It has also been very helpful with our compliance efforts, especially for SOC 2 certification, by providing clear reports on our compliance status and pointing us to areas that where in need of attention or implementation.
It has also been very helpful with our compliance efforts, especially for SOC 2 certification, by providing clear reports on our compliance status and pointing us to areas that where in need of attention or implementation.
Game Changer for Cloud Asset; Cloud Application & Cloud Workload Protection
What do you like best about the product?
Relatively easy to deploy; smart user - friendly interface; scales easily across mutlicloud environments and agently deployment makes it ideal for easy rollout across any environment.
What do you dislike about the product?
Bundled pricing can be trickly to estimate and forecast especially in high growth infrastructure environments.
What problems is the product solving and how is that benefiting you?
Wiz gives us visibility into our cloud assets (applications, workloads) across multiple environments - primarily AWS and GCP in our case. We are able to quickly identity risks, vulnerabilities, etc. to understand our security posture, however the real sweet spot for Wiz is its ability to bring context into the decision making process. It considers what vulnerabilities, configurations or issues make up 'toxic combinations' i.e., areas of most importance and adverse impact.
Being able to provide vulnerability & configuration management based on priority saves time end effort.
The automated remediation process & system integrations (integration into our CICD process) are the most exciting feature about Wiz providing real time insights as applications are progressed from development to production environments.
Being able to provide vulnerability & configuration management based on priority saves time end effort.
The automated remediation process & system integrations (integration into our CICD process) are the most exciting feature about Wiz providing real time insights as applications are progressed from development to production environments.
CTO
What do you like best about the product?
Detail information on your vulnerabilities and solution
What do you dislike about the product?
So far I have not found anything that I dislike.
What problems is the product solving and how is that benefiting you?
Cloud monitoring
A Single Pane of Glass for our GCP Security Needs
What do you like best about the product?
Wiz provides incredible coverage across our cloud environments. The inclusion of raw logs and the ability to search and write custom threat detection rules against these logs saves us from having to send them to a SIEM/Data Warehouse, normalize them, and build detections against them. Additionally, the hundreds or thousands of threat detection rules included in Wiz are overall very high quality and provide a huge degree of coverage on top of the dozens of custom company-specific rules we've created.
Wiz regularly releases useful new features and integrations and the level of support we have received has generally been top-tier. The detailed system activity log and audit logs also increase our confidence that we will be able to view any actions taken inside of our Wiz console - either from our own users or from Wiz.
Onboarding Wiz was a breeze and their documentation is excellent and covers the vast majority of questions that have come up during our usage of the product.
Wiz regularly releases useful new features and integrations and the level of support we have received has generally been top-tier. The detailed system activity log and audit logs also increase our confidence that we will be able to view any actions taken inside of our Wiz console - either from our own users or from Wiz.
Onboarding Wiz was a breeze and their documentation is excellent and covers the vast majority of questions that have come up during our usage of the product.
What do you dislike about the product?
To date, we haven't had any major issues using Wiz. Their usage licensing model means as you scale up your compute and data resources, you will necessarily increase your utilization (and therefore cost), but I appreciate all the tooling they include to help you both visualize, calculate, and fine tune your utilization.
What problems is the product solving and how is that benefiting you?
* Centralizing all of our security logs from cloud providers
* Providing coverage via Threat Detection Rules
* Helping us identify misconfigurations in our cloud platforms
* Helping us cut costs by identifying assets that are oversized or unused
* Integrating with third-party tooling (Google Workspace, Github, etc)
* Easily integrated with other tools
* Flexible and well documented API
* Providing coverage via Threat Detection Rules
* Helping us identify misconfigurations in our cloud platforms
* Helping us cut costs by identifying assets that are oversized or unused
* Integrating with third-party tooling (Google Workspace, Github, etc)
* Easily integrated with other tools
* Flexible and well documented API
Very good
What do you like best about the product?
The amount of scope/integrations and the ease of implementation as well
What do you dislike about the product?
This amount of integrations also creates an initial struggle on how to navigate inside the tool
What problems is the product solving and how is that benefiting you?
External perimeter management for cloud was the main gap
Visibility into your cloud env
What do you like best about the product?
The intuitive and user-friendly, making navigation and use straightforward.
The customer support is amazing! They are always available for urgent situations, with representatives ready to assist and jump on calls as needed.
Security graph allows you proactive threat hunting by utilizing Wiz capabilities effectively.
The customer support is amazing! They are always available for urgent situations, with representatives ready to assist and jump on calls as needed.
Security graph allows you proactive threat hunting by utilizing Wiz capabilities effectively.
What do you dislike about the product?
In complex scenarios, sometimes, it is difficult to determine why an alert is high or critical. There are many factors that determine the severity, and sometimes it is not clear what is the root cause.
What problems is the product solving and how is that benefiting you?
Wiz has helped us gain a unique and comprehensive view of our company's security posture. Integrating AWS, GCP, and Azure into a single dashboard has been incredible.
showing 51 - 60