Wiz Go Bundle
WizReviews from AWS customer
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
752 reviews
from
External reviews are not included in the AWS star rating for the product.
Wiz Delivers Outstanding CSPM and Continuous Improvements
What do you like best about the product?
As a second-time customer of Wiz, I knew the CSPM was great and research told me it was still the best. This feature was even better than I remembered, as Wiz had not rested on their laurels and had continually improved over time! It has helped me get to zero critical issues in less than 6 months with the issue prioritisation and clear remedial steps which I can share with the teams responsible. No excuse for not having a well refined Jira, or not knowing what we really asking for - the details are in the language of the remediator, spoon-fed by Wiz!
Now, we use it all the time to proactively monitor our systems, look for config or vulnerabilities, and whenever I see a new Critical or High issue we immediately jump on it to triage. This means we have got managing Critical config issues down to similar remediation timelines as a Critical security incident and indeed in most cases we treat them almost identically (urgent conf calls, drop tools and huddle to fix etc.).
When it came to implementing Wiz, it was simply as quick as hooking up to our Cloud instances, providing the access, and sitting back to watch the fireworks. During the implementation the support was outstanding, and Wiz spent so much time with us and our different teams showing them how to use it, how simple it was to integrate with other tools, how we could extend visibility to the max, how to interpret the results, get good report data to the right people etc.. This operationalisation help ensure Wiz was used by multiple teams - although I think there's always room for even more engagement internally.
After implementing the engagement didn't stop though, and we still have a regular call with our TAM who is always happy to demo to some new users, or to help tweak some settings or help with some report or other. I don't think we've ever found the limit of engagement and Wiz seems happy to provide whatever level of interaction we need to get where we want to go.
Now, we use it all the time to proactively monitor our systems, look for config or vulnerabilities, and whenever I see a new Critical or High issue we immediately jump on it to triage. This means we have got managing Critical config issues down to similar remediation timelines as a Critical security incident and indeed in most cases we treat them almost identically (urgent conf calls, drop tools and huddle to fix etc.).
When it came to implementing Wiz, it was simply as quick as hooking up to our Cloud instances, providing the access, and sitting back to watch the fireworks. During the implementation the support was outstanding, and Wiz spent so much time with us and our different teams showing them how to use it, how simple it was to integrate with other tools, how we could extend visibility to the max, how to interpret the results, get good report data to the right people etc.. This operationalisation help ensure Wiz was used by multiple teams - although I think there's always room for even more engagement internally.
After implementing the engagement didn't stop though, and we still have a regular call with our TAM who is always happy to demo to some new users, or to help tweak some settings or help with some report or other. I don't think we've ever found the limit of engagement and Wiz seems happy to provide whatever level of interaction we need to get where we want to go.
What do you dislike about the product?
Nothing to dislike, although of course I wish it could be cheaper :-)
What problems is the product solving and how is that benefiting you?
For us, it was that we have so many different cloud environments and flavours. By the nature of our service, we deliver stand-alone clouds, private clouds, different cloud vendors etc. for different products and regions and customers. This is complex and incredibly difficult to get an holistic view across them as CISO, let alone to prioritise and manage where the risks are across this disconnected landscape. Wiz pulls it all together into one window from which we can easily distribute the effort out to the teams responsible for those very different environments and provide a consistent level of detail and track in a consistent manner. This allows me to do a lot less chasing and a lot more governing. It simply makes the security team hugely more leveraged and able to span so much more than without. I can't even imagine how we'd do that without Wiz, and we'd be in a much less secure state, less able to identify and respond to immediate risks (config and vuln issues). Wiz solves this very thoroughly.
A Force Multiplier for Lean Security Teams
What do you like best about the product?
The agentless installation at Suki was incredibly smooth. We were able to get 100% visibility across our cloud environment immediately without the friction of deploying agents. The dashboards are truly world-class; they don't just show data, they tell a story.
The biggest upside is the prioritization. Instead of a flat list of thousands of alerts, Wiz uses its Security Graph to identify 'toxic combinations'—helping us focus on the 1% of issues that actually pose a reachable risk. Lastly, the support team is exceptional. They are highly responsive and act more like partners than a standard help desk.
The biggest upside is the prioritization. Instead of a flat list of thousands of alerts, Wiz uses its Security Graph to identify 'toxic combinations'—helping us focus on the 1% of issues that actually pose a reachable risk. Lastly, the support team is exceptional. They are highly responsive and act more like partners than a standard help desk.
What do you dislike about the product?
While the visibility is unmatched, the sheer volume of data can lead to initial alert fatigue. The platform is so comprehensive that it requires significant tuning to ensure developers aren't overwhelmed by non-critical findings.
There is also a slight workflow gap for developers. While Wiz is great at identifying the problem, the transition from 'finding an issue' to 'fixing it' still requires manual effort. Navigating the Security Graph can be a bit of a learning curve for non-security users who just want to know exactly what code to change.
There is also a slight workflow gap for developers. While Wiz is great at identifying the problem, the transition from 'finding an issue' to 'fixing it' still requires manual effort. Navigating the Security Graph can be a bit of a learning curve for non-security users who just want to know exactly what code to change.
What problems is the product solving and how is that benefiting you?
We have a very lean security team. Before Wiz, we were drowning in noisy, low-context alerts. Wiz has solved this by automating the prioritization of issues.
For Security: It acts as a force multiplier. Our current security engineers can manage a complex cloud footprint that would typically require a much larger team.
For Developers and SRE: We’ve given them their time back. We no longer bother them with irrelevant vulnerabilities; we only surface the "reachable" risks that actually matter. This has improved our developer and SRE velocity and built a culture of trust between security and engineering.
For Security: It acts as a force multiplier. Our current security engineers can manage a complex cloud footprint that would typically require a much larger team.
For Developers and SRE: We’ve given them their time back. We no longer bother them with irrelevant vulnerabilities; we only surface the "reachable" risks that actually matter. This has improved our developer and SRE velocity and built a culture of trust between security and engineering.
Exceptional Cloud Visibility and Effortless Integration
What do you like best about the product?
Wiz provides exceptional visibility across cloud environments, making it easy to identify misconfigurations, vulnerabilities, and compliance gaps in real time. The platform’s agentless architecture is a huge advantage it deploys quickly without impacting performance. The dashboard is intuitive, and the contextual risk prioritisation helps security teams focus on what truly matters. Integration with existing workflows is seamless, which saves time and reduces complexity.
What do you dislike about the product?
While Wiz is powerful, the pricing can be a barrier for smaller organisations. Some advanced features require additional configuration, which can be time-consuming for teams without dedicated cloud security expertise. The alert volume can feel overwhelming at first, and tuning policies to reduce noise takes effort. Reporting capabilities, although good, could benefit from more customisation options for executive-level summaries.
What problems is the product solving and how is that benefiting you?
Faster incident triage , earlier identity‑risk detection, lightweight audit readiness via scheduled reports, and better threat‑led prioritisation all of which reduce operational overhead while strengthening our cloud security posture.
Cloud security Swiss army knife
What do you like best about the product?
In-depth cloud asset configuration visibility, code-to-cloud capabilities, vulnerability management, ITSM tool integration, trends and reporting dashboards.
What do you dislike about the product?
Menus are sometimes cluttered, findings can get overwhelming and you would need good prioritization procedures, naming conventions are a bit difficult to explain to security auditors looking for overall vulnerabilities in a system (between findings and issues)
What problems is the product solving and how is that benefiting you?
Cloud vulnerability management
Comprehensive, Actionable Security Insights Made Simple
What do you like best about the product?
Wiz offers comprehensive, agentless visibility and excels at turning complex data into clear, actionable, and prioritized security insights.
What do you dislike about the product?
I appreciate everything about Wiz and the range of capabilities it offers.
What problems is the product solving and how is that benefiting you?
The issues that Wiz addresses—such as removing security blind spots, automating the correlation of threats, and delivering actionable insights—help make the entire technology ecosystem more secure. When the cloud environment is safer, it results in higher-quality and more secure information being accessible to users everywhere. This, in turn, directly supports my ability to offer reliable and accurate answers.
Wiz: A Comprehensive Cloud Security Visibility Platform
What do you like best about the product?
A clear map of all interconnected resources, illustrating how an attack could propagate. This capability is missing in AWS Security Hub and is a key strength of Wiz
What do you dislike about the product?
One drawback is that the platform has a learning curve. It takes some time to fully understand the interface and make the most of all the features
What problems is the product solving and how is that benefiting you?
Wiz centralizes our AWS configuration data, enabling rapid identification of misconfigurations such as overly permissive security groups and outdated Lambda runtimes. Its dashboards save significant time by providing a clear view of priorities and risk levels.
Clear Results and Tailored Guidance with Effortless Configuration
What do you like best about the product?
The results are clear, accurate, and prioritized. The remediation guidance is clear, concise, and can be tailored to the specific resource. And the configuration/setup as well as integration points, was simple and broad without being overly permissive. The company vision is ambitious and they deliver. The support team is extremely available and has not seen the usual turnover.
What do you dislike about the product?
The interface is not always intuitive, and updates are pushed very frequently often breaking documentation links and changing processes with little to no notice.
What problems is the product solving and how is that benefiting you?
Wiz is giving us a clear picture of what we have in our environments and how secure our applications are. When we need to assure compliance, either for clients or for certification, its findings are reliable and present without additional effort. And when cloud/app events and incidents inevitably happen, we can swarm and resolve the underlying risks much quicker than before.
Outstanding Cloud Visibility Platform
What do you like best about the product?
It is a really great SAAS paltform giving complete visibility of your cloud environment
What do you dislike about the product?
can be a bit complex to understand in the beginning
What problems is the product solving and how is that benefiting you?
It provides us with comprehensive visibility into our cloud environment.
Democratizing Security Through Attack Path Visualization
What do you like best about the product?
The attack path visualization feature allows engineers to grasp and prioritize genuine risks, rather than relying solely on abstract CVSS scores. The platform provides clear explanations of risks, which helps secure engineer buy-in and encourages independent remediation. This has led to real security democratization, easing the burden on security leadership and reducing bottlenecks.
What do you dislike about the product?
The input validation for connector credentials is weak, which creates unnecessary friction when first integrating with the cloud. Additionally, the user experience is clearly designed with enterprises in mind, resulting in a steep learning curve that can be challenging for smaller teams.
What problems is the product solving and how is that benefiting you?
Benefits of Implementing Wiz
Background
In our company, I was the sole person with specialized security expertise. As the business expanded and our product offerings grew, the attack surface increased, and security audits began to take up a significant portion of my time. This made it difficult for me to concentrate on my primary responsibilities as CTO.
Previous Challenges
To tackle this, I aimed to make security a shared responsibility throughout the organization. However, with tools from other vendors, although we could track security issues as inventory items, we were unable to give our engineers the autonomy to proactively resolve these issues themselves.
Results from Wiz Implementation
Wiz stands out by offering thorough attack path visualization with Wiz Security Graph, clear explanations of the risks associated with each issue, and practical remediation guidance.
Thanks to these features, our engineering teams are now able to independently resolve most security issues. Consequently, we have improved our overall security posture and greatly reduced the amount of time I personally need to dedicate to security operations.
Background
In our company, I was the sole person with specialized security expertise. As the business expanded and our product offerings grew, the attack surface increased, and security audits began to take up a significant portion of my time. This made it difficult for me to concentrate on my primary responsibilities as CTO.
Previous Challenges
To tackle this, I aimed to make security a shared responsibility throughout the organization. However, with tools from other vendors, although we could track security issues as inventory items, we were unable to give our engineers the autonomy to proactively resolve these issues themselves.
Results from Wiz Implementation
Wiz stands out by offering thorough attack path visualization with Wiz Security Graph, clear explanations of the risks associated with each issue, and practical remediation guidance.
Thanks to these features, our engineering teams are now able to independently resolve most security issues. Consequently, we have improved our overall security posture and greatly reduced the amount of time I personally need to dedicate to security operations.
Effortless Remediation Steps Make It a Standout
What do you like best about the product?
The remediation steps are actually actionable - not just 'fix this' but showing you exactly how. Also, the multi-cloud coverage means I'm not juggling different tools for our various portfolio companies' infrastructure.
What do you dislike about the product?
Takes a bit to learn their UX language, but once you get it, it makes sense. Sometimes the alert noise can be high until you tune it properly.
What problems is the product solving and how is that benefiting you?
We're dealing with patient health data, so any cloud misconfiguration could mean a HIPAA breach. Wiz catches stuff like exposed S3 buckets or overly permissive access before it becomes a problem. The continuous monitoring means I'm not constantly manually checking if PHI is actually protected. Also makes compliance audits way easier - I can actually show what controls we have in place instead of just saying 'trust me, it's secure.
showing 1 - 10