Wiz is a Tel Aviv based, cloud risk visibility solution for enterprise security. It provides a 360° view of security risks across clouds, containers and workloads.
N/A
Zscaler Internet Access
Score 8.8 out of 10
N/A
Zscaler Internet Access™ (ZIA) is a secure web gateway (SWG), delivering cloud native cyberthreat protection and zero trust access to the internet and SaaS apps.
Prior to Wiz, I have used mostly AWS security services such as security hub for CSPM and GuardDuty for threat intel. Although these services are great, it makes it hard to centralize this information in a multi-cloud deployment. It is understandable that AWS native services may …
After previously utilizing Orca and testing Tenable, we preferred Wiz over the competition. The reporting, usability, and feature-rich platform enabled us to investigate security risks and issues simultaneously.
As someone relatively new to the security space, coming from a software engineering background in identity, I don’t have deep experience across a wide range of security tools. That said, based on the products I have used—such as Palo Alto’s Cortex XDR, Panorama, GlobalProtect, …
Wiz is a solid solution over these other products, it has capabilities in all clouds that we utilize that others didn't have at the time. Its much easier to segment access than CrowdStrike as an example. Engineers quickly because familiar with the tool to help reduce the …
We chose Wiz over Tenable.io due to its agentless deployment, holistic security graph, and cloud-native focus. Wiz’s quick setup, intuitive interface, and advanced risk prioritisation provided actionable insights faster, making it a better fit for our multi-cloud environment.
We previously used Lacework but transitioned to Wiz as part of our effort to improve cloud security visibility and streamline risk management. While Lacework provided useful insights, we found that Wiz offered a clearer, more intuitive interface and better collaboration …
Tenable.io and Qualys are good just for vulnerability management. Wiz has very good capability to show all issues on single console and also it has provision to show them in different dashboards in different category. It shows cloud configuration gap, AWS cis benchmark gap and …
ZCC being one implementation with Zscaler Internet Access and ZPA being on the same app, that made the decision easier, also with the partnership that Zscaler brought to the table.
We keep using the other products, but for network traffic Zscaler Internet Access tends to be the best solution, although for Infoblox we are using their DNS solution, and for CrowdStrike, we are focusing on other items more related to EDR than network.
The overall user community and scope of supportability outweighed the others on our short list. Netskope was a close second, but the risk, though small, was greater than that of bringing Zscaler aboard. We were looking for a mature, well-supported, highly functional, and …
Wiz is well-suited if you want to run real-time scans against resources that were recently patched or configured. It is good to keep track of vulnerabilities found and what can be done to resolve the issues without having to open up multiple tabs. Overall, it is good to keep an eye on how well cloud teams or cloud security teams are doing.
It has been pretty great in our deployment; the ability to send specific messages to users, or to isolate with a banner, has given us more control without blunt "this was blocked for this reason" landing pages. We have a lot of YouTube use, and it's difficult to police the legitimate use from personal use. Because of this, the quotas have been an effective way to achieve traffic goals without getting in users' way.
Getting started with Wiz was quick and painless. The onboarding process was well-structured, and their team provided solid support to help us integrate Wiz into our cloud environments with minimal effort. Documentation is clear, and their customer success team is always on hand to help with any questions, making the adoption process seamless
One of Wiz’s biggest strengths is how clearly it presents security risks. It provides a well organised view of issues, making it easy to see where action is needed. The AI-powered Remediation Wizard is a great feature, offering guided fixes and automation options that speed up resolution, reducing the time spent manually investigating and fixing issues.
The Wiz interface is intuitive and easy to navigate, which is a big plus when dealing with complex environments. Everything is laid out in a way that makes it simple to drill down into issues
Wiz scanning doesn't detect risks in real time. New sensors are now included and these capabilities are growing. I believe that within a year Wiz will get good real time capabilities
Wiz can generate a lot of alerts, which can be overwhelming, especially if you have a very dynamic environment. It's important to set up filters so that you only receive alerts for the risks that are most important to you.
Wiz can improve the way it augments the vulnerability data with additional data on Technologies. It sometimes has missing technologies but updated its inventory as soon as we opened a case on that.
ZS CLI support to turn off ZIA and ZDX service specifically on mac.
Better visibility into failed posture devices, including a timeline and the reason the posture failed (This is about the Zscaler mobile portal: Enrolled devices --> Failed posture devices).
While Zscaler Internet Access (ZIA) delivers critical value in cloud security and RBI compliance, I rate renewal likelihood 7/10 due to evolving needs versus platform limitations. Below is my rationale:
The UI is very user-friendly, with documentation available on every page of the application. New users can learn about the product features as they navigate through several different pages, using the instructions at the top of each page, making it quite easy to use.
The product is as expected. ZIA has been integrated and utilized as intended. Any modifications to rules in ZCC have been straightforward to implement. Although it has not been done yet, the segmentation for specific users is highly anticipated. The product received a 9, as no product is wholly perfect, but it has been great to use.
Zscaler's ZIA support is quick and knowledgable. They respond within 1-2 hours of you submitting your ticket. They are very thorough and are typically ready to jump on a live troubleshooting session. Our ZIA platform and how we use is it unique so at times tickets can be open for weeks but we alway get quality support compared to other unrelated product support in our enterprise
Prior to Wiz, I have used mostly AWS security services such as security HUB for CSPM and GuardDuty for threat intel. Although these services are great, it makes it hard to centralize this information in a multi-cloud deployment. It is understandable that AWS native services may provide more info and realtime security analysis of its services, but does not scale well with a growing organization looking to leverage amazing tools from other CSPs. Wiz may not have real time analysis or the most relevant vulnerability findings for cloud platforms compared to their native solutions, but Wiz scales extremely well, which in cases is a more valuable asset.
We keep using the other products, but for network traffic Zscaler Internet Access tends to be the best solution, although for Infoblox we are using their DNS solution, and for CrowdStrike, we are focusing on other items more related to EDR than network.
We haven't completed a full rollout yet, but the goal is to shift left security to all of our product teams so that security is a shared effort across the organization.
We want to be able to demonstrate fast remediations, corrective action plans with tangibles from Wiz in response to audits or red team findings.
We would like to also use information from Wiz to substantiate answers to security questionnaires that customers requires us to fill out in order to do business with them.
I would say it has a very good ROI, as whenever someone can't access something, they submit a ticket to our network engineer, and within minutes, the site is safely added to ZIA with best-practice configurations. After seeing a little of the UI from the Zenith event, it seems very user-friendly to control these policies.