TrustRadius: an HG Insights company
Back to Overview

Wiz Reviews and Ratings

Rating: 8.6 out of 10
Score
8.6 out of 10

Community insights

TrustRadius Insights for Wiz are summaries of user sentiment data from TrustRadius reviews and, when necessary, third party data sources.

Pros

Easy-to-understand layout: Users appreciate the easy-to-understand and approachable layout of findings in Wiz, even for those without extensive cloud configuration knowledge. They find the presentation of dashboards and graphs to be easy to interpret, providing in-depth visibility across all assets operating within their cloud environments.

Rich with detail and risk-rated findings: Many reviewers have praised Wiz for providing detailed findings that are appropriately risk-rated. The rich level of detail helps users quickly identify and prioritize security issues, allowing them to take prompt action.

Effective integration with ticketing/alert systems: Several users find Wiz's integration with ticketing/alert systems to be seamless and efficient. This feature allows them to easily delegate findings to other teams, streamlining the overall workflow and ensuring timely resolution of security issues.

Reviews

25 Reviews

Wiz Is a Great Tool.

Rating: 9 out of 10
Incentivized

Use Cases and Deployment Scope

Wiz is used for our cloud security. Whenever resources are deployed within QA or production, Wiz will scan and identify vulnerabilities for us to report and respond to. It's great because it provides us with metrics on what issues have been and what has been fixed over time. This is mainly for cloud environments.

Pros

  • User friendly with navigation.
  • Gives breakdown of the issue and recommendations to fix.
  • Has nice dashboards for visibility.

Cons

  • Be able to see what changes were made with CIS compliance.
  • Click into the chart showing changes made over time.

Likelihood to Recommend

Wiz is well-suited if you want to run real-time scans against resources that were recently patched or configured. It is good to keep track of vulnerabilities found and what can be done to resolve the issues without having to open up multiple tabs. Overall, it is good to keep an eye on how well cloud teams or cloud security teams are doing.

VU
Verified User
Administrator in Information Technology (1001-5000 employees)
Vetted Review
Wiz
2 years of experience

Wiz succeeds in tech and user experience across modern security applications

Rating: 9 out of 10
Incentivized

Use Cases and Deployment Scope

We use Wiz for Cloud Security Posture Management of our multi-cloud environments. We rely on Wiz for not only getting insights into misconfigured security issues in our environments, but also for understanding the latest vulnerabilities from Wiz's threat intel. This helps us identify threats and services affected by them in our organization, and allows us to quickly export reports and send communications out to teams swiftly to perform remediation accordingly to Wiz's vulnerability report.

Pros

  • Multi-cloud: Ability of Wiz to integrate with all of our cloud platforms makes it easy to deploy and centralizes our insights into all environments
  • UI/UX: Wiz's UI is one of, if not -- the best UI I have ever used in a security application. Wiz is able to make it easy to follow and use the application to simplify the normally overcomplicated process of parsing through security information and tools.
  • Marketing: Hosting meetups such as Wizdom has demonstrated Wiz's investment into its customers by providing us with more encouragement to use the app. The merch, ads, and presentation are above and beyond many companies in the tech industry.
  • Threat Intel: We rely on Wiz for the latest finds in vulnerabilities across all platforms, and since it is incorporated into the application, it makes this easy and fast to push out necessary steps without going through multiple layers of communication between vendors, cyber governance, security analysts, and developers.

Cons

  • Real time scanning/reportng: Ability to provide real-time monitoring of multi-cloud environments

Likelihood to Recommend

I would say Wiz is best suited for organizations developing in multi-cloud environments. Wiz UI/UX makes it very easy to integrate, use, and teach. The application oversimplifies many tedious processes when it comes to monitoring security across many different layers and tools. Like mentioned, real-time scanning would be a great addition to the application (although I can see it may be quite difficult). I believe in organizations utilizing a single CSP structure may rather use that platform's native in-house services for security monitoring.

VU
Verified User
Analyst in Information Technology (10,001+ employees)
Vetted Review
Wiz
1 year of experience

Easy to use and provides tangible value from the first day

Rating: 9 out of 10
Incentivized

Use Cases and Deployment Scope

We use Wiz to monitor our AWS environment for misconfiguration, threats, irregular activity, changes in posture and user activity. In addition we rely on Wiz findings to optimize our compliance posture and make sure that we continue to maintain a strong and manageable security operation. Wiz is our go-to tool and every day starts with a review of the Wiz dashboards.

Pros

  • Analyze and alert about system misconfiguration
  • Identify sensitive data that is stroed on our system
  • Create a risk mapping that takes into account not only one parameter but the entire risk scope e.g an exposed server + it is housing sensitive data AND it has a known and exploitable vulnerability
  • Dashboards to consolidate the findings

Cons

  • We would like to see more system events such as cloudtrail events in Wiz, the current set of events is very limited and missing many key events
  • Mobile app

Likelihood to Recommend

Wiz is great when you are looking to get both high level AND in depth visibility into your system configuration and risks, the system usability is second to none, the UI is simple, support is great and they keep adding useful features to the system.

Wiz is less of a fit when it comes to investigations given the limited set of events it collects from audit logs

AL
Amit Levran
Head of Security in Information Technology at Sundaysky (51-200 employees)
Vetted Review
Wiz
1 year of experience

NextGen Cloud Security

Rating: 10 out of 10
Incentivized

Use Cases and Deployment Scope

Wiz is very good on CSPM along with rapidly catching up CWPP, ASPM which is enterprise needs.

Pros

  • CSPM
  • CWPP
  • UI/UX

Cons

  • Shorting on report on UI screen

Likelihood to Recommend

Graph API is very robust Wiz to provide holistic view on security prospective.

VU
Verified User
Professional in Information Technology (10,001+ employees)
Vetted Review
Wiz
1 year of experience

Wiz Elevating Cloud Security to New Heights

Rating: 10 out of 10
Incentivized

Use Cases and Deployment Scope

Wiz offers a comprehensive view of our cloud infrastructure through a unified interface. We utilize Wiz Cloud, Code, Sensor, and Defend to mitigate a variety of risks. These include the exposure of sensitive data, whether public or private within our network, vulnerabilities and outdated technologies, misconfigurations, malware, suspicious activities, and more.

Pros

  • Contextualizing risks
  • Eliminating isolated solutions
  • Restricting user access to view only the resources they manage

Cons

  • Better Project management - more options to group resources to a project when subscriptions is shared but resources are not tagged
  • Better way to tag in Wiz
  • Exception Management - Ability to track exception numbers submitted for resources and issues and bi-directional status updates (ServiceNow)

Likelihood to Recommend

Wiz is way ahead of each security domains than other vendors. Wiz integrates well and their roadmap is never ending with quick implementation.

VU
Verified User
Director in Information Technology (10,001+ employees)
Vetted Review
Wiz
3 years of experience

Wiz

Rating: 8 out of 10
Incentivized

Use Cases and Deployment Scope

We user it for Cloud Compliance, we monitor our score and try to evaluate the security controls to our baseline score. We also use the DataSecurity and External Exposure boards on a daily basis, and keep track of any alerts as they come in and reach out to the product team owners.

Pros

  • Data Security Posture Management
  • Separate scope by projects
  • And Vulnerability identification

Cons

  • Wiz does not store teh resolved date, which makes it harder for teams to run reports
  • There is no visibility into MTTR metrics or MTTD
  • Would love to see Wiz do automated metrics system

Likelihood to Recommend

The TAM's are really helpful, and they take the time out to really understand what you are trying to solve and help us out with building queries or resolve an error. And the DSPM feature is very helpful in my experience, I usually use the JSON tab to see if there are any firewall rules for that, instead of going the long route and checking in Azure. And also the GRAPHs that Wiz provides are quite helpful to get a clearer visibility into what we are looking at.

VU
Verified User
Engineer in Information Technology (1001-5000 employees)
Vetted Review
Wiz
1 year of experience

Wiz Cloud Security Simplified

Rating: 10 out of 10
Incentivized

Use Cases and Deployment Scope

We use Wiz to get a visibility over our cloud assets and define the gaps, risks, vulnerabilities, configuration drifts, Kubernetes security, secrets, Data Security, and a lot more. Wiz is an overall CSPM product that helps us define and point out the risk that we have as well as gain an overall visibility over all our cloud assets.

Pros

  • Cloud Configuration benchmarks
  • KSPM
  • DSPM
  • Container Security
  • Data visibility

Cons

  • Container Vulnerability
  • API Security
  • AI Security

Likelihood to Recommend

Wiz is the best out of box CNAPP/CSPM tool thats currently on the market.

KF
Kirolos Fame
Cloud Security Engineer in Engineering at Fiserv (10,001+ employees)
Vetted Review
Wiz
2 years of experience
Verified on LinkedIn

Wiz is really very much needed for cloud security.

Rating: 10 out of 10
Incentivized

Use Cases and Deployment Scope

We currently use Wiz primarily as a Cloud Security Posture Management (CSPM) tool to secure our cloud environments. We currently have the majority of our cloud infrastructure in the GCP environment, but also have some other resources in Azure and AWS. The primary reason for using Wiz is for our Platsec and SOC teams to monitor the threats and risks. Based on that, they reach out to the application teams for remediating those vulnerabilities and set up policies to alert them of any critical vulnerabilities. I believe without Wiz, our organization would be blind to some of the very crucial vulnerabilities, as we have thousands of projects on our cloud environment, which makes it impossible to track without Wiz.

Pros

  • Vulnerability scanning and remediation.
  • Reports.
  • Documentation on all the integrations.

Cons

  • Wiz sensor improvements.
  • Automation use cases for specific tasks based on organization needs.
  • AI use more better searching.

Likelihood to Recommend

We currently use Wiz primarily as a CSPM tool to secure our cloud environments. We currently have majority of cloud stuff in GCP environment but also have some other stuff in Azure and AWS. The primary reason of using Wiz is for our Platsec and SOC teams to monitor the threats and risks. Based on that they reach out to the application teams for remediating those vulnerabilities and set up policies to alert them of any criticals. I believe without Wiz our organization would be blind on some of the very critical vulnerabilities as we have thousands of projects on our cloud environment which makes it impossible to track without Wiz.

VU
Verified User
Analyst in Information Technology (10,001+ employees)
Vetted Review
Wiz
1 year of experience

The Cloud and Container Wizard of Oz.

Rating: 10 out of 10
Incentivized

Use Cases and Deployment Scope

Cloud and Container Security.

Pros

  • UI/UX
  • Real time monitoring.
  • Graph database for visualization.

Cons

  • API Security.
  • Wiz Code.
  • Tuning.

Likelihood to Recommend

Well-suited for anyone who is leveraging public cloud infrastructure or services.

VU
Verified User
Manager in Engineering (1001-5000 employees)
Vetted Review
Wiz
3 years of experience

Wiz is a notch above the rest.

Rating: 10 out of 10
Incentivized

Use Cases and Deployment Scope

We use Wiz for cloud vulnerability management, security detections, identifying misconfigurations, and aligning ourselves with our security frameworks. The business problems we aim to address are secure cloud configuration and vulnerability management. Being in the cloud, it is essential to identify all potential security gaps, misconfigurations, and issues that could compromise the environment.

Pros

  • Vulnerability Management.
  • Cloud Configuration.
  • Data Findings.
  • Cloud Exposure.
  • Compliance Posture.
  • Reporting

Cons

  • Jira Ticketing - I would like tickets for specific findings not just issues.
  • Quick and easy to use resource/asset Inventory.
  • More detailed attack path analysis.
  • Navigation is already great, but it is easy to get lost.

Likelihood to Recommend

Wiz does cloud security extremely well. We are able to efficiently work towards remediating vulnerabilities, misconfigurations, and other security issues. My primary concern is how tickets are created and to whom they are assigned. I would like to see a more granular approach to ticketing, rather than blanket coverage for an issue. I prefer to assign findings internally through our ticketing system; however, there is no option to create a ticket for a finding.

VU
Verified User
Team Lead in Information Technology (201-500 employees)
Vetted Review
Wiz
1 year of experience