Wiz Reviews & Product Details

Wiz is a very easy and simple to set-up CNAPP that allows people to have a centralized, easy to use and intuitive platform for all the Cloud security needs. It has a wide range of graphs and dashboards, that you can also customize to satisfy your needs. It also has a lot of security frameworks and complicance systems so that you can check all aspects of your infraestructure. For a small team like mine, it is very simple and fast to check the highest priority issues and remediate them, as the issues shown in Wiz also provide information and interconnection within all the resources Review collected by and hosted on G2.com.

Despite scans being run automatically often enough, a manual scan trigger would be greatly appreciated, specially when looking for a real-time fixes and threats. Review collected by and hosted on G2.com.

Very easy to deploy and quick to start delivering value. It provides excellent visibility across a wide range of security risks and surfaces vulnerabilities that might otherwise go unnoticed. The remediation guidance, particularly the GenAI step-by-step explanations, is genuinely useful for helping teams understand and fix issues rather than just identifying them. Review collected by and hosted on G2.com.

Some capabilities are consumption-based, so it is important to understand how certain features could affect cost. That said, it is straightforward to control or limit additional spend if needed. Review collected by and hosted on G2.com.

Wizの最も魅力的な側面の一つは、開発組織全体でセキュリティを民主化する方法です。専任のセキュリティチームだけがセキュリティを扱うのではなく、Wizはソフトウェアエンジニアが使用するツールにセキュリティを直接統合します。

例えば、WizはVSCode、GitHub、ウェブブラウザなどの開発者ツールと統合しており、開発者が開発プロセス中に脆弱性を特定し防ぐことを可能にします。これにより、セキュリティ問題が展開後ではなく、開発ライフサイクルの早い段階で対処されるようになります。

私たちの環境では、この統合により開発者がセキュリティリスクをより意識するようになり、運用システムに到達する脆弱性の数が減少しました。クラウドアカウントを接続し、クラウドリソース全体のセキュリティリスクを即座に可視化できる能力も非常に価値があります。 Review collected by and hosted on G2.com.

時折、業界で広く議論される重大な脆弱性が発生した際、私たちのチームはWizを使用してそれらを調査します。場合によっては、Wizがすでに問題を検出し、私たちの環境が影響を受けていないことを確認しています。

しかし、ゼロデイ脆弱性のような非常に敏感な問題に対しては、Wizが顧客が影響を受けているかどうかについて、より迅速または積極的なコミュニケーションを提供してくれると助かります。新たに発生する脆弱性に関する明確なガイダンスや早期通知があれば、チームが迅速に対応するのがさらに容易になるでしょう。 Review collected by and hosted on G2.com.

Wiz is CSP-agnostic and brings all risk issues into a single pane. It also has interesting features like runtime monitoring, threat detection, and SBOM. I especially like that it has a very user-friendly interface anyone can learn it quickly and use it with ease. Review collected by and hosted on G2.com.

There’s no clear definition of ETA for certain features. Also, there’s no way to submit an enhancement or feature request through the Wiz platform. Review collected by and hosted on G2.com.

First of all, the deployment was very easy: there was no agent to install and no complicated onboarding. It was up and running in less than half a day. For the smaller details, our TAM was available very quickly and knows the product almost perfectly. The issue tab is really useful to pinpoint exactly what you need to address quickly by providing a good context, and help to cut the alert fatigue drastically. That's a tool we're using daily and that is completely integrated into our alerting process.

The pertinence of issues are also very good, having a platform that we can trust about the severity of issues is a game changer. Review collected by and hosted on G2.com.

As today, unfortunately we didn't find a downside of WIZ compared to other product. Review collected by and hosted on G2.com.

Ever since we adopted Wiz, it has delivered to us in every sense ranging from code security all the way to infrastructure security, providing a comprehensive all in one platform which has helped us to consolidate our security tooling enormously. Wiz does well in showing us which findings require our attention and which ones perhaps do not, this is very different to other platforms that are out there which we have found to be overwhelming due to the amount of noise generated. On top of this, Wiz has helped us detect findings that all other providers missed which to us showcased the value of using Wiz as a security platform. Review collected by and hosted on G2.com.

There isn't really anything that I have disliked about Wiz, other than perhaps the cost which can be slightly higher than competitors however I think this ends up balancing out due to the value provided by Wiz. Review collected by and hosted on G2.com.

Wiz continues to expand their security tool with enhancements, features, new products on a weekly basis. They truly are innovative and keep up in the fast moving cloud space.

We've continued our visibility into data security posture management (DSPM), runtime protection (Wiz Runtime Sensor), custom configuration rules, threat detections, and more.

There's rarely a time where we can't quickly search Wiz to find resources associated with a risk.

In addition, as many companies move to infrastructure as code, Wiz now has their own Terraform provider. Review collected by and hosted on G2.com.

We've overcome the previous battle of not being able to alert the proper team on shared resources like a Kubernetes cluster. Wiz has rolled out new features where we can filter by tag, label, namespace, etc. in order to alert the proper teams immediately. Review collected by and hosted on G2.com.

Since expanding our use to encompass the entirety of Wiz's product suite, the unified CNAPP experience has been phenomenal. The seamless integration across all modules—including CSPM, CWPP, CIEM, DSPM, and WIZ Code, provides us with unparalleled, context-rich visibility into our entire multi-cloud environment.

What I love most is the continuous innovation and how perfectly the different features communicate with one another. The agentless scanning works flawlessly across all our workloads, immediately identifying toxic combinations and prioritizing actual attack paths rather than just creating alert fatigue. Using their full stack acts as a true force multiplier for our security team, allowing us to manage complex, strict security and compliance requirements with ease. Review collected by and hosted on G2.com.

I'd like to see more rapid development in the AI Security / AI-SPM domain. Since this is a fast-evolving area, providing more out-of-the-box policies and deeper context for AI-related risks would be a welcome improvement to an otherwise flawless product. Review collected by and hosted on G2.com.

Deeper CNAPP integration

Wiz has evolved into a full Cloud-Native Application Protection Platform (CNAPP), not just CSPM. It brings together posture management, workload protection, identity risk, data security, and Kubernetes security in a single graph model. The unified risk graph that connects resources, identities, vulnerabilities, and exposures is still a strong differentiator.

Wiz Code (shift-left security)

Wiz Code extends security into the development phase. It scans Infrastructure as Code (Terraform, CloudFormation), container images, and integrates with Git platforms. What’s useful is that findings are correlated with runtime risk, which reduces noise compared to standalone SAST or IaC tools.

Improved attack path analysis

Their attack path capability continues to improve. Instead of listing thousands of misconfigurations, it shows how issues connect—for example, a publicly exposed VM that has a role allowing access to a production database. That prioritization makes remediation much more practical.

Stronger Kubernetes security

Wiz has expanded Kubernetes security with better cluster posture management, visibility into pod-to-node-to-IAM relationships, and clearer lateral movement paths. It works well in multi-cluster and multi-cloud environments.

Better risk prioritization

Wiz increasingly factors in business context, such as tags, data sensitivity, and environment (prod vs. dev). Instead of just CVSS scores, it highlights what is truly critical based on exposure and business impact.

Agentless architecture at scale

The agentless model remains a key advantage. Onboarding is relatively fast, and it avoids the operational overhead of deploying and maintaining agents across large environments. Review collected by and hosted on G2.com.

Noise reduction – Further reduce false positives in very large environments.

Deeper remediation guidance – More step-by-step fix instructions for complex attack paths.

Custom risk scoring – Greater flexibility to tailor risk models to business needs. Review collected by and hosted on G2.com.

Wiz has become an essential part of our cloud security ecosystem. The platform provides exceptional visibility across all cloud environments, allowing us to quickly identify risks, misconfigurations, and toxic combinations that would otherwise go unnoticed.

Its ease of use, intuitive interface, and powerful correlation engine significantly streamline our security operations. Integrations are seamless, deployment is fast, and the insights are both actionable and highly reliable.

Overall, Wiz enables us to proactively strengthen our security posture with minimal effort, and I’m extremely satisfied with the product. Review collected by and hosted on G2.com.

There is very little to criticize. The platform is continuously improving, and while some advanced features may require deeper tuning to match specific organizational needs, this is minor compared to the value Wiz delivers. The product is strong, stable, and consistently meets — and often exceeds — expectations. Review collected by and hosted on G2.com.