WIZ Cloud Infrastructure Security Platform logo

    WIZ Cloud Infrastructure Security Platform

    Sold by
    Wiz provides an entirely new approach to cloud security that for the first time identifies the actual risks hidden in your cloud infrastructure.

    Ratings and reviews

    4.7
    859 ratings
    2 star
    1 star
    82%
    17%
    1%
    0%
    0%
    26 AWS reviews
    |
    833 external reviews
    External reviews are from G2  and PeerSpot .

    Filters

    Review type

    AWS Marketplace reviews
    External reviews
    Reviews (859)
    Financial Services

    From Noise to Real Risk with Wiz

    Reviewed on Jul 01, 2026
    Review provided by G2
    What do you like best about the product?
    What I like most about Wiz is how it helps you focus on what actually matters instead of drowning in findings. The security graph and attack path analysis, especially the way it highlights risky or “toxic” combinations, make a big difference in day‑to‑day work. Instead of reviewing huge vulnerability spreadsheets, you can quickly see which issues are actually exploitable and worth prioritizing. The agentless approach is also a big plus, since it gives you fast visibility without adding extra overhead.

    Another thing I really appreciate is the overall depth of the platform without it feeling too heavy to use. Features like data security insights, contextual vulnerability details, and built‑in remediation guidance are genuinely useful.

    The Advanced license adds a lot of value, and the Outpost setup is important for us because it allows sensitive data processing to stay within our environment while Wiz mainly works on metadata. On top of that, the support from our TAM has been excellent, very responsive and hands‑on, especially during onboarding and tuning phases.
    What do you dislike about the product?
    Wiz is a very powerful platform, but that also means there’s a bit of a learning curve at the beginning. It takes some time to understand how to best use the different features (like projects, dashboards, and integrations) and to set up a structure that fits your organisation. In larger environments, initial scoping and configuration can require coordination across multiple teams.

    Since the platform evolves quickly, some features are still maturing and from time to time that can lead to minor instability or changes in behavior that require adjustment. Also, because it provides so much visibility, it can feel a bit overwhelming at first until you fine‑tune filtering and prioritisation. That said, once everything is properly set up, it becomes much easier to manage and the value is very clear.
    What problems is the product solving and how is that benefiting you?
    We use Wiz to get a clear and prioritized view of cloud risk across our environment, instead of dealing with fragmented findings from different tools. A big problem it solves is reducing noise. By correlating vulnerabilities, misconfigurations, identity risks, and data exposure into a single context, it helps us focus on what is actually exploitable rather than spending time on low‑impact issues.

    It’s also very useful for improving collaboration between security and engineering teams. Findings can be scoped, contextualized, and shared in a way that makes remediation more practical and easier to track. In addition, the platform helps with ongoing posture management and compliance by providing continuous visibility, which makes it easier to identify gaps early and avoid reactive work.
    Computer Software

    Concise, Precise Risk Detection with Automated Triage Agents

    Reviewed on Jun 29, 2026
    Review provided by G2
    What do you like best about the product?
    The best thing about Wiz is its "Conciseness." Being able to pinpoint actual risks and threats, and not just "shout" about every vulnerability, combined with the new agents that automatically triage and even attack where needed, is priceless.
    What do you dislike about the product?
    Since Wiz has grown into a much larger platform, the UI/UX has become somewhat messy and it’s sometimes hard to find the right path. Configuration for some features isn’t very straightforward, and the documentation is inconsistent (SSO, for example). Where possible, I prefer guided wizards to having to dig through docs.
    What problems is the product solving and how is that benefiting you?
    Wiz helps us stay on top of security across a fairly complex cloud environment without needing a large team to do it. We have a lot of moving parts, and before Wiz it was hard to know what actually needed attention versus what was just noise. Wiz pulls everything into one place, and more usefully it connects the dots - it shows us when something is exposed and vulnerable and sitting near sensitive data or privileged access, which is what really matters. That's saved us a lot of time, because instead of working through a long list of findings we can go straight to the handful that represent real risk and fix those first. It also runs checks earlier in our development process, so we catch a lot of issues before they ever reach production. And since we're a security company ourselves, holding that standard on our own environment matters to us - it's the same level of protection our customers expect.
    Media Production

    Simplifying Cloud Security and Risk Prioritization

    Reviewed on Jun 28, 2026
    Review provided by G2
    What do you like best about the product?
    What I like best about Wiz is the visibility it provides into cloud assets and security risks. It makes it easier to identify critical issues by correlating vulnerabilities and misconfigurations in one place. The platform is intuitive, easy to use, and helps reduce manual effort while improving security prioritization.
    What do you dislike about the product?
    One challenge with Wiz is that new users may face a learning curve when understanding complex findings in large cloud environments. Improved customization and easier prioritization of alerts would make the platform even more effective.
    What problems is the product solving and how is that benefiting you?
    Wiz solves the problem of fragmented cloud security visibility by consolidating vulnerabilities, misconfigurations, and asset risks into one platform. This helps us reduce manual effort, prioritize critical risks faster, and improve overall security efficiency.
    Hafiz Arsalan A.

    Easy to Configure, Reliable, and Consistently High-Performing

    Reviewed on Jun 25, 2026
    Review provided by G2
    What do you like best about the product?
    Easy to configure, reliable in daily use and delivers consistent perforamance.
    What do you dislike about the product?
    Ocassional connectivity delays with some devices.
    What problems is the product solving and how is that benefiting you?
    Simplifies smart lighting management while improving convenience and energy efficiency.
    Perry Jordan H.

    Straightforward, Easy-to-Navigate Interface

    Reviewed on Jun 25, 2026
    Review provided by G2
    What do you like best about the product?
    Wiz has a straightforward interface that makes it easy to navigate the system.
    What do you dislike about the product?
    From what I have found, customer support has been unhelpful at times.
    What problems is the product solving and how is that benefiting you?
    Wiz is helping keep my files safe through their cybersecurity expertise.
    Computer Software

    Easy Website Creation and Launch with a Full Suite of Marketing Tools

    Reviewed on Jun 24, 2026
    Review provided by G2
    What do you like best about the product?
    how easy it is to crete and launch your own website with the full suite of marketing tools to promote it
    What do you dislike about the product?
    not a lot of app and plugin that can be installed
    What problems is the product solving and how is that benefiting you?
    launching a website without being a developper and a marketer
    Nicholas Louisma

    Unified cloud views have simplified finding infrastructure vulnerabilities and identity risks

    Reviewed on Jun 23, 2026
    Review provided by PeerSpot

    What is our primary use case?

    I have been working with Wiz for about two years. I use Wiz for vulnerability management, specifically finding infrastructure-related security bugs, particularly with Windows. I have also used it for a couple of months for identity-related purposes.

    What is most valuable?

    The UI is what I appreciate most about Wiz; the interface is really easy and not clunky. You can create many dashboards and a personal page for all the vulnerabilities you are trying to find. When it comes to your systems, users, and applications, having all of those attachments to your different platforms and being able to have the scans go throughout the platforms while pulling those vulnerabilities is really helpful with a nice user interface.

    Wiz brings great integration into GCP resources, which is crucial for my previous organizations that were very heavily GCP-based. Wiz has seamless integration into GCP, AWS, Azure, Okta, and other large cloud platforms and SaaS platforms.

    Wiz allows you to consolidate tools, but not all tools. It does not handle the nuanced type of tools, but the major tools it does allow you to consolidate from my experience.

    The main advantage of Wiz is its user interface. A good interface makes it easy for engineers to not get fatigued from working with so much data and ensures it is not clunky-looking, as it is hard to identify issues. You want something that is visually appealing to identify risk, and having a good UI presents a huge benefit.

    What needs improvement?

    I would want to see Wiz improve by connecting to other major platforms agnostically, with the ability to connect to other platforms without needing to do too much integration. It requires a lot of alignment with different platforms for it to function properly.

    I am not sure if Wiz has reduced alert fatigue in my organization, as I have not really looked into that aspect.

    Wiz is not agnostic compared to other competitors in the market. If you want to add a new integration to another platform, it does not have an easy plug-and-play option for whatever platform. It requires integration to the proper tooling, and that is only from my experience with it.

    For how long have I used the solution?

    My experience with Wiz began six months ago.

    What do I think about the stability of the solution?

    I have not had any crashes, downtimes, or performance issues with Wiz.

    What do I think about the scalability of the solution?

    I find Wiz scalable and have tried to scale it up and out.

    How are customer service and support?

    I evaluate the customer service and technical support of Wiz as pretty useful. At my last company, we were able to have weekly calls with Wiz to talk about new updates and remediate any issues that we had. I would rate the technical support an eight on a scale of one to ten.

    Which solution did I use previously and why did I switch?

    I have used Exonius, but that is not a cloud posture platform; it is more of a logging platform or monitoring platform. I probably have used others, but I do not remember their names.

    How was the initial setup?

    Onboarding with Wiz is straightforward. I find it easy to teach myself how to use it, and I was able to figure it out within a week or two of just exploring it inside of Wiz.

    What about the implementation team?

    I was not involved in the setup deployment of Wiz.

    What other advice do I have?

    I have not utilized Wiz Defend. I do not use Wiz Code in my operations. I have not used the AI Posture Management in Wiz, but I have used Posture Management, though I only used it for a few weeks in the beginning.

    I find Wiz Posture Management pretty beneficial in my overall cloud security strategy, as everything is in the cloud. Many companies use cloud resources, so I think it is pretty beneficial.

    I have not utilized Wiz Runtime Sensor, as I am more infrastructure, networking, and compute-related, so I have not been involved in application risk and have not really used the runtime features for Wiz.

    Wiz has not helped my organization achieve zero criticals in its issue queues. There are many critical issues that come up regularly, and having to tackle them means sometimes those critical issues cannot be resolved because of architectural issues. If you resolve it, there will be an issue within the architecture, so I do not think I have ever seen the critical issues get down to zero.

    Regarding the cloud security democratization aspect of Wiz, I have only used it here and there for infrastructure-related items and touched some other cloud-related items, but from my scope, I do not think I have seen the actual impact it has on our entire team or organization. When I used it, I was a level one engineer, so I did not get to see the entire scope of its impact.

    I have not used Wiz recently, but from my memory of using it, I did appreciate the identity platform and think that they should expand more into the identity area and make it more seamless for items such as RBAC or non-human identities.

    I am not entirely sure how my latest company purchased Wiz, but my first company that I used it with bought it through Google's Marketplace.

    I was not using Wiz post-sales support services.

    My overall rating for Wiz is an eight out of ten.

    reviewer2860287

    Comprehensive cloud security has improved visibility and enabled precise threat response

    Reviewed on Jun 22, 2026
    Review from a verified AWS customer

    What is our primary use case?

    My main use case for Wiz is cloud security, infrastructure as code, threat detection and response, and application security.

    For example, if we have a cloud resource that has an Amazon GuardDuty alert, we will use Wiz to ingest the log, and we review it for security reasons and use that information in our alerting pipeline. Wiz is where we ingest all the information and logs.

    My main use case is to scan cloud infrastructure for misconfigurations, issues, security threat intelligence, and more.

    What is most valuable?

    The best features Wiz offers include the scanning, the ability to map vulnerabilities to specific resources, the ability for GraphQL API integration, and their security graph when it comes to querying information, finding specific detections, and responding to them, and much more.

    For example, we use many other automation tools that need to integrate with Wiz, and through the graph API or GraphQL API, we are able to call Wiz in a very specific way where if we want to automate anything, it is possible via their API.

    There is a variety of features per team, such as cloud security, AI security, security operations center, and more.

    Wiz has positively impacted my organization by stopping security incidents, giving us full visibility in our cloud environments, and providing us with the confidence that we can use the tool not just for security but also for operations tooling, DevOps, code scanning, and all of the above.

    We have seen specific outcomes and information improve as a result, and we have definitely narrowed down more incidents that we might need to take care of with the tooling, which has given us wider visibility compared to when we did not have it.

    Wiz allowed us to consolidate tools, and on the issues it gives us from the top level down—critical to informational—we are able to fully prioritize the things that are most important due to that capability.

    What needs improvement?

    Wiz's pricing model is very poor.

    The pricing is out of control, but when it comes to the actual functionality of the tool, the tool is great.

    On a scale of one to ten, I would rate Wiz an eight. I rate it an eight because internally, they have specific people who want to bulldoze you when it comes to signing agreements that are much higher priced than the value that you get. Wiz is great. Some people are great and some are not, so they are a little bit less willing to work with customers on their specific needs regarding things such as pricing versus other tools.

    For how long have I used the solution?

    I have been using Wiz for over four years.

    What do I think about the stability of the solution?

    Wiz is stable.

    What do I think about the scalability of the solution?

    Wiz's scalability is very good, and I have not had any issues yet.

    How are customer service and support?

    The customer support is fair; they are not great, nor bad.

    Which solution did I use previously and why did I switch?

    We started to use Wiz since their inception.

    How was the initial setup?

    Everything is very well set up; the UI is easy to use, and their API is great.

    What about the implementation team?

    We are just a customer without a business relationship with this vendor other than that.

    What was our ROI?

    I have definitely saved time, but money saved is still up in the air; there have been things that make us feel that is not the case. We also need fewer employees, partially.

    What's my experience with pricing, setup cost, and licensing?

    My experience with pricing, setup cost, and licensing has been very poor.

    Which other solutions did I evaluate?

    Before choosing Wiz, I evaluated other options such as Orca and Upwind.

    What other advice do I have?

    The extent to which the Wiz runtime sensor has helped in identifying active threats more effectively compared to previous solutions is pretty minimal.

    My impression of the cloud security democratization aspect of the product is that it is one of the best sources of truth we have. It is extremely impactful on the organization, so it is definitely a tool we are going to use if the pricing is right.

    We have gone through three technical account managers and have decided not to renew.

    My advice to others looking into using Wiz is to make sure that you are working with the right account team, set up all of your integrations correctly, and take your time during your proof of value.

    Wiz is a great tool, and we will continue to use it over time. I rate Wiz an eight out of ten overall.

    Which deployment model are you using for this solution?

    Public Cloud

    If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?

    Telecommunications

    Wiz: My Go-To SuperApp for Security

    Reviewed on Jun 21, 2026
    Review provided by G2
    What do you like best about the product?
    Wiz has become my go-to SuperApp for security.
    What do you dislike about the product?
    I can’t keep up with all the new functionalities.
    What problems is the product solving and how is that benefiting you?
    As cloud infrastructure becomes more complex, small changes are very likely to have a ripple effect. Seeing the impact of these changes on the big picture all in one place makes things easier.
    Information Technology and Services

    Agentless Visibility and AI Agents That Cut Alert Noise and Save Time

    Reviewed on Jun 18, 2026
    Review provided by G2
    What do you like best about the product?
    What I like best about Wiz is its agentless visibility and how it eliminates alert noise. The Wiz AI Agents are also fantastic, they save our team massive amounts of time by autonomously fixing code vulnerabilities and accelerating our threat-hunting workflows.
    What do you dislike about the product?
    What I dislike most is the inability to manually input or upload a custom list of specific CVEs to test against our environment and generate an immediate findings review. Currently, we have to rely strictly on automated environment-wide scans rather than targeted, ad-hoc CVE queries.
    What problems is the product solving and how is that benefiting you?
    Wiz eliminates multi-cloud blind spots and stops alert fatigue by mapping how different risks connect into actual attack paths.