Wiz Reviews & Product Details

As a tech lead security engineer, what I appreciate most about Wiz is its ability to prioritize what truly matters. The toxic-combination engine is exceptionally effective at surfacing real, exploitable risks rather than overwhelming the team with noise. This also empowers our engineering teams to use Wiz autonomously daily, i.e. they can quickly understand what needs to be fixed first, without relying on security for constant supervision. That independence has been a major productivity boost and reduces friction, while the security team still maintains oversight for high-risk scenarios the tool might not fully capture.

On top of that, the CNAPP platform is comprehensive, and require only a few amount of time to set up and integrate everything in our ecosystem. We leverage Wiz across our cloud infrastructure, workloads, and runtime using the Wiz Sensor, which performs reliably with minimal overhead. The security graph makes exploration intuitive and gives us the context we need to understand issues end-to-end.

The customer success team is also one of the best I’ve worked with, which is highly appreciated. Review collected by and hosted on G2.com.

Overall, the platform work very well, and there are no big drawbacks. However, there is one challenge around KPIs, metrics, and vulnerability tracking in autoscaling environments. Because resources scale in and out frequently, we often lose track of what was actually fixed by engineering versus what simply disappeared due to autoscaling events. Vulnerabilities may appear “closed” when the underlying resource is terminated, only to reappear when a new instance is spun up. But overall, you still can follow the big picture of your vulnerabilities. Review collected by and hosted on G2.com.

What I like best about Wiz is the insight visibility and overview of issues and vulnerabilities within a cloud environment. Being able to not only track the primary resource of each individual issue but to also be able to view that in a security graph at a very high level. This type of insight capabilities helps users like me understand the full history of the issue as well as the different access points. Also being able to integrate these issues/vulnerabilities directly into Jira for direct progress tracking improves the workflow of solving them within a timely manner. Review collected by and hosted on G2.com.

The only downside I have for Wiz is that it can give a ton of information and telemetry on your environment all at once. Which can seem kinda overwhelming when first onboarding Wiz because a user may not know exactly what areas to search for in Wiz, and as a result it can take some time to understand. Review collected by and hosted on G2.com.

Wiz is incredibly easy to use. I find it much simpler to search through all my inventory and vulnerabilities with Wiz, rather than having to sift through countless pages elsewhere.

It includes all the enterprise feature everyone needs.

The customer support is amazing, they reach out to me a lot to make sure we improve our posture and make sure to keep up with best practices.

Implementation and Integration wise it's really easy, you click on few buttons and that's it everything is up and ready inside any cloud, if you have any issue the CS Team will be there to assist.

I'm using Wiz every week for few hours in order to make sure that everything is set up correctly, and there is nothing exposed to vulerabilities. Review collected by and hosted on G2.com.

I honestly can't find anything to dislike about Wiz; it offers everything I need. Review collected by and hosted on G2.com.

The agent-less architecture allowed us to get started in just a few hours rather than weeks. There were no complicated deployments or issues with agent sprawl—simply connect your cloud accounts and begin scanning. What truly sets the platform apart is the developer experience. The platform communicates in a way that makes sense to us, providing clear, actionable findings along with meaningful context about why an issue is important and how to address it. The graph-based method for visualizing attack paths is especially impressive. Rather than being overwhelmed by thousands of unrelated vulnerabilities, we can now identify which ones are truly significant based on actual exposure risk. Review collected by and hosted on G2.com.

To be honest, there isn't much to criticize. While the pricing may be high for smaller organizations, the extensive coverage and the amount of time saved make the return on investment worthwhile. At first, the number of alerts can feel overwhelming until you adjust the policies to fit your environment, but this is fairly typical for most security tools. Review collected by and hosted on G2.com.

Wiz has become an essential part of our cloud security operations at BMLL. The platform provides exceptional visibility across our cloud environments, enabling continuous monitoring and proactive risk management. We’ve used Wiz extensively for incident response, vulnerability and patch management, and to conduct gap assessments against industry benchmarks.

The solution’s breadth is impressive — from asset inventory to AI-driven insights, it gives us a single pane of glass to identify and prioritise security issues across our infrastructure. The AI Explorer and inventory capabilities have been particularly useful for uncovering unmanaged or misconfigured assets.

Overall, Wiz has helped us strengthen our security posture, improve compliance alignment, and accelerate remediation through clear, actionable insights.

What do you like best?

The unified view of security risks across multiple cloud accounts and services, combined with clear prioritisation and automation options.

What problems are you solving with Wiz?

We use Wiz for vulnerability and patch management, incident response, continuous compliance monitoring, and visibility into cloud asset inventory. It helps us detect gaps against benchmarks and improve our overall security resilience. Review collected by and hosted on G2.com.

The platform is powerful, but the depth of data can feel overwhelming at first — expect a short learning curve to fully utilise its capabilities. Review collected by and hosted on G2.com.

The feature I find most helpful in Wiz is its prioritization capabilities. Additionally, having reliable information about the status of specific resources—such as whether they are publicly exposed or internal—is extremely valuable to us. The platform itself is highly intuitive and easy to use, even for those without a technical background. Its AI capabilities are also useful for finding answers to questions that may not be addressed directly on the dashboard. Integration is straightforward and quick; you can have it up and running within a few hours. Review collected by and hosted on G2.com.

The only thing we do not like about Wiz is the relatively constant updating of the findings risk rating. You go to bed with zero criticals and you wake up in the morning with 10 because of a change in the system Review collected by and hosted on G2.com.

What I appreciate most about Wiz is its simplicity and execution speed. Every integration is straightforward, and each action is clearly explained. It's incredibly easy to connect any tool and set up whatever you need. They offer nearly every feature you could think of, and what's missing, they develop at remarkable speed. The design and UI/UX are outstanding - fast, highly interactive, and intuitive Review collected by and hosted on G2.com.

The main challenge with the platform is the learning curve. There are so many features and topics that it can be difficult to navigate everything at times. It takes time to absorb the amount of information and fully understand the value that Wiz brings Review collected by and hosted on G2.com.

As a second-time customer of Wiz, I knew the CSPM was great and research told me it was still the best. This feature was even better than I remembered, as Wiz had not rested on their laurels and had continually improved over time! It has helped me get to zero critical issues in less than 6 months with the issue prioritisation and clear remedial steps which I can share with the teams responsible. No excuse for not having a well refined Jira, or not knowing what we really asking for - the details are in the language of the remediator, spoon-fed by Wiz!

Now, we use it all the time to proactively monitor our systems, look for config or vulnerabilities, and whenever I see a new Critical or High issue we immediately jump on it to triage. This means we have got managing Critical config issues down to similar remediation timelines as a Critical security incident and indeed in most cases we treat them almost identically (urgent conf calls, drop tools and huddle to fix etc.).

When it came to implementing Wiz, it was simply as quick as hooking up to our Cloud instances, providing the access, and sitting back to watch the fireworks. During the implementation the support was outstanding, and Wiz spent so much time with us and our different teams showing them how to use it, how simple it was to integrate with other tools, how we could extend visibility to the max, how to interpret the results, get good report data to the right people etc.. This operationalisation help ensure Wiz was used by multiple teams - although I think there's always room for even more engagement internally.

After implementing the engagement didn't stop though, and we still have a regular call with our TAM who is always happy to demo to some new users, or to help tweak some settings or help with some report or other. I don't think we've ever found the limit of engagement and Wiz seems happy to provide whatever level of interaction we need to get where we want to go. Review collected by and hosted on G2.com.

Nothing to dislike, although of course I wish it could be cheaper :-) Review collected by and hosted on G2.com.

Wiz is a truly impressive tool. The user experience stands out, as it allows access to the platform through an interface adapted to each user's role. Additionally, Wiz's ability to prioritize critical aspects significantly contributes to improving work efficiency. Review collected by and hosted on G2.com.

The truth is that I don't find any negative aspect in Wiz, as for the use we give it, it turns out to be an excellent tool. Review collected by and hosted on G2.com.

Wiz provides exceptional visibility across cloud environments, making it easy to identify misconfigurations, vulnerabilities, and compliance gaps in real time. The platform’s agentless architecture is a huge advantage it deploys quickly without impacting performance. The dashboard is intuitive, and the contextual risk prioritisation helps security teams focus on what truly matters. Integration with existing workflows is seamless, which saves time and reduces complexity. Review collected by and hosted on G2.com.

While Wiz is powerful, the pricing can be a barrier for smaller organisations. Some advanced features require additional configuration, which can be time-consuming for teams without dedicated cloud security expertise. The alert volume can feel overwhelming at first, and tuning policies to reduce noise takes effort. Reporting capabilities, although good, could benefit from more customisation options for executive-level summaries. Review collected by and hosted on G2.com.