Sold by: WizÂ
Deployed on AWS
Free Trial
Vendor Insights
AWS Free Tier
Wiz provides an entirely new approach to cloud security that for the first time identifies the actual risks hidden in your cloud infrastructure.
Overview
Wiz performs a deep assessment of your entire cloud and then correlates a vast number of security signals to trace the real infiltration vectors that attackers can use to break in. Wiz also gives you the tools to bring your DevOps and development teams into the process to fix these risks, creating a culture of security in your cloud operations that results in a stronger, more secure cloud. For more information visit: https://www.wiz.ioÂ
*Wiz provides custom pricing for customers via Private Offer. Please contact marketplace@wiz.io for a better understanding of our pricing model and products.
Highlights
- Covers every resource across your full cloud stack, multi-cloud environment using a 100% API approach that deploys in minutes.
- Models overlapping cloud policies, configurations, and compensating controls that interact in ways that are often unpredictable to calculate their end result.
- Maps all of the issues in your cloud together in a single graph database, revealing which of them combined pose the greatest risk.
Details
Sold by
Delivery method
Deployed on AWS
Unlock automation with AI agent solutions
Fast-track AI initiatives with agents, tools, and solutions from AWS Partners.
Features and programs
Trust Center
Access real-time vendor security and compliance information through their Trust Center powered by Drata. Review certifications and security standards before purchase.
Buyer guide
Gain valuable insights from real users who purchased this product, powered by PeerSpot.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Skip the manual risk assessment. Get verified and regularly updated security info on this product with Vendor Insights.
Security credentials achieved
(7)
SOC2
ISO27001
AWS Security Specialization
GDPR
PCIDSS
FedRAMP
HIPAA
Pricing
Free trial
Try this product free according to the free trial terms set by the vendor.
Pricing is based on the duration and terms of your contract with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Description | Cost/12 months |
|---|---|---|
Wiz Essential | Protect 100 cloud workloads | $24,000.00 |
Wiz Advanced | Protect 100 cloud workloads | $38,000.00 |
Wiz Sensor | 100 Wiz Sensors. Add-on for Wiz Advanced | $28,000.00 |
Wiz Code | 100 Wiz Code Licenses. Add-on for Wiz Cloud | $58,500.00 |
Wiz Defend | Ingest 300 GBs of logs per month. Add-on for Wiz Advanced | $18,000.00 |
Vendor refund policy
Please contact us at info@wiz.ioÂ
Custom pricing options
Request a private offer to receive a custom quote.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA)Â .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Resources
Support
Vendor support
Wiz provides custom pricing for customers via Private Offer. Please contact marketplace@wiz.io for a better understanding of our pricing model and products. tel:+01-240.823.5670
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By Rapid7
By SentinelOne
Top
10
In Application Development, Continuous Integration and Continuous Delivery, Security
Top
10
In Vulnerability and Patch Management, Data Governance
Top
25
In Observability, Software Development
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Cloud Infrastructure Scanning
"Performs comprehensive assessment across entire cloud infrastructure using 100% API-based approach with rapid deployment"
Risk Correlation Mechanism
"Correlates multiple security signals to trace potential infiltration vectors and identify complex attack paths"
Multi-Cloud Support
"Provides unified security coverage across diverse cloud environments and resource types"
Policy Interaction Modeling
"Analyzes overlapping cloud policies, configurations, and compensating controls to predict complex security interactions"
Graph-Based Visualization
"Generates comprehensive cloud security mapping using graph database to reveal interconnected security issues and risk relationships"
Attack Surface Management
Aggregates comprehensive attack surface visibility across hybrid environments with external attack surface scans to build a dynamic, 360-degree view
Cloud Security
Provides code-to-cloud protection for cloud-native applications with seamless CI/CD pipeline integration and real-time, agentless risk assessment
Threat Intelligence
Delivers high-fidelity, actionable threat intelligence sourced from proprietary threat and vulnerability research with community-driven tools
Vulnerability Management
Offers complete visibility across on-premise and remote endpoints to identify, communicate, and remediate vulnerabilities and misconfigurations
Security Automation
Enables acceleration and streamlining of time-intensive processes through customizable workflows and plugins without requiring coding expertise
Cloud Native Security Engine
Agentless Cloud Native Application Protection Platform (CNAPP) with a unique offensive security engine for comprehensive cloud security
Multi-Cloud Asset Management
Includes asset inventory, graph explorer, and security posture management across public and private cloud environments
Advanced Threat Detection
Real-time AI-powered detection and prevention of runtime threats including ransomware, zero-days, and fileless attacks
Infrastructure Security Scanning
Comprehensive scanning capabilities including Infrastructure as Code (IaC), secrets scanning, and vulnerability assessment
Cloud Object Storage Protection
AI-powered malware detection for cloud object storage with millisecond scanning and automated quarantine capabilities
Validated by AWS Marketplace
FedRAMP
GDPR
HIPAA
ISO/IEC 27001
PCI DSS
SOC 2 Type 2
No security profile
No security profile
Standard contract
No
No
No
Customer reviews
4.2
5 ratings
5 AWS reviews
|
724 external reviews
Star ratings include only reviews from verified AWS customers. External reviews can also include a star rating, but star ratings from external reviews are not averaged in with the AWS customer star ratings.
Mrinal Madhukar
Has consolidated multiple tools while improving issue detection and inventory tracking
Reviewed on Oct 30, 2025
Review from a verified AWS customer
What is our primary use case?
My use case for Wiz is basically for overall security, focusing on vulnerability management, infrastructure security, and application security, all of that combined. I have my AWS accounts where I run multiple services, so that's where I'm utilizing Wiz to the core optimum, utilizing all of its capabilities. Even as an inventory management tool, I think it has been really helpful because it keeps a record of every change, making it very functional.
How has it helped my organization?
Wiz has helped me consolidate some tools, as it is not just doing the job of the security tool alone. It has good inventory management, good vulnerability management, and we do not need to invest in multiple tools. All aspects such as infrastructure, application, vulnerabilities, and the regular security scoring patterns are in-built into Wiz along with the inventory manager, which has helped us reduce one or two tools here and there.Wiz has reduced alert fatigue in my organization, as it is very accurate in terms of reporting the issues, which has definitely improved, and I don't see a concern.
What is most valuable?
The best features of Wiz that I appreciate the most include trends of security, such as how we have been getting issues reported and how frequently we are closing them, along with the capabilities to notify a user and a channel on Slack, which have all been really helpful beyond just doing its main job as a security framework.The extent to which the Wiz runtime sensor has helped identify active threats more effectively compared to other solutions I've used is significant, as it refreshes based on a schedule in terms of the latest findings. It has been pretty effective for our use case, as I keep checking for anything new reported there. We also have a ticketing mechanism attached to it, so as soon as a security issue is figured out, it creates a ticket on Jira , allowing us to keep track of issues, and it is pretty responsive in terms of catching the latest issues.Wiz has helped me achieve zero criticals in issue queues, as it detects a range of issues whether it is the end of life of a product or an actual security issue, such as an exposed port or a compromised service.
What needs improvement?
In Wiz, the areas that have room for improvement would include some autonomous capabilities, such as having an agent declare where, since we are in the era of AI, it can auto-solve some low or medium alerts. High and critical issues would still need manual handling, but some level of alerts being handled autonomously would be good. More or less, Wiz is doing well, but the false alerts at random times would be another area for improvement. I would also appreciate seeing it go deeper on the security aspect, expanding beyond just infrastructure and application to include potential issues stemming from APIs, as currently it focuses more on the infrastructure pieces. Having more visibility in API endpoints, microservices, and application code running on the infrastructure would be beneficial.
For how long have I used the solution?
I have been using Wiz for the past 18 months.
What do I think about the stability of the solution?
The stability of Wiz has been good, with no downtime, bugs, or glitches. Just today I was not able to load it, but I wouldn't blame it that much as I have always been able to access the application when reaching out. I would rate the stability out of 10 as about nine or 10.
What do I think about the scalability of the solution?
Wiz is scaling well for our use case, so I would rate scalability a 10 out of 10.
How are customer service and support?
I would rate technical support as about nine, as we had a couple of cases where the responses were delayed quite a bit, but apart from that, they have been spot on.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
I cannot name the vendor I used previously, but the reason for switching to Wiz was the added features that we were getting, which offered more control on cloud security.
How was the initial setup?
The deployment process of Wiz was easy and not complex. It was fairly straightforward, honestly. The internal configurations took time due to the different applications we have, but I don't think there was any delay from the Wiz side.It took about three to four weeks to deploy Wiz, as the time taken was more about how we wanted to structure the projects and boxes inside Wiz from our perspective. We were operational from the first week and integrated with SSOÂ projects by the third or fourth week.
What about the implementation team?
The integration capabilities of Wiz were generally seamless, although we had some complications with Oracle accounts. Integration with AWS was pretty straightforward, but with Azure and Oracle, Oracle had some limitations regarding what it could report to Wiz. However, I think there was some more fine-tuning and adjustments done by the Wiz team to ensure Oracle could also be onboarded correctly, so that worked out.
What was our ROI?
The purchase of Wiz was a direct purchase rather than through the AWS marketplace or a partner purchase.
What's my experience with pricing, setup cost, and licensing?
My thoughts on the pricing of Wiz is that for our use case, it has been moderate, as I was using a different tool earlier, so it's not been a very large jump. I would say it resides in that moderate zone, and it's not something that raises eyebrows, so I think we're good.
Which other solutions did I evaluate?
I would say Wiz is in the top tier, and it might just be the leading product as well. While there are a couple more products out there, I think Wiz is definitely leading the course at this point.
What other advice do I have?
I have created some custom dashboards, charts, and counters, and I have created some custom reports that are sent out, including a lot of widgets for my reporting of all the accounts that I have. I have almost seven to eight accounts where very large workloads are running, and in total, there are almost 20 accounts, so it gives a very good view to summarize all of the accounts in one place.My business is a medium enterprise with about 5,000 employees.The maintenance of Wiz is fairly easy, with a few people looking into it, but it's not as though their whole time is dedicated to Wiz, which is a good part.I absolutely recommend Wiz to other users because of its ease, features, and user-friendliness, allowing anyone to come in, configure all the things they want out of Wiz, and start using it. There is no doubt about that. I would rate this review an 8 out of 10 overall.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Amazon Web Services (AWS)
Shirisha D.
Wiz: A gamechanger for cloud risk management
Reviewed on Oct 17, 2025
Review provided by G2
What do you like best about the product?
I like best about wiz is its agentless architecture and instant visibility. Wiz connects directly through cloud APIs and starts discovering misconfigurations, vulnerabilities, and identity risks almost immediately.
What do you dislike about the product?
Some advanced features may require deeper technical knowledge to configure properly. Also the initial permissions setup for scanning can be a bit tricky if you are new to cloud security
What problems is the product solving and how is that benefiting you?
Wiz has helped us identify security gaps and misconfigurations that traditional tools miss.
Wellington Franham
Has enabled consistent risk analysis and compliance tracking across multiple cloud environments
Reviewed on Oct 10, 2025
Review from a verified AWS customer
What is our primary use case?
We are a Wiz user and partner, so we have an environment using Wiz , and our use case is to provide risk analysis. We have dashboards to understand the main risks and categorize them, and we use these to get the baseline and reports. We personalize some reports.
What is most valuable?
The best features of Wiz are the AI, risk analysis, the framework, and the compliance frameworks, so we can check if our frameworks comply with CCPA or similar regulations, and the toxic combination. We can identify active threats more effectively with granularity in databases, operational systems, and access keys, so the granularity of the Wiz view is the key for this kind of risk analysis.
We can provide an inventory, which is crucial when managing large cloud databases or environments such as AWS , Azure , or Google environments, where it's difficult to have one view for all cloud components. Wiz can accomplish this and easily provide the total inventory in the cloud.
Wiz has helped us analyze critical issues, and it can provide guidance on how to mitigate these issues to resolve them, offering step-by-step instructions.
What needs improvement?
An area that Wiz can still continue to improve is FinOps.
For how long have I used the solution?
I have been using Wiz for almost one and a half years.
How are customer service and support?
My experience with Wiz's support has been satisfactory.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
We analyzed other options before choosing Wiz. For example, we looked at Orca, which lacks functionality such as toxic combination or resolving issues easily. Wiz can provide a better way to resolve critical issues, while Orca can show the issues but not truly resolve them.
What other advice do I have?
We use Wiz in the cloud with AWSÂ and GCP. We use both AWS and GCP almost equally. The time frame to achieve zero criticals in our issue queues depends on the environment. While we don't achieve zero criticals, some problems can be solved in two or three weeks while others may occur. It's optimal to work toward zero critical issues, but it depends on the installation or the cloud dynamics.
Some customers achieve zero critical issues, and Wiz has a program that rewards this achievement with a puzzle. Wiz offers pricing for both huge and small environments, and customers can purchase it from the Google Marketplace. In my opinion, Wiz has a competitive price.
I rate Wiz between 9 and 10 out of 10.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Amazon Web Services (AWS)
Wellington Franham
Provides detailed analysis and helps manage risks effectively
Reviewed on Oct 10, 2025
Review from a verified AWS customer
What is our primary use case?
We are a Wiz user and partner. We have an environment using Wiz , and our use case is to provide risk analysis.
We have dashboards to understand and categorize the main risks. These dashboards help us generate baseline reports, and we have personalized some of these reports.
How has it helped my organization?
It can provide an inventory. When you have a large cloud database or environment, Wiz can provide you easily with the total inventory that you have in the cloud.Â
Wiz has helped my organization by allowing us to analyze the critical issues and providing the best way to mitigate these issues with step-by-step guidance. We don't achieve zero criticals. This often depends on the environment, as solving some problems can lead to two or three others arising. Therefore, navigating through the critical issues is essential, but it relies on the specific installation you have or the dynamics of your cloud setup. Some customers have successfully reached a state of zero critical issues, and we have a program designed to support this. If they are interested in achieving this goal, we can provide them with materials or insights to help them.
What is most valuable?
Wiz's best features are the AI risk analysis and the compliance frameworks. We can check if frameworks are compliant, such as CCPA, and the toxic combination.
The Wiz runtime sensor identifies active threats more effectively by allowing us to run the analysis with granularity in databases, in operational systems, and some access keys. The granularity of the Wiz view is the key for this kind of risk analysis.
What needs improvement?
FinOps is an area where Wiz needs enhancement.
For how long have I used the solution?
I have been using Wiz for almost one and a half years.
How are customer service and support?
I had experience with Wiz's support, and I would rate it a nine out of ten.
How would you rate customer service and support?
Positive
What's my experience with pricing, setup cost, and licensing?
Wiz can accommodate both huge and small environments. You can purchase Wiz from Google Marketplace, for example. Wiz seems to have a competitive price.
Which other solutions did I evaluate?
We evaluated other options such as Orca before choosing Wiz. We analyzed Orca because it lacks certain functions, such as toxic combination or resolving issues easily. Wiz performs better at providing the best way to resolve critical issues, while Orca can only show the issues without resolving them.
What other advice do I have?
I would rate Wiz a nine out of ten.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Amazon Web Services (AWS)
Security and Investigations
Visibility and control over cloud workloads
Reviewed on Oct 02, 2025
Review provided by G2
What do you like best about the product?
Wiz stands out for its clear visibility across cloud environments. I like how quickly it highlights risks without forcing me to dig through endless dashboards. The interface feels intuitive, and it connects security findings directly to what matters most, which saves a lot of time. It also integrates smoothly with different cloud platforms, so I don’t have to jump between tools.
What do you dislike about the product?
While Wiz offers impressive capabilities, there are times when the sheer volume of information can be overwhelming, particularly for those who are new to cloud security. Some alerts would benefit from more precise tuning to help minimize unnecessary noise. The platform is making steady improvements, but I would appreciate quicker response times when working with large environments.
What problems is the product solving and how is that benefiting you?
Wiz enables us to effectively manage cloud security risks that would otherwise be difficult to identify manually. Rather than spending countless hours trying to connect the dots ourselves, the platform provides a comprehensive view of misconfigurations, vulnerabilities, and compliance issues across all our environments.
The most significant advantage is the time we save—we're able to quickly focus on the most important issues and cut down on unnecessary distractions. Additionally, Wiz enhances collaboration between our security and DevOps teams, as everyone has access to the same findings and can respond more efficiently. In summary, Wiz simplifies the process of maintaining a robust security posture without hindering business operations.
The most significant advantage is the time we save—we're able to quickly focus on the most important issues and cut down on unnecessary distractions. Additionally, Wiz enhances collaboration between our security and DevOps teams, as everyone has access to the same findings and can respond more efficiently. In summary, Wiz simplifies the process of maintaining a robust security posture without hindering business operations.