We currently use Wiz for cloud security management to identify and address vulnerabilities in our AWS platforms. Wiz is also integrated with our EKS clusters, allowing us to monitor and manage cluster security. We deploy sensors across our infrastructure, from the base level to more advanced setups, to gather comprehensive vulnerability data. Additionally, Wiz helps us manage our inventory and images. We have integrated Wiz with our ECR to monitor and secure container images through the ECR connector.
External reviews
715 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Provides simplicity, comprehensive findings, and impressive security graph
What is our primary use case?
How has it helped my organization?
Our main goal is to use Wiz as our secondary product. We aim to gather all logs and vulnerabilities and integrate them into our main tool, Splunk. Wiz helps us identify issues, but Splunk remains our primary solution. We forward all logs from Wiz to Splunk. The client, Vericore, uses Splunk as their main tool to gather data from third-party CSPM tools like Prisma and others, including DDoS detection. This integration allows us to generate reports and distribute them to other departments to address the identified vulnerabilities.
What is most valuable?
Wiz offers greater visibility and more in-depth findings in terms of configuration, misconfiguration, and vulnerabilities.
What needs improvement?
The APIs are currently quite limited and not very mature, which makes integration with Splunk difficult. As a result, we often have to use Wiz instead of our mainframe to handle tasks related to Splunk. We regularly meet with the Wiz team, who then consult their product team to find solutions and alternative methods for these tasks.
For how long have I used the solution?
I have been using Wiz for six months.
What do I think about the stability of the solution?
It is stable.
What do I think about the scalability of the solution?
We don't have any issues with the scalability. 45-50 users are using this solution.
We have multiple departments, including product security and sales. We have development teams and other departments as well. For each senior and director in these departments, we have created users and provided them with access to Wiz. This allows them to gather reports from Wiz. Additionally, if they cannot get the reports from Wiz, they can use Splunk, with which we have integrated Wiz.
We have deployed Wiz in three organizations on AWS, each with approximately 70 to 80 accounts, totaling more than 120 accounts. We have also deployed Wiz in Microsoft environments, ensuring we can gather data from every platform.
How are customer service and support?
Support has been great. We have a dedicated channel with Wiz and are always in communication with them.
How would you rate customer service and support?
Neutral
How was the initial setup?
The initial setup was very straightforward. We used the deployment connectors in Wiz. We deployed three connectors for our AWS environment, and each connector requires specific roles: Wiz rules and read-only roles. The deployment was done using the CloudFormation template through our management account, and we deployed the template to all the accounts in the organization.
The deployment took no more than 48 hours because it was done easily. However, the setup to get all the data from AWS into Wiz took about 24-48 hours.
Which other solutions did I evaluate?
We use Splunk for DDoS detection and the AWS Security Data Lake for micro detections. We use Wiz for cloud platform configuration. For threat detection, we rely on the AWS Security Data Lake and Splunk.
What other advice do I have?
We use Wiz to enhance our cloud security, and as a result, the number of vulnerabilities has gone down. We have integrated Jira authentication with Wiz to create tickets. We have set up rules in Wiz that generate tickets for misconfigurations. These tickets are sent to the respective departments that own the accounts with the identified vulnerabilities and misconfigurations. Our security team pushes these tickets to the relevant teams, enhancing security.
Integration and deployment are relatively easy. However, we have encountered some incidents with Wiz in the past. As Wiz mentioned, some policies included in the connectors were flagging our production EBS in AWS.
Maintenance is very easy.
I recommend Wiz for its simplicity, comprehensive findings, and impressive security graph. It provides excellent visibility, threat detection, and data classification rules. Additionally, Wiz offers more control compared to Prisma and other third-party tools.
Overall, I rate the solution at eight-point five out of ten.
Which deployment model are you using for this solution?
Public Cloud
Produces highly confidential alerts leading to minimal false positives
What is our primary use case?
Our primary use case for this solution is within our security team for monitoring purposes. We have integrated the solution with our cloud environments to establish notifications for security misconfigurations. These notifications create tickets for relevant teams to address the issues, and our security team ensures the tool works properly, assisting product teams with remediation and consulting on resolving the generated tickets.
What is most valuable?
The product's most valuable feature combines different contexts and attributes to produce highly confident alerts. It can detect issues based on factors like public exposure, network vulnerabilities, and privilege assignments, leading to minimal false positives and a low volume of alerts, which is highly valuable for our operations.
What needs improvement?
They could improve the product's visibility in the internal network topology. It focuses mainly on external risks, and additional visibility into internal network communication and cross-cloud or cloud-to-on-prem connectivity would be beneficial.
For how long have I used the solution?
We have been using Wiz for almost three years.
What do I think about the stability of the solution?
The solution is generally stable. I would rate its stability as eight or nine out of ten.
What do I think about the scalability of the solution?
The solution is highly scalable.
How are customer service and support?
Our experience with customer service and support has been positive. While initial replies are fast, the resolution time can vary depending on the issue.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
We previously used a different solution from Check Point. We decided to switch due to the additional features, capabilities, and support offered by Wiz.
How was the initial setup?
The initial setup was straightforward and can be completed in a few hours with the necessary permissions.
I rate the process an eight.
What's my experience with pricing, setup cost, and licensing?
Based on the features and capabilities, the product pricing seems reasonable.
What other advice do I have?
I rate Wiz a nine out of ten.
Wiz Is a Great Vendor
What do you like best about the product?
Their team is responsive and engaging in regards to addressing issues and answering questions.
What do you dislike about the product?
Some of their functions can be wonky at times.
What problems is the product solving and how is that benefiting you?
Wiz is helping us with our vulnerability management. It gives full visibility of what's vulnerable and a trending topic that could affect us.
Wiz IO Review
What do you like best about the product?
We like the security reports and it maps all the network path. It does help review our security posture
What do you dislike about the product?
The learning curve to learn. It is not very to use at first
What problems is the product solving and how is that benefiting you?
Helps us with Visibility into our cloud environement
Security engineer that manages the platform
What do you like best about the product?
The tool is easy to use. Easy to implement into various public clouds. Also the support from Wiz.
What do you dislike about the product?
The vulnerability management aspect of the tool could ne improved on.
There is no easy to conduct analysis in Wiz, if there is a significant difference in vulnerability findings by day, one has to do the analysis in another tool.
There is no easy to conduct analysis in Wiz, if there is a significant difference in vulnerability findings by day, one has to do the analysis in another tool.
What problems is the product solving and how is that benefiting you?
We are using the tool to conduct IAM cleanup and enforce the principles of least privilege.
Provides container security and security from external attacks and vulnerabilities
What is our primary use case?
We use the solution for security from external attacks and vulnerabilities and for container security.
What is most valuable?
With Wiz, we get timely alerts for leaked data or any vulnerabilities already existing in our environment.
What needs improvement?
The solution's container security could be improved. We have to install an agent. We need an agent that can be installed, or that can overview all the containers and Kubernetes so that it can detect malicious activities that are happening in them. If it happens, we need to have an option to take a remote from one console, like we do in EDR, and remediate all those activities.
For how long have I used the solution?
I have been using Wiz for one year.
What do I think about the stability of the solution?
Wiz is a stable solution, and we haven't faced any breakdowns.
What do I think about the scalability of the solution?
Around 10 to 15 users are using the solution in our organization. The solution is not in a place to take up scalability requests.
How are customer service and support?
The solution's technical support was timely.
How was the initial setup?
The solution's initial setup was easy, and the onboarding was very simple.
What about the implementation team?
The solution is deployed pretty fast. We deployed the solution last year, and it was on boarded and in production in less than a week.
What's my experience with pricing, setup cost, and licensing?
Wiz is a moderately priced solution, where it is neither cheap nor costly.
Which other solutions did I evaluate?
Before choosing Wiz, we evaluated and did a POC with Prisma Cloud And Tenable. We chose Wiz because Prisma Cloud was costly and out of our budget, and Tenable did not satisfy most of our requirements.
What other advice do I have?
You can choose to use Wiz if you're not looking for a container deduction and response or Kubernetes security. The solution is deployed on AWS Azure and a private cloud in our organization. The solution's compliance reporting capabilities increased the score of our security scorecard.
Overall, I rate the solution an eight out of ten.
An unified cloud security platform for cloud security and development teams that includes prevention, active detection and response
What is our primary use case?
We are evaluating security configuration and compliance. We also use it to scan for security vulnerabilities in our pipelines.
What is most valuable?
The security baseline and vulnerability assessments are a very valuable feature.
What needs improvement?
We're looking at some of the data compliance stuff that they've got on offer. I know they're looking at container security, which we gonna be looking at next.
For how long have I used the solution?
I have been using Wiz for four months.
What do I think about the stability of the solution?
The stability is a nine out of ten.
What do I think about the scalability of the solution?
Five users are using the solution. The scalability is a ten out of ten.
How was the initial setup?
The initial setup is straightforward. The deployment takes five hours. So scanning storage accounts, storage account compliance, public endpoint scanning, you know, all of the usual things that we would be looking at as part of deployment.
What other advice do I have?
Overall, I rate the solution a ten out of ten.
Which deployment model are you using for this solution?
Public Cloud
Experience of using Wiz along with Salesforce and integrating both platforms
What do you like best about the product?
One of the standout features is its user-friendly interface. Navigating through the various modules and functionalities is intuitive, making it easy to access and update information in Salesforce.
Furthermore, it offers robust reporting and analytics tools. These tools provide in-depth insights into sales performance, helping teams easily identify areas of improvement.
Furthermore, it offers robust reporting and analytics tools. These tools provide in-depth insights into sales performance, helping teams easily identify areas of improvement.
What do you dislike about the product?
The learning curve for Wiz and Salesforce integration can be steep. Users need to invest time in understanding the platform and its functionalities, which may slow down the adoption process.
Another thing to consider is support availability. Depending on the users location and time zone, accessing timely support may be challenging.
Another thing to consider is support availability. Depending on the users location and time zone, accessing timely support may be challenging.
What problems is the product solving and how is that benefiting you?
Wiz is helping us with our business processes and workflows in order to obtain anual work increases efficiency and streamlines operations. We are also heavily using its reporting and analytics capabilities, to make better informed decisions and identify areas of improvement.
Wiz makes vulns easy
What do you like best about the product?
The way Wiz has integrated into the UI possible fixes for known vulnerabilities.
What do you dislike about the product?
Vulnerabilities aren't fun, but maybe Wiz could gameify it to make engineer have some fun while working on vulns.
What problems is the product solving and how is that benefiting you?
Wiz helps our engineers know what vulnerabilities exist, and how to fix them quickly.
Wiz is the best CSPM
What do you like best about the product?
Wiz is great for identifying security issues in our cloud environments.
What do you dislike about the product?
There are no downsides to using wiz. It beats the brakes off of its competitors. Buy wiz
What problems is the product solving and how is that benefiting you?
Wiz provides us all of the context we need into our cloud environments and it allows us to be data driven with our approaches in the cloud.
showing 131 - 140