Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
Wiz - Convincing our auditors on our Compliance postures made easy!!
What do you like best about the product?
The Wiz interaction and user interface (UI) are highly informative and exceptionally user-friendly, making it an excellent choice for beginners who are just starting with Wiz, like me. One standout feature of Wiz that I love is its Compliance Check module, integrated directly into the platform. This module is specifically designed to address the daily challenges faced by Governance, Risk, and Compliance professionals in their daily job roles.
One of the primary challenges encountered is the collection of data and evidence to meet compliance standards like ISO 27001, PCI-DSS & etc. Typically, this involves engaging with numerous asset owners and employees to gather the necessary data and present it to auditors. However, Wiz streamlines this process by providing a centralized data ingress point where all evidence data is collected and monitored for compliance with the framework. This feature of Wiz greatly reduces the countless hours spent on meetings and discussions related to data collection for compliance, which mostly yields limited effective outcomes.
Furthermore, the ability to generate reports for any event is a valuable feature to have in a tool and Wiz has a good reporting feature inbuilt, this facilitates easy communication with upper management and effective communication of information across the organization.
One of the primary challenges encountered is the collection of data and evidence to meet compliance standards like ISO 27001, PCI-DSS & etc. Typically, this involves engaging with numerous asset owners and employees to gather the necessary data and present it to auditors. However, Wiz streamlines this process by providing a centralized data ingress point where all evidence data is collected and monitored for compliance with the framework. This feature of Wiz greatly reduces the countless hours spent on meetings and discussions related to data collection for compliance, which mostly yields limited effective outcomes.
Furthermore, the ability to generate reports for any event is a valuable feature to have in a tool and Wiz has a good reporting feature inbuilt, this facilitates easy communication with upper management and effective communication of information across the organization.
What do you dislike about the product?
I haven't encountered many issues with Wiz yet since I recently started using it. However, based on my limited experience with Wiz, I've noticed that the graphs in the compliance modules are somewhat limited. The existing ones could be enhanced to provide more in-depth insights into compliance framework positions. With more effective graphs and metrics, it becomes easier to present data to senior executives for making informed business decisions.
What problems is the product solving and how is that benefiting you?
Ensuring an organization is compliant with a multitude of frameworks can be exceptionally challenging. It demands meticulous planning and seamless coordination. Wiz significantly reduces the countless hours typically spent on manual data collection, analysis, compliance assessments, and, my personal favorite, report generation for failed frameworks. Furthermore, the way Wiz can be utilized for Cloud security posture is an amazing and useful feature to have in a security tool.
- Leave a Comment |
- Mark review as helpful
Vulnerability
What do you like best about the product?
The Vulnerability Management module. It leverages CISA KEV to provide priority to vulns.
What do you dislike about the product?
Not a dislike but, want to see CVE ID counts and not only the vulnerable asset count. For instance, Wanna see, "in my entire cloud, how many CVE IDs do I have and by implement this fix, how many of them will be remediated etc".
What problems is the product solving and how is that benefiting you?
First, as a vulnerability 'scanner', I do not get to schedule and run scans. Wiz has a coverage of my entire cloud resources (GCP, Azure and AWS) and reports the vulnerabilities detected near real time. Wiz 'understands' what to scan and removes the headache of tweaking scans by the analyst. ALSO: VERY IMPORTANT: Wiz scans would not knock offline sensitive assets. Question: Does Wiz have plans to go cover on-prem infra? DO IT QUICK!
Second, for me, GUI is everything. Easy to navigate the GUI.
Third, elaborate diagram showing path and, therefore proof of the existence of a vulnerability. Reduces time and effort to investigate whether a vuln is a true positive. This doesn't mean there are no false positives reported by Wiz.
Fourth, naming possible product owners. Wiz enlists all persons that may be potential product owners. In a complicated environment, the VM Analyst may spend days and weeks, in some cases to track down the rightful owner of a resource.
Second, for me, GUI is everything. Easy to navigate the GUI.
Third, elaborate diagram showing path and, therefore proof of the existence of a vulnerability. Reduces time and effort to investigate whether a vuln is a true positive. This doesn't mean there are no false positives reported by Wiz.
Fourth, naming possible product owners. Wiz enlists all persons that may be potential product owners. In a complicated environment, the VM Analyst may spend days and weeks, in some cases to track down the rightful owner of a resource.
WIZ review
What do you like best about the product?
Automatically scannign unseen cloud resources
What do you dislike about the product?
I think that the query language should be improved
What problems is the product solving and how is that benefiting you?
finding weak spots, and help remediate CVEs
Wiz,Cloud security made easy
What do you like best about the product?
Hands down the best thing about Wiz, is how easy and intuitive it is to use. We have had great success in getting teams to be more active and responsive in regards to their cloud security ever since we started using Wiz. Wiz has a fantastic user friendly interface with amazing guides and constant support from the Wiz team.
What do you dislike about the product?
The customization and flexibility in Wiz is currently quite limited. There are certain features that could certainly be improved in allowing more flexibility such as assigning specific permissions to roles within Wiz. This is something that is quite restricted at the moment, but hopefully this is something that will be improved upon in the future
What problems is the product solving and how is that benefiting you?
Wiz is addressing a struggle that we faced, with having more visibility and more control over our cloud estate. With the introduction and use of Wiz, we have found that our cloud security posture has improved overall. Our users are more inclined to go into Wiz themselves and address issues as Wiz provides such a surplus of information and insights.
Cutting Edge CSPM
What do you like best about the product?
Clear insight across estate, actionable evidence given for findings, helpful API Console and Explorer for assisting with automation. Clean UI thatis easy to digest.
What do you dislike about the product?
Getting used to customising GraphQL queries when wanting to create more exotic views by using fragments. Paging of results and filters could be more advanced in the GUI.
What problems is the product solving and how is that benefiting you?
Security engagements with DevOps are improved by the actionable intelligence provided by Wiz, the fast feedback across the estate is readily visible and allows us to share with the relevant stakeholders.
WIZ is a useful product for CSPM.
What do you like best about the product?
one good thing about WIZ is like it scan full subscription in one shot including all the workloads like VM's etc.
wiz is also good in hierarchy.
it has nice dashobards
it has nice report format.
wiz is also good in hierarchy.
it has nice dashobards
it has nice report format.
What do you dislike about the product?
priviledge related issues are not much in WIZ. how one token can be used to access another unauthorized reource. if privilege inteliigence is build in WIZ then it would be great.
What problems is the product solving and how is that benefiting you?
WIZ is eliminating the need for external vulnerability scanner tool. we generally dont need to use another tool for vulnerability scanning. Also, its one place stop for full cloud security.
Best Cloud RISK Tool
What do you like best about the product?
User interterface was good
Having all compliance framewaork inharited in the tool.
Risk base issue with corelation
Having all compliance framewaork inharited in the tool.
Risk base issue with corelation
What do you dislike about the product?
Tool have dont have management view or CISO level report
Asset discovery is missing without CSPM check
Asset discovery is missing without CSPM check
What problems is the product solving and how is that benefiting you?
It slove multi cloud security risk assemnet and Cloud software assemnet
WIZ has proven to be an effective Cloud Security Solution for our organization
What do you like best about the product?
The interface is user firendly and easy to use
Customer Support is helpful
Multiple compliance frameworks are available which allows users to perform effetctive testing
Customer Support is helpful
Multiple compliance frameworks are available which allows users to perform effetctive testing
What do you dislike about the product?
Customized reporting is currently not available and hence we are not able to create separate reports for users and management
Asset inventory is not available
Asset inventory is not available
What problems is the product solving and how is that benefiting you?
WIZ helps our organization to strenthen the Cloud security posture by testing against industry standards
Useful insight about integrated environments
What do you like best about the product?
Easy to add integrations to Wiz
Useful information about integrated environments
Search/filters on inventory allow additional analysis of user/device data
Useful information about integrated environments
Search/filters on inventory allow additional analysis of user/device data
What do you dislike about the product?
Confusing error messages when they do happen
Have to individually add exceptions to alerts
Have to individually add exceptions to alerts
What problems is the product solving and how is that benefiting you?
Insight into cloud platform security, cloud platform vulnerabilities, and best practices
Reporting on device posture gaps for easy detection and remediation
Reporting on device posture gaps for easy detection and remediation
Highly capable CSPM, Swiss army knife of cloud infrastructure security
What do you like best about the product?
The product is easy to use from deployment to day-to-day security posture management.
The platform is improving at fast pase, bringing new features and sharpening existing ones.
Great CS team that always looks to tailor the product to the customer's needs.
The platform is improving at fast pase, bringing new features and sharpening existing ones.
Great CS team that always looks to tailor the product to the customer's needs.
What do you dislike about the product?
The product needs attention from security teams and needs the organization to implement procedures around it. Wiz will surely point you to issues and prioritize them with you but the solving part is entirely on the users as it is a posture management tool.
What problems is the product solving and how is that benefiting you?
Wiz gives us full visibility on our multi cloud infrastructure, exposing gaps and security issues/misconfigurations so we can improve out posture daily.
We also use Wiz for higher level of visibility like compliance and benchmarks internal assessments to enrich the reports we reflect to management.
We also use Wiz for higher level of visibility like compliance and benchmarks internal assessments to enrich the reports we reflect to management.
showing 101 - 110