We performed a comparison between Aqua Security Platform and Wiz based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.
Features: Aqua Security Platform stands out for its effective container scanning and malware detection. Wiz earns recognition for risk prioritization and agentless scanning without the need for an agent. Aqua Security Platform could improve report automation and log forwarding. Some users have complained about the solution's resource consumption. Wiz could speed up remediation, improve reporting capabilities, and allow more dashboard customization.
Service and Support: Users have described Aqua Security Platform customer service as attentive and supportive, but a few users have had to resolve their problems on their own. Wiz customers say they received outstanding assistance, specifically commending after-sale support for its prompt and effective resolutions.
Ease of Deployment: The setup process for Aqua Security Platform was complex and required specialized knowledge, involving multiple individuals and more time for larger environments. By contrast, the setup for Wiz was described as straightforward and quick.
Pricing: The cost of Aqua Security Platform fluctuates depending on the workload. Some users find it reasonably priced, while others deemed it expensive. Wiz has been praised for its straightforward pricing and easily activated features.
ROI: Reviewers provided no feedback on Aqua Security Platform's ROI. Wiz users have seen an ROI from enhanced asset management and vulnerability identification. Wiz's SaaS platform constantly introduces new features, streamlines investigations, and offers real-time reporting. Users anticipate improved security posture and potential cost savings. Wiz simplifies procedures, improves compliance, and provides broader coverage with fewer resources.
Comparison Results: Aqua Security Platform surpasses Wiz in various aspects. Aqua's features and capabilities are considered more comprehensive and user-friendly. Users appreciate Aqua's ability to identify vulnerabilities, detect malware, and ensure container security. Reviewers also value the on-demand patching and sandboxing services. Aqua's customer service is considered helpful and localized for different countries.
"Support has been very helpful and provides regular feedback and help whenever needed. They've been very useful."
"It is very straightforward. It is not complicated. For the information that it provides, it does a pretty good job."
"The most valuable feature is the ability to gain deep visibility into the workloads inside containers."
"With PingSafe, it's easy to onboard new accounts."
"Cloud Native Security's most valuable features include cloud misconfiguration detection and remediation, compliance monitoring, a robust authentication security engine, and cloud threat detection and response capabilities."
"It is fairly simple. Anybody can use it."
"PingSafe released a new security graph tool that helps us identify the root issue. Other tools give you a pass/fail type of profile on all misconfigurations, and those will run into the thousands. PingSafe's graphing algorithm connects various components together and tries to identify what is severe and what is not. It can correlate various vulnerabilities and datasets to test them on the back end to pinpoint the real issue."
"Cloud Native Security helps us discover vulnerabilities in a cloud environment like open ports that allow people to attack our environment. If someone unintentionally opens a port, we are exposed. Cloud Native Security alerts us so we can remediate the problem. We can also automate it so that Cloud Native Security will fix it."
"Aqua Security allowed us to gain visibility into the vulnerabilities that were present in the container images, that were being rolled out, the amount of risk that we were introducing to the platform, and provided us a look into the container environment by introducing access control mechanisms. In addition, when it came to runtime-level policies, we could restrict container access to resources in our environment, such as network-level or other application-level access."
"The CSPM product is great at securing our cloud accounts and I really like the runtime protection for containers and functions too."
"The solution was very user-friendly."
"The most valuable feature is the security."
"The container security element of this product has been very valuable to our organization."
"From what I understand, the initial setup is simple."
"The most valuable feature of Aqua Security is the scanner."
"Support is very helpful."
"The product supports out-of-the-box reporting with context about the asset and allows us to perform complex custom queries on UI."
"The automation roles are essential because we ultimately want to do less work and automate more. The dashboards are easy to read and visually pleasing. You can understand things quickly, which makes it easy for our other teams. The network and infrastructure teams don't know as much about security as we do, so it helps to have a tool that's accessible and nice to look at."
"The first thing that stood out was the ease of installation and the quick value we got out of the solution."
"The vulnerability management modules and the discovery and inventory are the most valuable features. Before using Wiz, it was a very manual process for both. After implementing it, we're able to get all of the analytics into a single platform that gives us visibility across all the systems in our cloud. We're able to correspond and understand what the vulnerability landscape looks like a lot faster."
"I like Wiz's reporting, and it's easy to do queries. For example, it's pretty simple to find out how many servers we have and the applications installed on each. I like Wiz's security graph because you can use it to see the whole organization even if you have multiple accounts."
"The CSPM module has been the most effective. It was easy to deploy and covered all our accounts through APIs, requiring no agents. Wiz provides instant visibility into high-level risks that we need to address."
"Our most important features are those around entitlement, external exposure, vulnerabilities, and container security."
"The security baseline and vulnerability assessments is the valuable feature."
"There's an array of upcoming versions with numerous features to be incorporated into the roadmap. Customers particularly appreciate the service's emphasis on intensive security, especially the secret scanning aspect. During the proof of concept (POC) phase, the system is required to gather logs from the customer's environment. This process entails obtaining specific permissions, especially in terms of gateway access. While most permissions for POC are manageable, the need for various permissions may need improvement, especially in the context of security."
"They need more experienced support personnel."
"When you find a vulnerability and resolve it, the same issue will not occur again. I want PingSafe to block the same vulnerability from appearing again. I want something like a playbook where the steps that we take to resolve an issue are repeated when that issue happens again."
"We recently adopted a new ticket management solution, so we've asked them to include a connector to integrate that tool with Cloud Native Security directly. We'd also like to see Cloud Native Security add a scan for personally identifying information. We're looking at other tools for this capability, but having that functionality built into Cloud Native Security would be nice. Monitoring PII data is critical to us as an organization."
"PingSafe filtering has some areas that cause problems, and to achieve single sign-on functionality, a break-glass feature, which is currently unavailable, is necessary."
"Their search feature could be better."
"Currently, we would have to export our vulnerability report to an .xlsx file, and review it in an Excel spreadsheet, and then we sort of compile a list from there. It would be cool if there was a way to actually toggle multiple applications for review and then see those file paths on multiple users rather than only one user at a time or only one application at a time."
"Scanning capabilities should be added for the dark web."
"Since we are working from home, we would like to have the proper training for Aqua."
"In the next release, Aqua Security should add the ability to automatically send reports to customers."
"It's a bit hard to use the user roles. That was a bit confusing."
"Aqua Security could improve the forwarding of logging into Splunk and into other tools, it should be easier."
"They want to release improvements to their product to work with other servers because now there are more focused on the Kubernetes environment. They need to improve the normal servers. I would like to have more options."
"Aqua Security lacks a lot in reporting."
"We would like to see an improvement in the overview visibility that this solution offers."
"I would like Aqua Security to look into is the development of a web security portal."
"One significant issue is that the searches are case-sensitive, so finding a misconfigured resource can become very challenging."
"The solution's container security could be improved."
"The remediation workflow within the Wiz could be improved."
"Given the level of visibility into all the cloud environments Wiz provides, it would be nice if they could integrate some kind of mechanism to better manage tenants on multiple platforms. For example, let's say that some servers don't have an application they need, such as an antivirus. Wiz could include an API or something to push those applications out to the servers. It would be great if you could remedy these issues directly from the Wiz platform."
"Wiz's reporting capabilities could be refined a bit. They are making headway on that, but more executive-style dashboards would be nice. They just implemented a community aspect where you can share documents and feedback. This was something users had been requesting for a while. They are listening to customer feedback and making changes."
"The reporting isn't that great. They have executive summaries, but it's only a compliance report that maps all current issues to specific controls. Whether you look at one subscription or project, regardless of the size, you will get a multipage report on how the issues in that account map to that control. Our CSO isn't going to read through that. He won't filter that out or show that to his leadership and say, "Here's what we're doing." It isn't a helpful report. They're working on it, but it's a poor executive summary."
"We wish there were a way, beyond providing visibility and automated remediation, to wait on a given remediation, due to a critical aspect, such as the cost associated with a particular upgrade... We would like to see preventive controls that can be applied through Wiz to protect against vulnerabilities that we're not going to be able to remediate immediately."
"We're looking at some of the data compliance stuff that they've got Jon offer. I know they're looking at container security, which we gonna be looking at next."
More SentinelOne Singularity Cloud Security Pricing and Cost Advice →
Aqua Cloud Security Platform is ranked 8th in Cloud-Native Application Protection Platforms (CNAPP) with 16 reviews while Wiz is ranked 2nd in Cloud-Native Application Protection Platforms (CNAPP) with 12 reviews. Aqua Cloud Security Platform is rated 8.0, while Wiz is rated 9.2. The top reviewer of Aqua Cloud Security Platform writes "Reliable with good container scanning and a straightforward setup". On the other hand, the top reviewer of Wiz writes "Multiple features help us prioritize remediation, and agentless implementation reduces overhead". Aqua Cloud Security Platform is most compared with Prisma Cloud by Palo Alto Networks, Snyk, Red Hat Advanced Cluster Security for Kubernetes, SUSE NeuVector and Sysdig Secure, whereas Wiz is most compared with Prisma Cloud by Palo Alto Networks, Orca Security, Microsoft Defender for Cloud, AWS Security Hub and CrowdStrike Falcon Cloud Security. See our Aqua Cloud Security Platform vs. Wiz report.
See our list of best Cloud-Native Application Protection Platforms (CNAPP) vendors, best Container Security vendors, and best Cloud Workload Protection Platforms (CWPP) vendors.
We monitor all Cloud-Native Application Protection Platforms (CNAPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.