We performed a comparison between Aqua Security Platform and Wiz based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.
Features: Aqua Security Platform stands out for its effective container scanning and malware detection. Wiz earns recognition for risk prioritization and agentless scanning without the need for an agent. Aqua Security Platform could improve report automation and log forwarding. Some users have complained about the solution's resource consumption. Wiz could speed up remediation, improve reporting capabilities, and allow more dashboard customization.
Service and Support: Users have described Aqua Security Platform customer service as attentive and supportive, but a few users have had to resolve their problems on their own. Wiz customers say they received outstanding assistance, specifically commending after-sale support for its prompt and effective resolutions.
Ease of Deployment: The setup process for Aqua Security Platform was complex and required specialized knowledge, involving multiple individuals and more time for larger environments. By contrast, the setup for Wiz was described as straightforward and quick.
Pricing: The cost of Aqua Security Platform fluctuates depending on the workload. Some users find it reasonably priced, while others deemed it expensive. Wiz has been praised for its straightforward pricing and easily activated features.
ROI: Reviewers provided no feedback on Aqua Security Platform's ROI. Wiz users have seen an ROI from enhanced asset management and vulnerability identification. Wiz's SaaS platform constantly introduces new features, streamlines investigations, and offers real-time reporting. Users anticipate improved security posture and potential cost savings. Wiz simplifies procedures, improves compliance, and provides broader coverage with fewer resources.
Comparison Results: Aqua Security Platform surpasses Wiz in various aspects. Aqua's features and capabilities are considered more comprehensive and user-friendly. Users appreciate Aqua's ability to identify vulnerabilities, detect malware, and ensure container security. Reviewers also value the on-demand patching and sandboxing services. Aqua's customer service is considered helpful and localized for different countries.
"We like the platform and its response time. We also like that its console is user-friendly as well as modern and sleek."
"The multi-cloud support is valuable. They are expanding to different clouds. It is not restricted to only AWS. It allows us to have different clouds on one platform."
"The management console is the most valuable feature."
"We use the infrastructure as code scanning, which is good."
"PingSafe offers comprehensive security posture management."
"I like CSPM the most. It captures a lot of alerts within a short period of time. When an alert gets triggered on the cloud, it throws an alert within half an hour, which is very reasonable. It is a plus point for us."
"It is advantageous in terms of time-saving and cost reduction."
"We noted immediate benefits from using the solution."
"Aqua Security helps us to check the vulnerability of image assurance and check for malware."
"Support is very helpful."
"The most valuable feature is the security."
"Customers find it invaluable to have the ability to check for vulnerabilities in an image before deployment, similar to a sandbox environment."
"The CSPM product is great at securing our cloud accounts and I really like the runtime protection for containers and functions too."
"From what I understand, the initial setup is simple."
"Their sandboxing service is also really good."
"Aqua Security allowed us to gain visibility into the vulnerabilities that were present in the container images, that were being rolled out, the amount of risk that we were introducing to the platform, and provided us a look into the container environment by introducing access control mechanisms. In addition, when it came to runtime-level policies, we could restrict container access to resources in our environment, such as network-level or other application-level access."
"The automation roles are essential because we ultimately want to do less work and automate more. The dashboards are easy to read and visually pleasing. You can understand things quickly, which makes it easy for our other teams. The network and infrastructure teams don't know as much about security as we do, so it helps to have a tool that's accessible and nice to look at."
"The CSPM module has been the most effective. It was easy to deploy and covered all our accounts through APIs, requiring no agents. Wiz provides instant visibility into high-level risks that we need to address."
"Our most important features are those around entitlement, external exposure, vulnerabilities, and container security."
"The security baseline and vulnerability assessments is the valuable feature."
"The product supports out-of-the-box reporting with context about the asset and allows us to perform complex custom queries on UI."
"The vulnerability management modules and the discovery and inventory are the most valuable features. Before using Wiz, it was a very manual process for both. After implementing it, we're able to get all of the analytics into a single platform that gives us visibility across all the systems in our cloud. We're able to correspond and understand what the vulnerability landscape looks like a lot faster."
"The solution is very user-friendly."
"I like Wiz's reporting, and it's easy to do queries. For example, it's pretty simple to find out how many servers we have and the applications installed on each. I like Wiz's security graph because you can use it to see the whole organization even if you have multiple accounts."
"We wanted it to provide us with something like Claroty Hub in AWS for lateral movement. For example, if an EC2 instance or a virtual machine is compromised in a public subnet based on a particular vulnerability, such as Log4j, we want it to not be able to reach some of our databases. This kind of feature is not supported in PingSafe."
"There's an array of upcoming versions with numerous features to be incorporated into the roadmap. Customers particularly appreciate the service's emphasis on intensive security, especially the secret scanning aspect. During the proof of concept (POC) phase, the system is required to gather logs from the customer's environment. This process entails obtaining specific permissions, especially in terms of gateway access. While most permissions for POC are manageable, the need for various permissions may need improvement, especially in the context of security."
"Crafting customized policies can be tricky."
"They could generally give us better comprehensive rules."
"One of the issues with the product stems from the fact that it clubs different resources under one ticket."
"Some of the navigation and some aspects of the portal may be a little bit confusing."
"Customized queries should be made easier to improve PingSafe."
"The could improve their mean time to detect."
"Aqua Security lacks a lot in reporting."
"Sometimes I got stressed with the UI."
"There's room for improvement, particularly in management capabilities as it may not be comprehensive enough for all customers, and it has been lacking in the realm of cloud security posture management."
"It's a bit hard to use the user roles. That was a bit confusing."
"The integrations on CICD could be improved. If Aqua had more plugins or container images to integrate and automate more easily on CICD, it would be better."
"Aqua Security could provide more open documentation so that their learning resources can be more easily accessed and searched through online. Right now, a lot of the documentation is closed and not available to the public."
"They want to release improvements to their product to work with other servers because now there are more focused on the Kubernetes environment. They need to improve the normal servers. I would like to have more options."
"We would like to see an improvement in the overview visibility that this solution offers."
"We're looking at some of the data compliance stuff that they've got Jon offer. I know they're looking at container security, which we gonna be looking at next."
"The reporting isn't that great. They have executive summaries, but it's only a compliance report that maps all current issues to specific controls. Whether you look at one subscription or project, regardless of the size, you will get a multipage report on how the issues in that account map to that control. Our CSO isn't going to read through that. He won't filter that out or show that to his leadership and say, "Here's what we're doing." It isn't a helpful report. They're working on it, but it's a poor executive summary."
"Given the level of visibility into all the cloud environments Wiz provides, it would be nice if they could integrate some kind of mechanism to better manage tenants on multiple platforms. For example, let's say that some servers don't have an application they need, such as an antivirus. Wiz could include an API or something to push those applications out to the servers. It would be great if you could remedy these issues directly from the Wiz platform."
"Wiz's reporting capabilities could be refined a bit. They are making headway on that, but more executive-style dashboards would be nice. They just implemented a community aspect where you can share documents and feedback. This was something users had been requesting for a while. They are listening to customer feedback and making changes."
"The solution's container security could be improved."
"The only small pain point has been around some of the logging integrations. Some of the complexities of the script integrations aren't supported with some of the more automated infrastructure components. So, it's not as universal. For example, they have great support for cloud formation and other services, but if you're using another type of management utility or governance language for your infrastructure-as-code automation components, it becomes a little bit trickier to navigate that."
"The only thing that needs to be improved is the number of scans per day."
"We wish there were a way, beyond providing visibility and automated remediation, to wait on a given remediation, due to a critical aspect, such as the cost associated with a particular upgrade... We would like to see preventive controls that can be applied through Wiz to protect against vulnerabilities that we're not going to be able to remediate immediately."
More SentinelOne Singularity Cloud Security Pricing and Cost Advice →
Aqua Cloud Security Platform is ranked 8th in Cloud-Native Application Protection Platforms (CNAPP) with 16 reviews while Wiz is ranked 2nd in Cloud-Native Application Protection Platforms (CNAPP) with 12 reviews. Aqua Cloud Security Platform is rated 8.0, while Wiz is rated 9.2. The top reviewer of Aqua Cloud Security Platform writes "Reliable with good container scanning and a straightforward setup". On the other hand, the top reviewer of Wiz writes "Multiple features help us prioritize remediation, and agentless implementation reduces overhead". Aqua Cloud Security Platform is most compared with Prisma Cloud by Palo Alto Networks, Snyk, Red Hat Advanced Cluster Security for Kubernetes, SUSE NeuVector and Sysdig Secure, whereas Wiz is most compared with Prisma Cloud by Palo Alto Networks, Orca Security, Microsoft Defender for Cloud, AWS Security Hub and CrowdStrike Falcon Cloud Security. See our Aqua Cloud Security Platform vs. Wiz report.
See our list of best Cloud-Native Application Protection Platforms (CNAPP) vendors, best Container Security vendors, and best Cloud Workload Protection Platforms (CWPP) vendors.
We monitor all Cloud-Native Application Protection Platforms (CNAPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
