BigID and Wiz compete in data protection and cloud security, respectively. Wiz holds the upper hand due to superior feature offerings and efficient cloud-native security integration.
Features: BigID offers comprehensive data discovery, classification capabilities, and effective data regulation compliance tools. Wiz provides comprehensive cloud security features, actionable insights, and seamless integration, leading to higher user ratings for its cloud-native security focus.
Room for Improvement: BigID could enhance its analytics, scalability features, and customer guidance. Wiz needs better documentation, intuitive user guidance, and improved onboarding processes. These differences show BigID's emphasis on data governance and Wiz's focus on user-centric support.
Ease of Deployment and Customer Service: BigID users note its flexible deployment options and robust customer service despite occasional complexities. Wiz's straightforward setup and responsive customer support make it easier to deploy, with its cloud-native design facilitating quicker integration and user preference.
Pricing and ROI: BigID offers competitive pricing and strong ROI for data-centric environments. Wiz's pricing is higher, reflecting its comprehensive feature set, but it delivers positive ROI with enhanced security, justifying the investment as users witness value over time.
It is one of the best tools in the market.
We have seen ROI from Wiz and we continued to see value in Wiz.
We estimate a cost reduction of around 35% to 50%, or even more, due to consolidating our security management into one platform.
We realized value immediately after implementing Wiz.
BigID has one of the best technical support teams.
Professional service provides early and efficient support.
At the next meeting, they follow up with me, and it's usually resolved pretty fast.
We have a dedicated channel with Wiz and are always in communication with them.
The solution's technical support was excellent.
We have deployed Wiz in three organizations on AWS, each with approximately 70 to 80 accounts, totaling more than 120 accounts.
Scalability-wise, I rate the solution a ten out of ten.
We were able to find a balance in terms of pricing and performance.
BigID is generally stable, however, there is a noted issue with bulk tagging that can affect scan results.
We've only had downtime from maintenance and updates, and they notify us in advance, so we aren't impacted.
Stability-wise, I rate the solution an eight to nine out of ten.
The solution is very stable.
There is also an issue with incident tagging, where all objects get tagged without an option to untag specific ones, and reverting changes is only possible through MongoDB Central, which can lead to data loss for certain periods.
I want them to focus on data mapping, assessment, automation workflow, and privacy incident management.
We would like to see preventive controls that can be applied through Wiz to protect against vulnerabilities that we're not going to be able to remediate immediately.
Given the level of visibility into all the cloud environments Wiz provides, it would be nice if they could integrate some kind of mechanism to better manage tenants on multiple platforms.
We need an agent that can be installed, or that can overview all the containers and Kubernetes so that it can detect malicious activities that are happening in them.
BigID might be expensive as it involves various paid services, like data retention and graphic rights management.
The pricing is competitive in the market, however, I need to ask for the right price.
We are paying 250k per year.
In some cases, it has a very aggressive price, so very cheap.
What I do like is that the pricing seems pretty simple.
One of the best features of BigID is its strength in data discovery and governance.
The most valuable feature of BigID is its large number of classifiers, which allow us to scan for specific data such as SSN numbers.
The feature leads to minimal false positives and a low volume of alerts, which is highly valuable for our operations.
It's highly customizable, allowing us to manage many custom features effectively.
Regarding compliance and governance, Wiz streamlines our vulnerability management to meet specific needs effectively.
BigID is a leader in data security, privacy, compliance, and governance: enabling organizations to proactively discover, manage, protect, and get more value from their data in a single platform for data visibility and control. Customers use BigID to reduce their data risk, automate security and privacy controls, achieve compliance, and understand their data across their entire data landscape: including multicloud, hybrid cloud, IaaS, PaaS, SaaS, and on-prem data sources.
Wiz is a highly efficient solution for data security posture management (DSPM), with a 100% API-based approach that provides quick connectivity and comprehensive scans of platform configurations and workloads. The solution allows companies to automatically correlate sensitive data with relevant cloud context, such as public exposure, user identities, entitlements, and vulnerabilities.This integration enables them to understand data accessibility, configuration, usage, and movement within their internal environments.
Wiz's Security Graph delivers automated alerts whenever risks emerge, allowing teams to prioritize and address the most critical issues before they escalate into breaches. Furthermore, Wiz ensures rapid and agentless visibility into critical data across various repositories, enabling organizations to easily determine the location of their data assets.
Wiz provides various features in the following categories:
Agentless Scanning: The solution can scan every layer of a cloud environment without requiring agents, managing the entire process and providing comprehensive visibility.
Workflow Integration: Users can create customized workflows within Wiz to identify and assign actions based on urgency, integrating them with ticketing systems for quick and efficient remediation.
Vulnerability Management: Wiz's vulnerability management modules provide detailed analytics and visibility across cloud systems, streamlining the manual process of vulnerability discovery. The automated attack path analysis helps identify risks and trace potential points of exposure, allowing users to understand and mitigate them effectively and proactively.
CSPM (Cloud Security Posture Management): Wiz's CSPM module offers instant visibility into high-level risks to an enterprise’s cloud environment, covering all accounts without the need for agents.
Out-of-the-Box Reporting and Custom Queries: The service supports comprehensive reporting with asset context, allowing users to perform complex custom queries on the solution’s user-friendly interface.
Automation Roles and Dashboards: The solution facilitates automation by providing essential roles and dedicated dashboards that enable teams to understand security information quickly, even those with limited expertise.
Contextual Risk Evaluation: The service contextualizes the various components contributing to an issue, providing a risk evaluation framework that helps prioritize remediation efforts.
Security Graph and Visibility: Wiz's security graph offers visibility across the entire organization, even with multiple accounts, enabling users to understand their environment and assets effectively.
Wiz offers the following benefits:
Comprehensive agentless scanning
Effective identification and mitigation of vulnerabilities
Streamlined vulnerability management
Robust reporting capabilities and customizable queries
Enhanced automation and role-based access control
Prioritized risk evaluation for efficient remediation
Security posture across multiple accounts
Kamran Siddique, VP Information Security at boxed.com, remarks his company has seen a ROI while using Wiz, as it simplifies the process by integrating multiple useful tools into one solution.
According to a Senior Security Architect at Deliveroo, Wiz has given their company a fresh approach to vulnerability management, as Wiz's native integrations are extremely useful and paramount to the operational success of their platform.
We monitor all Data Security Posture Management (DSPM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
