Tenable Cloud Security vs Wiz comparison

Tenable and Wiz are both solutions in the Cloud-Native Application Protection Platforms (CNAPP) category. Tenable is ranked #15 with an average rating of 8.2, while Wiz is ranked #2 with an average rating of 9.0. Additionally, 71% of Tenable users are willing to recommend the solution, compared to 100% of Wiz users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Oct 9, 2024

Wiz and Tenable Cloud Security compete in the cloud security solutions category. Wiz seems to have the upper hand in ease of integration and user satisfaction, whereas Tenable Cloud Security stands out for its robust features.

Features: Wiz is recognized for seamless integration capabilities, comprehensive monitoring options, and user-friendly design. Tenable Cloud Security is valued for in-depth analytics, strong threat detection features, and its specialization in security analytics.

Room for Improvement: Wiz could enhance reporting features, provide more customization options, and improve user interface intuitiveness. Tenable Cloud Security could work on reducing deployment complexity, offering greater flexibility in deployment settings, and enhancing usability of its interface.

Ease of Deployment and Customer Service: Wiz is praised for its simple deployment process and responsive customer service. Tenable Cloud Security faces mixed feedback on deployment, with some users finding it challenging. Its customer service is knowledgeable though response times vary.

Pricing and ROI: Wiz is favored for its competitive pricing and valuable ROI. Tenable Cloud Security has higher setup costs but offers significant ROI for its advanced features when fully utilized.

To learn more, read our detailed Tenable Cloud Security vs. Wiz Report (Updated: January 2025).

Buyer's Guide

Tenable Cloud Security vs. Wiz

January 2025

Download the complete report

Helped 831,158 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

SentinelOne Singularity Clo...

Featured Reviews

Andrew W

VP - Information Technology at a financial services firm with 201-500 employees

Tells us about vulnerabilities as well as their impact and helps to focus on real issues

Looking at all the different pieces, it has got everything we need. Some of the pieces we do not even use. For example, we do not have Kubernetes Security. We are not running any K8 clusters, so it is good for us. Overall, we find the solution to be fantastic. There can be additional education components. This may not be truly fair to them because of what the product is going for, but it would be great to see additional education for compliance. It is not a criticism of the tool per se, but anything to help non-development resources understand some of the complexities of the cloud is always appreciated. Any additional educational resources are always helpful for security teams, especially those without a development background.

Read full review

Ondrej Kováč

Solution Engineer at Exclusive Networks Czechia

Has vulnerability detection, software composition analysis and asset management features

Due to its robust nature, the platform's adoption can be overwhelming initially. However, once organizations start using it, they tend to get used to it. I haven't had much direct interaction with the support team, but some partners have reported a desire for better support for the product. Another area needing improvement is the implementation complexity, especially in multi-cloud environments. Tenable Cloud Security's features mean there's a steep learning curve, which can consume significant time and resources to utilize the platform's potential and fully see immediate benefits. It's similar to AI in that you must spend time fine-tuning and training before it truly helps.

Read full review

Pietro Villivà

Business Line Manager at S2E

Useful for security assessment and maintaining correct security posture

The tool keeps improving on a weekly basis. Wiz enters into a lot of partnerships with other technologies. I don't have any idea about the improvements needed in the tool at the moment. For me, Wiz is a very complete product, but it is not the perfect one. Other technologies are better for our customers' specific use cases. A possible way to grow the tool is by introducing new functionality or features. In the future, the tool can introduce an on-prem infrastructure or platform. Not having an on-prem version can be an obstacle for customers who have a large workload in an on-prem environment. The onboarding can be done in five minutes or five to ten minutes. Then, there is the configuration, and it depends on the type of the use case of the customer. There is a customer that has simple use cases for whom the onboarding can be done in four to eight hours a day. If there are some customers with a lot of use cases and a lot of different cloud providers, more time is needed. In general, we don't need more than five days to deploy the tool, even in the case of a very complex architecture and hybrid cloud environment. To deploy the tool, we need to have access to the account of the customer, and Wiz is a stuff that we need to make with the customer. We do the onboarding together. The customer creates the correct authorization in the cloud platform and gives us the key to connect to the platform, and then the platform connector starts and begins to collect information.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"I did a lot of research before signing up and doing the demo. They have a good reputation as far as catching threats early on."

"Atlas security graph is pretty cool. It maps out relationships between components on AWS, like load balancers and servers. This helps visualize potential attack paths and even suggests attack paths a malicious actor might take."

"The Offensive Security Engine, powered by impressive AI/ML capabilities, seamlessly integrates with cloud infrastructure to analyze data and provide optimal security solutions."

"The solution is a good alerting tool."

"Support has been very helpful and provides regular feedback and help whenever needed. They've been very useful."

"Singularity Cloud Workload Security provides us with better security detection and more visibility. It is another resource that we can use to detect vulnerabilities in our company's systems. For example, it can help us detect new file processes that we are not familiar with, which could be used by attackers to exploit our systems. Singularity Cloud Workload Security can also help us diagnose and analyze data to determine whether it is malicious or not. Singularity Cloud Workload Security is like another pair of eyes that can help us protect our systems from cyberattacks."

"Cloud Native Security is user-friendly. Everything in the Cloud Native Security tool is straightforward, including detections, integration, reporting, etc. They are constantly improving their UI by adding plugins and other features."

"It saves time, makes your environment more secure, and improves compliance. PingSafe helps with audits, ensuring that you are following best practices for cloud security. You don't need to be an expert to use it and improve your security."

More SentinelOne Singularity Cloud Security pros

"The solution’s vulnerability management feature has helped us identify and mitigate risks well."

"The key benefit lies in having the largest and most up-to-date database. When it comes to using any Tenable product, it excels in finding vulnerabilities and providing analytics."

"The product's deployment phase is easy."

"Tenable Cloud Security excels in vulnerability detection, one of its strongest features. Another valuable feature is software composition analysis, which highlights and automates the detection of security flaws. Additionally, their knowledge base is excellent; if anything goes wrong, they provide clear guidance on what needs to be done to address specific vulnerabilities."

"If you have multi-cloud tenancy using AWS and Azure, you can have a single dashboard where you can onboard all the cloud infrastructure and have visibility into it."

"Scanning and reporting are the most valuable features of Tenable Cloud Security"

"The product's visibility and remediation work fine for me."

"The tool alerts us on depreciating performance or deficiencies of our web application. It helps us react on time."

More Tenable Cloud Security pros

"The product supports out-of-the-box reporting with context about the asset and allows us to perform complex custom queries on UI."

"The automation roles are essential because we ultimately want to do less work and automate more. The dashboards are easy to read and visually pleasing. You can understand things quickly, which makes it easy for our other teams. The network and infrastructure teams don't know as much about security as we do, so it helps to have a tool that's accessible and nice to look at."

"The solution is very user-friendly."

"The CSPM module has been the most effective. It was easy to deploy and covered all our accounts through APIs, requiring no agents. Wiz provides instant visibility into high-level risks that we need to address."

"With Wiz, we get timely alerts for leaked data or any vulnerabilities already existing in our environment."

"The tool's most valuable feature is its attack path analysis."

"The product's most valuable feature combines different contexts and attributes to produce highly confident alerts."

"I like Wiz's reporting, and it's easy to do queries. For example, it's pretty simple to find out how many servers we have and the applications installed on each. I like Wiz's security graph because you can use it to see the whole organization even if you have multiple accounts."

More Wiz pros

Cons

"Maybe container runtime security could be improved."

"In some cases, the rules are strictly enforced but do not align with real-world use cases."

"The cloud-based operations might pose challenges in areas with limited or unavailable internet connectivity."

"With Cloud Native Security, we can't selectively enable or disable alerts based on our specific use case."

"The documentation that I use for the initial setup can be more detailed or written in a more user-friendly language to avoid troubles."

"The SentinelOne customer support needs improvement, as they are sometimes late in responding, which is critical in a production issue."

"I'd like to see better onboarding documentation."

"It does not bring much threat intel from the outside world. All it does is scan. If it can also correlate things, it will be better."

More SentinelOne Singularity Cloud Security cons

"I have faced several bug incidents with the solution"

"If Tenable Cloud Security offers a complete Cnapp solution with CWP, CIEM, and Waap security, it will be able to compete with other competitors."

"Due to its robust nature, the platform's adoption can be overwhelming initially. However, once organizations start using it, they tend to get used to it. I haven't had much direct interaction with the support team, but some partners have reported a desire for better support for the product."

"Tenable needs to offer a patch-based solution since it is an area where the tool lacks a bit."

"Ermetic needs to improve its security scanning. I would like to see more dynamic graphical forms."

"I didn't find anything that wasn't useful or needed to be added."

"The product must provide more features."

"There is a need for the support team to improve their response time since it is one of the areas where the product's technical team has certain shortcomings."

More Tenable Cloud Security cons

"The only small pain point has been around some of the logging integrations. Some of the complexities of the script integrations aren't supported with some of the more automated infrastructure components. So, it's not as universal. For example, they have great support for cloud formation and other services, but if you're using another type of management utility or governance language for your infrastructure-as-code automation components, it becomes a little bit trickier to navigate that."

"The APIs are currently quite limited and not very mature, which makes integration with Splunk difficult."

"Wiz's reporting capabilities could be refined a bit. They are making headway on that, but more executive-style dashboards would be nice. They just implemented a community aspect where you can share documents and feedback. This was something users had been requesting for a while. They are listening to customer feedback and making changes."

"We wish there were a way, beyond providing visibility and automated remediation, to wait on a given remediation, due to a critical aspect, such as the cost associated with a particular upgrade... We would like to see preventive controls that can be applied through Wiz to protect against vulnerabilities that we're not going to be able to remediate immediately."

"Given the level of visibility into all the cloud environments Wiz provides, it would be nice if they could integrate some kind of mechanism to better manage tenants on multiple platforms. For example, let's say that some servers don't have an application they need, such as an antivirus. Wiz could include an API or something to push those applications out to the servers. It would be great if you could remedy these issues directly from the Wiz platform."

"We're looking at some of the data compliance stuff that they've got Jon offer. I know they're looking at container security, which we gonna be looking at next."

"In Brazil, the cost is a significant issue due to the currency exchange rate."

"One significant issue is that the searches are case-sensitive, so finding a misconfigured resource can become very challenging."

More Wiz cons

Pricing and Cost Advice

"PingSafe is priced reasonably for our workload."

"PingSafe is less expensive than other options."

"SentinelOne offers excellent pricing and licensing options."

"Their pricing appears to be based simply on the number of accounts we have, which is common for cloud-based products."

"SentinelOne provided competitive pricing compared to other vendors, and we are satisfied with the deal."

"The tool is cost-effective."

"It was reasonable pricing for me."

"Pricing is based on modules, which was ideal for us."

More SentinelOne Singularity Cloud Security pricing and cost advice

"There is a need to opt for a subscription-based pricing model to use Tenable Cloud Security. I rate the product price an eight on a scale of one to ten, where one is low price and ten is high price."

"The tool's price is good compared to other brands. The tool's subscription is for a year."

"The tool's pricing is fair."

"Based on the features and capabilities, the product pricing seems reasonable."

"Regarding pricing, it’s more than $100k because we have a very big infrastructure. Our environment supports around three thousand people, and we offer business-to-client financial services to around one million clients, so we rely heavily on Wiz."

"Wiz is a moderately priced solution, where it is neither cheap nor costly."

"The pricing is fair and comparable to their competitors. The cost seems to be going up, which is a concern. There are potential savings from consolidating tools, but we're uncertain how Wiz's pricing will change over time."

"The cost of the other solutions is comparable to Wiz."

"If one is cheap and ten is expensive, I rate the tool's price as a five out of ten."

"The pricing seems pretty simple. We don't have to do a lot of calculations to figure out what the components are. They do it by enabling specific features, either basics or advanced, which makes it easy to select."

"I wish the pricing was more transparent."

More Wiz pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Cloud-Native Application Protection Platforms (CNAPP) solutions are best for your needs.

See recommendations

831,158 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

19%

Financial Services Firm

15%

Manufacturing Company

Government

Computer Software Company

15%

Financial Services Firm

13%

Government

11%

Manufacturing Company

Computer Software Company

15%

Financial Services Firm

15%

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about PingSafe?

The dashboard gives me an overview of all the things happening in the product, making it one of the tool's best featu...

See all answers

What is your experience regarding pricing and costs for PingSafe?

SentinelOne is relatively cheap. If ten is the most expensive, I would rate it a seven.

See all answers

What needs improvement with PingSafe?

The areas with room for improvement include the cost, which is higher compared to other security platforms. The dashb...

See all answers

What do you like most about Tenable Cloud Security?

The solution’s vulnerability management feature has helped us identify and mitigate risks well.

See all answers

What needs improvement with Tenable Cloud Security?

Another team uses the tool. Tenable acquired Ermetic. I think Tenable has features, stays up to date, and upgrades ev...

See all answers

What is your primary use case for Tenable Cloud Security?

Right now, I use Tenable as CNAPP, and it is good for the product as it offers enhanced security to users. We did use...

See all answers

What do you like most about Wiz?

With Wiz, we get timely alerts for leaked data or any vulnerabilities already existing in our environment.

See all answers

What is your experience regarding pricing and costs for Wiz?

This feedback is not based on much experience yet, as we have only conducted POV or POC.

See all answers

What needs improvement with Wiz?

I have not measured certain abilities on a scale yet. The ultimate value depends on the requirements of your organiza...

See all answers

Comparisons

Prisma Cloud by Palo Alto Networks vs SentinelOne Singularity Cloud Security

Compared 23% of the time

AWS GuardDuty vs SentinelOne Singularity Cloud Security

Compared 8% of the time

Microsoft Defender for Cloud vs SentinelOne Singularity Cloud Security

Compared 7% of the time

Orca Security vs SentinelOne Singularity Cloud Security

Compared 6% of the time

Check Point CloudGuard CNAPP vs SentinelOne Singularity Cloud Security

Compared 4% of the time

More SentinelOne Singularity Cloud Security Competitors

CrowdStrike Falcon Cloud Security vs Tenable Cloud Security

Compared 11% of the time

Prisma Cloud by Palo Alto Networks vs Tenable Cloud Security

Compared 10% of the time

Microsoft Defender for Cloud vs Tenable Cloud Security

Compared 10% of the time

Orca Security vs Tenable Cloud Security

Compared 8% of the time

AWS GuardDuty vs Tenable Cloud Security

Compared 6% of the time

More Tenable Cloud Security Competitors

Prisma Cloud by Palo Alto Networks vs Wiz

Compared 16% of the time

Orca Security vs Wiz

Compared 8% of the time

Microsoft Defender for Cloud vs Wiz

Compared 8% of the time

Snyk vs Wiz

Compared 5% of the time

Datadog vs Wiz

Compared 2% of the time

More Wiz Competitors

Product Reports

Buyer's Guide

SentinelOne Singularity Cloud Security

December 2024

SentinelOne Singularity Cloud Security report

Download SentinelOne Singularity Cloud Security product report

Buyer's Guide

Tenable Cloud Security

October 2024

Download Tenable Cloud Security product report

Buyer's Guide

Wiz

December 2024

Download Wiz product report

Also Known As

PingSafe

Ermetic, Ermetic Identity Governance for AWS

No data available

Learn More

SentinelOne

Tenable

Wiz

Overview

SentinelOne Singularity Cloud Security protects cloud workloads, offering advanced threat detection and automated response. It integrates seamlessly with cloud environments and secures containerized applications and virtual machines against vulnerabilities.

SentinelOne Singularity Cloud Security is renowned for its efficiency in mitigating threats in real-time. The platform integrates effortlessly with existing cloud environments, ensuring robust cloud security management with minimal manual intervention. Securing containerized applications and virtual machines, it excels in threat intelligence and endpoint protection. However, improvements are needed in performance during high workload periods, and more integrations with third-party tools and better documentation would be beneficial. Users often find the installation process complex, support response times slow, and the dashboard's navigation unintuitive.

What are the key features of SentinelOne Singularity Cloud Security?

Real-time Threat Detection: Identifies and mitigates threats as they occur.
Automated Response: Automatically responds to threats to minimize impact.
Ease of Deployment: Simple setup process with scalable options.
Machine Learning Insights: AI-driven insights enhance threat prevention.
Seamless Integration: Integrates with cloud environments for unified security management.

What are the primary benefits or ROI to expect from SentinelOne Singularity Cloud Security?

Enhanced Threat Mitigation: Improved security against real-time threats.
Reduced Manual Intervention: Automated processes save time and resources.
Scalability: Easily adapts to growing security requirements.
Centralized Management: Manage security across platforms from a single console.
Advanced Threat Intelligence: Provides in-depth analysis and protection.

In specific industries, SentinelOne Singularity Cloud Security is implemented to safeguard critical data and infrastructure. Organizations in finance, healthcare, and technology depend on its real-time threat detection and automated response to protect sensitive information. Its ability to secure containerized applications and virtual machines is particularly valuable in dynamic environments where rapid scaling is necessary.

Tenable Cloud Security is a comprehensive solution designed to help organizations secure their cloud environments across various platforms, including AWS, Azure, and Google Cloud. It offers continuous visibility, compliance management, and threat detection to ensure that cloud infrastructure and applications are protected from vulnerabilities and misconfigurations.

Tenable Cloud Security exemplifies a comprehensive Cloud-Native Application Protection Platform (CNAPP) by providing a unified solution that covers the entire cloud security lifecycle, from development to runtime. This platform is designed to address vulnerabilities, misconfigurations, threats, and compliance risks across multi-cloud environments, making it an essential tool for organizations adopting cloud-native architectures. In practice, Tenable Cloud Security integrates security into the development process through its shift-left approach, particularly with Infrastructure as Code (IaC) security. This ensures that security measures are embedded early in the development lifecycle, allowing teams to identify and mitigate vulnerabilities before they reach production. Once in production, the platform continues to provide real-time visibility into cloud environments, enabling continuous monitoring and proactive threat detection.

The solution's comprehensive protection spans various aspects of cloud security, including the identification and remediation of misconfigurations, automated compliance management, and advanced threat intelligence. By automating these processes, Tenable Cloud Security reduces the manual effort required to manage cloud security, freeing up resources for more strategic initiatives.

What are the key features of Tenable Cloud Security?

Unified Platform: Covers the entire cloud security lifecycle, from development to runtime, providing comprehensive protection.
Shift-Left Approach with IaC Security: Integrates security early in the development process, ensuring that vulnerabilities are caught and remediated before deployment.
Continuous Monitoring: Offers real-time visibility and monitoring of cloud environments, enabling proactive threat detection and response.
Automation: Streamlines security operations, reducing the need for manual intervention and increasing operational efficiency.
Comprehensive Threat and Compliance Management: Identifies and mitigates vulnerabilities, misconfigurations, and compliance risks across multi-cloud environments.

What are the benefits of using Tenable Cloud Security?

Improved Security Posture: Early detection and remediation of vulnerabilities lead to a stronger overall security posture.
Operational Efficiency: Automation reduces the workload on security teams, allowing them to focus on higher-priority tasks.
Risk Reduction: Proactively identifies and addresses risks before they impact production environments.
Simplified Compliance: Helps organizations meet and maintain compliance with industry standards, reducing the complexity and cost of audits.

Tenable Cloud Security is particularly valuable in industries with stringent regulatory requirements, such as finance, healthcare, and retail. For example, in the financial sector, it helps organizations ensure compliance with regulations like PCI-DSS while safeguarding sensitive data across cloud environments.

In summary, Tenable Cloud Security is a robust CNAPP solution that integrates security throughout the cloud lifecycle, providing comprehensive protection and operational efficiency for cloud-native environments.

Wiz is a highly efficient solution for data security posture management (DSPM), with a 100% API-based approach that provides quick connectivity and comprehensive scans of platform configurations and workloads. The solution allows companies to automatically correlate sensitive data with relevant cloud context, such as public exposure, user identities, entitlements, and vulnerabilities.This integration enables them to understand data accessibility, configuration, usage, and movement within their internal environments.

Wiz's Security Graph delivers automated alerts whenever risks emerge, allowing teams to prioritize and address the most critical issues before they escalate into breaches. Furthermore, Wiz ensures rapid and agentless visibility into critical data across various repositories, enabling organizations to easily determine the location of their data assets.

Wiz Features

Wiz provides various features in the following categories:

Agentless Scanning: The solution can scan every layer of a cloud environment without requiring agents, managing the entire process and providing comprehensive visibility.
Workflow Integration: Users can create customized workflows within Wiz to identify and assign actions based on urgency, integrating them with ticketing systems for quick and efficient remediation.
Vulnerability Management: Wiz's vulnerability management modules provide detailed analytics and visibility across cloud systems, streamlining the manual process of vulnerability discovery. The automated attack path analysis helps identify risks and trace potential points of exposure, allowing users to understand and mitigate them effectively and proactively.
CSPM (Cloud Security Posture Management): Wiz's CSPM module offers instant visibility into high-level risks to an enterprise’s cloud environment, covering all accounts without the need for agents.
Out-of-the-Box Reporting and Custom Queries: The service supports comprehensive reporting with asset context, allowing users to perform complex custom queries on the solution’s user-friendly interface.
Automation Roles and Dashboards: The solution facilitates automation by providing essential roles and dedicated dashboards that enable teams to understand security information quickly, even those with limited expertise.
Contextual Risk Evaluation: The service contextualizes the various components contributing to an issue, providing a risk evaluation framework that helps prioritize remediation efforts.
Security Graph and Visibility: Wiz's security graph offers visibility across the entire organization, even with multiple accounts, enabling users to understand their environment and assets effectively.

The Benefits of Wiz

Wiz offers the following benefits:

Comprehensive agentless scanning
Effective identification and mitigation of vulnerabilities
Streamlined vulnerability management
Robust reporting capabilities and customizable queries
Enhanced automation and role-based access control
Prioritized risk evaluation for efficient remediation
Security posture across multiple accounts

Reviews from Real Users

Kamran Siddique, VP Information Security at boxed.com, remarks his company has seen a ROI while using Wiz, as it simplifies the process by integrating multiple useful tools into one solution.

According to a Senior Security Architect at Deliveroo, Wiz has given their company a fresh approach to vulnerability management, as Wiz's native integrations are extremely useful and paramount to the operational success of their platform.

Get a demo | Wiz

Sample Customers

Information Not Available

Tyler Technologies, Bilfinger, BarkBox, MongoDB, airSlate, Adama, Latch, Cloudinary, Riskified, AppsFlyer, IntelyCare, Aidoc, 42Dot, and more.

Wiz is the fastest growing software company ever - $100M ARR in 18 months: Wiz becomes the fastest-growing software company ever | Wiz Blog Discover why companies, including Salesforce, Morgan Stanley, Fox, and Bridgewater choose Wiz as their cloud security partner. Read their success stories here: Customers | Wiz

Buyer's Guide

Tenable Cloud Security vs. Wiz

January 2025

Free Report: Tenable Cloud Security vs. Wiz

Find out what your peers are saying about Tenable Cloud Security vs. Wiz and other solutions. Updated: January 2025.

DOWNLOAD NOW

831,158 professionals have used our research since 2012.

See our Tenable Cloud Security vs. Wiz report.

See our list of best Cloud-Native Application Protection Platforms (CNAPP) vendors, best Cloud Workload Protection Platforms (CWPP) vendors, and best Cloud Security Posture Management (CSPM) vendors.

We monitor all Cloud-Native Application Protection Platforms (CNAPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.