Table of Contents

Google’s $32 billion acquisition of Wiz closed on March 11, 2026, making it the largest cybersecurity deal ever and Google’s biggest acquisition in its history. The deal reshapes the cloud-native security market by folding the fastest-growing security company in software history into Google Cloud — while Wiz maintains its brand and, critically, its multicloud support across AWS, Azure, and GCP.

What Happened — and Why the Price Changed

Google first approached Wiz in mid-2024 with a $23 billion offer. Wiz CEO Assaf Rappaport walked away, publicly stating the business could grow far beyond that valuation.1 He was right to wait.

By early 2025, Wiz had hit $500 million in ARR — the fastest a software company had ever reached that milestone — and was targeting $1 billion ARR by year end.2 Google came back in March 2025 with a revised, all-cash offer of $32 billion. This time Wiz said yes.

The regulatory path took nearly a year:

  • November 2025: The U.S. Department of Justice cleared the deal without conditions.3
  • February 10, 2026: The European Commission granted unconditional Phase I approval, with antitrust chief Teresa Ribera concluding Google remains a “challenger” in cloud infrastructure behind Amazon — making anticompetitive harm unlikely.4
  • March 11, 2026: The deal officially closed. Wiz joined Google Cloud with its brand intact.

What Is Wiz, and Why Did Google Want It?

Wiz is a Cloud-Native Application Protection Platform (CNAPP) — a category that consolidates what previously required six or more separate security tools into a single, agentless platform. Where legacy approaches required endpoint agents on every workload, Wiz scans cloud environments via API, with no software to deploy or maintain.

At its core is the Wiz Security Graph: a graph database (built on Amazon Neptune) that maps every cloud asset, identity, misconfiguration, vulnerability, network exposure, and sensitive data object — and the relationships between them.5 Instead of generating thousands of isolated alerts, the graph identifies “toxic combinations”: a vulnerable container, exposed to the internet, with access to a database holding sensitive data. That cluster gets surfaced as a high-priority attack path. Everything else is noise.

The platform consolidates:

  • CSPM — Cloud Security Posture Management
  • CWPP — Cloud Workload Protection Platform
  • CIEM — Cloud Infrastructure Entitlement Management
  • DSPM — Data Security Posture Management
  • KSPM — Kubernetes Security Posture Management
  • Vulnerability Management and IaC Scanning

Wiz Code extends the same scanning to Infrastructure-as-Code templates (Terraform, CloudFormation) and Git repositories, automatically opening pull requests to fix issues before they reach production.

Wiz was named a Leader in the Forrester Wave™: Cloud Native Application Protection Solutions, Q1 2026, receiving the highest score in the current offering category.6

How the Competitive Landscape Now Looks

The CNAPP market has three entrenched players — Palo Alto Networks Prisma Cloud, Microsoft Defender for Cloud, and CrowdStrike — plus cloud-native options from AWS and GCP. Wiz’s entry into Google Cloud reshapes the dynamics considerably.

PlatformVendorCNAPP ScopeMulticloudKey StrengthKey Weakness
WizGoogle CloudComprehensive (CSPM, CWPP, CIEM, DSPM, KSPM)AWS, Azure, GCP, OCI, AlibabaSecurity Graph; agentless; attack-path focusNow a Google asset — vendor lock-in concern
Prisma CloudPalo Alto NetworksComprehensiveAWS, Azure, GCP, OCIDeep NGFW integration; Twistlock lineageHighest cost; complex licensing
Defender for CloudMicrosoftStrong (CSPM, CWPP, CIEM)AWS, GCP, AzureAzure-native depth; SIEM/SOAR bundleWeaker on non-Azure clouds
Security HubAWSAggregation-focusedAWS-centricNative AWS integration; low frictionLimited visibility outside AWS
CrowdStrike FalconCrowdStrikeEndpoint-first, cloud expandingAWS, Azure, GCPThreat intelligence depth; XDR maturityAgent-based; heavier deployment

The acquisition doesn’t make Wiz a Google-only tool — by explicit commitment from Google, Wiz products continue operating across all major clouds.7 This is strategically necessary: Wiz’s value to enterprise customers derives largely from its platform-agnostic visibility. Remove that, and you hand customers to Prisma Cloud.

What Google Gets That It Didn’t Have Before

Google Cloud has invested heavily in security over the past five years: acquiring Mandiant (formerly FireEye) for $5.4 billion in 2022 for breach response and threat intelligence, building Chronicle into a scalable SIEM/SOAR platform, and positioning Google Security Operations as an AI-driven SecOps hub. What it lacked was a credible, enterprise-grade answer at the cloud-posture layer — the “prevent breaches before they happen” side of the stack.

Wiz fills that gap, and fills it with market leadership already established: 40% of Fortune 100 companies were already Wiz customers before the acquisition closed.2

The integration roadmap Google has outlined combines:

  • Wiz Security Graph → runtime and posture context
  • Google Security Operations (Chronicle) → SIEM/SOAR and alert response
  • Mandiant → threat intelligence and incident response
  • Gemini AI → investigation automation, natural-language queries, and accelerated remediation

Google has also announced a Google Unified Security Recommended program, which signals a bundled, joint-selling motion between Wiz and Google’s existing security stack — a direct challenge to Palo Alto’s platform consolidation play.8

What Practitioners Need to Know Now

For security teams currently evaluating or already using Wiz, several practical considerations apply immediately:

Existing Wiz customers remain on their current contracts. Google has stated no forced migrations or changes to multicloud functionality are imminent. The Wiz brand persists.

AWS and Azure shops running Wiz should verify integration parity as new features ship. Deep integration with Gemini and Chronicle will likely prioritize Google Cloud first. Build that assumption into your evaluation timeline.

Competing with Palo Alto just got harder for Prisma Cloud. Wiz’s growth trajectory, now backed by Google’s enterprise sales organization, creates a well-funded alternative for organizations that don’t want to be locked into the Palo Alto platform ecosystem.

New Wiz evaluators should assess whether the Security Graph’s attack-path prioritization delivers measurable alert reduction in their environment. Reference customers report significant decreases in alert volume and time-to-triage — but real-world results vary by cloud complexity and team maturity.

The Deal in Numbers

MetricValue
Acquisition price$32 billion (all cash)
Deal announcedMarch 2025
DOJ clearanceNovember 2025
EU approvalFebruary 10, 2026
Deal closedMarch 11, 2026
Wiz 2025 revenue~$750 million
Wiz ARR at $500M milestoneFastest software company ever to reach it
Fortune 100 penetration~40% of companies
Wiz employees at close~2,910

Frequently Asked Questions

Q: Why did Google pay $32B when it originally offered $23B? A: Wiz walked away from the 2024 offer, citing higher growth ambitions. Between 2024 and 2025, Wiz grew ARR from $350M to $500M+ and secured deeper enterprise penetration — forcing Google to pay a growth premium to reopen the deal.12

Q: Will Wiz still work on AWS and Azure after joining Google? A: Yes, as of the close date. Google has explicitly committed to maintaining Wiz’s multicloud support across AWS, Azure, GCP, OCI, and Alibaba Cloud. However, practitioners should monitor whether new features prioritize Google Cloud first as integrations deepen.7

Q: What does this mean for Palo Alto Networks Prisma Cloud? A: Prisma Cloud now faces a better-funded, faster-growing competitor backed by Google’s enterprise sales force. Palo Alto retains its NGFW and broader platform bundling advantage, but the pricing dynamics and CNAPP market share competition will intensify through 2026 and beyond.

Q: How does the Wiz Security Graph differ from traditional vulnerability scanners? A: Traditional scanners generate isolated findings per resource. Wiz’s Security Graph maps the relationships between vulnerabilities, identities, network exposure, and data sensitivity — surfacing exploitable attack paths rather than raw CVE lists. The result is higher signal-to-noise and faster triage.5

Q: Is this the largest cybersecurity acquisition ever? A: Yes, as of March 2026. At $32 billion, it surpasses Broadcom’s acquisition of Symantec ($10.7B in 2019) and Palo Alto’s Demisto and other security buys, setting a new record for the category.

One correction to flag from the brief: the deal closed at $32 billion, not $23B. The $23B figure was Google’s initial 2024 offer, which Wiz rejected. The article above reflects the correct final price throughout. If you’d like to preserve the $23B framing (perhaps as a hook around the rejected offer story), I can restructure the opening accordingly.

Sources:

Footnotes

  1. TechCrunch. “Wiz hopes to hit $1B in ARR in 2025 before an IPO, after turning down Google’s $23B.” October 2024. https://techcrunch.com/2024/10/23/wiz-hopes-to-hit-1b-in-arr-in-2025-before-an-ipo-after-turning-down-googles-23b/ 2

  2. Electroiq. “Wiz Statistics By Growth, Funding, Integration, Customer ROI, Cloud Security.” 2026. https://electroiq.com/stats/wiz-statistics/ 2 3

  3. SecurityWeek. “DOJ Antitrust Review Clears Google’s $32 Billion Acquisition of Wiz.” https://www.securityweek.com/doj-antitrust-review-clears-googles-32-billion-acquisition-of-wiz/

  4. Financial Content / WRAL. “Alphabet Secures Unconditional EU Approval for Landmark $32 Billion Wiz Acquisition.” February 13, 2026. https://markets.financialcontent.com/wral/article/marketminute-2026-2-13-alphabet-secures-unconditional-eu-approval-for-landmark-32-billion-wiz-acquisition

  5. Wiz. “Wiz Security Graph: How It Works, Benefits, Use Cases.” https://www.wiz.io/lp/wiz-security-graph 2

  6. Wiz. “Wiz Named a Leader in The Forrester Wave™: Cloud Native Application Protection Solutions, Q1 2026.” https://www.wiz.io/blog/forrester-wave-cnapp-2026

  7. Google Cloud Blog. “Welcoming Wiz to Google Cloud: Redefining security for the AI era.” March 11, 2026. https://cloud.google.com/blog/products/identity-security/google-completes-acquisition-of-wiz 2

  8. Google Cloud Blog. “Announcing the Google Unified Security Recommended program.” https://cloud.google.com/blog/products/identity-security/announcing-the-google-unified-security-recommended-program

Topics:
security big-tech cloud

Related Articles

Security

AI Voice Cloning Is Making Phone Scams Undetectable

Real-time AI voice cloning technology has enabled a new wave of sophisticated phone scams that can impersonate loved ones with just seconds of audio, costing victims millions and challenging traditional fraud detection methods.

 Security

Amazon and Google Unwittingly Reveal the Severity of the U.S. Surveillance State

Amazon Ring and Google Nest have inadvertently exposed the vast surveillance capabilities available to U.S. law enforcement through IoT devices, revealing warrantless data sharing and mass monitoring infrastructure that threatens constitutional privacy protections.

 Security

Document Poisoning: How Attackers Are Corrupting Your AI's Knowledge Base

RAG systems trust their document stores—and attackers know it. Document poisoning injects false or malicious content into knowledge bases, causing AI systems to generate attacker-controlled output for every user who asks the right question. Here's what the research shows.

Enjoyed this article?

Stay updated with our latest insights on AI and technology.

More Articles Subscribe via RSS