Table of Contents

Google officially closed its $32 billion acquisition of Wiz on March 11, 2026, marking the largest deal in Google’s history and the biggest-ever acquisition of a venture-backed startup. The cloud security specialist, which grew from zero to $1 billion in annual recurring revenue in under five years, now sits inside Google Cloud—and the implications for every enterprise running workloads in the cloud are immediate.

From a Rejected $23B Offer to a $32B Landmark

The story behind this deal reveals as much about Wiz’s leverage as Google’s ambition. In mid-2024, Google approached Wiz with a $23 billion offer. CEO Assaf Rappaport walked away, telling investors the company had outgrown that valuation and was targeting a public listing instead.1 That rejection turned out to be a negotiating masterstroke. By July 2024, Wiz had surpassed $500 million ARR, growing over 100% year-over-year. By early 2025, revenues were approaching $750 million.

Google came back—this time with $32 billion on the table. The deal was announced in March 2025 and spent nearly a full year in regulatory review. The U.S. Department of Justice cleared the transaction in November 2025 through an “early termination” notice under the Hart-Scott-Rodino Act, signaling no immediate competitive concerns.2 The European Commission followed with approval in February 2026. The deal closed March 11, 2026.

What Wiz Actually Does

Understanding why Google paid $32 billion requires understanding what Wiz built. Wiz is a Cloud Native Application Protection Platform (CNAPP)—a unified security layer that covers an organization’s entire cloud infrastructure across multiple dimensions simultaneously.

The platform’s core technical differentiator is its Security Graph: a contextual analysis engine that correlates vulnerabilities, misconfigurations, overprivileged identities, exposed secrets, and network paths into connected attack routes. Rather than flagging thousands of individual alerts, the Security Graph surfaces “toxic combinations”—situations where, for instance, an unpatched vulnerability on an internet-facing instance also has high-privilege access to a sensitive data store. That specificity is what drove adoption among enterprises overwhelmed by alert noise.

Wiz deploys agentlessly, scanning via cloud provider APIs at the hypervisor level rather than installing software on individual workloads. This means a new customer can achieve full visibility across their cloud environment within hours, not months. The platform covers AWS, Azure, GCP, OCI, Alibaba Cloud, and Kubernetes simultaneously—a crucial capability for the Fortune 100 companies that make up nearly half of Wiz’s customer base.3

The platform organizes into three modules:

ModuleFunctionKey Capability
Wiz CodePre-production securityCI/CD pipeline scanning, IaC analysis, 1-click fix PRs
Wiz CloudRuntime posture managementAgentless CSPM, CWPP, CIEM, DSPM unified in one platform
Wiz DefendRuntime threat detectioneBPF-based behavioral monitoring, incident response

In Q1 2026, Forrester named Wiz a Leader in its Wave for Cloud Native Application Protection Solutions, giving the platform the highest score in the current offering category.4

Google’s Strategic Calculation

Google Cloud has historically trailed AWS and Microsoft Azure in enterprise adoption. Its security story has been fragmented—Chronicle for SIEM, Mandiant for threat intelligence, VirusTotal for threat data, and a patchwork of native security services. Wiz provides the missing connective tissue: a best-in-class, cloud-agnostic CNAPP that enterprises already trust.

The combined offering layers Wiz’s attack-surface intelligence with Google’s Threat Intelligence and Security Operations platform. Security teams gain a unified view from code commit to runtime threat, with Mandiant’s threat research informing detection logic. Google has also indicated Gemini AI integration with Wiz is forthcoming, adding machine-speed investigation and remediation agents to the workflow.5

Critically, Google has committed to keeping Wiz multicloud. Wiz products will continue to operate across AWS, Azure, GCP, and OCI. As Google Cloud VP Thomas Kurian stated at deal close, the goal is to make cloud security easier for organizations regardless of which platforms they use.6 That commitment was likely a condition for regulatory approval, and it’s essential for maintaining the customer trust that made Wiz valuable in the first place.

The Competitive Fallout

This acquisition reshapes the competitive landscape across three fronts.

Palo Alto Networks faces the most direct pressure. Its Prisma Cloud platform is Wiz’s closest analog. Prisma Cloud growth has decelerated in recent quarters even as Wiz was accelerating. Google’s resources—distribution, infrastructure, AI capabilities—now sit behind Wiz’s sales team.7

Microsoft Defender for Cloud retains strong advantages in identity and endpoint protection, areas where Microsoft’s platform remains integrated at the OS level. But Defender lacks Wiz’s cross-cloud neutrality. Enterprises running significant AWS workloads alongside Azure are unlikely to rely solely on Microsoft’s tooling.

CrowdStrike stands as a potential beneficiary of customer uncertainty. Security teams at multicloud shops that doubt Wiz’s continued neutrality post-acquisition may gravitate toward independent vendors. CrowdStrike’s cloud security ARR is estimated at $100–200 million—room to grow if enterprise sentiment shifts.8

What Practitioners Need to Know Now

For security and platform engineering teams, several practical questions demand immediate attention.

Existing Wiz customers should request written commitments on roadmap neutrality, licensing continuity, and data handling under new ownership. The Wiz brand continues and the team remains—but corporate priorities can shift quietly.

Google Cloud customers gain access to a materially better CNAPP, with the prospect of tighter integration between Security Operations, Mandiant threat intelligence, and Wiz’s attack-path visibility. The combined stack represents one of the most complete enterprise security platforms available as of early 2026.

Teams evaluating CNAPP vendors should revisit shortlists. The market is consolidating: Wiz is now inside Google, Prisma Cloud is showing deceleration, and Microsoft continues building out Defender. Independent alternatives with enterprise-grade coverage are narrowing.

The regulatory precedent also matters. Both the DOJ and EU cleared the deal without conditions—notably, despite concerns from civil society groups that the acquisition could threaten cloud competition.9 That outcome signals regulators currently view cloud security consolidation as a lower antitrust priority than cloud compute itself.

The Bigger Picture

Google paid $32 billion not just for a security product—it paid for a beachhead in enterprise IT relationships. Cloud security spending is growing faster than cloud infrastructure itself, driven by regulatory pressure, AI workload proliferation, and the expanding attack surface of hybrid environments. The Wiz acquisition positions Google to compete in that conversation at the C-suite level, not just at the technical evaluation stage.

Assaf Rappaport, who remains with the company, framed the mission clearly at deal close: “Our mission remains as bold as ever: to protect everything organizations build and run. And we are still just getting started.”10

Whether Google can preserve that trajectory while integrating a $32 billion acquisition into a larger cloud enterprise—without the agility that made Wiz exceptional—is the question that will define whether this deal was history-making or merely expensive.

Frequently Asked Questions

Q: Was the Google-Wiz acquisition price $23 billion or $32 billion? A: The final acquisition price was $32 billion in all-cash, closed March 11, 2026. The $23 billion figure refers to Google’s original offer in 2024, which Wiz CEO Assaf Rappaport rejected to pursue an IPO at a higher valuation.

Q: Will Wiz still work on AWS and Azure after the Google acquisition? A: Yes. Google has explicitly committed to maintaining Wiz as a multicloud platform covering AWS, Azure, GCP, and OCI. This commitment was central to regulatory approval and to preserving Wiz’s existing customer relationships.

Q: What is a CNAPP and why does it matter for cloud security? A: A Cloud Native Application Protection Platform (CNAPP) unifies multiple cloud security disciplines—posture management (CSPM), workload protection (CWPP), identity entitlement management (CIEM), and data security posture (DSPM)—into a single platform. Rather than managing five separate tools, security teams get a correlated view of risk across their entire cloud environment. Wiz’s Security Graph is the specific engine that makes that correlation actionable.

Q: Which security vendors are most threatened by this deal? A: Palo Alto Networks’ Prisma Cloud faces the most direct competition, as it is Wiz’s closest CNAPP equivalent. Microsoft Defender for Cloud and AWS Security Hub face increased pressure on cross-cloud use cases, where Wiz’s neutrality was already an advantage.

Q: Should current Wiz customers be concerned about continuity? A: Wiz is retaining its brand, leadership, and multicloud roadmap commitments. However, customers on non-GCP clouds should proactively clarify product roadmap plans, licensing terms, and SLA commitments under new ownership before their next renewal cycle.

Footnotes

  1. TechCrunch. “Wiz hopes to hit $1B in ARR in 2025 before an IPO, after turning down Google’s $23B.” October 23, 2024. https://techcrunch.com/2024/10/23/wiz-hopes-to-hit-1b-in-arr-in-2025-before-an-ipo-after-turning-down-googles-23b/

  2. SecurityWeek. “DOJ Antitrust Review Clears Google’s $32 Billion Acquisition of Wiz.” November 2025. https://www.securityweek.com/doj-antitrust-review-clears-googles-32-billion-acquisition-of-wiz/

  3. Wiz Blog. “Wiz Joins Google: Making Magic Together.” March 11, 2026. https://www.wiz.io/blog/google-closes-deal-to-acquire-wiz

  4. Wiz Blog. “Wiz Named a Leader in The Forrester Wave™: Cloud Native Application Protection Solutions, Q1 2026.” https://www.wiz.io/blog/forrester-wave-cnapp-2026

  5. Google Cloud Blog. “Welcoming Wiz to Google Cloud: Redefining security for the AI era.” March 2026. https://cloud.google.com/blog/products/identity-security/google-completes-acquisition-of-wiz

  6. Google Press Corner. “Google Completes Acquisition of Wiz.” March 11, 2026. https://www.googlecloudpresscorner.com/2026-03-11-Google-Completes-Acquisition-of-Wiz

  7. Software Analyst. “Looking Beyond The Google & Wiz Acquisition: The Future Of Cloud Security.” https://softwareanalyst.substack.com/p/looking-beyond-the-google-and-wiz

  8. Software Analyst. “Looking Beyond The Google & Wiz Acquisition: The Future Of Cloud Security.” https://softwareanalyst.substack.com/p/looking-beyond-the-google-and-wiz

  9. Bank Info Security. “Groups Warn $32B Google-Wiz Deal Threatens Cloud Competition.” https://www.bankinfosecurity.com/groups-warn-32b-google-wiz-deal-threatens-cloud-competition-a-30652

  10. Wiz Blog. “It’s Official: Wiz Joins Google!” March 11, 2026. https://www.wiz.io/blog/google-closes-deal-to-acquire-wiz

Topics:
security big-tech cloud

Related Articles

Security

Google Closes the $32B Wiz Deal: Cloud Security Has a New Power

Google completed its $32 billion acquisition of Wiz on March 11, 2026 — the largest cybersecurity deal in history. Here's what it means for cloud security teams, competitors, and the future of multicloud defense.

 Security

Document Poisoning: How Attackers Are Corrupting Your AI's Knowledge Base

RAG systems trust their document stores—and attackers know it. Document poisoning injects false or malicious content into knowledge bases, causing AI systems to generate attacker-controlled output for every user who asks the right question. Here's what the research shows.

 Security

I Found a Vulnerability, They Found a Lawyer

Legal threats against security researchers remain a pervasive problem that chills the disclosure of critical software flaws. When companies weaponize laws like the CFAA and DMCA against the people protecting the public, everyone loses.

Enjoyed this article?

Stay updated with our latest insights on AI and technology.

More Articles Subscribe via RSS