Google Buys Wiz for $32B: What It Means for Cloud Security Developers

Google just paid $32 billion for a cloud security company. That number needs a moment to land. It is the largest acquisition in Google's history, surpassing the $12.5 billion Motorola Mobility deal in 2012 by more than two and a half times. It is larger than the GDP of Iceland, Latvia, and Cambodia combined. And it is for a company that most developers outside of enterprise security have never heard of.

The company is Wiz. And after this deal closes, cloud security will never look the same again.

What Wiz Actually Does

Wiz is a Cloud Security Posture Management (CSPM) and Cloud Workload Protection Platform (CWPP). Those acronyms obscure something important, so here is the plain version: Wiz scans your entire cloud environment — every VM, container, serverless function, database, storage bucket, and identity configuration — and tells you exactly what is exposed, misconfigured, or vulnerable, along with a prioritised risk graph showing how attackers could chain exposures together to reach your most sensitive assets.

The technical architecture that made Wiz dominant is its agentless approach. Traditional security tools require installing an agent inside each workload — a process that is slow, operationally complex, and often incomplete because some workloads can't run agents. Wiz does not install anything. It connects through cloud provider APIs, reads snapshots of running workloads, and analyses them offline. Full coverage of a large cloud environment in hours instead of months.

Wiz works across AWS, Azure, Google Cloud, and OCI simultaneously. If your company runs a multi-cloud architecture, one Wiz deployment covers everything.

The product has become the default choice for enterprise cloud security because it finds real attack paths, not just a list of CVEs. The "Wiz security graph" maps relationships between cloud resources — a public S3 bucket connected to a Lambda function that has an IAM role with admin permissions is flagged as a critical path even if no individual component is technically vulnerable. Context-aware risk prioritisation is what separates Wiz from the dozens of legacy CSPM tools that drown security teams in low-priority alerts.

The $32 Billion Question: Why Did Google Pay This Much

Google tried to acquire Wiz in mid-2024 for $23 billion. Wiz walked away. The founders decided the IPO path was more valuable than an acquisition at that price. Then the market shifted, the IPO window got complicated, and negotiations reopened. Google came back at $32 billion.

That $9 billion premium over the 2024 offer — paid 18 months later — tells you something about how much Google wanted this asset and how much more competitive the cloud security market has become.

Here is the strategic logic. Google Cloud is the number three public cloud behind AWS and Azure. AWS has approximately 31% market share. Azure has approximately 25%. Google Cloud has approximately 11%. The gap is not primarily about compute performance or pricing anymore — it is about the enterprise software ecosystem and trust signals. Enterprise buyers choose cloud providers based on which platform offers the most complete suite of services for their industry.

Security is the highest-trust category in enterprise technology. By acquiring Wiz, Google gets the best cloud security product on the market, a product that 45% of Fortune 100 companies already trust, and a built-in argument for Google Cloud in every enterprise security conversation.

Microsoft has Defender for Cloud natively embedded in Azure. AWS has Security Hub, GuardDuty, and Inspector. Google Cloud had a weak native security story. Now it has Wiz.

The Unit 8200 Thread

Wiz was founded by Assaf Rappaport and three co-founders — Ami Luttwak, Yinon Costica, and Roy Reznik. All four are veterans of Israeli Intelligence Unit 8200, the Israeli Defense Forces' signals intelligence unit. Unit 8200 is the intelligence organisation credited with co-developing Stuxnet, the cyberweapon that physically destroyed Iranian centrifuges in 2010. It is broadly considered one of the most technically sophisticated signals intelligence and offensive cyber operations units in the world.

This is not incidental background. The founders' Unit 8200 experience directly shaped Wiz's architecture. The agentless scanning model, the attack path graph, the focus on finding chained exploitation paths rather than isolated vulnerabilities — these reflect offensive security thinking applied to defensive tooling. You build better detection when you think like an attacker.

Before Wiz, the same founding team built Adallom, a cloud access security broker that Microsoft acquired for $320 million in 2015. They built the Microsoft Cloud App Security product that became part of Microsoft Defender from inside Microsoft, then left to build Wiz independently. Google is now paying 100 times what Microsoft paid for their first company to get access to their second.

What Happens to Multi-Cloud Support

This is the practical question that security engineers at AWS and Azure shops are asking right now. If Wiz becomes a Google Cloud product, does it stop working as well on AWS and Azure?

The official answer from Google is that Wiz will operate under Google Cloud but keep its own brand and, implicitly, its multi-cloud coverage. The business logic supports this. Wiz derives its value from being the single pane of glass across all cloud environments. A Wiz that only works well on Google Cloud is worth a fraction of what Google paid. The Fortune 100 customers who use Wiz across AWS, Azure, and Google Cloud simultaneously are not going to keep paying for a product that becomes GCP-only.

But the long-term incentive structure changes. Google engineers working on Wiz will face pressure to make Google Cloud integrations deeper and faster than AWS or Azure integrations. Feature parity across clouds will need active maintenance rather than being the core product philosophy. Historical acquisitions in this space are not encouraging — after Microsoft acquired Adallom, the product evolved toward deeper Microsoft integration over time.

The practical recommendation for security engineers: if you use Wiz today, your existing coverage continues. Watch the integration roadmap over the next 12-18 months for signs of Google Cloud preferential treatment. The competitive open-source alternative to watch is Cartography from Lyft and Steampipe — both build cloud asset graphs without proprietary vendor dependency.

What Changes for Google Cloud Customers

For developers and security engineers already building on Google Cloud, the Wiz acquisition is unambiguously good in the short term. Wiz will be available natively integrated with Google Cloud Console, Cloud Security Command Center, and Chronicle (Google's SIEM). The combination of Chronicle's security analytics with Wiz's asset risk graph is a genuinely powerful enterprise security stack.

Expect pricing changes within 12-18 months. Wiz currently prices based on cloud resource count — roughly $15-30 per cloud resource per month for full platform coverage. Once absorbed into Google Cloud, the product will likely be bundled into Google Cloud enterprise agreements, lowering the standalone cost but tying procurement to Google Cloud spend. For companies that are committed to Google Cloud, this is a discount. For multi-cloud companies, it creates a procurement dependency that may drive Google Cloud adoption at the margin.

How This Reshapes the Cloud Security Market

Before this acquisition, cloud security was a fragmented market. Wiz was the independent market leader. Palo Alto Networks' Prisma Cloud was the enterprise legacy player. Orca Security was the well-funded challenger. CrowdStrike was expanding into CSPM from its endpoint security base. Lacework, Sysdig, and Aqua Security occupied specialist niches.

After this acquisition, the market has a new shape. Google now has the market-leading product. Microsoft has deeply integrated native security across Azure. AWS has a strong native stack but no equivalent of Wiz's risk graph. The independent CSPM market — Orca, Lacework, Sysdig — is now competing against two hyperscalers with native security products and one hyperscaler with the best acquired product.

For enterprise security buyers, the options are consolidating: buy native from AWS or Azure, buy Google Cloud and get Wiz, or maintain an independent Wiz deployment and accept the multi-vendor complexity. For the independent CSPM vendors, the acquisition is an existential pressure. Orca and Lacework will likely see acquisition offers from AWS or Microsoft in the next 18 months as the hyperscalers respond.

The Regulatory Story

This acquisition already completed regulatory review — a notable fact given that the current antitrust environment has blocked or complicated several large tech acquisitions. The argument that allowed it through is that cloud security is a distinct market from cloud infrastructure, and that Wiz having a parent company that competes with AWS and Azure does not constitute a competitive harm in the security tooling market.

Whether that argument holds long-term is a separate question. If Google uses Wiz integration as a lever to push customers toward Google Cloud — through pricing, feature gating, or preferential support — that is the kind of practice that could attract regulatory attention retrospectively.

Key Takeaways

• $32 billion is Google's largest acquisition ever, beating the 2012 Motorola Mobility deal by $19.5 billion
• Wiz keeps its brand and operates under Google Cloud — multi-cloud support continues for now but watch the 12-18 month roadmap
• 45% of Fortune 100 companies already use Wiz — Google inherits an extraordinary enterprise customer base
• Wiz's agentless scanning and security graph are the technical features that drove its dominance — no agent installation, full cloud coverage via API, chained attack path detection
• All four Wiz founders are Unit 8200 veterans — Israeli military cyber intelligence background shaped the product's offensive-security-first architecture
• Implications for AWS and Azure shops: existing Wiz coverage is safe short-term; watch for Google Cloud preferential integrations over time
• Market ripple effect: Orca, Lacework, and Sysdig now compete against a hyperscaler-backed product — expect consolidation and acquisition activity among independents