What Happened
In July 2024, Google made a $23 billion offer for Wiz. The founders rejected it. They believed the company was worth more, and that an IPO would prove it. The rejection was widely reported and widely praised as a bold move by a founder team that had already sold one company to Microsoft (Adallom, for $320 million in 2015) and knew what they were worth.
Nine months later, on March 18, 2025, Google announced it had agreed to acquire Wiz for $32 billion, all cash. The founders had not gone public. Instead, they had extracted a 38% premium over the rejected offer by simply waiting. Google, facing mounting pressure on its cloud market position and watching Wiz's ARR climb toward $1 billion, blinked first.
The deal received US Department of Justice clearance in November 2025 with no conditions, a notable outcome given the regulatory environment for large technology acquisitions. The European Commission set a February 2026 deadline and cleared the deal on February 10, 2026. Additional international regulatory approvals remain pending. A $3.2 billion reverse termination fee is payable by Google if the deal fails to close due to regulatory issues, a figure that reflects both the deal's scale and Google's confidence in obtaining final approvals.
What Wiz Is
Wiz is a Cloud-Native Application Protection Platform (CNAPP). In plain terms, it is a security platform that monitors cloud environments across AWS, Azure, Google Cloud, and Oracle Cloud and identifies vulnerabilities, misconfigurations, and threats in real time. Its key differentiator is its agentless architecture: unlike legacy security tools that require software to be installed on each server or endpoint, Wiz connects via API and scans the entire cloud environment without touching the underlying infrastructure.
This matters for two reasons. First, it makes Wiz dramatically faster to deploy. Enterprise security teams can have Wiz operational across their entire cloud estate in hours, not months. Second, it makes Wiz cloud-agnostic by design. Because it does not require agents on specific infrastructure, it works equally well across different cloud providers, which is why it has become the dominant security tool for multi-cloud enterprises.
Wiz's product suite covers five core areas: Cloud Security Posture Management (CSPM), which continuously monitors for misconfigurations and compliance violations; Cloud Workload Protection (CWPP), which secures virtual machines, containers, and serverless functions; Data Security Posture Management (DSPM), which locates and classifies sensitive data across cloud storage; Cloud Detection and Response (CDR), which provides real-time threat detection; and AI Security Posture Management (AI-SPM), which secures AI model pipelines and training data. The AI-SPM capability, added as enterprises began deploying large language models at scale, is particularly relevant to Google's strategic interests.
Wiz counts more than half of the Fortune 100 as customers. For a company that is five years old, this is an extraordinary penetration rate. It reflects both the quality of the product and the urgency of the problem it solves: as enterprises have moved workloads to the cloud at speed, their security posture has often lagged, creating a large and immediate market for exactly what Wiz provides.
Why Google Needed It
Google Cloud Platform (GCP) holds approximately 11% of the global cloud infrastructure market, compared to AWS at 32% and Microsoft Azure at 22%. Despite years of investment, GCP has consistently struggled to win enterprise accounts at scale. The core problem is not compute or storage: GCP's technical capabilities are broadly competitive with AWS and Azure. The problem is trust and ecosystem. Enterprise buyers have historically defaulted to AWS or Azure because those platforms offer more mature enterprise support, more extensive partner ecosystems, and, critically, more comprehensive security tooling.
Microsoft's Defender for Cloud and AWS's native security tools have strong enterprise mindshare. Google's previous attempt to address this gap was the $5.4 billion acquisition of Mandiant in 2022. Mandiant is a world-class threat intelligence and incident response firm, but it is primarily a reactive security capability: it helps enterprises respond to breaches after they occur. What Google lacked was a proactive, cloud-native security platform that could prevent breaches from happening in the first place. Wiz fills that gap precisely.
The Fortune 100 customer base is the other critical element. Google has long struggled to convert enterprise interest in GCP into committed spend. Wiz's customer list is effectively a pre-qualified list of the world's largest enterprises who have already decided to trust Wiz with their cloud security. For Google, acquiring Wiz means acquiring those relationships and the upsell opportunity that comes with them. A Wiz customer running workloads on AWS who is now interacting daily with a Google-owned security platform is a GCP migration opportunity.
The strategic logic in one sentence: Google paid $32 billion for Wiz's product, Wiz's customers, and Wiz's position as the default security layer across every major cloud, including Google's competitors.
Why Wiz Rejected the First Offer
The rejection of the $23 billion offer in July 2024 was a calculated bet by the Wiz founders. At the time, Wiz's ARR was approximately $500 million and growing rapidly. The founders believed that at their growth trajectory, an IPO would value the company at $25 billion or more. Accepting $23 billion from Google would have meant selling at a discount to what the public markets would eventually pay.
The founders also had a specific reference point: their previous company, Adallom, was sold to Microsoft for $320 million in 2015. That deal was widely seen as an undervaluation in retrospect. The Wiz founders were not going to make the same mistake twice. They had the leverage to say no, and they used it.
What changed between July 2024 and March 2025 was not Wiz's trajectory, which remained strong, but Google's urgency. The IPO window that Wiz was waiting for did not open in the second half of 2024. Simultaneously, Google's competitive position in enterprise cloud continued to lag. The combination of a delayed IPO and an increasingly desperate Google created the conditions for a deal at $32 billion, a 38% premium to the rejected offer and a 2.67x premium to the $12 billion Series E valuation from May 2024.
Valuation Analysis
The $32 billion price tag is the largest cybersecurity acquisition in history, surpassing Cisco's acquisition of Splunk. The revenue multiple of 45-65x ARR is one of the highest ever paid in a large-scale cybersecurity transaction. Understanding whether this is justified requires separating the financial analysis from the strategic analysis.
On a pure financial basis, the multiple is difficult to defend by traditional M&A standards. Wiz is not yet profitable. Its ARR of $500-700 million at signing, while impressive for a five-year-old company, does not support a $32 billion valuation on standard SaaS multiples. Even at the high end of the ARR estimate and a 65x multiple, the implied ARR is $492 million, suggesting the market is pricing in significant future growth.
| Scenario | Wiz ARR | Revenue Multiple | Implied Valuation | Assessment |
|---|---|---|---|---|
| Conservative | $500M | 64x | $32B | Venture multiple, not M&A standard |
| Base | $700M | 46x | $32B | High but defensible for category leader |
| Optimistic (2026 ARR) | $1.0B | 32x | $32B | Reasonable for strategic acquisition |
| Cisco / Splunk Comparable | $3.7B Rev | 7.5x | $28B | Mature asset, much lower growth rate |
The strategic analysis is more straightforward. Google is not buying Wiz's current revenue. It is buying Wiz's market position, its Fortune 100 customer base, and its ability to accelerate GCP's enterprise penetration. If Wiz helps Google win even a modest share of enterprise cloud spend from AWS and Azure, the $32 billion price is recoverable. GCP's annual revenue run rate is approximately $40 billion. A 1-2% market share gain driven by Wiz's security credibility would be worth tens of billions in incremental revenue over a decade.
The Cloud Neutrality Problem
The most significant risk in the Google-Wiz deal is not regulatory or financial. It is the cloud neutrality problem. Wiz's value proposition to enterprise customers is that it is a neutral, multi-cloud security platform. It monitors AWS, Azure, and GCP with equal fidelity. Enterprise security teams trust Wiz precisely because it is not owned by any of the cloud providers whose infrastructure it monitors.
Once Google closes the acquisition, that neutrality is gone in perception, even if it is maintained in practice. An enterprise running workloads on AWS and Azure will have to decide whether they trust a Google-owned product to monitor their AWS and Azure environments with the same diligence as before. Some will. Others will not. The question is how many will migrate to independent alternatives like CrowdStrike's cloud security offerings, Palo Alto Networks' Prisma Cloud, or Orca Security.
Google has committed to maintaining Wiz as a semi-independent unit that continues to support all cloud platforms. This is the right structural decision, but commitments made at signing are not always maintained post-close. The history of large technology acquisitions is littered with promises of independence that were quietly eroded over time as the acquirer sought to maximize the strategic value of the asset for its own platform.
The key question for enterprise buyers: If your cloud security platform is owned by one of your cloud providers, does it have an incentive to flag security issues that might make you want to migrate away from that provider's competitors? The answer is probably no, and enterprise CISOs know it.
Lessons for Technology M&A
| Lesson | Application |
|---|---|
| Rejecting an offer increases leverage, not risk | Wiz's rejection of $23B was rational, not reckless. The founders correctly assessed that their leverage would increase as Google's urgency grew. Sellers in strong competitive positions should consider whether accepting the first offer is actually in their interest. |
| Strategic desperation drives premium pricing | Google paid a 38% premium to its initial offer because it had no credible alternative. Buyers who allow themselves to become strategically dependent on a single acquisition target lose negotiating leverage. Google should have identified and cultivated alternative cybersecurity acquisition targets in parallel. |
| Cloud neutrality is a moat that acquirers destroy | Wiz's multi-cloud neutrality was a core competitive advantage. Google's acquisition immediately compromises that advantage in the eyes of some customers. Acquirers of platform-neutral assets must have a clear plan for managing the neutrality perception problem before signing. |
| Reverse break fees signal regulatory confidence | The $3.2B reverse termination fee is 10% of the deal value. This is a high-conviction signal that Google believes the deal will close. Sellers should read break fee sizing as an indicator of acquirer confidence in regulatory outcomes. |
| The IPO alternative creates real negotiating leverage | Wiz's credible IPO path gave it leverage that most acquisition targets do not have. Founders who have built businesses capable of going public have a genuine alternative to a trade sale, and that alternative should be used as leverage in negotiations. |
Scenario Analysis: Post-Close
GCP Gains 3-4 Points of Market Share by 2028
Wiz's Fortune 100 relationships accelerate GCP enterprise adoption. The cloud neutrality concern proves manageable. Wiz ARR reaches $2B by 2027. The $32B acquisition is viewed as the moment Google became a serious enterprise cloud player. Comparable: Microsoft's acquisition of LinkedIn, which initially faced skepticism but became a core enterprise asset.
Wiz Grows, Cloud Neutrality Erodes Gradually
Wiz continues to grow but loses some multi-cloud customers to CrowdStrike and Palo Alto Networks. GCP gains modest enterprise share. The acquisition is accretive but not transformative. Wiz ARR reaches $1.5B by 2027. The deal is viewed as expensive but strategically sound.
Customer Attrition and Cultural Clash
Enterprise customers migrate away from Wiz at scale after close. Key Wiz engineers leave. Google's corporate structure slows Wiz's product velocity. CrowdStrike and Palo Alto Networks gain significant share. The $32B acquisition is viewed as an expensive mistake. Comparable: HP's acquisition of Autonomy ($11B, 2011), which resulted in an $8.8B writedown.
The Right Deal at the Wrong Price, or the Wrong Price at the Right Time
Google's acquisition of Wiz is strategically necessary and financially aggressive. The strategic necessity is clear: Google cannot compete for enterprise cloud spend without a credible, best-in-class security offering. Mandiant gave Google threat intelligence. Wiz gives Google cloud security. Together, they give Google a security story that can compete with Microsoft's integrated security stack.
The financial aggression is also clear. Paying 45-65x ARR for a company that is not yet profitable is a bet on future growth, not current value. That bet is defensible if you believe, as Google clearly does, that Wiz's ARR will reach $2 billion or more within three years and that the cloud security market will continue to grow at 20-25% annually. If those assumptions hold, the multiple compresses to something more reasonable. If they do not, Google has paid a very high price for a very good product.
The cloud neutrality problem is real and underappreciated. Google's public commitments to maintaining Wiz's independence are credible in the short term but structurally fragile in the long term. The incentive for Google to gradually integrate Wiz more deeply into GCP is strong. The incentive for enterprise security teams to find an alternative to a Google-owned product monitoring their AWS and Azure environments is also strong. The outcome will depend on which incentive is stronger.
For M&A practitioners, the key lesson is the value of a credible alternative. Wiz's IPO option was not a bluff. It was a genuine alternative that gave the founders the confidence to reject $23 billion and wait for $32 billion. Sellers who have built businesses capable of accessing public markets have a structural negotiating advantage that should be used explicitly and strategically.
Acquiry transaction note: Cloud security is the most active segment in enterprise technology M&A. The Wiz deal has set a new valuation benchmark that will be used to price every subsequent cloud security transaction. Founders in this space should expect acquirers to anchor to Wiz's 45-65x ARR multiple as a ceiling, not a floor. The appropriate response is to build the IPO alternative in parallel with any M&A process.