Qualys VMDR vs. Vulcan Cyber

Qualys VMDR is best suited for larger companies with a very large IT asset footprint. Qualys VMDR is not suited for businesses that are small and upcoming as the price for the tool is very expensive and could be a budget sink if not used properly. In our organization we use the Qualys VMDR dashboard and reporting in order to collect any vulnerabilities we miss during our routine audits to ensure that our environment is stable and protected for attacks.

Incentivized

It's really challenging at times to contend with multiple vulnerabilities on a daily basis, and having a way to make sense of what actually needs to be prioritized and what can be shifted further down the task list is extremely helpful. Because the solution suggests what your next step should be in mitigating a specific vulnerability, it helps us save time and research by enabling us to immediately take action after being informed about an issue.

Incentivized

• Qualys VMDR automates the remediation process for risks without code.
• Scans and detects all of our assets whether they are IT or IOT
• Analyzes our environment for misconfigurations and measures risk against industry benchmarks

Incentivized

• Identifies vulnerabilities and they are easily understood.
• Easy to identify remedies in an instant.
• Campaign feature is a true time saver
• Our CSM, Nino, is the best I have ever worked with!

Incentivized

• Qualys VMDR can definitely improve on its reporting of assets as we have caught devices not captured in the Qualys VMDR scans.
• We would like to see an improvement on the dashboard interface as it is faulty sometimes.
• Qualys VMDR should focus on more competitive pricing as it is very expensive.

Incentivized

• Deduping of assets could be better.
• The weighting of vulnerabilities is hard to describe to non technical executives.
• The Business Groups and Tagging needs improvement. Or at least allow tags to be removed if not needed. Now they are static from the API feed.

Incentivized

infrastructure to identify vulnerabilities

This is iron but I am giving it 5 star and I can give more If I can do because they are best in support. So once you own this product they will assign a dedicated support for you and when you are under the weather with anything just connect them with anything call, ping or ticket they will come like Genie.

It is a very similar tool but Qualys VMDR is much better when it comes to reporting and solutions provided. Asset management is really good in Qualys VMDR. Qualys VMDR support is really quick , you can get a TPM if you run into any issues. Qualys VMDR has wide variety of scanning options which lacks in tenable.

Incentivized

I wasn't here at the time when the company compared different vulnerability management platforms so I'm not sure on the reasoning and difference between the 2. It could be that the team went through different choices and found Vulcan to be the best fit. It's hard for me to say why Vulcan was specifically chosen

Incentivized

• Cut down on manual efforts to investigate or remediate vulnerabilities, which can be a big driver of ROI
• Avoidance of potential incidents with upfront risk mitigation
• Patching efficiency gains

Incentivized

• Allows much better prioritizing of which assets are most vulnerable
• Allow a better understanding of what assets are actually under real threat vs. what is assumed to be vulnerable, but the real world fact is the system would be hard to reach internally, so it's not as vulnerable.

Incentivized