No more typing reviews! Try our Samantha, our new voice AI agent.

Aikido Security vs Sophos Cloud Optix comparison

Sponsored
 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
5.2
Qualys TotalCloud enhances efficiency and risk management, saving time, reducing effort and costs, with 50% operational improvement.
Sentiment score
8.4
Aikido Security enhances efficiency, reduces costs, simplifies compliance, and increases productivity by automating and consolidating security tasks.
Sentiment score
6.0
Sophos Cloud Optix boosts productivity and efficiency by automating security, compliance checks, reducing costs, and enhancing cloud protection.
It has saved about 90% of our time.
Senior Consultant at a consultancy with 10,001+ employees
TotalCloud has generated overall savings of 30 to 40 percent across various departments.
Security Manager at a consultancy with 10,001+ employees
CallStream helps us integrate and automate tasks.
Senior Security Consultant at CyberNxt Solutions LLP
Aikido Security caught a critical remote code execution vulnerability in my Python machine learning pipelines before it reached production.
Product Manager at Zidio development
Since we got rid of that, our productivity has increased, I believe, by thirty-two percent.
SecOps Engineer at IriusRisk
We were expecting to complete the compliance in a month, but I figured out Aikido Security could do it within a week for all our 13 repositories.
Co-Founder & CTO at Mango Giraffe
Fixing this prevented potential data exposure and strengthened compliance with PCI.
Lider Soporte Cloud at a security firm with 51-200 employees
The biggest benefit has been the reduction in time spent on manual cloud security reviews and investigating misconfigurations.
Middleware administrator at a consultancy with 201-500 employees
I have seen a return on investment from Sophos Cloud Optix, with the value usually coming from the time saved, fewer manual checks, and lower compliance efforts rather than replacing a large number of staff outright.
Soc Analyst at a tech services company with 1,001-5,000 employees
 

Customer Service

Sentiment score
7.3
Qualys TotalCloud's customer service is efficient and competent, though users desire faster responses for complex issues.
Sentiment score
7.4
Aikido Security's customer service is efficient, responsive, and provides technical, proactive support with highly valued resources for quick issue resolution.
Sentiment score
6.6
Sophos Cloud Optix customer service is praised for prompt, professional support, although integration challenges exist with Azure and AWS.
They are helpful, respond to my queries, and can answer any question.
Developer at a consultancy with 10,001+ employees
Qualys's tech support is highly responsive, providing multiple ways to interact with them.
Service Manager, Security Operations at CDA IT SOLUTIONS
Qualys' customer service provides quality answers, but the response time is long, even though it is within the SLA.
Works at a consultancy with 10,001+ employees
Aikido Security was the easiest to use, the easiest to onboard, and the one with the most active customer support.
SecOps Engineer at IriusRisk
Their team proactively reached out after signup to ensure we were set up correctly.
Product Manager at Zidio development
Customer support is good; if you raise a query, hardly within a day, your issues get resolved.
Sr. Project Analyst [Cybersecurity] at a consultancy with 10,001+ employees
I faced some issues while integrating the product with Azure or M365 into Cloud Optix.
Security Consultant at a consultancy with 11-50 employees
On the few occasions when support was needed, the response was professional, and the issues were resolved in a reasonable time frame.
Middleware administrator at a consultancy with 201-500 employees
I have not connected with Sophos Cloud Optix customer support yet, but I had a bad experience when our AWS cloud got compromised, leading to many resources being provisioned.
DevOps Architect at Testware ApS
 

Scalability Issues

Sentiment score
7.7
Qualys TotalCloud is praised for scalability and versatility but may require experienced personnel and isn't initially user-friendly.
Sentiment score
7.9
Aikido Security scales efficiently with multiple projects and teams, though organizational challenges and minor performance lags may occur.
Sentiment score
8.0
Sophos Cloud Optix is scalable, supports Azure, automatically adapts to new resources, and efficiently handles growing organizational needs.
We started our organization about nine months back. We started with about 30 users, and we now have more than 100 users.
CIO at a venture capital & private equity firm with 11-50 employees
Our organization currently uses it to manage over 1200 web applications.
Analyst, Information Security at Infosys
It is absolutely scalable, and I would rate its scalability as nine out of ten.
retired at a consultancy with 10,001+ employees
That kind of reliability becomes invisible when it works well, which is exactly what you want from a security tool running in your CI/CD pipelines.
Product Manager at Zidio development
Aikido Security scales well by supporting multiple projects, repositories, and development teams on a single platform.
Full Stack Developer at Sri Krishna Arts and Science
You can deploy it on your team, and if you have a large team, it works very well.
Sr. Project Analyst [Cybersecurity] at a consultancy with 10,001+ employees
Sophos Cloud Optix scales very well because it was built for multi-cloud environments, in my case Azure, and its automated compliance checks continuously apply standards across thousands of resources.
Cloud Support at a tech company with 1-10 employees
Sophos Cloud Optix has been able to accommodate additional cloud resources and workloads without any noticeable performance issues.
Middleware administrator at a consultancy with 201-500 employees
Sophos Cloud Optix's scalability is exceptionally good, as it handles growth and larger environments well.
Soc Analyst at a tech services company with 1,001-5,000 employees
 

Stability Issues

Sentiment score
8.3
Qualys TotalCloud is highly stable, with excellent uptime and quick issue resolution, ensuring reliable performance and business continuity.
Sentiment score
8.8
Aikido Security is consistently reliable with no major disruptions, displaying dependable performance and precise security findings despite occasional delays.
Sentiment score
8.1
Sophos Cloud Optix is praised for its stability, minimal downtime, effective alerts, and superior performance compared to competitors.
Overall, the support provided has been excellent.
Analyst, Information Security at Infosys
It is a stable solution, which is why we chose it.
CIO at a venture capital & private equity firm with 11-50 employees
Continuous monitoring is crucial to ensure system stability and avoid vulnerabilities or threats.
Developer at a consultancy with 10,001+ employees
The platform has been reliable and provides accurate security findings.
Full Stack Developer at Sri Krishna Arts and Science
The platform has consistently provided continuous monitoring, timely alerts, and access to dashboards.
Middleware administrator at a consultancy with 201-500 employees
Sophos Cloud Optix is very stable with no problems regarding the availability of the tool.
Cloud Support at a tech company with 1-10 employees
I find that Sophos Cloud Optix is stable and most of the time reliable, although there is a maintenance window almost every week, with one day dedicated to maintenance.
Soc Analyst at a tech services company with 1,001-5,000 employees
 

Room For Improvement

Qualys TotalCloud needs better report clarity, dashboard customization, integration, UI, Windows OS support, pricing, and faster vulnerability detection.
Users want improved Jira integration, customization, niche language support, faster scans, better documentation, alerts, and affordable pricing.
Sophos Cloud Optix users want improved alert tuning, deeper integrations, enhanced automation, better interface, and comprehensive training.
Ideally, the scanner should automatically detect and scan all subdomains, even if not explicitly defined, ensuring comprehensive vulnerability assessment.
Analyst, Information Security at Infosys
Ideally, updates should be more immediate, enabling quicker implementation of solutions.
Project Lead at Persistent Systems
Our goal is to integrate all these functions into Qualys, creating a single dashboard for comprehensive security monitoring and management.
Senior Information Security Engineer at a consultancy with 10,001+ employees
I would love to see a Terraform module for Aikido Security.
SecOps Engineer at IriusRisk
I had a certain object with a UUID that was being considered as a private secret key or API key, which was not the case.
Co-Founder & CTO at Mango Giraffe
Aikido Security tells you what is vulnerable, but sometimes the fix suggestions are generic.
Product Manager at Zidio development
A frequent theme is making remediation guidance more actionable inside the alert itself.
Soc Analyst at a tech services company with 1,001-5,000 employees
The solution focuses on cloud security posture management.
Security Consultant at a consultancy with 11-50 employees
While it connects well with major platforms, more granular remediation automations are needed.
Lider Soporte Cloud at a security firm with 51-200 employees
 

Setup Cost

Qualys TotalCloud is considered pricey but valuable for large enterprises, offering cost-effective options especially for VMware users.
Sophos Cloud Optix offers competitive pricing, good value for security features, and a smooth licensing process for enterprises.
Qualys TotalCloud's pricing is currently acceptable, it is becoming increasingly expensive.
Senior Manager at a financial services firm with 10,001+ employees
Pricing is managed by our finance team; however, Qualys TotalCloud offers cost-effective licensing flexibility.
IT Manager at a consultancy with 10,001+ employees
Qualys TotalCloud is expensive, but it offers a premier solution with no headaches.
Vice President at Inspira Enterprise
I used the free trial, which was sufficient for evaluating the platform and its core features.
Full Stack Developer at Sri Krishna Arts and Science
I find the price of Sophos solutions to be competitive.
Security Consultant at a consultancy with 11-50 employees
Overall, the solution seems to provide good value considering the visibility, security monitoring, and compliance capabilities it offers.
Middleware administrator at a consultancy with 201-500 employees
 

Valuable Features

Qualys TotalCloud provides comprehensive cloud security, easy management, real-time insights, and efficient vulnerability assessment to enhance infrastructure protection.
Aikido Security offers an intuitive interface, seamless integrations, and effective tools to enhance productivity and streamline security workflows.
Sophos Cloud Optix enhances security and efficiency with AI-driven monitoring, multi-cloud visibility, and automated compliance checks.
This view of risk helps reduce the work we would have to do to combine multiple sources to prioritize risk.
Works at a consultancy with 10,001+ employees
It will help cybersecurity professionals monitor the cloud and find vulnerabilities.
Developer at a consultancy with 10,001+ employees
We are enjoying the new feature, FlexScan, which is valuable for Internet-facing VMs.
Senior Consultant at a consultancy with 10,001+ employees
We were able to get all codebase vulnerability fixes within a week for all our 13 or 14 repositories that we had.
Co-Founder & CTO at Mango Giraffe
Security shifted left, meaning issues were caught during development rather than after deployment.
Product Manager at Zidio development
My favorite feature is the dependency vulnerability scanning because it quickly identifies the risk in third-party packages, which saves me time in finding vulnerabilities.
Full Stack Developer at Sri Krishna Arts and Science
It includes features like vulnerability management, allowing for visibility into cloud infrastructure at a granular level, highlighting potential loopholes, and suggesting corrective actions.
Security Consultant at a consultancy with 11-50 employees
Sophos Cloud Optix aids us to set up our infrastructure appropriately, making sure databases are in a private network, and if systems are wrongly set up, it helps us quickly mitigate those issues and provides a report indicating the problem.
DevOps Architect at Testware ApS
The best features of Sophos Cloud Optix are its multi-cloud visibility, automatic compliance checks, and AI-powered anomaly detections, with the standout feature for most teams being continuous compliance automation, which saves weeks of manual audit work.
Cloud Support at a tech company with 1-10 employees
 

Categories and Ranking

Qualys TotalCloud
Sponsored
Ranking in Cloud Security Posture Management (CSPM)
8th
Average Rating
8.6
Reviews Sentiment
7.2
Number of Reviews
39
Ranking in other categories
Vulnerability Management (11th), Container Security (11th), Cloud Workload Protection Platforms (CWPP) (7th), SaaS Security Posture Management (SSPM) (1st), Cloud-Native Application Protection Platforms (CNAPP) (6th)
Aikido Security
Ranking in Cloud Security Posture Management (CSPM)
18th
Average Rating
8.6
Reviews Sentiment
7.7
Number of Reviews
5
Ranking in other categories
Application Security Tools (16th), Static Application Security Testing (SAST) (11th), Web Application Firewall (WAF) (24th), Container Security (24th), Software Composition Analysis (SCA) (9th), Static Code Analysis (8th), Dynamic Application Security Testing (DAST) (7th), DevSecOps (7th), Application Security Posture Management (ASPM) (6th)
Sophos Cloud Optix
Ranking in Cloud Security Posture Management (CSPM)
21st
Average Rating
8.4
Reviews Sentiment
6.7
Number of Reviews
10
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2026, in the Cloud Security Posture Management (CSPM) category, the mindshare of Qualys TotalCloud is 1.8%, up from 1.2% compared to the previous year. The mindshare of Aikido Security is 0.9%, up from 0.1% compared to the previous year. The mindshare of Sophos Cloud Optix is 0.7%, up from 0.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Cloud Security Posture Management (CSPM) Mindshare Distribution
ProductMindshare (%)
Qualys TotalCloud1.8%
Aikido Security0.9%
Sophos Cloud Optix0.7%
Other96.6%
Cloud Security Posture Management (CSPM)
 

Featured Reviews

RO
IT Security Expert at Alior Bank S.A.
Unified risk scoring has improved our cloud visibility and simplifies remediation priorities
Qualys TotalCloud provides unified vulnerability and threat assessment across both IAS and SaaS. This solution provides a single prioritized view of risk, which helps reduce the work I would have to do. We are no longer based on CVSS; we are based on Qualys risk scoring, which is based on CVSS plus internal findings made by Qualys, and then assigns its own score. The TruRisk insight feature has found a small number of assets with high vulnerability scores, though I am cautious since some information is classified. Qualys TotalCloud has positively impacted our bank's performance, and we have definitely seen benefits after implementing this solution.
Tarun Goswami_ - PeerSpot reviewer
Product Manager at Zidio development
Security has shifted left and now catches vulnerabilities early in our development workflow
There are a few areas for improvement. The first is scan speed. For large repositories, initial scans can be slow. Incremental scanning helps, but full scans still take considerable time. The second thing is the false positive rate. While Auto-Triage is good, it is not perfect. Occasionally, genuine issues get filtered out and real false positives slip through. The third one is remediation guidance. Aikido Security tells you what is vulnerable, but sometimes the fix suggestions are generic. More specific, actionable remediation steps would save developer time. The fourth one is IDE integrations. It currently works best in CI/CD pipelines. A proper VS Code or JetBrains plugin for real-time scanning while coding would be a significant improvement. From a customer point of view, the following things could change. The first thing is documentation for custom rules. Aikido Security allows you to create custom scanning rules, but the documentation for this feature is surprisingly thin. I spent considerable time in community forums and with trial and error just to configure basic custom rules. Step-by-step guides with real-world examples would make this feature much more accessible. The second thing is better Slack and communication integrations. Currently, security alerts come through email and dashboard notifications, but our team lives in Slack. A more configurable Slack integration that sends contextual alerts directly to the relevant developer, not just a generic channel notification, would dramatically improve response time. The third one is historical trend reporting. While Aikido Security shows current vulnerability status well, generating historical reports showing security posture improvement over time is limited. For presenting security progress to management or stakeholders, better exportable trend reports would be very valuable.
reviewer2845695 - PeerSpot reviewer
Middleware administrator at a consultancy with 201-500 employees
Centralized monitoring has strengthened cloud posture and prioritizes critical security risks
The best features Sophos Cloud Optix offers are cloud security posture management, CSPM, continuous monitoring for misconfiguration, compliance reporting, and centralized visibility across multi-cloud environments. I also find the risk prioritization helpful, as it helps me focus on the most critical security issues first, and the intuitive dashboards make it easy to understand the overall security posture. Additionally, the alerting and reporting capabilities help my team respond to issues quickly and maintain compliance with organizational security standards. Sophos Cloud Optix has positively impacted my organization by improving my visibility into cloud security and helping me identify misconfigurations before they became security incidents. It has reduced the time required to detect and investigate potential risks by providing prioritized alerts and centralized dashboards. As a result, my team responds to security issues more effectively and spends less time on manual reviews. It has also supported my compliance efforts by providing clear reporting and continuous monitoring, which has strengthened my overall cloud security posture.
report
Use our free recommendation engine to learn which Cloud Security Posture Management (CSPM) solutions are best for your needs.
904,748 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Manufacturing Company
16%
Financial Services Firm
13%
Outsourcing Company
8%
Comms Service Provider
7%
Comms Service Provider
11%
Manufacturing Company
11%
Financial Services Firm
9%
Outsourcing Company
7%
Construction Company
11%
University
8%
Financial Services Firm
7%
Security Firm
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business9
Midsize Enterprise5
Large Enterprise29
By reviewers
Company SizeCount
Small Business6
Midsize Enterprise2
Large Enterprise2
By reviewers
Company SizeCount
Small Business9
Midsize Enterprise2
Large Enterprise2
 

Questions from the Community

What needs improvement with Qualys TotalCloud?
Areas that need improvement in every solution include the remediation part. The remediation steps should be simple en...
What is your primary use case for Qualys TotalCloud?
Our use case involves the assets that we have under cloud, the assets exposed to the internet, and the internal appli...
What needs improvement with Aikido Security?
There are a few areas for improvement. The first is scan speed. For large repositories, initial scans can be slow. In...
What is your primary use case for Aikido Security?
I have been using Aikido Security for approximately more than one year, primarily for securing our development pipeli...
What advice do you have for others considering Aikido Security?
I have several practical pieces of advice for anyone considering Aikido Security. The first one is to connect all rep...
What needs improvement with Sophos Cloud Optix?
A few areas where Sophos Cloud Optix could be improved, based on daily use, include deeper integrations. While it con...
What is your primary use case for Sophos Cloud Optix?
Sophos Cloud Optix secures and monitors our cloud infrastructure across Azure and AWS. It has helped us identify misc...
What advice do you have for others considering Sophos Cloud Optix?
Sophos Cloud Optix is a great solution for different clouds. For me, Sophos Cloud Optix is a time save. I would recom...
 

Also Known As

Qualys TotalCloud with FlexScan
No data available
No data available
 

Overview

 

Sample Customers

Information Not Available
FinTech GoCardless ZIP CertifID HealthTech Dental Intelligence PE & Group Techstars Cronos Group Security Tech Human Security Tines HR Tech Simployer Recruitee Agency November Five Other Lighthouse (Hospitality Tech) Smokeball (LegalTech) Runna (B2C Tech) GEA Group (Manufacturing) Community fibre (Telecom) n8n (Software Development)
Information Not Available
Find out what your peers are saying about Aikido Security vs. Sophos Cloud Optix and other solutions. Updated: June 2026.
904,748 professionals have used our research since 2012.