Akamai Guardicore Segmentation vs Cisco Secure Workload comparison

Akamai Guardicore Segmentation vs. Cisco Secure Workload

Download the complete report

Helped 900,747 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Qualys TotalCloud

Featured Reviews

Robert Orłowski

IT Security Expert at Alior Bank S.A.

Unified risk scoring has improved our cloud visibility and simplifies remediation priorities

Qualys TotalCloud provides unified vulnerability and threat assessment across both IAS and SaaS. This solution provides a single prioritized view of risk, which helps reduce the work I would have to do. We are no longer based on CVSS; we are based on Qualys risk scoring, which is based on CVSS plus internal findings made by Qualys, and then assigns its own score. The TruRisk insight feature has found a small number of assets with high vulnerability scores, though I am cautious since some information is classified. Qualys TotalCloud has positively impacted our bank's performance, and we have definitely seen benefits after implementing this solution.

Read full review

Vibin Thomas

Technical Team Lead - Content Security at Valuepoint Systems

Zero-trust micro-segmentation has strengthened security and improves east-west traffic visibility

While Akamai Guardicore Segmentation is a very powerful solution, there are a few areas where it could be improved. One of the main challenges is the initial deployment and policy design complexity. In large environments, understanding all application dependencies and creating the right policies can take time and requires close coordination with application teams. The user interface and policy management can also be improved. As the number of policies grows, managing and organizing them becomes slightly complex. A more simplified or intuitive policy structure would help operational teams. Another area is integration with other security tools such as SIEM or SOAR platforms. While integration is possible, making it more seamless and easier to configure would add value. Additionally, the reporting and dashboard could be enhanced to provide more customizable and business-level insights, especially for management and reporting. One small improvement I would suggest for Akamai Guardicore Segmentation is having more automation capabilities for policy creation and recommendation. For example, AI-driven suggestions based on observed traffic patterns would help reduce manual effort during the initial policy design. It would also help to have more predefined templates for common use cases, especially for industries such as banking, to speed up deployment. Another area is enhanced reporting customization where we can easily generate business-level dashboards for management and compliance teams without any additional effort.

Read full review

Raj Metkar

Director, Head of Networks at MUFG, EMEA

Discover internal application dependencies and create a dependency map

We actively seek improvements in integrating the Infoblox DDI platform with Cisco Secure Workload. This integration allows Cisco Secure Workload to learn about our networks and network tags, providing valuable insights into vulnerabilities related to the operating system and various applications installed on our servers. Recently, Cisco announced a new product called HyperShield, an AI-based autonomous micro-segmentation solution. While Cisco has not stated that HyperShield will replace Cisco Secure Workload, it represents a natural evolution for the company. HyperShield features dynamic policy discovery and enforcement; however, once policies are enforced, they do not change until a discovery occurs, requiring a re-enforcement process. This new platform operates autonomously, minimizing the need for user or security engineer intervention. I would have expected Cisco to incorporate more automatic discovery and enforcement features within the existing Cisco Secure Workload product. Instead of enhancing the current product, they have introduced a new solution. Cisco plans to honor existing Tetration licenses, allowing users to transition to HyperShield without additional costs, reflecting the investment enterprises have already made. From Cisco’s perspective, this represents a natural progression in their product line. While the product name changes, it seems more of a rebranding effort. The enhancements are greater autonomy, improved discovery, and automatic enforcement, which are now being introduced in HyperShield. Cisco Secure Workload offers automatic policy enforcement but cannot adjust policies dynamically as the application needs to change. Having used the platform for the past five years, the recent announcement has been reassuring. Cisco has confirmed that our investment in the platform will not go to waste. They will honor our existing licenses, providing a natural migration path to the new solution without any disruption

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"If someone were to ask me to review Qualys TotalCloud, I would summarize it as an end-to-end solution for cloud security with visibility and governance-grade controls without needing to manage multiple disconnected tools."

"Qualys TotalCloud has significantly improved our organization by automating our reporting processes, reducing the time spent on report creation from two hours to less than fifteen to twenty minutes."

"The vulnerability management feature is the one I like the most because it provides a clear picture of all vulnerabilities."

"I would definitely recommend it because it is easy to handle any cloud resources."

"Qualys TotalCloud's most valuable features are its security capabilities that help identify and mitigate risk factors."

"We were able to realize its benefits within 24 to 48 hours."

"I found the initial setup user-friendly."

"Qualys TotalCloud's most valuable features are its cloud security posture management, Kubernetes, and container security capabilities."

More Qualys TotalCloud pros

"That is primarily because I've seen increased rules. It's kind of caught us a little off guard. With GuardiCore, I have had to deal with their technical support and engineering team in Israel. They are amazing. They are very quick to adapt."

"The interface and dashboard are amazing."

"After implementing Akamai Guardicore Segmentation, I can say that for most customers with whom we implement Guardicore, we see once we do micro-segmentation for an application that the possible connections that can be established on that application usually drop by 80%."

"We like the centralized management of the firewalls. Until we installed Guardicore Centra, we managed all our firewalls individually, so making changes was complicated, difficult, and time-consuming."

"Akamai Guardicore Segmentation is a very effective solution for organizations looking to strengthen their zero-trust security model, especially in complex hybrid environments."

"This tool greatly helps in understanding the footprint of the attacks."

"To us, if it prevents downtime, it's priceless."

"The change control in GuardiCore has improved our efficiency by over 75% in terms of implementing security policies, and the efficiency of the security team was improved by over 100% in terms of analytics, monitoring, and responding to incidents."

More Akamai Guardicore Segmentation pros

"The scalability of Cisco Tetration is very good."

"It's stable."

"Scalability is its most valuable feature."

"The most valuable feature right now is to do with having visibility on the network — especially on our servers — and to be able to enforce some type of security measures."

"A complete and powerful micro-segmentation solution."

"The most valuable feature of this solution is security."

"Overall, this is a really good product and I am happy with it."

"The only use case I can see that makes sense is micro-segmentation. I think there are other use cases for it. The main purpose of the product is to do micro-segmentation by collecting IP. That could be done by installing an agent, and then you have all the communication coming in and out. You could also use some flow sensors installed in the network that receive a copy of the traffic and then report that back to the system."

More Cisco Secure Workload pros

Cons

"I think Qualys TotalCloud needs to improve its handling of zero-day vulnerabilities and supply chain management because modern ransomware attacks not only target prime critical infrastructures but also the supply chain system."

"The downside is only in container security, but it has not been a long time since they introduced these models."

"The patching process with Qualys Patch Management, which is part of TotalCloud, does not cover installing certain prerequisites on the servers or workstations. This shortcoming means we must rely on SCCM when any service stack updates or additional prerequisites are needed."

"I would like the ability to disable certain default built-in policies as they can be misleading when creating dashboards. That is the top one."

"I would appreciate additional integration options to connect Qualys TotalCloud with our other vulnerability management tools."

"Some major banks and insurance companies require an on-premises solution for comprehensive vulnerability management, which TotalCloud does not offer."

"Qualys TotalCloud's increasing complexity, due to the development and deployment of multiple solutions, is making the GUI difficult to navigate."

"Their support could be improved."

More Qualys TotalCloud cons

"Akamai Guardicore Segmentation can be improved because keeping it up to date is difficult since it is SaaS-based and updates are not on a regular schedule; I have to reach out to my contact to ask them to update to a newer version, and it would be helpful if updates were on a regular cadence so that I would not have to remember to ask them."

"What we hear most from customers is that it requires a kernel module."

"The product needs a few features like enhanced user policies and payload-level inspection to improve the offering."

"Clients would like to see that the security policies of GuardiCore can continue to be comparable to all the major firewall players out there."

"The customer service rating I would give is a four out of ten."

"To become more competitive, I believe they have to work on technology knowledge and address the brand awareness issues for my market."

"Supports become difficult when it's for a big organization. For a small organization, medium organization, it still makes sense, however, for a big organization, it makes life difficult."

"Incident tagging could be improved. Other vendors offer semi-automatic tagging, which Guardicore doesn't yet have."

More Akamai Guardicore Segmentation cons

"There was a controversy when Cisco reduced the amount of data they kept, and the solution became quite cost-intensive, which made its adoption challenging….Although they have modified it now, I preferred the previous version, and I wish all the functionality were back under the same product."

"Cisco Tetration needs more flags and system alerts that we should get with network capture."

"There's room for improvement when it comes to Cisco Secure Workload. A couple of internal areas could be refined a little bit. They are trying to solve it, depending on where you suppose the agent is. Suppose you have the agent on both the server and the client, which could be the front-end server or web server connecting to the. In that case, if those two are communicating on RPC, the server can look into its configuration. It could go down and find the configuration file on the FTP server and then set the policies to it. But there are a lot of different FTP servers out there. It's also a complex case for the tool to support all FTP servers."

"They should scale down the hardware a bit. The initial hardware investment is two million dollars so it's a price point problem. The issue with the price comes from the fact that you have to have it with enormous storage and enormous computes."

"It has an uninviting interface."

"It is highly scalable, but there is a limitation that it is only available on Cisco devices."

"The interface is really helpful for technical people, but it is not user-friendly."

"The multi-tenancy, redundancy, backup and restore functionalities, as well as the monitoring aspects of the solution, need improvement. The solution offers virtually no enterprise-grade possibility for monitoring."

More Cisco Secure Workload cons

Pricing and Cost Advice

"Although Qualys TotalCloud is relatively expensive due to its unique automation features, its cost-effectiveness is rated an eight out of ten, with ten being the most costly."

"Qualys TotalCloud offers good pricing that is affordable and competitive with the market. Our partnership also provides us with additional benefits."

"Qualys TotalCloud offers cost-effective licensing flexibility."

"The cost is high, but it meets our organizational needs."

"The pricing is comparable. It is built into our other product, so I cannot piecemeal it. It is a part of our subscription."

"Qualys TotalCloud offers competitive pricing given its comprehensive suite of features, including integration, assessment, remediation, and detection capabilities, all within a single platform."

"It isn't cheap, but it's reasonable. It helps us to manage things with very few resources."

"The pricing for TotalCloud is attractive and competitive in the market. Given the features, especially the dashboard, I have no concerns regarding pricing."

More Qualys TotalCloud pricing and cost advice

"Compared to the pricing we were seeing from both Illumio and Edgewise, Guardicore was very competitive."

"GuardiCore has made some new changes to the license now. We've seen monthly and annual licenses based on a subscription. We have a few clients that pay anywhere from $25,000 a year."

"The price is the same as other products in the market. There's no price argument to choose one or the other product, it will cost the customer approximately the same."

"This is not a cheap solution but you have to consider the bigger picture, which is what it is giving you."

"The customer would complain about the cost."

"The pricing is too high."

"Akamai Guardicore Segmentation is expensive."

"The solution is reasonably priced and I would rate it a six out of ten. The tool's licensing costs are yearly."

More Akamai Guardicore Segmentation pricing and cost advice

"The pricing is a bit higher than we anticipated."

"It is not cheap and pricing may limit scalability."

"Regarding price, Cisco Secure Workload can be expensive if you don't have a budget. If you're not doing micro-segmentation, every extra security measure or enforcement you're putting on top of your existing environment will be an extra cost. It's not a cheap solution at all. But from my point of view, if you need to do micro-segmentation, this is one of the best tools I've seen for it. I can't compare that to Microsoft's solution because I haven't looked into it. I've looked into VMware and Cisco. Those are the only two that I know of. I didn't know that Microsoft could do micro-segmentation at all. Maybe they can, but I haven't heard anything about it."

"The price is based on how many computers you're going to install it on."

"The price is outrageous. If you have money to throw at the product, then do it."

"Pricing depends on the scope of the application and the features. Larger installations save more."

"The cost for the hardware is around 300k."

See which vendors are best for you

Use our free recommendation engine to learn which Cloud and Data Center Security solutions are best for your needs.

See recommendations

900,747 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Manufacturing Company

18%

Financial Services Firm

14%

Construction Company

Comms Service Provider

Financial Services Firm

19%

Manufacturing Company

Computer Software Company

Insurance Company

Manufacturing Company

14%

Financial Services Firm

10%

Government

Computer Software Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	10
Midsize Enterprise	3
Large Enterprise	29

By reviewers
Company Size	Count
Small Business	10
Midsize Enterprise	3
Large Enterprise	15

By reviewers
Company Size	Count
Small Business	5
Midsize Enterprise	3
Large Enterprise	8

Questions from the Community

What is your experience regarding pricing and costs for Qualys TotalCloud?

The price is very expensive, actually.

What needs improvement with Qualys TotalCloud?

Areas that need improvement in every solution include the remediation part. The remediation steps should be simple en...

What is your primary use case for Qualys TotalCloud?

Our use case involves the assets that we have under cloud, the assets exposed to the internet, and the internal appli...

What is your experience regarding pricing and costs for Guardicore Centra?

Regarding pricing and setup cost, I don't have information because I am from a consulting team and not from the sales...

What needs improvement with Guardicore Infection Monkey?

Reporting is one area where I think Akamai Guardicore Segmentation can be improved. They are working on it, but as of...

What is your primary use case for Guardicore Infection Monkey?

My main use case for Akamai Guardicore Segmentation is related to Kubernetes instrumentation and visibility, although...

What is your experience regarding pricing and costs for Cisco Secure Workload?

CloudStrike offers antivirus capabilities and firewall features for servers and VDI but lacks automatic policy discov...

What needs improvement with Cisco Secure Workload?

We actively seek improvements in integrating the Infoblox DDI platform with Cisco Secure Workload. This integration a...

What is your primary use case for Cisco Secure Workload?

When we onboarded Cisco Secure Workload, the usual use case was to discover internal application dependencies and cre...

Microsoft Defender for Cloud vs Qualys TotalCloud

Comparisons

Wiz vs Qualys TotalCloud

Compared 12% of the time

Compared 8% of the time

Prisma Cloud by Palo Alto Networks vs Qualys TotalCloud

Compared 6% of the time

JupiterOne vs Qualys TotalCloud

Compared 5% of the time

Nucleus Security vs Qualys TotalCloud

Compared 5% of the time

More Qualys TotalCloud Competitors

Illumio Segmentation vs Akamai Guardicore Segmentation

Compared 26% of the time

VMware NSX vs Akamai Guardicore Segmentation

Compared 8% of the time

TrendAI Deep Security vs Akamai Guardicore Segmentation

Compared 5% of the time

Check Point Email Security (formerly Harmony Email & Collaboration) vs Akamai Guardicore Segmentation

Compared 4% of the time

Zero Networks vs Akamai Guardicore Segmentation

Compared 3% of the time

More Akamai Guardicore Segmentation Competitors

Illumio Segmentation vs Cisco Secure Workload

Compared 14% of the time

VMware NSX vs Cisco Secure Workload

Compared 8% of the time

TrendAI Deep Security vs Cisco Secure Workload

Compared 5% of the time

Cisco Hypershield vs Cisco Secure Workload

Compared 5% of the time

Cisco ACI vs Cisco Secure Workload

Compared 4% of the time

More Cisco Secure Workload Competitors

Product Reports

Qualys TotalCloud

Download Qualys TotalCloud product report

Akamai Guardicore Segmentation

Download Akamai Guardicore Segmentation product report

Cisco Secure Workload

Download Cisco Secure Workload product report

Also Known As

Qualys TotalCloud with FlexScan

Guardicore Centra, GuardiCore

Cisco Tetration

Overview

Qualys TotalCloud enhances security posture across cloud environments with continuous monitoring, vulnerability management, and risk visualization, ensuring efficient threat assessment and automated remediation for improved cyber risk reduction.

Qualys TotalCloud offers a robust suite of security tools essential for organizations managing multi-cloud infrastructures. By integrating cloud accounts and automating workflows, it supports AWS, Azure, and GCP, offering comprehensive vulnerability management and zero-day detection. The platform's user-friendly design, combined with its extensive risk management and unified threat assessment capabilities, enables organizations to prioritize and remediate vulnerabilities effectively. TruRisk Insights provides clear insights on cyber risks, while the automation options streamline patch management and scanning processes. API integration across IaaS and SaaS environments further enhances resource allocation efficiency and saves time, addressing misconfigurations across cloud environments.

What are the most important features of Qualys TotalCloud?

Accurate Vulnerability Reports: Delivers precise and actionable insights for risk mitigation.
Zero-Day Detection: Identifies and addresses zero-day vulnerabilities proactively.
Unified Threat Assessment: Offers comprehensive evaluation of threats across the environment.
Extensive Risk Management: Manages risks effectively with advanced insights and prioritization.
Continuous Monitoring: Provides non-stop surveillance for vulnerabilities and threats.
Cloud-Native Automation: Streamlines processes and reduces manual efforts using automation.
FlexScan for Internet-Facing VMs: Scans external VMs efficiently to detect vulnerabilities.
Dashboard Risk Visualization: Clear visualization helps prioritize vulnerabilities.

What benefits and ROI should users look for?

Improved Security Posture: Enhances threat detection and response across clouds.
Time Savings: Automation reduces time spent on manual vulnerability management.
Resource Efficiency: Better allocation of resources through streamlined workflows.
Enhanced Risk Prioritization: Focus on critical vulnerabilities for effective mitigation.
Integrated Cloud Accounts: Facilitates seamless cloud management and security.

Qualys TotalCloud is deployed in sectors needing rigorous vulnerability management, such as finance and healthcare. Companies utilize it to secure multi-cloud environments like AWS, Azure, and GCP, focus on compliance, and integrate security into CI/CD pipelines to detect and remedy threats pre-deployment.

Qualys

Akamai Guardicore Segmentation offers extensive visibility and micro-segmentation capabilities, integrating seamlessly with diverse environments to enhance security measures. Organizations benefit from its platform agnosticism and centralized firewall management, maximizing protection and operational efficiency.

Known for its detailed network visibility, Akamai Guardicore Segmentation streamlines security operations across different platforms. It facilitates ease of policy creation and allows for effective segmentation, even of legacy systems. With advanced threat intelligence and real-time traffic monitoring, organizations optimize security and compliance, reducing attack surfaces through precise process and port control. This capability extends to seamless operation in environments like Kubernetes and data centers, implementing Zero Trust security models and server-to-server segmentation.

What are the key features?

Extensive visibility: Offers comprehensive insight across network environments.
Platform agnosticism: Operates effectively on multiple platforms.
Micro-segmentation: Enables detailed control over network traffic.
Centralized management: Simplifies firewall administration and monitoring.
Threat intelligence: Incorporates AI for dynamic threat assessment.

What benefits or ROI should organizations seek?

Enhanced security: Reduces attack surfaces and prevents lateral movements.
Operational efficiency: Streamlines policy creation and enforcement.
Integration flexibility: Aligns with diverse systems for seamless deployment.
Compliance achievement: Supports adherence to industry standards.

In sectors like banking and financial services, Akamai Guardicore Segmentation is crucial for implementing Zero Trust models and enhancing server-to-server segmentation. These industries utilize its capabilities to replace traditional firewalls and manage complex environments, boosting security through application dependency mapping and optimized east-west traffic control.

Akamai

Cisco Secure Workload offers advanced auditing, micro-segmentation, and network visibility, automating policy presentation for improved security. It enhances application dependency mapping and provides comprehensive telemetry with strategic policy enforcement.

Cisco Secure Workload specializes in automating micro-segmentation, data center management, and traffic analysis. Its capabilities facilitate application dependency mapping and enhance internal micro-segmentation, providing invaluable network visibility. Users find its automation in policy presentation and strategic enforcement beneficial, along with granular control and scalability, despite needing improvements in scalability and integration capabilities. Enhanced notification features, troubleshooting options, and an efficient interface are desired for seamless deployment, along with stronger multi-tenancy, redundancy, and monitoring functions. Broader platform support and integrated cloud connectivity are desired for unified management across tools.

What are the most important features?

Auditing: Provides in-depth network analysis and security auditing capabilities.
Micro-Segmentation: Enhances network security by automating segmentation at a granular level.
Application Dependency Mapping: Visualizes connections and interactions between applications.
Network Visibility: Delivers comprehensive insight into network activities and dynamics.
Policy Discovery: Streamlines policy creation through automation and reduces manual intervention.
Comprehensive Telemetry: Offers complete coverage and insights for better security assessment.

What benefits and ROI should be evaluated?

Enhanced Security Measures: Offers robust features for network security improvement.
Automated Processes: Reduces manual efforts through automation, increasing efficiency.
Scalability: Adapts to growing network demands with flexible scalability options.
Granular Control: Allows detailed control over network policies and enforcement.

Entities in finance, gas, and oil sectors utilize Cisco Secure Workload for networking site management and compliance maintenance. It integrates into extensive Cisco infrastructure, aiding routers, switches, and endpoints, thus supporting auditors in network synchronization and auditing needs.

Cisco

Sample Customers

Information Not Available

Santander, Frontier Airlines, OpenLink, Intermountain Healthcare, Cellcom, BancoBASE

ADP, University of North Carolina Charlotte (UNCC)

Akamai Guardicore Segmentation vs. Cisco Secure Workload