Try our new research platform with insights from 80,000+ expert users

Broadcom Control Compliance Suite vs Qualys Policy Compliance comparison

Broadcom and Qualys are both solutions in the IT Governance category. Broadcom is ranked #11, while Qualys is ranked #3 with an average rating of 9.0. Broadcom holds a 2.7% mindshare in IG, compared to Qualys’s 3.6% mindshare. Additionally, 100% of Broadcom users are willing to recommend the solution, compared to 100% of Qualys users who would recommend it.
Broadcom Control Compliance...
Read 1 Broadcom Control Compliance Suite review
  • 307 Views
  • 123 Comparison Views
100% willing to recommend
Qualys Policy Compliance
Read 8 Qualys Policy Compliance reviews
  • 363 Views
  • 298 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Broadcom Control Compliance Suite and Qualys Policy Compliance based on real PeerSpot user reviews.

Find out what your peers are saying about RSA, IBM, Qualys and others in IT Governance.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed IT Governance Report (Updated: January 2026).
Buyer's Guide
IT Governance
January 2026
Download the complete report
Helped 881,082 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Broadcom Control Compliance...
Ranking in IT Governance
11th
Average Rating
8.0
Reviews Sentiment
7.9
Number of Reviews
1
Ranking in other categories
Compliance Management (21st)
Qualys Policy Compliance
Ranking in IT Governance
3rd
Average Rating
8.8
Reviews Sentiment
7.3
Number of Reviews
8
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of January 2026, in the IT Governance category, the mindshare of Broadcom Control Compliance Suite is 2.7%, up from 2.1% compared to the previous year. The mindshare of Qualys Policy Compliance is 3.6%, up from 2.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.
IT Governance Market Share Distribution
ProductMarket Share (%)
Qualys Policy Compliance3.6%
Broadcom Control Compliance Suite2.7%
Other93.7%
IT Governance
 

Featured Reviews

it_user1472691 - PeerSpot reviewer
it_user1472691
Assistant Manager Transmission Planning at a comms service provider with 1,001-5,000 employees
A good security tool for vulnerability assessment and asset prioritization
The support mechanism can be improved. I would also like to add that it would be great if we could scan a previous date or based on the previous date's updates. Like today, if I want to run that scan on a system, if a system allows me to exclude all the patches that were released after October 2020, it will actually provide a clearer picture. This is because in October, we had these vulnerabilities, and these vulnerabilities are fixed now. Anyway, there's no point in talking about improvements. Symantec has already told us to buy another product as they are discontinuing this solution.
Read full review
reviewer1906245 - PeerSpot reviewer
reviewer1906245
Information Security Analyst at a tech services company with 11-50 employees
Facilitates continuous compliance monitoring and simplifies vulnerability tracking for distributed cloud assets
Regarding improvements I would like to see in Qualys Policy Compliance, there are a couple of vulnerabilities where the metrics that are already there and the way Qualys measures those metrics and labels them as critical, high, or low does not align with my understanding from a user standpoint. Every time, I have to put in a false positive. Since I have been doing that for the past one year, the same vulnerability tends to pop up and they mark it as critical. Qualys needs to update and rediscover those weaknesses and re-label them. I understand what the company design and what the tool does, but it takes some time for us to manage those things. In terms of missing features that I would like to see included in Qualys Policy Compliance, I do not think there are any. The feature does what we require and does the job. If there were some sort of reporting that fulfills auditor's requirements, particularly if there is an external audit and they ask us for any historical data like how long we have been compliant to the PCI framework, that would be valuable. Having reporting that shows historical data that we have been compliant from the date of inception, for example, from 2023 to 2025 onwards, would bring value to what we are reporting.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"I find the vulnerability assessment and asset prioritization feature valuable."
"From the Qualys Policy Compliance, the best feature is that they have predefined templates for compliances, allowing easy application of compliance requirements against our products and providing clear reports on whether assets are compliant or not."
"The reporting and security checks are valuable."
"The reason I decided to stick with Qualys is that for the past three years, we went through evaluating other tools, but Qualys was always our priority and always our first choice because of what it was offering as a platform."
"The most valuable feature of QualysGuard Policy Compliance is the automation that can detect real-time threats and decrease risks."
"It's a simple product."
"The solution's interface looks good, which enhances asset scanning and ensures automatic patching."
"The platform allows multiple features that are very useful. The first one is being able to define the enterprise policy. The second one is to be able to automatically check the compliance level based on that policy, and the third one is that it allows us to generate reports and dashboards to see the compliance level easily."
 

Cons

"The support mechanism can be improved."
"They need to improve the reporting part of the CI/CD pipelines and the ability to download scans from pods."
"The policy creation aspect needs improvement."
"It would be good if the solution’s technical support could be faster."
"The reporting needs improvement."
"There is no clear mapping for the CIS controls in terms of how they should be implemented into Qualys, so the implementation stage might be a little bit challenging for the customer. That means that the customer will end up opening support cases, which will overload their support team to explain those. If they are somehow published somewhere, it would save time and effort for both sides."
"Some sort of education or knowledge base about the product would be beneficial for beginners."
"There are a couple of vulnerabilities where the metrics that are already there and the way Qualys measures those metrics and labels them as critical, high, or low does not align with my understanding from a user standpoint."
 

Pricing and Cost Advice

"Symantec Control Compliance Suite was the cheaper option for us. But the main reason why we're still using it is that we purchased the complete suite back in 2011."
"The prices might be a little bit high. I cannot compare it with another product because we did not try any other product, but this is my impression when comparing different modules."
"The solution's pricing is in the mid-range, where it is neither expensive nor very cheap."
report
See which vendors are best for you
Use our free recommendation engine to learn which IT Governance solutions are best for your needs.
See recommendations
881,082 professionals have used our research since 2012.
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
By reviewers
Company SizeCount
Small Business2
Midsize Enterprise2
Large Enterprise4
 

Questions from the Community

Ask a question
Earn 20 points
What is your experience regarding pricing and costs for QualysGuard Policy Compliance?
I was involved in the purchasing of Qualys Policy Compliance in my previous company, where the costs are based on the number of devices and features, with enterprise level pricing which I cannot sp...
See all answers
What needs improvement with QualysGuard Policy Compliance?
Regarding improvements I would like to see in Qualys Policy Compliance, there are a couple of vulnerabilities where the metrics that are already there and the way Qualys measures those metrics and ...
See all answers
What is your primary use case for QualysGuard Policy Compliance?
I have been working with Qualys Policy Compliance for the past four years. Our complete infrastructure is on cloud and we have assets distributed across Asia and North America. We have a couple of ...
See all answers
 

Comparisons

RSA Archer vs Broadcom Control Compliance Suite Logo
RSA Archer vs Broadcom Control Compliance Suite
Compared 100% of the time
More Broadcom Control Compliance Suite Competitors
IBM OpenPages vs Qualys Policy Compliance Logo
IBM OpenPages vs Qualys Policy Compliance
Compared 100% of the time
More Qualys Policy Compliance Competitors
 

Product Reports

Buyer's Guide
IT Governance
January 2026
Broadcom Control Compliance Suite reportDownload Broadcom Control Compliance Suite product report
Buyer's Guide
Qualys Policy Compliance
January 2026
Qualys Policy Compliance reportDownload Qualys Policy Compliance product report
 

Also Known As

Symantec Control Compliance Suite, Control Compliance Suite
No data available
 

Overview

Symantec Control Compliance Suite (CCS) delivers the core assessment technologies to enable security and compliance programs, as well as support IT operations in the data center. Control Compliance Suite delivers asset autodiscovery, automates security assessments across procedural, technical, and third-party controls, and calculates and aggregates risk scores according to business-defined threshholds. Customers use this information for operational- and mandate-based reporting, as well as to prioritize remediation and risk reduction in the data center. 

Each of the five Control Compliance Suite Modules is available independently or as part of a broader suite. The Control Compliance Suite Control Studio and Infrastructure combines evidence from the multiple modules as well as third party systems; and maps assets and evidence to control statements, standards, and policies and regulations to enable mandate- based and operational reporting. Role-based, customizable Web-based dashboards and reports enable the organization to measure risk and track the performance of its security and compliance programs. Workflow integration with ticketing systems and Symantec server hardening solutions automates remediation and facilitates the hardening of the data center infrastructure.

Broadcom
Qualys Policy Compliance (PC) automates the collection of technical controls from information assets within the enterprise, and maps this information to policies to fix and document compliance with regulations and business mandates. It provides compliance reporting by leveraging a comprehensive knowledge-base that is mapped to prevalent security regulations, industry standards and compliance frameworks.
Qualys
 

Sample Customers

Banjercito, Barnabas Health, BNY Mellon, Cabela's Inc., Citizens Business Bank, Great Eastern Life Assurance (Malaysia) Berhad, Molina Healthcare Inc., Osterreichische Post Aktiengesellschaft (Austrian Post), Symantec Corporation (Enterprise Security), Visa
PDX, Cigna
Buyer's Guide
IT Governance
January 2026
Download Free Report
Find out what your peers are saying about RSA, IBM, Qualys and others in IT Governance. Updated: January 2026.
DOWNLOAD NOW
881,082 professionals have used our research since 2012.
See our list of best IT Governance vendors.

We monitor all IT Governance reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.