No more typing reviews! Try our Samantha, our new voice AI agent.

Tanium vs Wiz Code comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Jun 3, 2026

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Qualys TotalCloud
Sponsored
Ranking in Vulnerability Management
11th
Average Rating
8.6
Reviews Sentiment
7.2
Number of Reviews
39
Ranking in other categories
Container Security (11th), Cloud Workload Protection Platforms (CWPP) (7th), Cloud Security Posture Management (CSPM) (8th), SaaS Security Posture Management (SSPM) (1st), Cloud-Native Application Protection Platforms (CNAPP) (6th)
Tanium
Ranking in Vulnerability Management
26th
Average Rating
7.8
Reviews Sentiment
6.2
Number of Reviews
22
Ranking in other categories
Server Monitoring (3rd), Endpoint Protection Platform (EPP) (15th), Endpoint Detection and Response (EDR) (23rd), Unified Endpoint Management (UEM) (8th)
Wiz Code
Ranking in Vulnerability Management
17th
Average Rating
8.4
Reviews Sentiment
5.1
Number of Reviews
14
Ranking in other categories
Risk-Based Vulnerability Management (8th), Cloud Security Remediation (1st), Application Security Posture Management (ASPM) (4th), Continuous Threat Exposure Management (CTEM) (3rd)
 

Mindshare comparison

As of July 2026, in the Vulnerability Management category, the mindshare of Qualys TotalCloud is 1.1%, up from 1.0% compared to the previous year. The mindshare of Tanium is 1.6%, down from 2.5% compared to the previous year. The mindshare of Wiz Code is 1.1%, up from 0.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Vulnerability Management Mindshare Distribution
ProductMindshare (%)
Qualys TotalCloud1.1%
Wiz Code1.1%
Tanium1.6%
Other96.2%
Vulnerability Management
 

Featured Reviews

RO
IT Security Expert at Alior Bank S.A.
Unified risk scoring has improved our cloud visibility and simplifies remediation priorities
Qualys TotalCloud provides unified vulnerability and threat assessment across both IAS and SaaS. This solution provides a single prioritized view of risk, which helps reduce the work I would have to do. We are no longer based on CVSS; we are based on Qualys risk scoring, which is based on CVSS plus internal findings made by Qualys, and then assigns its own score. The TruRisk insight feature has found a small number of assets with high vulnerability scores, though I am cautious since some information is classified. Qualys TotalCloud has positively impacted our bank's performance, and we have definitely seen benefits after implementing this solution.
MA
Division Manager, Information Technology at a legal firm with 51-200 employees
Centralized policies have improved remote endpoint control and have simplified data visibility
The integration is not simple and easy. It requires experienced users or people who have done the implementation. When certain policies are applied, they do not immediately push the policies. For example, we manage endpoint device USB access. We set a policy to block it, but it does not come into effect immediately. Sometimes it takes three or four days for it to reflect. That is a pain point. I have raised this issue with support as well, but they said that I need to limit the number of devices in the policy. In terms of application deployment, for us, it was seamless.
Aditya Sarkar - PeerSpot reviewer
Assistant VP at NatWest Group
Unified dashboards have streamlined code‑to‑cloud risk tracking and reduced manual reviews
The best features of Wiz Code that I appreciate the most include their entire dashboarding and the seamless integration with different DevOps tooling like GitHub or Azure DevOps. It seamlessly integrates, allowing you to run scanners directly onto the machines without consuming too many resources, and the recategorization of vulnerabilities is absolutely wonderful, giving you a complete attack path, which is something I love about Wiz Code because it details the entire lateral movement of the issue, whether it is a complete shift-left or shift-right, serving as the differentiators compared to other tools in the market. When I talk about ROI with Wiz Code, it almost cuts you down to 20% to 25% of the daily effort needed in terms of FTE. If you are working with around 100 developers or engineers, you might come down to 60 to 70 engineers, with the rest completely automated by removing false positives, showcasing where the USP comes in.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The scalability is good as well. I would rate it ten out of ten."
"TotalCloud provides the easiest and the best approach for cloud infrastructure management."
"TotalCloud has been excellent in providing us with immediate access to all the products and features we need, such as CSPM, TruRisk Insights, and compliance reports, including CIS and HIPAA."
"The most valuable feature is extensibility."
"Qualys TotalCloud's most valuable features are its security capabilities that help identify and mitigate risk factors."
"It is a cloud-native app that integrates with both IaaS and SaaS. It seamlessly integrates with other platforms."
"Generally, Qualys is very good at detections, whether on cloud or on-prem, and the agent allows deployment on both infrastructures, providing continuous monitoring of your assets, which is a key selling point for us."
"Qualys TotalCloud has significantly reduced our workload in terms of managing risks, helping us to be more efficient and save substantial resources."
"Threat hunting is a very good feature on Tanium. We have just started using it and have not used it extensively."
"I'm not so familiar with the tool but I like the interaction of the console to the picture. Patching is the primary model I have been focusing on for the last couple of weeks. So I have created a proof of concept environment and have been checking the available features."
"I find the inventory and compliance features of Tanium to be the most impressive."
"Tanium is a very good product and I would rate it eight or nine out of ten."
"For inventory purposes, it's from one of the best things on the scene, as you can get live inventory."
"Tanium is stable and it is also lightweight."
"I would say Tanium is the best tool for vulnerability management."
"It's definitely not complex, it is pretty user-friendly and it's a solid tool enterprise to use."
"Wiz Code has positively impacted my organization because it is better on a daily basis; we receive new cases, and it is easy to analyze and take care of them."
"Wiz Code is a platform that serves most of these features as a single entity, which has definitely reduced the time for triaging the security aspects of vulnerabilities and helps in overall innovation for the team."
"I would definitely recommend Wiz Code to boost development and productivity because I have seen significant positive improvements since I started using it."
"The best features of Wiz Code that I appreciate the most include their entire dashboarding and the seamless integration with different DevOps tooling like GitHub or Azure DevOps, allowing you to run scanners directly onto the machines without consuming too many resources, and the recategorization of vulnerabilities is absolutely wonderful, giving you a complete attack path, which is something I love about Wiz Code because it details the entire lateral movement of the issue, whether it is a complete shift-left or shift-right, serving as the differentiators compared to other tools in the market."
"Using Wiz Code has been a worthy investment, as manually checking all 100 AWS accounts for issues would take an immense amount of time, but Wiz Code allows us to scan all accounts within minutes and continuously monitors our cloud environment every 24 hours, displaying any changes in the Wiz Code UI under the issues and threats section."
"Before Wiz Code, the security team manually correlated the cloud assets, vulnerabilities, IAM permissions, and internet exposure, with critical issues identified in five days, but now, with the security graph automatically correlating findings, critical issues are identified in 30 minutes, resulting in a 90 percent plus reduction in investigation effort."
"Wiz Code offers minimum false positive vulnerabilities, which is the best feature and meets expectations for the tool."
"Approximately 30 to 40% of vulnerabilities are being remediated quicker and easily because Wiz Code has an auto-fixing PR feature available for IAC code, which helps us fix issues quickly."
 

Cons

"The downside is only in container security, but it has not been a long time since they introduced these models."
"Areas that need improvement in every solution include the remediation part. The remediation steps should be simple enough for everyone to understand."
"Two areas for improvement in Qualys TotalCloud are the speed of the public cloud platform and vulnerability detection."
"It is already perfect, but they can bring some newer dashboards and customization options for the dashboard. It would be great to be able to include on-prem assets on the dashboard."
"TotalCloud could improve the classification of vulnerabilities. Specifically, it could enhance the categorization of what aspects fall under patches resolved by OS or software updates and what pertains to configuration adjustments."
"There should be improvement from a dashboard perspective when collecting and showcasing data to lead management."
"The support is not up to the mark and seems to be overburdened."
"Qualys TotalCloud's increasing complexity, due to the development and deployment of multiple solutions, is making the GUI difficult to navigate."
"The main issues are the network connection because different customers have issues with their networks. It's difficult implementing this type of solution because the network is the main feature in the architecture for these types of solutions. Tanium could improve by creating some network optimization."
"When working with Tanium, there are some older devices that haven't been patched for a long time, and certain patches are not included in Tanium. I have to search outside to download patches, create bundles, and then perform the task."
"The solution needs to improve the reporting and tracking capabilities."
"We had some issues with the solution's OS upgrade."
"We set a policy to block USB access. The moment a device is being set up on the network, I apply the policy, but it does not come into effect immediately."
"The performance could improve in future releases. We have had performance issues in specialized web environments, but overall I think the problems are less than 2% of the computer systems being used."
"I would like to have more integrations and custom plugins to input. Integration is always a big deal in a lot of different environments."
"There are downsides and drawbacks in Tanium, and there is room for improvement from my perspective."
"Wiz Code has many features, and I think they could continue to enhance customization according to our requirements."
"One noticeable aspect is that we are receiving some false positives, but this is better compared to the previous tool I used."
"Wiz Code could be better in secret scanning where no push protections are enabled at the GitHub or GitLab level to prevent pushing secrets on GitHub itself."
"I have a big improvement in mind for Wiz Code, not a small improvement."
"I rate the accuracy and reliability as good, but not yet at a level where I trust it without validation."
"The pricing of Wiz Code is a little bit higher for small enterprises that I run, but it's something that I can manage."
"The dashboards can be better; we have dashboards, but they are really complex and have a lot of information."
"Metadata ingestion and probably the integration of Wiz Code platform is something which is missing."
 

Pricing and Cost Advice

"The cost is high, but it meets our organizational needs."
"Qualys TotalCloud offers competitive pricing given its comprehensive suite of features, including integration, assessment, remediation, and detection capabilities, all within a single platform."
"Qualys TotalCloud is expensive."
"I am not sure about the pricing. From what I understand, it is a bit on the higher side, but I do not have the exact numbers."
"Its price seems higher compared to other tools, but it is worth it. If they could adjust the pricing and make it comparable with other tools, that would be great."
"The pricing for TotalCloud is attractive and competitive in the market. Given the features, especially the dashboard, I have no concerns regarding pricing."
"Qualys TotalCloud offers good pricing that is affordable and competitive with the market. Our partnership also provides us with additional benefits."
"Qualys TotalCloud is cost-efficient and was selected for its value compared to other products."
"The product's pricing differs from region to region depending on negotiations and the number of endpoints."
"The solution offers value for money."
"It is higher than some competitors in the market."
"The solution is expensive but it's a good investment."
"It's an expensive solution. It would be nice if the cost were lower."
"There is an annual license required to use this solution."
"Tanium is a more expensive solution in Latin America than some of the competitors, such as BigFix."
Information not available
report
Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.
904,748 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Manufacturing Company
16%
Financial Services Firm
13%
Outsourcing Company
8%
Comms Service Provider
7%
Financial Services Firm
14%
Government
10%
Manufacturing Company
9%
Healthcare Company
6%
Manufacturing Company
13%
Financial Services Firm
10%
Construction Company
7%
Government
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business9
Midsize Enterprise5
Large Enterprise29
By reviewers
Company SizeCount
Small Business8
Midsize Enterprise3
Large Enterprise12
By reviewers
Company SizeCount
Small Business2
Midsize Enterprise2
Large Enterprise14
 

Questions from the Community

What needs improvement with Qualys TotalCloud?
Areas that need improvement in every solution include the remediation part. The remediation steps should be simple en...
What is your primary use case for Qualys TotalCloud?
Our use case involves the assets that we have under cloud, the assets exposed to the internet, and the internal appli...
What needs improvement with Tanium?
While there is always room for improvement, I am pleased with Tanium.
What is your primary use case for Tanium?
The primary use case for Tanium ( /products/tanium-reviews ) is compliance, patching, and inventory as part of the co...
What advice do you have for others considering Tanium?
For smaller companies, Tanium is quite a big investment, and one needs to have a considerable setup to make it econom...
What is your experience regarding pricing and costs for Wiz Code?
For now, I haven't considered a second choice other than Wiz Code; I am satisfied with the services I am getting, wit...
What needs improvement with Wiz Code?
I haven't really explored the scalability of Wiz Code yet, but I'm looking to explore it on the production side for m...
What is your primary use case for Wiz Code?
I am an end user of Wiz Code and I use it for personal projects. I use Wiz Code for Kubernetes baseline and for secur...
 

Comparisons

 

Also Known As

Qualys TotalCloud with FlexScan
Tanium Inc Cloud, Tanium XEM
Dazz.io
 

Overview

 

Sample Customers

Information Not Available
JPMorgan Chase, eBay, Amazon, US Bank, MetLife, pwc, Cerner, Delphi, MGM Grand, New York Life
Information Not Available
Find out what your peers are saying about Tanium vs. Wiz Code and other solutions. Updated: June 2026.
904,748 professionals have used our research since 2012.