Qualys VMDR Reviews

It's used for vulnerability assessments, assessment of IT equipment, PCs, servers. It's supposed to help prioritize which security patches need to be deployed on that equipment.

The prioritization feature is great. I think it has all of the advanced features that we need.

It's too early for me to say if there is any room for improvement since we're in the first couple of months of using this solution. So far, we've been pretty happy about it. Nothing comes to mind that is negative.

Given that it's really new, we're really trying to use all of the features and get a good comfort level and gain more experience in it. For this reason, I can't speak negatively of it, yet.

We've been using Qualys for roughly six to seven years, but we've only been using Qualys VMDR for a few months.

Qualys VMDR is very stable.

Qualys VMDR is definitely scalable.

They provide a lot of free virtual training to really understand the technology and the solution. That's a plus for them.

I used to work with QualysGuard VM — an older version. The earlier version didn't have the detection response that we needed, that's why this time it has the detection response. VMDR is the evolution of the solution.

The initial setup was pretty straightforward. Deployment was quick.

We implemented this solution ourselves.

Overall, on a scale from one to ten, I would give this solution a rating of eight. For us, it's just more of gathering more experience. The more we learn, I think we'll appreciate it, and then maybe from that point, we'll be able to say it's a nine, or a ten. It's more on us versus the solution.

We use this product for vulnerability management.

I like Qualys because it is a very complete product, more so than Tenable. It has vast capabilities.

We have been working with Qualys VM for a very short time, perhaps six months.

This is a stable solution.

Scalability-wise, this is a good product.

The technical support is very good and they have it both in Spanish and English.

We are also working with Tenable SC. Qualys is both more complete and for us, better in terms of pricing.

For a beginning, the initial setup is complex. You have to have some knowledge for setting it up and using it.

The price of Qualys for us is better than Tenable, although that is only because we are partners. The retail price of Qualys is higher than that of tenable. The pricing and licensing for Qualys could be improved.

Overall, this is a good product and I recommend it, mainly because of the capabilities and the management using a single console. I can even create a calendar for activities from the main screen.

I would rate this solution a nine out of ten.

We are a system integrator. We implement Qualys for our customers for vulnerability management and policy compliance. We are not using Qualys as a product in our company. We have public, private, and hybrid cloud as well as on-premises deployments.

There are many features. Its reliability, ease of installation, ease of use, and the richness of the information provided are the most valuable features.

Its integration with ServiceNow and other similar products is complicated and can be improved. It should also have virtual batching.

They should support more standards and compliance requirements and more customizations. For policy compliance, they can add the standards required by the countries in the Middle East. Each country generates its own standards and frameworks, and those frameworks should be there in all products, not only in Qualys. The market here is huge, especially in the cybersecurity field. Qatar has a framework for Qatar 2022, and each and every company in the public or private sector has to follow the Qatar 2022 framework. 

I have been using this solution for three years.

Qualys is a reliable, strong, and solid product. 

It is scalable. The main advantage of Qualys is that it is a cloud-based solution because of which you can scale it up or down according to your needs. It is very quick and flexible.

Because we are in the Middle East, we deal with the office in Dubai. You cannot imagine how supportive they are. They are amazing in their response.

The initial setup was easy. It has great hardware. Its deployment was easier than Rapid7, which is a bit complicated. Tenable is less complicated, but Qualys is faster and easier to deploy than Tenable. 

I deployed Qualys in two hours. It is easy to install, manage, and go through. There are multiple tabs, and everything is understandable.

Qualys is cheaper and more affordable than other solutions.

I would recommend Qualys because it is a reliable, affordable, and very safe product. It can have everything that you are looking for.

I would rate Qualys VM an eight out of ten.

We are consultants and resellers of Qualys VM. 

I like the solution's web application security for scanning, the solution is flexible with good integration. 

I'd like to see additional security for the app. The product lacks integrations for third party solutions or automation integration for other tools.

I've been using this solution for six months. 

The product is 100% stable. There are five users in the company who deal with operations and security analysis. There are four people in the company who deploy and provide support.

I've never used the technical support. Documentation is simple and complete. 

I've previously worked with Tenable IO and Rapid 7. We switched because of Qualys's web application feature.

The initial setup is straightforward. Initial deployment takes between two and four hours. We did it ourselves. 

I would recommend this solution. 

I would rate this solution a 10 out of 10. 

I use Qualys to review the validity of legacy applications, infrastructure, and simple data operating systems.

The ability to manage user accounts and give rights to the operator to know about abnormalities of applications is something that needs improvement. 

The pricing is also expensive.

I have been using Qualys for four years. 

It's stable.

I haven't needed to use technical support. 

The initial setup was good. We didn't have any problems with it. 

I would rate Qualys VM a ten out of ten. 

We use Qualys to check the status of our security posture.

Qualys help identifies the weakness in our critical infrastructure and provides guidelines how to address them.

maybe compliance monitoring.

Reporting can be improved more. It should generate much more stuff like field reports. Though the reports generally meet our need we hope we can customize it better.

2 years

very satisfactory

Its scalability is a four or five out of five. 

We haven't had problems up until this point that required technical support. The solution can run by itself and generate reports. We didn't have any issues that would need us to call technical support.

None

Simple and straightforward

in-house.

acceptable.

I would give the pricing three out of five.

No.

I would like for Qualys to have the ability to scan OT operation technology assets as well. 

If it can I would rate it 8 out of 10. 

We are a solution provider and this is one of the products that we implement for our clients. We do a lot of work with containers. With respect to containerization, security is important for us and we regularly check the market to see what solutions are available in these areas.

This solution is primarily used for container security and compliance. Moving into any environment, in particular, one that is cloud-based, our clients want to make sure that things are okay from a compliance perspective. We generate reports and they can see whether there are any violations. If they see violations or security breaches during the audit then they have to be addressed.

The most valuable feature is that this solution is very lightweight.

I would like to see this solution simplified to work more easily in a multi-cloud environment. One of our customers has more than 3,000 servers across multiple regions, and they were asking about security and vulnerability checking in an automated fashion. This could be done with a cloud-based service that monitors all of the deployments, pulls the data from the containers, and checks for compliance.

We have been dealing with Qualys for at least three years, which is when our container journey began. At that point, our proposals did not deal with security for containers because our customers did not ask for it, but now it is something that we recommend.

The technical support for this solution is good. We are required to solve any kind of security issue whin two hours, so these are critical tickets. The entire instance usually has to come down until the fix is delivered.

We often demonstrate these types of tools to the enterprise architecture team, who will ultimately decide which solutions they are going to implement based on their environment and requirements.

We are completely agnostic with respect to which tools our customers decide to implement. As an engineering team, we implement what the customer wants. In the case of Qualys and other solutions, we download the information and pass it along to our customers. We also facilitate or set up communication between vendors and customers to best help our clients.

We do try to learn about who the providers are and what differentiates their solutions from others. Sometimes our customers do not know very much about the products, so we try to provide as much insight as possible to facilitate their decision making. 

A lot of our customers have a workload that is scattered across a multi-cloud environment. This means that some of the RFPs we answer are based on very large landscapes with distributed workloads.

I would rate this solution a seven out of ten.

Our primary uses for this solution are security vulnerability detection and policy compliance.

It's been the chosen solution year after year for vulnerability management and our vulnerability management program is centered around this tool.

The most valuable features are vulnerability detection and the scanning capability to enable identification of vulnerabilities across our network.

I would like to see this solution more developed and competitive in the Cloud space.

We have been using Qualys VM for fifteen years.