Qualys VMDR 2.0 with TruRisk gives enterprises visibility and insight into cyber risk exposure with the goal of making it easy to prioritize vulnerabilities, assets, or groups of assets based on business risk. Security teams can take action to mitigate risk, helping the business measure its true risk, and track risk reduction over time.
N/A
Wiz
Score 8.1 out of 10
N/A
Wiz is a Tel Aviv based, cloud risk visibility solution for enterprise security. It provides a 360° view of security risks across clouds, containers and workloads.
N/A
Pricing
Qualys VMDR
Wiz
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
Qualys VMDR
Wiz
Free Trial
No
No
Free/Freemium Version
No
No
Premium Consulting/Integration Services
No
No
Entry-level Setup Fee
No setup fee
No setup fee
Additional Details
—
—
More Pricing Information
Community Pulse
Qualys VMDR
Wiz
Considered Both Products
Qualys VMDR
Verified User
Anonymous
Chose Qualys VMDR
Breadth of services, Overall cost and Strong services expertise
Qualys is quite user friendly and gives more easy information related to asset and risk an asset possess. Plus high quality of support as well as ease of use. Qualys is single suite for multiple task for your organization like VMDR rather than using multiple tools for different …
It is a very similar tool but Qualys VMDR is much better when it comes to reporting and solutions provided. Asset management is really good in Qualys VMDR. Qualys VMDR support is really quick , you can get a TPM if you run into any issues. Qualys VMDR has wide variety of …
Qualys VMDR was selected against competitors because of the depth of insight the platform provides. When stacked against other competitors, platforms like Syxsense couldn't produce the same level on insight and reporting like how Qualys VMDR does. Qualys VMDR also does a great …
Prior to Wiz, I have used mostly AWS security services such as security hub for CSPM and GuardDuty for threat intel. Although these services are great, it makes it hard to centralize this information in a multi-cloud deployment. It is understandable that AWS native services may …
After previously utilizing Orca and testing Tenable, we preferred Wiz over the competition. The reporting, usability, and feature-rich platform enabled us to investigate security risks and issues simultaneously.
As someone relatively new to the security space, coming from a software engineering background in identity, I don’t have deep experience across a wide range of security tools. That said, based on the products I have used—such as Palo Alto’s Cortex XDR, Panorama, GlobalProtect, …
Wiz is a solid solution over these other products, it has capabilities in all clouds that we utilize that others didn't have at the time. Its much easier to segment access than CrowdStrike as an example. Engineers quickly because familiar with the tool to help reduce the …
We chose Wiz over Tenable.io due to its agentless deployment, holistic security graph, and cloud-native focus. Wiz’s quick setup, intuitive interface, and advanced risk prioritisation provided actionable insights faster, making it a better fit for our multi-cloud environment.
We previously used Lacework but transitioned to Wiz as part of our effort to improve cloud security visibility and streamline risk management. While Lacework provided useful insights, we found that Wiz offered a clearer, more intuitive interface and better collaboration …
Tenable.io and Qualys are good just for vulnerability management. Wiz has very good capability to show all issues on single console and also it has provision to show them in different dashboards in different category. It shows cloud configuration gap, AWS cis benchmark gap and …
Qualys VMDR supports both remote scanning and as well as agent based scanning. With a complex infrastructure with over 2 million devices and 100s getting added and removed on daily basis makes the operations challenging. Qualys VMDR has a great feature to do discovery scan to detect active devices on the network and perform vulnerability scans on those assets. Authentication is also easy to setup and use.
Wiz is well-suited if you want to run real-time scans against resources that were recently patched or configured. It is good to keep track of vulnerabilities found and what can be done to resolve the issues without having to open up multiple tabs. Overall, it is good to keep an eye on how well cloud teams or cloud security teams are doing.
Getting started with Wiz was quick and painless. The onboarding process was well-structured, and their team provided solid support to help us integrate Wiz into our cloud environments with minimal effort. Documentation is clear, and their customer success team is always on hand to help with any questions, making the adoption process seamless
One of Wiz’s biggest strengths is how clearly it presents security risks. It provides a well organised view of issues, making it easy to see where action is needed. The AI-powered Remediation Wizard is a great feature, offering guided fixes and automation options that speed up resolution, reducing the time spent manually investigating and fixing issues.
The Wiz interface is intuitive and easy to navigate, which is a big plus when dealing with complex environments. Everything is laid out in a way that makes it simple to drill down into issues
Wiz scanning doesn't detect risks in real time. New sensors are now included and these capabilities are growing. I believe that within a year Wiz will get good real time capabilities
Wiz can generate a lot of alerts, which can be overwhelming, especially if you have a very dynamic environment. It's important to set up filters so that you only receive alerts for the risks that are most important to you.
Wiz can improve the way it augments the vulnerability data with additional data on Technologies. It sometimes has missing technologies but updated its inventory as soon as we opened a case on that.
Next to Veeam (which is a tremendous product for backup/DR) this is the best service/software I have used in the past three decades. Should be called the Swiss Army Knife of security.
The UI is very user-friendly, with documentation available on every page of the application. New users can learn about the product features as they navigate through several different pages, using the instructions at the top of each page, making it quite easy to use.
This is iron but I am giving it 5 star and I can give more If I can do because they are best in support. So once you own this product they will assign a dedicated support for you and when you are under the weather with anything just connect them with anything call, ping or ticket they will come like Genie.
Qualys VMDR was selected against competitors because of the depth of insight the platform provides. When stacked against other competitors, platforms like Syxsense couldn't produce the same level on insight and reporting like how Qualys VMDR does. Qualys VMDR also does a great job at gathering information about the latest security definitions and using those to analyze our environment to alert of any vulnerabilities. Something that Syxsense couldn't.
Prior to Wiz, I have used mostly AWS security services such as security HUB for CSPM and GuardDuty for threat intel. Although these services are great, it makes it hard to centralize this information in a multi-cloud deployment. It is understandable that AWS native services may provide more info and realtime security analysis of its services, but does not scale well with a growing organization looking to leverage amazing tools from other CSPs. Wiz may not have real time analysis or the most relevant vulnerability findings for cloud platforms compared to their native solutions, but Wiz scales extremely well, which in cases is a more valuable asset.
We haven't completed a full rollout yet, but the goal is to shift left security to all of our product teams so that security is a shared effort across the organization.
We want to be able to demonstrate fast remediations, corrective action plans with tangibles from Wiz in response to audits or red team findings.
We would like to also use information from Wiz to substantiate answers to security questionnaires that customers requires us to fill out in order to do business with them.