Qualys VMDR vs Tanium comparison

Qualys VMDR
Read 77 Qualys VMDR reviews
  • 6,732 Views
  • 5,110 Comparison Views
93% willing to recommend
Tanium
Read 15 Tanium reviews
  • 8,111 Views
  • 5,574 Comparison Views
71% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 20, 2023

We compared Qualys VMDR and Tanium based on our users reviews in six parameters. After reading the collected data, you can find our conclusion below:

  • Ease of Deployment

    The setup process for Qualys VMDR is generally smooth and efficient, requiring minimal effort and encountering few problems. On the other hand, Tanium's setup is more dependent on the size and complexity of the network, resulting in differing experiences for users. While some find it simple, others encounter difficulties. Additionally, Tanium's deployment involves multiple team members and can be time-consuming, taking several months to finish.

  • Features

    Qualys VMDR is notable for its effective prioritization system, ongoing monitoring, adaptable dashboard, and extensive vulnerability overview. In contrast, Tanium shines in its exceptional threat hunting, patch management, software inventory, and incident response capabilities.

  • Pricing and ROI

    The cost of setting up Qualys VMDR can vary depending on the desired features, with some users finding it reasonably priced or competitive. However, there are extra charges for specific features such as patch management and EDR policy compliance. Qualys VMDR has proven to be effective in minimizing cybersecurity risks and resolving vulnerabilities, resulting in a positive return on investment. In contrast, Tanium has an annual license fee and is considered expensive compared to its competitors. Despite the higher cost, users believe that Tanium provides value for money and is a strong solution.

  • Service and Support

  • The feedback on customer service and support for Qualys VMDR is varied. Some customers have praised the technical support, mentioning the availability of a global team and positive interactions. However, there are also customers who have had negative experiences and highlighted the lack of skilled support personnel. In contrast, Tanium offers a direct relationship with customers and provides an educated technical account manager. Nevertheless, some customers have mentioned that support could be enhanced, specifically in terms of reducing response delay times for issues. In summary, both products have received mixed feedback regarding their customer service and support.

Comparison Results

Based on user feedback, Qualys VMDR and Tanium were compared. Users found Qualys VMDR to be highly effective in identifying vulnerabilities and providing comprehensive reports. It was praised for its user-friendly interface and ease of use. Users also appreciated the platform's ability to automate remediation processes and its integration with other security tools. On the other hand, Tanium received positive reviews for its scalability and ability to manage large networks efficiently. Users highlighted its real-time visibility and quick response time. However, some users mentioned that Tanium's interface could be complex and required a learning curve. Overall, based on user reviews, Qualys VMDR and Tanium both offer valuable features, but Qualys VMDR seems to have an edge in terms of user-friendliness and comprehensive vulnerability management.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Qualys VMDR vs. Tanium Report (Updated: March 2023).
Buyer's Guide
Qualys VMDR vs. Tanium
March 2023
Download the complete report
Helped 787,779 peers since 2012
 

Categories and Ranking

Qualys VMDR
Average Rating
8.2
Number of Reviews
77
Ranking in other categories
IT Asset Management (7th), Configuration Management Databases (3rd), Container Security (11th), Risk-Based Vulnerability Management (3rd)
Tanium
Average Rating
7.4
Number of Reviews
15
Ranking in other categories
Server Monitoring (10th), Vulnerability Management (18th), Endpoint Protection Platform (EPP) (37th), Endpoint Detection and Response (EDR) (25th)
 

Mindshare comparison

As of June 2024, in the Risk-Based Vulnerability Management category, the mindshare of Qualys VMDR is 18.4%, up from 17.8% compared to the previous year. The mindshare of Tanium is 4.8%, up from 4.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Risk-Based Vulnerability Management
Unique Categories:
IT Asset Management
4.0%
Configuration Management Databases
1.9%
Server Monitoring
9.8%
Vulnerability Management
2.3%
 

Featured Reviews

Harold Jensen - PeerSpot reviewer
Jul 13, 2023
Good visibility but expensive and needs better support
Support: It's often overseas and often following a script, basically asking us to redo what we opened the case with. Multiple APIs: There seems to be a lack of easy onboarding into Qualys. We had to use manual inputs and some API calls to get items in place. Dashboard: It is very rudimentary with very little customization. The Qualys Scripting Language (QSL) works differently in different Qualys modules, so when you get it working in one area you have to modify the syntax in others. User account management: We often have to give users more rights than needed just to give them what they need. Integration with the various Qualys Modules: You can tell the UI is different based on of the different teams that created them. QSL syntax same in all modules Responsiveness of some of the components: They time out, you get a blank screen, etc. Backend updates between the various modules: You update connectors and information takes a few minutes to show in VMDR or Global Asset View Connectors: Connectors have a throttling issue with AWS which causes them to frequently fail unless you manually run them again.
Read full review
SL
Jun 8, 2023
The solution is limited to a few classes, but it helps discover CIs and assets
Tanium is primarily used for CMDV (Configuration management database) discovery. Tanium is meant to discover CIs and assets It's a good tool, but that's about it. It's like any other discovery tool. It's very detailed, and it will allow you to do hardware and software. I was using it in a very…
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"This is one of the best products I have worked with so far. I like the power of Qualys, and it's a better solution because you can scan a compact file, a BIT file, or batch files. The product already knows what's happening inside, and you don't need to expand the package. Tenable will do the same thing, but you need to have a package issuance claim. With Qualys, we can immediately understand the file, even a compact file. If there's some kind of discovery or incident, you will know what happened in the environment."
"Qualys VM had a recent upgrade and the newer version is supporting the cloud."
"We also like the flexibility in their licensing."
"The features that are most valuable are the identification, scan features, and the identification of vulnerabilities."
"I like that we have many scanners and channels that don't overload. It helps us scan and track easily. Also, the tagging system is good for tagging. We can still use QualysAgent task ID tools even if tags aren't made."
"The most valuable feature is the certificate management."
"Intuitive and easy to use."
"The most valuable features are vulnerability scanning, policy compliance scanning, and tablet for web application scanning."
More Qualys VMDR pros
"The most valuable features of this solution are the consolidation of all historical data on device endpoints, security drivers, firmware, and Software version gaps."
"I would say Tanium is the best tool for vulnerability management."
"I like the fact that you can create patching campaigns depending on the area of your network that you want to address first. I like the ability it has to make several campaigns that work in parallel."
"The product is granular and can build complex roles compared to other EDR vendors."
"For incident response tasks, all these tasks can get done in minutes with minimal disruption to the end-user."
"The interrogation piece was the most valuable feature because it was very detailed."
"Tanium’s linear-chain architecture is valuable."
"Threat hunting is a very good feature on Tanium. We have just started using it and have not used it extensively."
More Tanium pros
 

Cons

"There's a need to upgrade or fix the potential vulnerability rate. Around 20,000 potential vulnerabilities were showing in Qualys VMDR, but none of the other tools showed them. When we checked, it wasn't the case. Support explained that even small issues were being counted as vulnerabilities, causing issues in our audit. So, the security features could be improved to identify vulnerabilities accurately."
"The reporting and the GUI need improvements."
"Qualys should improve their customer experience. They need to improve the tech support experience and the turnaround time."
"Improve the user interface."
"The price could be better. Asset view is still a legacy feature. I'm not able to extract the information about the asset with complete details. It would be better if they fixed that in the next release. I know Qualys is already working on it, so I'm hopeful it will be available in the next five or six months. That would be something that's changed where I seek improvement."
"Qualys VMDR is basically susceptible to false positives, and false negatives."
"I would like to have CSPM, a continuous scan-like cloud added to the solution."
"Reports were lacking somewhat on the customization side."
More Qualys VMDR cons
"Any movement into a SaaS solution has challenges since the processes and data flows are not well defined. Hence, you need to build it at the same time."
"The solution can give a lot of false positives."
"Tanium's limitations should be improved because although it is a great tool, it is limited to only a few classes during a session."
"It is not really additional functions, or the features that are needed, rather the complexity would be reduced based on the number of modules required to put together a comprehensive operational security and risk compliance model."
"The performance could improve in future releases. We have had performance issues in specialized web environments, but overall I think the problems are less than 2% of the computer systems being used."
"Tanium’s scalability could be improved."
"The main issues are the network connection because different customers have issues with their networks. It's difficult implementing this type of solution because the network is the main feature in the architecture for these types of solutions. Tanium could improve by creating some network optimization."
"The solution needs to improve the reporting and tracking capabilities."
More Tanium cons
 

Pricing and Cost Advice

"Qualys VM is quite expensive. It's a subscription-based license, and it's yearly. Right now, it's open for me, and I don't have any limitations or caps on the licenses. They are seeing if the product is viable for 4500 users. I can add as much as I want, and at the end of the subscription, they'll let me know how many licenses were actually used and bill me accordingly. On a scale from one to five, I would give their pricing a three. It's still expensive."
"The solution is costly."
"There is a license for the use of this solution. We pay annually instead of monthly to receive a better discount on the price."
"Qualys is a pay-as-you-go model, so there's flexibility to the pricing."
"The pricing and licensing for Qualys could be improved."
"The product is more expensive than that of any other vendor."
"Qualys VM is reasonably priced."
"Qualys Virtual Scanner Appliance isn't expensive right now. But the price for their product bundles could be better."
More Qualys VMDR pricing and cost advice
"Tanium is a more expensive solution in Latin America than some of the competitors, such as BigFix."
"The solution offers value for money."
"It's an expensive solution. It would be nice if the cost were lower."
"The product's pricing differs from region to region depending on negotiations and the number of endpoints."
"The solution is expensive but it's a good investment."
"It is higher than some competitors in the market."
"There is an annual license required to use this solution."
report
See which vendors are best for you
Use our free recommendation engine to learn which Risk-Based Vulnerability Management solutions are best for your needs.
See recommendations
787,779 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Educational Organization
33%
Computer Software Company
11%
Financial Services Firm
11%
Manufacturing Company
6%
Financial Services Firm
17%
Government
13%
Computer Software Company
11%
Manufacturing Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What is your primary use case for Qualys VM?
Qualys VM is used for vulnerability scans for the internet and applications using application exchange. There are many applications. We also use the solution for asset management per team, and the ...
See all answers
What do you like most about Qualys VMDR?
I like that we have many scanners and channels that don't overload. It helps us scan and track easily. Also, the tagging system is good for tagging. We can still use QualysAgent task ID tools even ...
See all answers
What is your experience regarding pricing and costs for Qualys VMDR?
We have an annual contract for Qualys VMDR. I believe it's for either two years or five years.
See all answers
What do you like most about Tanium?
Tanium’s linear-chain architecture is valuable.
See all answers
What needs improvement with Tanium?
The reporting could be improved.
See all answers
What is your primary use case for Tanium?
We collect end-point data. We use it to make AI models and provide it to customers. I use Tanium’s sensors, collect data, and develop dashboards. The sensors have many data types. If we need differ...
See all answers
 

Comparisons

Tenable Nessus vs Qualys VMDR Logo
Tenable Nessus vs Qualys VMDR
Compared 25% of the time
Tenable Security Center vs Qualys VMDR Logo
Tenable Security Center vs Qualys VMDR
Compared 10% of the time
Rapid7 InsightVM vs Qualys VMDR Logo
Rapid7 InsightVM vs Qualys VMDR
Compared 8% of the time
Microsoft Defender Vulnerability Management vs Qualys VMDR Logo
Microsoft Defender Vulnerability Management vs Qualys VMDR
Compared 6% of the time
Wiz vs Qualys VMDR Logo
Wiz vs Qualys VMDR
Compared 4% of the time
More Qualys VMDR Competitors
CrowdStrike Falcon vs Tanium Logo
CrowdStrike Falcon vs Tanium
Compared 17% of the time
Microsoft Defender for Endpoint vs Tanium Logo
Microsoft Defender for Endpoint vs Tanium
Compared 12% of the time
Microsoft Configuration Manager vs Tanium Logo
Microsoft Configuration Manager vs Tanium
Compared 8% of the time
ServiceNow Discovery vs Tanium Logo
ServiceNow Discovery vs Tanium
Compared 7% of the time
Tenable Security Center vs Tanium Logo
Tenable Security Center vs Tanium
Compared 6% of the time
More Tanium Competitors
 

Product Reports

Buyer's Guide
Qualys VMDR
June 2024
Qualys VMDR reportDownload Qualys VMDR product report
Buyer's Guide
Tanium
May 2024
Tanium reportDownload Tanium product report
 

Also Known As

Qualys VM, QualysGuard VM, Qualys Asset Inventory, Qualys Container Security, Qualys Virtual Scanner Appliance
No data available
 

Learn More

Qualys
Tanium
 

Overview

Vulnerability Management, Detection, and Response (VMDR) is a cornerstone product of the Qualys TruRisk Platform and a global leader in the enterprise-grade vulnerability management (VM) vendor space. With VMDR, enterprises are empowered with visibility and insight into cyber risk exposure - making it easy to prioritize vulnerabilities, assets, or groups of assets based on business risk. Security teams can take action to mitigate risk, helping the business measure their actual risk exposure over time. 

Qualys VMDR offers an all-inclusive risk-based vulnerability management solution to prioritize vulnerabilities and assets based on risk and business criticality. VMDR seamlessly integrates with configuration management databases (CMDB), Qualys Patch Management, Custom Assessment and Remediation (CAR), Qualys TotalCloud and other Qualys and non-Qualys solutions to facilitate vulnerability detection and remediation across the entire enterprise.

With VMDR, users are empowered with actionable risk insights that translate vulnerabilities and exploits into optimized remediation actions based on business impact. Qualys customers can now aggregate and orchestrate data from the Qualys Threat Library, 25+ threat intelligence feeds, and third-party security and IT solutions, empowering organizations to measure, communicate, and eliminate risk across on-premises, hybrid, and cloud environments.

Tanium Endpoint Platform reduces security risk, improves agility & increases efficiency, a fundamentally new approach to endpoint security's threat detection, indicent response, vulnerability assessment and configuration compliance & with management's software distribution, asset utilization, asset inventory and patch management.

 

Sample Customers

Agrokor Group, American Specialty Health, American State Bank, Arval, Life:), Axway, Bank of the West, Blueport Commerce, BSkyB, Brinks, CaixaBank, Cartagena, Catholic Health System, CEC Bank, Cegedim, CIGNA, Clickability, Colby-Sawyer College, Commercial Bank of Dubai, University of Utah, eBay Inc., ING Singapore, National Theatre, OTP Bank, Sodexo, WebEx
JPMorgan Chase, eBay, Amazon, US Bank, MetLife, pwc, Cerner, Delphi, MGM Grand, New York Life
Buyer's Guide
Qualys VMDR vs. Tanium
March 2023
Free Report: Qualys VMDR vs. Tanium
Find out what your peers are saying about Qualys VMDR vs. Tanium and other solutions. Updated: March 2023.
DOWNLOAD NOW
787,779 professionals have used our research since 2012.
See our Qualys VMDR vs. Tanium report.

We monitor all Risk-Based Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.