Try our new research platform with insights from 80,000+ expert users

Arctic Wolf Managed Risk vs Checkmarx One comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Oct 9, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Zafran Security
Sponsored
Ranking in Vulnerability Management
16th
Average Rating
9.6
Reviews Sentiment
7.8
Number of Reviews
6
Ranking in other categories
Continuous Threat Exposure Management (CTEM) (1st)
Arctic Wolf Managed Risk
Ranking in Vulnerability Management
31st
Average Rating
8.6
Reviews Sentiment
5.9
Number of Reviews
9
Ranking in other categories
Risk-Based Vulnerability Management (11th)
Checkmarx One
Ranking in Vulnerability Management
23rd
Average Rating
7.6
Reviews Sentiment
6.9
Number of Reviews
71
Ranking in other categories
Application Security Tools (3rd), Static Application Security Testing (SAST) (3rd), Container Security (22nd), Static Code Analysis (3rd), API Security (5th), Dynamic Application Security Testing (DAST) (4th), DevSecOps (5th), Risk-Based Vulnerability Management (9th)
 

Mindshare comparison

As of September 2025, in the Vulnerability Management category, the mindshare of Zafran Security is 1.0%, up from 0.1% compared to the previous year. The mindshare of Arctic Wolf Managed Risk is 1.3%, up from 0.7% compared to the previous year. The mindshare of Checkmarx One is 0.9%, up from 0.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Vulnerability Management Market Share Distribution
ProductMarket Share (%)
Zafran Security1.0%
Checkmarx One0.9%
Arctic Wolf Managed Risk1.3%
Other96.8%
Vulnerability Management
 

Featured Reviews

Israel Cavazos Landini - PeerSpot reviewer
Weekly insights and risk analysis facilitate informed security decisions
I appreciate the weekly insights Zafran provides, which include critical topics for networks and IT security, allowing us to evaluate which insights apply to our environment. The organization score feature is valuable to keep the leadership team updated on how our infrastructure fares security-wise. The applicable risk level versus base risk level feature is beneficial because prior to Zafran, we only used the base risk level, but now understand that risk depends on the asset itself. Zafran is an excellent tool.
Jared Kruger - PeerSpot reviewer
Helps to conduct vulnerability scans but needs to add more integrations
There are companies that do vulnerability scans. However, what adds value is when two experts come and sit with you to scan and patch the vulnerabilities. Any 50-member or small company that has an IT footprint carries risk from a cybersecurity perspective. These companies use tools but don't have the talent to leverage them.
Syed Hasan - PeerSpot reviewer
Partner experiences excellent technical support and seamless initial setup
In my opinion, if we are able to extract or show the report, and because everything is going towards agent tech and GenAI, it would be beneficial if it could get integrated with our code base and do the fix automatically. It could suggest how the code base is written and automatically populate the source code with three different solution options to choose from. This would be really helpful.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"We are able to see the real risk of a vulnerability on our environment with our security tools."
"We saw benefits from Zafran Security almost immediately after deploying it."
"Zafran is an excellent tool."
"Zafran has become an indispensable tool in our cybersecurity arsenal."
"Overall, we have seen about eighty-seven percent reduction of the number of vulnerabilities that require urgency to remediate, specifically the number of criticals."
"The reporting is really good from what I've seen so far."
"I appreciate the professionalism of the tool and have faith in the results it delivers."
"This solution has made huge strides in improving the awareness of our end users."
"There are companies that do vulnerability scans. However, what adds value is when two experts come and sit with you to scan and patch the vulnerabilities. Any 50-member or small company that has an IT footprint carries risk from a cybersecurity perspective. These companies use tools but don't have the talent to leverage them."
"We have a patch management solution that scans for any patches that can be applied and then applies these patches, but it doesn't hit everything. It also doesn't find all misconfigurations and things like that. Arctic Wolf Managed Risk kind of fills in the gaps and makes us aware of vulnerabilities or misconfigurations that exist out there. It does an agent scan for software versions and compares them to what CVs are out there and lets us know."
"The customer support is incredible."
"I appreciate the professionalism of the tool and have faith in the results it delivers."
"We get access to quarterly reviews with their team."
"Apart from software scanning, software composition scanning is valuable."
"Compared to the solutions we used previously, Checkmarx has reduced our workload by almost 75%."
"The most valuable feature for me is the Jenkins Plugin."
"The ability to track the vulnerabilities inside the code (origin and destination of weak variables or functions)."
"The features and technologies are very good. The flexibility and the roadmap have also been very good. They're at the forefront of delivering the additional capabilities that are required with cloud delivery, etc. Their ability to deliver what customers require and when they require is very important."
"Most valuable features include: ease of use, dashboard. interface and the ability to report."
"It is a stable product."
"I have seen a return on investment from Checkmarx One."
 

Cons

"I think the ability to have some enhanced reporting capabilities is something they can improve on, as they have good reports but we have asked for some specific reporting enhancements."
"Initially, we were somewhat concerned about the scalability of Zafran due to our large asset count and the substantial amount of information we needed to process."
"The dashboarding and reporting functionality of Zafran Security is an area that definitely could use some improvements."
"It could be easier to use. They could present things in a little bit more ranked order rather than kind of giving you everything out there. It should highlight the really important stuff and make it easier to get to good rather than perfect."
"The major area for improvement is the lack of a patch management feature to resolve some of the vulnerabilities detected."
"Arctic Wolf Managed Risk needs to add more integrations."
"As far as the product is concerned, I would really like the scanning feature to let us know that a threat has been addressed once we apply the relevant patch. We are not seeing this currently when running a scan."
"The presentation of the data could be improved."
"The scalability could improve."
"The presentation of the data could be improved. I believe they have significant room for improvement, particularly in making better analysis of the vulnerability data and presenting those data more effectively."
"The best way to take this product to the next level would be to implement a patch management solution."
"C, C++, VB and T-SQL are not supported by this product. Although, C and C++ were advertised as being supported."
"When we first ran it on a big project, there wasn't enough memory on the computer. It originally ran with eight gigabytes, and now it runs with 32. The software stopped at some point, and while I don't think it said it ran out of memory, it just said "stopped" and something else. We had to go to the logs and send them to the integrator, and eventually, they found a memory issue in the logs and recommended increasing the memory. We doubled it once, and it didn't seem enough. We doubled it again, and it helped."
"The solution's user interface could be improved because it seems outdated."
"You can't use it in the continuous delivery pipeline because the scanning takes too much time."
"We want to have a holistic view of the portfolio-level dashboard and not just an individual technical project level."
"Checkmarx needs improvement in its Dynamic Application Security Testing (DAST) and API security features."
"The validation process needs to be sped up."
"I would like to see the tool’s pricing improved."
 

Pricing and Cost Advice

Information not available
"The price of Arctic Wolf Managed Risk is reasonable compared to the competition."
"Arctic Wolf Managed Risk is reasonably priced and I rate it a four out of ten."
"It depends on the company size quite a bit."
"The license has a vague language around P1 issues and the associated support. Make sure to review these in order to align them with your organizational policies."
"Before implementing the product I would evaluate if it is really necessary to scan so many different languages and frameworks. If not, I think there must be a cheaper solution for scanning Java-only applications (which are 90% of our applications)."
"This solution is expensive. The customized package allows you to buy additional users at any time."
"For around 250 users or committers, the cost is approximately $500,000."
"I would rate the solution’s pricing an eight out of ten. The tool’s pricing is higher than others and it is for the license alone."
"​Checkmarx is not a cheap scanning tool, but none of the security tools are cheap. Checkmarx is a powerful scanning tool, and it’s essential to have one of these products."
"If you want more, you have to pay more. You have to pay for additional modules or functionalities."
"The pricing is competitive and provides a lower TCO (total cost of ownership) for achieving application security."
report
Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.
867,676 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
11%
Computer Software Company
10%
Manufacturing Company
7%
Government
6%
Computer Software Company
11%
Financial Services Firm
9%
Manufacturing Company
9%
Government
7%
Financial Services Firm
20%
Computer Software Company
13%
Manufacturing Company
10%
Government
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
By reviewers
Company SizeCount
Small Business6
Midsize Enterprise3
By reviewers
Company SizeCount
Small Business30
Midsize Enterprise9
Large Enterprise38
 

Questions from the Community

What is your experience regarding pricing and costs for Zafran Security?
Since we stood Zafran Security up in our private cloud, we handle the maintenance on our side. As we opted not to use...
What needs improvement with Zafran Security?
In terms of areas for improvement, Zafran Security is doing a really great job as a new and emerging company. Oftenti...
What is your primary use case for Zafran Security?
My use cases for Zafran Security revolve around two primary areas. One is around vulnerability management and priorit...
What do you like most about Arctic Wolf Managed Risk?
There are companies that do vulnerability scans. However, what adds value is when two experts come and sit with you t...
What needs improvement with Arctic Wolf Managed Risk?
There are some challenges with integrations in Arctic Wolf Managed Risk. Some integrations could be improved to enhan...
What alternatives are there for Fortify WebInspect and Fortify SCA?
I would like to recommend Checkmarx. With Checkmarx, you are able to have an all in one solution for SAST and SCA as ...
What do you like most about Checkmarx?
Compared to the solutions we used previously, Checkmarx has reduced our workload by almost 75%.
What is your experience regarding pricing and costs for Checkmarx?
The pricing is relatively expensive due to the product's quality and performance, but it is worth it.
 

Overview

 

Sample Customers

Information Not Available
Zelle LLP, DNI Corp, Roper Pump, Baker Sterchi Cowden & Rice
YIT, Salesforce, Coca-Cola, SAP, U.S. Army, Liveperson, Playtech Case Study: Liveperson Implements Innovative Secure SDLC
Find out what your peers are saying about Arctic Wolf Managed Risk vs. Checkmarx One and other solutions. Updated: August 2025.
867,676 professionals have used our research since 2012.