AWS Security Hub vs RSA enVision comparison

The compared Amazon Web Services (AWS) and RSA solutions aren't in the same category. Amazon Web Services (AWS) is ranked #11 in CSPM , with an average rating of 7.7, and holds a 2.6% mindshare in the category. RSA is ranked #32 in SIEM , with an average rating of 9.0, and holds a 0.8% mindshare. Additionally, 89% of Amazon Web Services (AWS) users are willing to recommend the solution, compared to 83% of RSA users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Jun 3, 2026

RSA enVision and AWS Security Hub are competing security solutions. AWS Security Hub appears to have the upper hand due to its advanced features and integration capabilities.

Features: RSA enVision offers robust data aggregation, strong compliance reporting, and cost efficiency. AWS Security Hub provides comprehensive threat analysis, automated action capabilities, and extensive integration with AWS services.

Room for Improvement: RSA enVision could enhance scalability, improve dashboard flexibility, and refine its user interface. AWS Security Hub needs better user documentation, simplified cloud integration, and enhanced multi-cloud support.

Ease of Deployment and Customer Service: RSA enVision has straightforward deployment but involves significant manual configuration. AWS Security Hub integrates seamlessly with existing AWS services and offers faster setup. Both products have well-regarded customer service, but AWS Security Hub’s support is noted for promptness and expertise.

Pricing and ROI: RSA enVision has competitive pricing attractive for budget-conscious users and offers good ROI for its feature set. AWS Security Hub has higher initial setup costs but provides stronger ROI through superior automation and integration features.

To learn more, read our detailed Cloud Security Posture Management (CSPM) Report (Updated: June 2026).

Buyer's Guide

Cloud Security Posture Management (CSPM)

June 2026

Download the complete report

Helped 902,417 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Qualys TotalCloud

Mindshare comparison

Cloud Security Posture Management (CSPM) Mindshare Distribution
Product	Mindshare (%)
AWS Security Hub	2.6%
Wiz	10.7%
Prisma Cloud by Palo Alto Networks	8.0%
Other	78.7%

Cloud Security Posture Management (CSPM)

Security Information and Event Management (SIEM) Mindshare Distribution
Product	Mindshare (%)
RSA enVision	0.8%
Splunk Enterprise Security	7.3%
IBM Security QRadar	5.3%
Other	86.6%

Security Information and Event Management (SIEM)

Featured Reviews

Robert Orłowski

IT Security Expert at Alior Bank S.A.

Unified risk scoring has improved our cloud visibility and simplifies remediation priorities

Qualys TotalCloud provides unified vulnerability and threat assessment across both IAS and SaaS. This solution provides a single prioritized view of risk, which helps reduce the work I would have to do. We are no longer based on CVSS; we are based on Qualys risk scoring, which is based on CVSS plus internal findings made by Qualys, and then assigns its own score. The TruRisk insight feature has found a small number of assets with high vulnerability scores, though I am cautious since some information is classified. Qualys TotalCloud has positively impacted our bank's performance, and we have definitely seen benefits after implementing this solution.

Read full review

Karthik Ekambaram

Director at Scybers

Has helped identify misconfigurations and prioritize risks but lacks multi-cloud support and deeper integration features

AWS Security Hub cannot scale up to multiple different cloud environments; it only works for AWS. There are other products in the market for CSPM that can give you multi-cloud environment misconfigurations, even Microsoft for that matter. Regarding the integration of AWS Security Hub with third-party tools, I am not certain whether we can integrate them, but there is no need to do so. However, AWS Security Hub cannot integrate with other cloud providers, so it only supports the AWS environment. The compliance checks within AWS Security Hub are good, but we don't use them much. We utilize compliance frameworks such as CIS compliance frameworks and ISO 27017 framework, which are beneficial, but it can improve in other areas too, such as including NIST and other frameworks beyond just ISO and CIS. Improvements can be applicable for scalability, particularly on integration with multi-cloud environments, and compliance frameworks can be added for more variety as well. The unified dashboard in AWS Security Hub is adequate; I cannot say it is exceptional, but the content available in the dashboards is satisfactory for now.

Read full review

Simon Fontaine

Président at ARS Solutions

Support both French and English, which is important for us and adapted to the evolving security landscape over time in my experience

You need a skilled engineer to deploy it because you can do anything with this tool. You can see everything on the network. A good engineer will be surprised and have fun using this tool because it's very powerful. Deployment process: You need to build a recipe/layout when you want to deploy something. Once the recipe is done, you just have to copy it. So you really need a good engineer at first, but then any other technician can copy the recipe. You don't need to be an expert once the recipe is finalized. So, once you have it set up, it's easy to deploy. But you need a good engineer to deploy it correctly. You will get alerts from the system, but if you want to fully explore and maximize the tool, the engineering needs are different.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Qualys TotalCloud's most valuable feature is its ability to link clusters of assets, providing a clear model of deployments, vulnerabilities, and statuses."

"The best features in Qualys TotalCloud include the total asset management of the cloud environment. It is very easy to export the report and see the vulnerabilities related to the cloud specifically."

"Qualys TotalCloud has improved our security posture."

"The most valuable feature is the consolidated information that it provides from various platforms."

"With TotalCloud, we can scan through the API. If we are not able to deploy cloud agents on the machine, we can use the API."

"I would definitely recommend Qualys TotalCloud to other users."

"The platform's unified view of the organization proves particularly valuable for leadership team meetings."

"We were able to realize its benefits within 24 to 48 hours."

More Qualys TotalCloud pros

"I like that AWS Security Hub currently has several good features, around four or five. The technical support for AWS Security Hub is also responsive."

"The most valuable feature of the solution stems from the fact that it is easy to manage...It is a scalable solution."

"Cloudposse is a valuable feature as it guarantees my security."

"Within AWS Security Hub, there is a feature for aggregating and prioritizing security findings which allows for better risk prioritization based on misconfiguration, as they know AWS thoroughly."

"I really like the seamless integration with the AWS account structure. It can even be made mandatory as part of the landing zone. These are great features. And there's a single pane of glass for the entire account."

"Finding out if your infrastructure is secure is a valuable feature."

"The solution shows us our compliance score."

"AWS Security Hub has very good integration features. It allows for AWS native services integration, and it helps us to integrate some of the services outside of AWS. They have partners, such as Amazon Preferred Network Partners (APN). If you have different security tools around APN, we can integrate those findings with AWS Security Hub reducing the need to refer to different portals or different UIs. You can have AWS Security Hub act as a single common go-to dashboard."

More AWS Security Hub pros

"The most valuable feature is the management features. It's capable of managing large enterprises."

"We developed around this solution and received excellent support from the company."

"The most valuable feature of this solution is the reporting."

"RSA enVision provides the full system visibility of your events within your IT ecosystem."

"The ease of log collection and stability of the platform are the most valuable features."

"The custom dashboard and correlation alerts in this solution improved our incident response process."

"The configuration part is very easy...The technical support was sincere in their responses...I rate the technical support a nine out of ten."

Cons

"There is room for improvement in vulnerability scanning, particularly for PaaS environments. Currently, Qualys does not have full access to these instances, which limits its effectiveness."

"Qualys's ticketing system can be confusing when assigning tasks to individuals, and support could be improved by offering instant call solutions with engineers in addition to ticket replies."

"Regarding technical support from Qualys, they respond, but the response time can be too long. Sometimes we need to wait weeks for solutions to simple questions."

"With the growing integration of AI, I would like Qualys to enhance its service offerings to better accommodate AI-related risks."

"There should be improvement from a dashboard perspective when collecting and showcasing data to lead management."

"The vulnerability part is good, but the policy compliance module needs improvement because it involves a lot of manual work. Specifically, the remediation part of the controls requires enhancements."

"I would like the ability to disable certain default built-in policies as they can be misleading when creating dashboards. That is the top one."

"Overall, we are satisfied with it. However, the response part of the Cloud Detection and Response (CDR) module can be improved. It is not yet in place according to requirements; it is not completely available even though the module has been released."

More Qualys TotalCloud cons

"It is not flexible for multi-cloud environments."

"Many findings are too generic or irrelevant to the environment, which can lead to false positives."

"AWS Security Hub cannot scale up to multiple different cloud environments; it only works for AWS."

"The solution is not wholly self-sufficient."

"Right now, there are some difficulties we're facing with AWS Security Hub, and we need our central team to mitigate the issues."

"From an improvement perspective, there is a need to add more compliance since, right now, AWS Security Hub only provides four to five compliances to control the tool."

"There is room for improvement in implementing AI capabilities. It would be beneficial for Security Hub to implement preventative measures and to directly apply recommendations instead of just suggesting them."

"We need more granular-level customizations to enable or disable the rules in AWS Security Hub."

More AWS Security Hub cons

"The integration could be easier, it should support more products."

"Sometimes the investigation panel and reporting engine work very slowly."

"Whenever you perform the query, it takes too long."

"RSA enVision log manager is out of date and is not in use anymore."

"There is no future for this solution. It does not exist anymore."

"Licensing could be improved to be more oriented towards Managed Service Providers (MSPs)."

"In general, the solution currently isn't user-friendly."

Pricing and Cost Advice

"The cost is high, but it meets our organizational needs."

"Qualys TotalCloud offers good pricing that is affordable and competitive with the market. Our partnership also provides us with additional benefits."

"TotalCloud's price is about right where I would expect it to be."

"Qualys TotalCloud is cost-efficient and was selected for its value compared to other products."

"Qualys TotalCloud is expensive."

"While Qualys TotalCloud's pricing is currently acceptable, it is becoming increasingly expensive and may soon be considered overpriced."

"Its price seems higher compared to other tools, but it is worth it. If they could adjust the pricing and make it comparable with other tools, that would be great."

"Although Qualys TotalCloud is relatively expensive due to its unique automation features, its cost-effectiveness is rated an eight out of ten, with ten being the most costly."

More Qualys TotalCloud pricing and cost advice

"The price of the solution is not very competitive but it is reasonable."

"There are multiple subscription models, like yearly, monthly, and packaged."

"AWS Security Hub's pricing is pretty reasonable."

"AWS Security Hub is not an expensive tool. I would consider it to be a cheap solution. AWS Security Hub follows the PAYG pricing model, meaning you will have to pay for whatever you use."

"The cost is based on the number of compliances, core checks, and services required, and for more than 10,000 recommendations, the charge is just one dollar."

"The price of AWS Security Hub is average compared to other solutions."

"Security Hub is not an expensive solution."

"The pricing is fine. It is not an expensive tool."

"On a scale of one to ten, where one is low, and ten is high price, I rate the pricing a six."

"We no longer pay a licensing fee because it is out of date and don't pay for support."

See which vendors are best for you

Use our free recommendation engine to learn which Cloud Security Posture Management (CSPM) solutions are best for your needs.

See recommendations

902,417 professionals have used our research since 2012.

Comparison Review

it_user186927

Director of Operations at a comms service provider with 10,001+ employees

Feb 16, 2015

Cybereason vs. Interset vs. SQRRL

Capture DB - they all use NoSQL db and hence solve the ad hoc query and 'go back in time' problem with current best of breed SIEM and DLP solutions that rely on real time analysis of incoming logs (and don't store them). This means deeper and quicker iterative threat analysis and assessment…

Read full review

Top Industries

By visitors reading reviews

Manufacturing Company

17%

Financial Services Firm

14%

Construction Company

Comms Service Provider

Financial Services Firm

12%

Manufacturing Company

10%

Computer Software Company

Comms Service Provider

14%

Construction Company

13%

Manufacturing Company

11%

Retailer

10%

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	10
Midsize Enterprise	3
Large Enterprise	29

By reviewers
Company Size	Count
Small Business	9
Midsize Enterprise	5
Large Enterprise	14

No data available

Questions from the Community

What is your experience regarding pricing and costs for Qualys TotalCloud?

The price is very expensive, actually.

See all answers

What needs improvement with Qualys TotalCloud?

Areas that need improvement in every solution include the remediation part. The remediation steps should be simple en...

See all answers

What is your primary use case for Qualys TotalCloud?

Our use case involves the assets that we have under cloud, the assets exposed to the internet, and the internal appli...

See all answers

Which is better - Azure Sentinel or AWS Security Hub?

We like that Azure Sentinel does not require as much maintenance as legacy SIEMs that are on-premises. Azure Sentinel...

See all answers

What needs improvement with AWS Security Hub?

I do not see any areas for improvement in AWS Security Hub itself, but the cost factor is something that is the main ...

See all answers

What is your primary use case for AWS Security Hub?

AWS Security Hub is something I have used daily as it is a part of my job for cloud security purposes. If you are dea...

See all answers

What needs improvement with RSA enVision?

Licensing could be improved to be more oriented towards Managed Service Providers (MSPs). Perhaps offering different ...

See all answers

What advice do you have for others considering RSA enVision?

Overall, I would rate it a nine out of ten. I recommend using it, but it also depends on the needs and the budget. If...

See all answers

What is your experience regarding pricing and costs for RSA enVision?

It's competitive, but they need to adapt to MSPs. Maybe that's not their target market, though.

See all answers

Comparisons

Wiz vs Qualys TotalCloud

Compared 11% of the time

Microsoft Defender for Cloud vs Qualys TotalCloud

Compared 8% of the time

Prisma Cloud by Palo Alto Networks vs Qualys TotalCloud

Compared 6% of the time

JupiterOne vs Qualys TotalCloud

Compared 5% of the time

Varonis Platform vs Qualys TotalCloud

Compared 3% of the time

More Qualys TotalCloud Competitors

Microsoft Sentinel vs AWS Security Hub

Compared 33% of the time

Prisma Cloud by Palo Alto Networks vs AWS Security Hub

Compared 6% of the time

Wiz vs AWS Security Hub

Compared 4% of the time

Microsoft Defender for Cloud vs AWS Security Hub

Compared 4% of the time

JupiterOne vs AWS Security Hub

Compared 2% of the time

More AWS Security Hub Competitors

Splunk Enterprise Security vs RSA enVision

Compared 18% of the time

NetWitness Platform vs RSA enVision

Compared 10% of the time

Securonix Next-Gen SIEM vs RSA enVision

Compared 5% of the time

Wazuh vs RSA enVision

Compared 5% of the time

IBM Security QRadar vs RSA enVision

Compared 5% of the time

More RSA enVision Competitors

Product Reports

Buyer's Guide

Qualys TotalCloud

June 2026

Download Qualys TotalCloud product report

Buyer's Guide

AWS Security Hub

June 2026

Download AWS Security Hub product report

Buyer's Guide

Security Information and Event Management (SIEM)

June 2026

Download RSA enVision product report

Also Known As

Qualys TotalCloud with FlexScan

SQRRL

No data available

Overview

Qualys TotalCloud enhances security posture across cloud environments with continuous monitoring, vulnerability management, and risk visualization, ensuring efficient threat assessment and automated remediation for improved cyber risk reduction.

Qualys TotalCloud offers a robust suite of security tools essential for organizations managing multi-cloud infrastructures. By integrating cloud accounts and automating workflows, it supports AWS, Azure, and GCP, offering comprehensive vulnerability management and zero-day detection. The platform's user-friendly design, combined with its extensive risk management and unified threat assessment capabilities, enables organizations to prioritize and remediate vulnerabilities effectively. TruRisk Insights provides clear insights on cyber risks, while the automation options streamline patch management and scanning processes. API integration across IaaS and SaaS environments further enhances resource allocation efficiency and saves time, addressing misconfigurations across cloud environments.

What are the most important features of Qualys TotalCloud?

Accurate Vulnerability Reports: Delivers precise and actionable insights for risk mitigation.
Zero-Day Detection: Identifies and addresses zero-day vulnerabilities proactively.
Unified Threat Assessment: Offers comprehensive evaluation of threats across the environment.
Extensive Risk Management: Manages risks effectively with advanced insights and prioritization.
Continuous Monitoring: Provides non-stop surveillance for vulnerabilities and threats.
Cloud-Native Automation: Streamlines processes and reduces manual efforts using automation.
FlexScan for Internet-Facing VMs: Scans external VMs efficiently to detect vulnerabilities.
Dashboard Risk Visualization: Clear visualization helps prioritize vulnerabilities.

What benefits and ROI should users look for?

Improved Security Posture: Enhances threat detection and response across clouds.
Time Savings: Automation reduces time spent on manual vulnerability management.
Resource Efficiency: Better allocation of resources through streamlined workflows.
Enhanced Risk Prioritization: Focus on critical vulnerabilities for effective mitigation.
Integrated Cloud Accounts: Facilitates seamless cloud management and security.

Qualys TotalCloud is deployed in sectors needing rigorous vulnerability management, such as finance and healthcare. Companies utilize it to secure multi-cloud environments like AWS, Azure, and GCP, focus on compliance, and integrate security into CI/CD pipelines to detect and remedy threats pre-deployment.

Qualys

AWS Security Hub provides multi-account management and compliance checks alongside integrations with AWS services and third-party tools. It centralizes vulnerability tracking and risk prioritization, delivering real-time alerts for proactive security management.

AWS Security Hub enhances cloud security management through a centralized dashboard that monitors infrastructure resources and compliance scores, ensuring adherence to AWS standards. With integrations for vulnerability detection and security posture management, users can streamline security operations. While the platform offers notable benefits, areas for improvement include customization options for findings suppression and integration with multi-cloud environments.

What are the key features of AWS Security Hub?

Multi-Account Management: Seamlessly manage security across numerous accounts.
Compliance Checks: Stay aligned with standards such as PCI through automated reviews.
AWS Integrations: Connect effortlessly with AWS and third-party services to enhance security posture.
Real-Time Alerts: Quickly respond to potential threats with immediate notifications.
Risk Prioritization: Focus on critical vulnerabilities to enhance resource allocation.

What benefits should users expect from using AWS Security Hub?

Proactive Security: Early threat detection enables quicker mitigation strategies.
Cloud-Native Functionality: Utilize tools tailored for cloud environments.
Compliance Insights: Simplified compliance management provides transparency.
Ease of Use: Streamlined interface facilitates efficient security management.

Industries implementing AWS Security Hub leverage its capabilities for comprehensive security across multiple accounts and regions. Health, finance, and retail sectors benefit by automating compliance checks and monitoring security infrastructures. This service aids in identifying misconfigurations, tracking alerts, and ensuring infrastructure integrity during cyber incidents.

Amazon Web Services (AWS)

RSA enVision is a robust security information and event management (SIEM) platform designed to provide comprehensive log management and compliance support, helping organizations gain critical insights into their IT environments.

RSA enVision delivers a centralized platform that allows organizations to monitor, analyze, and respond to security threats efficiently. It offers detailed visibility into network operations by collecting and analyzing log data from diverse sources. This enables organizations to enhance their threat detection and response capabilities significantly. The integration of automated processes in RSA enVision streamlines compliance reporting and audit procedures, thereby reducing complexity in handling security incidents.

What are the key features of RSA enVision?

Log Management: Centralizes log data collected from multiple sources for easy analysis and monitoring.
Real-Time Monitoring: Provides continuous real-time insights into network activities to identify potential security threats.
Automated Compliance Reporting: Streamlines generation of compliance reports to ensure adherence to industry standards.
Event Correlation: Analyzes log data to identify patterns indicating potential security incidents.

Which benefits should users look for in RSA enVision reviews?

Enhanced Security Posture: Better threat detection capabilities can significantly fortify an organization's security infrastructure.
Operational Efficiency: Automating tasks eases the workload on IT teams, allowing them to focus on critical tasks.
Cost Reduction: Efficient log management and reporting can lower operational costs and improve overall resource utilization.
Ease of Integration: Seamless integration with existing IT systems ensures smooth deployment without major disruptions.

RSA enVision is implemented across diverse industry sectors, including healthcare, finance, and retail, where security and compliance are critical. By offering tailored security insights and compliance aids, it helps organizations meet specific industry requirements efficiently and effectively. Financial institutions use RSA enVision for monitoring transaction logs, while healthcare organizations benefit from its ability to manage sensitive patient data logs safely.

RSA

Sample Customers

Information Not Available

Edmunds, Frame.io, GoDaddy, Realtor.com

BPS (SUISSE), Hypovereinsbank Germany, MAX Hamburgers, Infoplex, Neotel, Telus

Buyer's Guide

Cloud Security Posture Management (CSPM)

June 2026

Download Free Report

Find out what your peers are saying about Wiz, Palo Alto Networks, SentinelOne and others in Cloud Security Posture Management (CSPM). Updated: June 2026.

DOWNLOAD NOW

902,417 professionals have used our research since 2012.

We monitor all Cloud Security Posture Management (CSPM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.