Check Point CloudGuard Posture Management vs Qualys VM comparison

Cancel
You must select at least 2 products to compare!
Comparison Buyer's Guide
Executive Summary

We performed a comparison between Check Point CloudGuard Posture Management and Qualys VM based on real PeerSpot user reviews.

Find out what your peers are saying about Palo Alto Networks, Microsoft, Morphisec and others in CWPP (Cloud Workload Protection Platforms).
To learn more, read our detailed CWPP (Cloud Workload Protection Platforms) Report (Updated: October 2022).
654,658 professionals have used our research since 2012.
Featured Review
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The dashboard is intuitive. You know if you're compliant or not, and then it gives you a remediation plan.""It offers advanced detection of threats that can harm data from the cloud database.""The two most valuable features for us are the central firewall administrator and the real-time cloud compliance monitoring.""Alerts of cloud activity happening across all accounts is helpful.""Its easy implementation against Microsoft Azure was quite satisfactory.""The most valuable feature is the CloudBots for auto-remediation of security findings.""We can monitor each activity from our mobile devices, so there is complete visibility of our cloud traffic flows, with threat intelligence provided by Check Point.""The reporting is quite good. It is the most powerful aspect of this solution."

More Check Point CloudGuard Posture Management Pros →

"This solution gives us insight into our environment and improves our security. It helps us to maintain a good patching system whereby we know that XYZ is vulnerable within the system.""Qualys VM's most valuable feature is automatic detection.""The most recent is VMDR, which provides a comprehensive overview of how to detect, patch, and remediate specific vulnerabilities.""The most valuable features are vulnerability scanning, policy compliance scanning, and tablet for web application scanning.""The integrations for this solution are very good. I use a different product for virtual patching of vulnerabilities and Qualys integrates well with that product.""The most valuable feature is the ability to run different capabilities with the same agent. With only one agent, we can have EDR, vulnerability management, compliance and some basic SaaS security capabilities.""I find Qualys VM very robust, and it's very useful for vulnerability management and patch management. The value that it brings to my environment is economies of scale. There is no limitation on adding any endpoints. You go by the rule, and it's added once another endpoint is added to our environment. It's automatically installed, and it's less work from our end. It frees up my license automatically if I don't need an endpoint or if my machine is decommissioned. I like the dashboard displays because I don't see any duplication. The most important part is vulnerability management and prioritization. Unlike Symantec, it shows the kind of vulnerability I would want to patch first. It provides a holistic view of the kind of vulnerabilities and the ones I should remediate first. I don't have to do a scan; it just brings up those critical kinds of vulnerabilities like zero-day vulnerabilities and tells me to prioritize them. You have to prioritize these vulnerabilities first and go on with the rest. The dashboard shows me the ones that have been fixed, so I don't have to complete an aging report. The user experience and the graphical interface are good. As it's user-friendly and understandable on an executive level, it brings real value. We also use this solution because it's robust and flexibile.""The Vulnerability Management and Patch Management features are the most valuable features of this solution."

More Qualys VM Pros →

Cons
"Almost all features are good, however, they still require improvements to the code security portion on which integration with the major source code repository is required.""The false positives can be annoying at times.""In general, for the product to be successful, they need to improve security, and configuration detection.""The tool has a lot of potential, but today, it lacks a lot of Scripts/Bots for Azure.""Currently, worldwide, there are many companies of all sizes that do not understand the value that their data has, but even with all existing clouds, they also do not understand what the shared responsibility model is. They only assume that by having a cloud, the provider must ensure safety, when the truth is that the providers only secure their sites. Everything we do in the cloud and how we configure it is actually our responsibility.""It should have some options to activate API calls to the platform in the cloud, another improvement would be that when the rules are colonized and they want to be published.""Integration could be improved.""Currently, I would like this solution extended to cellular devices or tablets."

More Check Point CloudGuard Posture Management Cons →

"The IoT scan is not great.""I would like to see more accuracy in detections, better reporting capabilities, and better dashboard download capabilities.""Qualys could be improved in its overall performance compared to other vulnerability management or scanning tools.""Its integration with ServiceNow and other similar products is complicated and can be improved. It should also have virtual batching. They should support more standards and compliance requirements and more customizations. For policy compliance, they can add the standards required by the countries in the Middle East. Each country generates its own standards and frameworks, and those frameworks should be there in all products, not only in Qualys. The market here is huge, especially in the cybersecurity field. Qatar has a framework for Qatar 2022, and each and every company in the public or private sector has to follow the Qatar 2022 framework.""Qualys VM's machine learning and artificial intelligence features could be improved.""Qualys currently does not have any features for scanning SCADA, IoT, and Industrial Control Systems.""The reporting and the GUI need improvements.""Could use additional security for the app."

More Qualys VM Cons →

Pricing and Cost Advice
  • "The pricing is tremendous and super cheap. It is shockingly cheap for what you get out of it. I am happy with that. I hope that doesn't get reported back and they increase the prices. I love the pricing and the licensing makes sense. It is just assets: The more stuff that you have, the more you pay."
  • "Licensing and costs are straightforward, as they have a baseline of 100 workloads within one license and no additional charges."
  • "The license for CloudGuard Posture Management is about $80 a year, and it's based on your cloud footprint, not the number of users. So you could have a million users, and it doesn't matter."
  • "From a pricing perspective, they are pretty expensive."
  • "In the beginning, the price of Dome9 was cheap, whereas now it is not."
  • "Check Point CloudGuard Posture Management is always known as a good solution but an expensive one. When you're using Cisco, Check Point, or Palo Alto, you know that you will pay more, but you know that it will work."
  • More Check Point CloudGuard Posture Management Pricing and Cost Advice →

  • "They have recently changed the pricing model, which is now better than it was before."
  • "It is different for every company, but for us, it's every three years."
  • "Qualys is cheaper and more affordable than other solutions."
  • "The pricing and licensing for Qualys could be improved."
  • "We do see over $100,000 in terms of price, for mid-size programs. You likely will pay more than $100,000 without any discount. It is a bit pricey."
  • "I used to work there, so I never paid for the product. As an employee, we get a lifetime license for personal use, and that's what I'm using. It is a comprehensive platform, so there is a lot more to it. There could be other solutions that are probably a little bit cheaper, but it depends on what people need. Different people have different needs. It offers many things on the same platform. If you add all the things up, it should be cheaper, but I have not done any analysis specifically."
  • "There is a license for the use of this solution. We pay annually instead of monthly to receive a better discount on the price."
  • "Qualys VM is better suited for medium to large companies because the price can be too much for smaller customers."
  • More Qualys VM Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which CWPP (Cloud Workload Protection Platforms) solutions are best for your needs.
    654,658 professionals have used our research since 2012.
    Questions from the Community
    Top Answer:This solution has saved the company from unnecessary data loss that occurs due to cyber attacks.
    Top Answer:The setup cost is high, however, the pricing terms vary based on the size of an organization.
    Top Answer:There is no full support for bot management, and the company can work on that to enhance faster service delivery and enhance reliable security checkups. The reporting dashboard responds slowly, which… more »
    Top Answer:I mainly use Qualys VM for CSAM, to complement vulnerability management on our assets, and to check for intrusions through our email gateways.
    Top Answer:The thing I like most about Tenable Nessus is its ease of use. I also like that it has highly customizable scans. Compared to other tools I have used in the past, Nessus has more plugins/add-ons… more »
    Top Answer:Hi Yao, The two products are totally different solutions. Pentera is an Automated Penetration Testing platform acting as a pentester in your environment while Qualys VMDR is a Vulnerability… more »
    Ranking
    Views
    6,317
    Comparisons
    4,397
    Reviews
    18
    Average Words per Review
    712
    Rating
    8.7
    3rd
    Views
    14,546
    Comparisons
    11,673
    Reviews
    25
    Average Words per Review
    417
    Rating
    8.3
    Comparisons
    Also Known As
    Dome9
    QualysGuard VM
    Learn More
    Overview

    Check Point CloudGuard Posture Management is a CWPP (Cloud Workload Protection Platform) tool that enables your organization to automate governance across multi-cloud assets and services. These services include visualization and assessment of security posture, misconfiguration detection, and enforcement of security best practices and compliance frameworks. This solution is one of the leading cloud native security solutions on the market and is suitable for companies of all sizes.

    Check Point CloudGuard Posture Management Features

    Check Point CloudGuard Posture Management has many valuable key features. Some of the most useful ones include:

    • Network security
    • Application protection
    • Workload protection
    • Posture management
    • Cloud intelligence

    Check Point CloudGuard Posture Management Benefits

    There are many benefits to implementing Check Point CloudGuard Posture Management. Some of the biggest advantages the solution offers include:

    • Support cloud native environments: Check Point CloudGuard Posture Management provides cloud security and compliance posture management for cloud-native environments, including AWS, Azure, Google Cloud, Alibaba Cloud, and Kubernetes.
    • Visibility across your entire cloud infrastructure: The solution’s powerful network and asset visualization, including network topology and firewalls, allow you to discover any vulnerabilities, compromised workloads, open ports, or misconfigurations in real time.
    • Custom rules and restrictions: With Check Point CloudGuard Posture Management you can quickly create custom rules with unique restrictions and governance practices using the solution’s Governance Specification Language (GSL), which supports seamless auto deployment for all types of programming languages.
    • Protection against compromised credentials and identity theft in the Cloud: Check Point CloudGuard Posture Management offers better protection and control over IAM users and roles, allowing administrators to easily manage granular permissions across entire cloud environments.
    • Manage posture everywhere across multi-cloud environments: By implementing the solution, you can manage the security and compliance of your public cloud environments at any scale. Additionally, the solution requires no software installation and no agents to manage. All you need to do is specify policies once across multiple clouds, and the system uses underlying cloud controls to implement the policy on each cloud.

    Reviews from Real Users

    Below are some reviews and helpful feedback written by PeerSpot users currently using the Check Point CloudGuard Posture Management solution.

    An Advisory Information Security Analyst at a financial services firm says, "Security visibility accuracy is tremendous, letting us see who is trying to access what. I love the work involved in maintaining and scaling security services and configurations across multiple public clouds using this solution, versus using native native cloud security controls. It is so much better.”

    PeerSpot user Schillebeeks B., Owner at AD Internet Consulting, mentions, "The two most valuable features for us are the central firewall administrator and the real-time cloud compliance monitoring."

    Another reviewer, a Senior Security Engineer at an insurance company, states, "The audit feature is the most valuable for compliance reasons. It gives you a full view of the whole environment, no matter how many accounts you have in AWS or Azure. You have it all under one umbrella."

    Mantu S., Sr. Technology Architect at Incedo Inc., comments, "Auto remediation is a very effective feature that helps ensure less manual intervention."

    Qualys VM is a vulnerability management tool that is cloud-based and gives you immediate, global visibility into where your IT systems might be vulnerable to the latest internet threats and how to protect them. The solution uses real-time threat intelligence, advanced correlation, and powerful machine learning models to automatically prioritize the riskiest vulnerabilities on your most critical assets – reducing potentially thousands of discovered vulnerabilities. Qualys VM frees you from the substantial cost, resource, and deployment issues associated with traditional software products.

    Qualys VM Features

    Qualys VM has many valuable key features. Some of the most useful ones include:

    • Agent-based detection: Qualys VM works with Qualys Cloud Agents, extending its network coverage to assets that can’t be scanned. With this feature, vulnerabilities are found faster and network impact is minimal.
    • Constant monitoring and alerts: Teams are proactively alerted about potential threats so problems can be tackled before turning into breaches. You can tailor alerts and be notified about general changes or specific circumstances.
    • Comprehensive coverage and visibility: Qualys VM scans and identifies vulnerabilities continuously in order to protect your IT assets on premises, in the cloud, and mobile endpoints. In addition, its executive dashboard displays an overview of your security posture and access to remediation details. The solution also generates custom role-based reports for multiple stakeholders, including automatic security documentation for compliance auditors.

    Qualys VM Benefits

    There are many benefits to implementing Qualys VM. Some of the biggest advantages the solution offers include:

    • Lower and more predictable TCO: The solution doesn’t require any capital expenditures, extra human resources, or infrastructure or software to deploy and manage.
    • Full clarity: Qualys VM gives you full clarity into your data center assets, identifies their vulnerabilities, prioritizes remediation, and assesses IT compliance.
    • Accurate, prioritized results: The solution features a powerful data analysis, correlation, and reporting engine.
    • Advanced protection: Because Qualys VM constantly monitors your environment, it can flag traffic anomalies and alert you of any compromising indicators.
    • Scan for vulnerabilities everywhere: You can scan systems anywhere from the same console, including your perimeter, your internal network, and cloud environments. Since Qualys separates scanning from reporting, you can create custom reports showing each audience just the level of detail it needs to see.

    Reviews from Real Users

    Qualys VM is a solution that stands out when compared to many of its competitors. Some of its major advantages are that it offers good continuous monitoring, reporting functionality, and other valuable features like a priority mechanism.

    A Senior Security Consultant at a tech services company says, “Continuous Monitoring is excellent because it is entirely dependent on the agent, and the Agent Scan, is also quite good. I also like the asset tagging, asset grouping features, and the dashboard, because we can customize and create our own dashboard.”

    Another reviewer, an Information Security Manager at an outsourcing company comments, “The reporting functionality is great. It's more accurate and effective to get a picture of what the vulnerabilities are in a more distributed workforce.”

    Additionally, a Cyber Security Director at a manufacturing company mentions, “The prioritization mechanism is the most valuable aspect of the solution.” And also adds, “The initial setup is straightforward and technical support is great.”

    Offer
    Learn more about Check Point CloudGuard Posture Management
    Learn more about Qualys VM
    Sample Customers
    Symantec, Citrix, Car and Driver, Virgin, Cloud Technology Partners
    Agrokor Group, American Specialty Health, American State Bank, Arval, Life:), Axway, Bank of the West, Blueport Commerce, BSkyB, Brinks, CaixaBank, Cartagena, Catholic Health System, CEC Bank, Cegedim, CIGNA, Clickability, Colby-Sawyer College, Commercial Bank of Dubai, University of Utah, eBay Inc., ING Singapore, National Theatre, OTP Bank, Sodexo, WebEx
    Top Industries
    REVIEWERS
    Financial Services Firm33%
    Security Firm14%
    Insurance Company10%
    Computer Software Company10%
    VISITORS READING REVIEWS
    Computer Software Company27%
    Financial Services Firm14%
    Comms Service Provider13%
    Manufacturing Company4%
    REVIEWERS
    Financial Services Firm22%
    Comms Service Provider16%
    Manufacturing Company9%
    Healthcare Company9%
    VISITORS READING REVIEWS
    Computer Software Company20%
    Financial Services Firm11%
    Comms Service Provider9%
    Government7%
    Company Size
    REVIEWERS
    Small Business36%
    Midsize Enterprise11%
    Large Enterprise52%
    VISITORS READING REVIEWS
    Small Business19%
    Midsize Enterprise13%
    Large Enterprise68%
    REVIEWERS
    Small Business23%
    Midsize Enterprise14%
    Large Enterprise63%
    VISITORS READING REVIEWS
    Small Business21%
    Midsize Enterprise17%
    Large Enterprise62%
    Buyer's Guide
    CWPP (Cloud Workload Protection Platforms)
    October 2022
    Find out what your peers are saying about Palo Alto Networks, Microsoft, Morphisec and others in CWPP (Cloud Workload Protection Platforms). Updated: October 2022.
    654,658 professionals have used our research since 2012.

    Check Point CloudGuard Posture Management is ranked 4th in CWPP (Cloud Workload Protection Platforms) with 21 reviews while Qualys VM is ranked 3rd in Vulnerability Management with 29 reviews. Check Point CloudGuard Posture Management is rated 8.6, while Qualys VM is rated 8.2. The top reviewer of Check Point CloudGuard Posture Management writes "Security visibility accuracy is tremendous, letting us see who is trying to access what". On the other hand, the top reviewer of Qualys VM writes "Excellent continuous monitoring, helpful technical support, easy to scale, and simple to install". Check Point CloudGuard Posture Management is most compared with Prisma Cloud by Palo Alto Networks, Microsoft Defender for Cloud, Amazon GuardDuty, Threat Stack Cloud Security Platform and Wiz, whereas Qualys VM is most compared with Tenable Nessus, Tenable.sc, Microsoft Defender for Cloud Apps, Rapid7 InsightVM and Pentera.

    We monitor all CWPP (Cloud Workload Protection Platforms) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.