Cisco SecureX [EOL] vs Snyk comparison

Cisco and Snyk are both solutions in the Application Security Tools category. Additionally, 100% of Cisco users are willing to recommend the solution, compared to 100% of Snyk users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Oct 9, 2025

Snyk and Cisco SecureX [EOL] both compete in the cybersecurity software market. Snyk excels in user-friendly integrations and vulnerability management, whereas Cisco SecureX [EOL] stands out with its comprehensive threat-hunting capabilities, making it suited for larger enterprises.

Features: Snyk is known for its easy-to-use self-service integrations, a comprehensive vulnerability database, and efficient notifications. It integrates seamlessly across various development environments, making it ideal for developers seeking quick vulnerability identification and remediation. Cisco SecureX [EOL] offers a unified dashboard integrating Cisco and third-party products, threat-hunting capabilities, and extensive contextual awareness, highly beneficial for businesses requiring advanced security insights and integration across multiple platforms.

Room for Improvement: Snyk could benefit from expanding its security scanning types to include SAST and DAST, improving integration with other development tools, and providing more granular notifications. Cisco SecureX [EOL] users express a desire for better automation, a larger library of prebuilt actions, and more diverse environment adaptability to enhance efficiency and flexibility.

Ease of Deployment and Customer Service: Snyk supports deployment across public, private, and hybrid clouds with generally praised technical support. However, some customers seek faster, localized assistance. Cisco SecureX [EOL] is noted for its quick and knowledgeable account team support, with straightforward deployment primarily in public and private cloud settings, praised for the ease of appliance configuration.

Pricing and ROI: Snyk is perceived as relatively expensive but offers significant ROI due to efficient vulnerability management and time-saving features. Some users find value in its flexibility despite extra costs for add-ons like SSO. Cisco SecureX [EOL], particularly cost-effective for existing Cisco users, includes options that are free, appealing to organizations deeply invested in the Cisco ecosystem.

To learn more, read our detailed Application Security Tools Report (Updated: June 2026).

Buyer's Guide

Application Security Tools

June 2026

Download the complete report

Helped 900,747 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Qualys TotalCloud

Featured Reviews

Robert Orłowski

IT Security Expert at Alior Bank S.A.

Unified risk scoring has improved our cloud visibility and simplifies remediation priorities

Qualys TotalCloud provides unified vulnerability and threat assessment across both IAS and SaaS. This solution provides a single prioritized view of risk, which helps reduce the work I would have to do. We are no longer based on CVSS; we are based on Qualys risk scoring, which is based on CVSS plus internal findings made by Qualys, and then assigns its own score. The TruRisk insight feature has found a small number of assets with high vulnerability scores, though I am cautious since some information is classified. Qualys TotalCloud has positively impacted our bank's performance, and we have definitely seen benefits after implementing this solution.

Read full review

Alon K

CTO & VP of Cyber Solutions, Israel at Rockwell Automation

Gives our customers visibility and they don't have to go multiple management consoles anymore

One of the examples is related to forensics. The forensics are amazing because when you have enrichment, and the solutions talk with each other, when you need it, you have the ability to know everything in the organization: when, why, whatever. With just one click you have information from email, from the endpoint, from the web. Let's say that tomorrow morning, you have a ransom[ware] attack in your organization and you would like to know from which email it came, or where the customer saved the file, even though the incident didn't occur at the same moment. With SecureX, you have Cisco Threat Response inside. [With] one click, you get all of the flow. That's amazing value. That also releases resources for our customers. The customers don't have to connect many systems and try to register the event on each system, or to go to the SIEM and do a correlation. That's the one-stop shop for the customers, and that's amazing.

Read full review

Abhishek-Goyal

Software Engineer at a computer software company with 11-50 employees

Improves security posture by actively reducing critical vulnerabilities and guiding remediation

Snyk's main features include open-source vulnerability scanning, code security, container security, infrastructure as code security, risk-based prioritization, development-first integration, continuous monitoring and alerting, automation, and remediation. The best features I appreciate are the vulnerability checking, vulnerability scanning, and code security capabilities, as Snyk scans all open-source dependencies for known vulnerabilities and helps with license compliance for open-source components. Snyk integrates into IDEs, allowing issues to be caught as they appear in the code dynamically and prioritizes risk while providing remediation advice. Snyk provides actionable remediation advice on where vulnerabilities can exist and where code security is compromised, automatically scanning everything and providing timely alerts. Snyk has positively impacted my organization by improving the security posture across all software repositories, resulting in fewer critical vulnerabilities, more confidence in overall product security, and faster security compliance for project clients. Snyk has helped reduce vulnerabilities significantly. Initially, the repository had 17 to 31 critical and high vulnerabilities, but Snyk has helped manage them down to just five vulnerabilities, which are now lower and not high or critical.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Vulnerability and threat detection and assessment of the criticality of the vulnerabilities exposed are most valuable."

"Qualys TotalCloud provides a single, prioritized view based on requirements such as identifying the most vulnerable assets and calculating the average time to remediate vulnerabilities."

"The scalability is good as well. I would rate it ten out of ten."

"If I had to say something positive about the product that brings me the biggest benefit, I would say it has accurate reports, gets new update CVEs, zero-day attack detection, and is easy to manage with its GUI."

"In my opinion, this is the best tool."

"Qualys TotalCloud has significantly improved our organization by automating our reporting processes, reducing the time spent on report creation from two hours to less than fifteen to twenty minutes."

"The most valuable feature is the consolidated information that it provides from various platforms."

"With TotalCloud, we can scan through the API. If we are not able to deploy cloud agents on the machine, we can use the API."

More Qualys TotalCloud pros

"The most beneficial feature of Cisco SecureX for cybersecurity efforts is its integration with other Cisco solutions and the environment. This sets it apart, as its APIs and overall integration capabilities are very strong. Additionally, its detection capabilities are commendable."

"The ability to create firewalls online has been most valuable including the ability to create rules."

"SecureX enables us to have all the threat intelligence and threat event data in one place."

"I like that I don't have to jump around to five different products and log into five different places to view the data that it returns."

"The automation and orchestration tools are the most valuable features."

"SecureX takes all the separate pieces of security within your company, adds in intelligence from different sites and services on the internet, and makes them work together."

"It is one of my favorite things that has ever been built."

"Its cybersecurity and resilience have been extremely important for our organization."

More Cisco SecureX [EOL] pros

"We have hundreds of source code repositories, and Snyk scans them in minutes (it just looks at package management files to identify the dependency tree), Snyk uses the same infrastructure to scan for all customers on the cloud which gives it lots of scalability opportunities compared to some other vendors where the software is installed on-prem or on a dedicated instance which makes the software pricy and limited."

"There are many valuable features, for example the way the scanning feature works and the integration is cool because I can integrate it and I don't need to wait until the CACD, I can plug it in to our local ID and there I can do the scanning, that is the part I like best."

"Based on all our products, including Snyk, we have seen a 50 percent reduction in the amount of time it takes to fix problems."

"Snyk helps me pinpoint security errors in my code."

"The advantage of Snyk is that Snyk automatically creates a pull request for all the findings that match or are classified according to the policy that we create. So, once we review the PR within Snyk and we approve the PR, Snyk auto-fixes the issue, which is quite interesting and which isn't there in any other product out there. So, Snyk is a step ahead in this particular area."

"The most effective feature in securing project dependencies stems from its ability to highlight security vulnerabilities."

"Snyk provides a lot of information on vulnerabilities, the packages being used, and their dependencies, giving good insight into the security of those packages."

"The most important feature of Snyk is its cost-effectiveness compared to other solutions such as Check Point."

More Snyk pros

Cons

"The vulnerability part is good, but the policy compliance module needs improvement because it involves a lot of manual work. Specifically, the remediation part of the controls requires enhancements."

"Qualys's ticketing system can be confusing when assigning tasks to individuals, and support could be improved by offering instant call solutions with engineers in addition to ticket replies."

"The patching process with Qualys Patch Management, which is part of TotalCloud, does not cover installing certain prerequisites on the servers or workstations. This shortcoming means we must rely on SCCM when any service stack updates or additional prerequisites are needed."

"I think Qualys TotalCloud needs to improve its handling of zero-day vulnerabilities and supply chain management because modern ransomware attacks not only target prime critical infrastructures but also the supply chain system."

"The onboarding process is a bit difficult. In the initial phase, it is very difficult to understand the features, what the dashboard contains, and what criteria they are using."

"The downside is only in container security, but it has not been a long time since they introduced these models."

"Areas that need improvement in every solution include the remediation part. The remediation steps should be simple enough for everyone to understand."

"TotalCloud could improve the classification of vulnerabilities. Specifically, it could enhance the categorization of what aspects fall under patches resolved by OS or software updates and what pertains to configuration adjustments."

More Qualys TotalCloud cons

"For us, the biggest sticking point is that the product is not being designed for multi-tenancy use at present, from an MSP perspective."

"Remediation stuff could be integrated into the product's automation."

"They could expand into more areas."

"They could put in more third-party [integrations]... also more playbooks, out-of-the-box, for automation [would be helpful]."

"It would be nice if they had a different pricing model. Most of our budget for projects goes towards Cisco."

"The automation and orchestration could be simpler."

"The front-end work controls the new algorithm and the firewall rules. The search feature of these rules could be improved."

"The documentation can be improved and the on-prem integration. The set of applications that it was integrated with wasn't comprehensive."

More Cisco SecureX [EOL] cons

"We had some issues integrating into our pipeline, however, they were resolved."

"We have seen cases where tools didn't find or recognize certain dependencies. These are known issues, to some extent, due to the complexity in the language or stack that you using. There are some certain circumstances where the tool isn't actually finding what it's supposed to be finding, then it could be misleading."

"For the areas that they're new in, it's very early stages for them. For example, their expertise is in looking at third-party components and packages, which is their bread-and-butter and what they've been doing for ages, but for newer features such as static analysis I don't think they've got compatibility for all the languages and frameworks yet."

"The product is very expensive."

"You need to go to the tool, export it as a CSV, and then find it, which is ridiculous."

"I think Snyk should add more of a vulnerability protection feature in the tool since it is an area where it lacks."

"Snyk should improve the scanning capabilities for other languages. For example, Veracode is strong with different languages such as Java, C#, and others."

"The product could be improved by including other types of security scanning (e.g. SAST or DAST), which is important."

More Snyk cons

Pricing and Cost Advice

"TotalCloud's price is about right where I would expect it to be."

"It isn't cheap, but it's reasonable. It helps us to manage things with very few resources."

"The pricing is comparable. It is built into our other product, so I cannot piecemeal it. It is a part of our subscription."

"Qualys TotalCloud offers good pricing that is affordable and competitive with the market. Our partnership also provides us with additional benefits."

"As a middle management member, I do not have direct pricing knowledge, but based on the knowledge from our meetings, its pricing is competitive."

"Qualys TotalCloud is cost-efficient and was selected for its value compared to other products."

"Qualys TotalCloud is expensive."

"I am not sure about the pricing. From what I understand, it is a bit on the higher side, but I do not have the exact numbers."

More Qualys TotalCloud pricing and cost advice

"The product is absolutely free to any customer. As such, the only thing one must keep in mind is that as long as he already has one Cisco security product, irregardless of what that product is, SecureX is available for free."

"Cisco SecureX is more expensive than Trend Micro. However, considering the integration capabilities with other solutions and the quality of technical support, I believe there's justification for the price difference."

"The pricing is competitive, especially for education institutions. Licensing can be a little bit difficult to navigate, especially with resellers with Cisco, but for us it has been pretty easy."

"For the value you get, the pricing of the solution is excellent."

"It is free. It can't get any better than that."

"It would be nice if they had a different pricing model. Most of our budget for projects goes towards Cisco."

"You can spend less money for another solution, but if you really want to have a good solution you have to pay. We are happy that we are getting such a good solution for what we are spending."

"The pricing is the best part of this solution. It is free if you buy Umbrella or Duo Security. It is also a good solution."

More Cisco SecureX [EOL] pricing and cost advice

"Cost-wise, it's similar to Veracode, but I don't know the exact cost."

"Their licensing model is fairly robust and scalable for our needs. I believe we have reached a reasonable agreement on the licensing to enable hundreds of developers to participate in this product offering. The solution is very tailored towards developers and its licensing model works well for us."

"On a scale of one to ten, where one is cheap and ten is expensive, I rate the pricing a three. It is a cheap solution."

"It is pretty expensive. It is not a cheap product."

"It's good value. That's the primary thing. It's not cheap-cheap, but it's good value."

"The price is good. Snyk had a good price compared to the competition, who had higher pricing than them. Also, their licensing and billing are clear."

"You can get a good deal with Snyk for pricing. It's a little expensive, but it is worth it."

"Snyk is a premium-priced product, so it's kind of expensive. The big con that I find frustrating is when a company charges extra for single sign-on (SSO) into their SaaS app. Snyk is one of the few that I'm willing to pay that add-on charge, but generally I disqualify products that charge an extra fee to do integrated authentication to our identity provider, like Okta or some other SSO. That is a big negative. We had to pay extra for that. That little annoyance aside, it is expensive. You get a lot out of it, but you're paying for that premium."

More Snyk pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Application Security Tools solutions are best for your needs.

See recommendations

900,747 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Manufacturing Company

17%

Financial Services Firm

14%

Construction Company

Comms Service Provider

Construction Company

14%

Outsourcing Company

10%

Marketing Services Firm

Computer Software Company

Financial Services Firm

13%

Manufacturing Company

11%

Computer Software Company

10%

Comms Service Provider

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	10
Midsize Enterprise	3
Large Enterprise	29

By reviewers
Company Size	Count
Small Business	4
Midsize Enterprise	7
Large Enterprise	3

By reviewers
Company Size	Count
Small Business	20
Midsize Enterprise	10
Large Enterprise	23

Questions from the Community

What is your experience regarding pricing and costs for Qualys TotalCloud?

The price is very expensive, actually.

See all answers

What needs improvement with Qualys TotalCloud?

Areas that need improvement in every solution include the remediation part. The remediation steps should be simple en...

See all answers

What is your primary use case for Qualys TotalCloud?

Our use case involves the assets that we have under cloud, the assets exposed to the internet, and the internal appli...

See all answers

Ask a question

Earn 20 points

How does Snyk compare with SonarQube?

Snyk does a great job identifying and reducing vulnerabilities. This solution is fully automated and monitors 24/7 to...

See all answers

What needs improvement with Snyk?

There are a lot of false positives that need to be identified and separated. The inclusion of AI to remove false posi...

See all answers

What is your primary use case for Snyk?

I use Snyk ( /products/snyk-reviews ) in the DevOps pipeline to identify vulnerabilities before deploying the applica...

See all answers

Comparisons

Wiz vs Qualys TotalCloud

Compared 12% of the time

Microsoft Defender for Cloud vs Qualys TotalCloud

Compared 8% of the time

Prisma Cloud by Palo Alto Networks vs Qualys TotalCloud

Compared 6% of the time

JupiterOne vs Qualys TotalCloud

Compared 5% of the time

Nucleus Security vs Qualys TotalCloud

Compared 5% of the time

More Qualys TotalCloud Competitors

Cortex XDR by Palo Alto Networks vs Cisco SecureX [EOL]

Compared 7% of the time

Blue Cedar vs Cisco SecureX [EOL]

Compared 6% of the time

Cisco Secure Network Analytics vs Cisco SecureX [EOL]

Compared 6% of the time

Quotium Seeker vs Cisco SecureX [EOL]

Compared 6% of the time

Digital.ai Application Security vs Cisco SecureX [EOL]

Compared 4% of the time

More Cisco SecureX [EOL] Competitors

SonarQube vs Snyk

Compared 7% of the time

Trivy vs Snyk

Compared 2% of the time

Black Duck SCA vs Snyk

Compared 2% of the time

GitHub Advanced Security vs Snyk

Compared 2% of the time

JFrog Xray vs Snyk

Compared 2% of the time

More Snyk Competitors

Product Reports

Buyer's Guide

Qualys TotalCloud

June 2026

Download Qualys TotalCloud product report

Buyer's Guide

Cisco SecureX [EOL]

June 2026

Download Cisco SecureX [EOL] product report

Buyer's Guide

Snyk

May 2026

Download Snyk product report

Also Known As

Qualys TotalCloud with FlexScan

Kenna.AppSec, Kenna.VI

Fugue, Snyk AppRisk

Overview

Qualys TotalCloud enhances security posture across cloud environments with continuous monitoring, vulnerability management, and risk visualization, ensuring efficient threat assessment and automated remediation for improved cyber risk reduction.

Qualys TotalCloud offers a robust suite of security tools essential for organizations managing multi-cloud infrastructures. By integrating cloud accounts and automating workflows, it supports AWS, Azure, and GCP, offering comprehensive vulnerability management and zero-day detection. The platform's user-friendly design, combined with its extensive risk management and unified threat assessment capabilities, enables organizations to prioritize and remediate vulnerabilities effectively. TruRisk Insights provides clear insights on cyber risks, while the automation options streamline patch management and scanning processes. API integration across IaaS and SaaS environments further enhances resource allocation efficiency and saves time, addressing misconfigurations across cloud environments.

What are the most important features of Qualys TotalCloud?

Accurate Vulnerability Reports: Delivers precise and actionable insights for risk mitigation.
Zero-Day Detection: Identifies and addresses zero-day vulnerabilities proactively.
Unified Threat Assessment: Offers comprehensive evaluation of threats across the environment.
Extensive Risk Management: Manages risks effectively with advanced insights and prioritization.
Continuous Monitoring: Provides non-stop surveillance for vulnerabilities and threats.
Cloud-Native Automation: Streamlines processes and reduces manual efforts using automation.
FlexScan for Internet-Facing VMs: Scans external VMs efficiently to detect vulnerabilities.
Dashboard Risk Visualization: Clear visualization helps prioritize vulnerabilities.

What benefits and ROI should users look for?

Improved Security Posture: Enhances threat detection and response across clouds.
Time Savings: Automation reduces time spent on manual vulnerability management.
Resource Efficiency: Better allocation of resources through streamlined workflows.
Enhanced Risk Prioritization: Focus on critical vulnerabilities for effective mitigation.
Integrated Cloud Accounts: Facilitates seamless cloud management and security.

Qualys TotalCloud is deployed in sectors needing rigorous vulnerability management, such as finance and healthcare. Companies utilize it to secure multi-cloud environments like AWS, Azure, and GCP, focus on compliance, and integrate security into CI/CD pipelines to detect and remedy threats pre-deployment.

Qualys

Cisco SecureX is an integrated security platform that connects the breadth of Cisco's integrated security portfolio and the customer's infrastructure to create a consistent experience. The solution unifies visibility, enables automation, and strengthens your security across network, endpoints, cloud, and applications. Cisco SecureX is embedded within every Cisco Security product and supports integrations with SIEM and SOAR, so customers will not need to replace any solution or worry about layering on new technology.

Cisco SecureX Features

Cisco SecureX has many valuable key features. Some of the most useful ones include:

Unified overview: Cisco SecureX offers key metrics on transactions and threats for network, endpoints, cloud and applications. In addition, the SecureX interface is integrated into all Cisco Security technologies.

Automation and an increase in operational efficiency: With Cisco SecureX, you gain better automation of workflows for products of the Cisco Security portfolio and third parties, allowing you to focus on other more important tasks. By eliminating manual work (through automatic identification of threats using analytical data of Cisco Talos and other sources), the solution helps your organization save a significant amount of time.

Security strengthening: Cisco SecureX makes it easy to compare analytical data from a set of various sources with the telemetry received from network, endpoints, e-mail, cloud, and third-party products.

Cisco SecureX Benefits

Some of the benefits of using Cisco SecureX include:

Secure every business endeavor with an open, integrated platform that has out-of-the-box interoperability and scales to meet security needs.

Advance your security maturity level using existing resources.

Turn security from a blocker into an enabler. Cisco SecureX allows you to add new security capabilities for the threat landscape.

Maximize your operational efficiency, helping you get the most from your security investments.

Reviews from Real Users

Below are some reviews and helpful feedback written by Cisco SecureX users.

PeerSpot user Wouter H., Technical Team Lead Network & Security at Missing Piece BV, shares several reasons why he thinks the solution is fantastic. In his opinion, “SecureX takes all the separate pieces of security within your company, adds in intelligence from different sites and services on the internet, and makes them work together. If an email is received on a machine and malware is being executed, it can be put into lockdown mode. The fact that you can have a single solution that combines endpoint intelligence with email intelligence, firewalls, and publicly available intelligence is really helpful. Also, SecureX provides us with contextual awareness throughout our security ecosystem. Before SecureX, things that were not possible, or that would take days, now literally take seconds to find out.

Michal S., Infrastructure Engineer at a media company, says, “SecureX provides many measurements and has a really good dashboard. Working with it you are able to see things very clearly and you have every detail on a single display. That saves us money and time.” He also adds, “It brings all our data into a central point. It also shows us many data connections between many of our environments. SecureX gives you really good information about potential risks. You are able to find the source of a risk, a potential risk from a user or a machine.”

Blair A., Technology Director at Shawnee Heights USD #450, explains, "One of the most valuable features is the simplicity of deploying SecureX. It's very easy to do that and then you gain very detailed visibility into everything that's going on in your network and, obviously, at the device level. There's just a wealth of information that you can pull from all of these products that are part of SecureX. You know exactly if you have an issue or not."

Cisco

Snyk excels in integrating security within the development lifecycle, providing teams with an AI Trust Platform that combines speed with security efficiency, ensuring robust AI application development.

Snyk empowers developers with AI-ready engines offering broad coverage, accuracy, and speed essential for modern development. With AI-powered visibility and security, Snyk allows proactive threat prevention and swift threat remediation. The platform supports shifts toward LLM engineering and AI code analysis, enhancing security and development productivity. Snyk collaborates with GenAI coding assistants for improved productivity and AI application threat management. Platform extensibility supports evolving standards with API access and native integrations, ensuring comprehensive and seamless security embedding in development tools.

What are Snyk's standout features?

Simplicity and Integration: Easy to integrate across platforms like GitLab, GitHub, and Jira.
Comprehensive Vulnerability Database: Offers accurate reporting for effective vulnerability management.
Developer-Friendly Design: Supports multiple programming languages, appealing to developers.
Automation and Flexibility: Enhances workflow efficiency with automated capabilities.

What benefits can users expect?

Efficiency in Vulnerability Detection: Streamlines prioritization and remediation processes.
Cost-Effectiveness: Offers a competitive pricing model compared to alternatives.
Enhanced Workflow: Integration with DevOps tools improves development processes.

Industries leverage Snyk for security in CI/CD pipelines by automating checks for dependency vulnerabilities and managing open-source licenses. Its Docker and Kubernetes scanning capabilities enhance container security, supporting a proactive security approach. Integrations with platforms like GitHub and Azure DevOps optimize implementation across diverse software environments.

Snyk

Sample Customers

Information Not Available

NHS, Rackspace, UNC Pembroke, University of North Carolina at Charlotte, Missing Piece

StartApp, Segment, Skyscanner, DigitalOcean, Comic Relief

Buyer's Guide

Application Security Tools

June 2026

Download Free Report

Find out what your peers are saying about SonarSource Sàrl, Checkmarx, Veracode and others in Application Security Tools. Updated: June 2026.

DOWNLOAD NOW

900,747 professionals have used our research since 2012.

See our list of best Application Security Tools vendors and best Vulnerability Management vendors.

We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.