Claroty Platform vs Qualys CyberSecurity Asset Management comparison

Claroty and Qualys are both solutions in the Vulnerability Management category. Claroty is ranked #18 with an average rating of 8.2, while Qualys is ranked #8 with an average rating of 9.2. Claroty holds a 0.7% mindshare in VM, compared to Qualys’s 1.1% mindshare. Additionally, 100% of Claroty users are willing to recommend the solution, compared to 100% of Qualys users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Jul 27, 2025

Claroty Platform and Qualys CSAM compete in the cybersecurity space with a focus on asset management and threat detection. Claroty holds an advantage for OT environments due to its strong secure remote access and threat mapping features, while Qualys stands out in IT environments for its asset discovery and risk management strengths.

Features: Claroty Platform provides asset visibility, secure remote access, and threat detection, with a focus on integrated remote access and vulnerability details essential for OT environments. It offers real-time monitoring and threat mapping for comprehensive security. Qualys CSAM excels in asset discovery and risk management, featuring dynamic tagging and comprehensive scanning with strong vulnerability tracking. Its integration with third-party tools enhances IT asset management.

Room for Improvement: Claroty can improve IT network integration, zero-day attack detection, and user interface design while addressing alert accuracy and duplicate asset management issues. Qualys CSAM needs to enhance its user interface simplicity, tagging flexibility, and integration with more third-party tools. Better configuration options and report customization are needed for both, alongside pricing adjustments to increase accessibility.

Ease of Deployment and Customer Service: Claroty Platform mostly deploys on-premises with strong technical support, though it can improve response times. It is ideal for OT environments requiring robust support. Qualys CSAM offers flexible deployment on public and hybrid clouds with a positive support reputation, though feature request responses can be slow, making it suitable for diverse IT environments.

Pricing and ROI: Claroty Platform is expensive but delivers good ROI for critical infrastructure through security features. Qualys CSAM offers competitive pricing and flexibility, providing value for large enterprises but potentially costly for smaller businesses. Each solution provides substantial ROI through cost savings in critical environments for Claroty and IT asset management affordability for Qualys. Pricing strategies of both could improve market appeal, with Qualys potentially bundling additional services for better value.

To learn more, read our detailed Claroty Platform vs. Qualys CyberSecurity Asset Management Report (Updated: July 2025).

Buyer's Guide

Claroty Platform vs. Qualys CyberSecurity Asset Management

July 2025

Download the complete report

Helped 865,384 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Zafran Security

Mindshare comparison

As of August 2025, in the Vulnerability Management category, the mindshare of Zafran Security is 0.9%, up from 0.0% compared to the previous year. The mindshare of Claroty Platform is 0.7%, up from 0.3% compared to the previous year. The mindshare of Qualys CyberSecurity Asset Management is 1.1%, up from 0.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Vulnerability Management

Featured Reviews

Israel Cavazos Landini

Associate Director IT Security Operations at a pharma/biotech company with 10,001+ employees

Weekly insights and risk analysis facilitate informed security decisions

I appreciate the weekly insights Zafran provides, which include critical topics for networks and IT security, allowing us to evaluate which insights apply to our environment. The organization score feature is valuable to keep the leadership team updated on how our infrastructure fares security-wise. The applicable risk level versus base risk level feature is beneficial because prior to Zafran, we only used the base risk level, but now understand that risk depends on the asset itself. Zafran is an excellent tool.

Read full review

Deevanshi Priya

Cyber Security Security at PwC

Achieve certifications with progress tracking and potential for enhanced interactivity

I was using Claroty to complete training assigned by my company. The courses were self-paced and helped me get certified in two additional certifications. I plan to use it further as I have a task list for future courses. It was primarily for certification and study materials The feature I like…

Read full review

Scott Frederick

Director of Vulnerability Management at a insurance company with 1,001-5,000 employees

Well-integrated with our vulnerability scanning utilities and efficient in asset tagging and identification

Our favorite features are the tagging and the ability to quickly find assets in the portal. Additionally, I do like the fact that Qualys CSAM is integrated with the rest of our vulnerability scanning utilities. We use the full suite from Qualys. The fact that it is integrated makes it very easy to understand. It shares tagging information with VMDR. That is very nice. Qualys CSAM has discovered assets not previously covered by our vulnerability management program. Primarily, if we have assets without vulnerabilities, they become less visible, but Qualys CSAM alerts us to them because they have IP addresses and are attached to our network. It could discover everything from printers to servers to endpoints. It could discover UPSs, network devices, and across all operating systems. It discovers our security badge readers and digital signage. We have to feed that the IP address ranges, but beyond that, it finds everything in our internal network. We were able to realize its benefits within the first quarter of installing it. We did have to take some time to learn it and understand how to operationally leverage what it was telling us, but it was very quick. In addition to vulnerabilities, Qualys CSAM helps identify other risk factors to a degree. For instance, we can see if servers or assets have incorrect naming standards. We have our network segmented into development model, test, and production, and we have server naming standards that identify which management they should be in. If a production server has the naming standard of a development model server, we can find that. That is one area we have used it for. We are not fully using TruRisk, but we are using the Qualys detection score that is central to our corporate risk prioritization approach. It has completely replaced our homegrown one.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Zafran is an excellent tool."

"Zafran has become an indispensable tool in our cybersecurity arsenal."

"We are able to see the real risk of a vulnerability on our environment with our security tools."

"We saw benefits from Zafran Security almost immediately after deploying it."

"Overall, we have seen about eighty-seven percent reduction of the number of vulnerabilities that require urgency to remediate, specifically the number of criticals."

"Claroty assigns a score based on how well you are doing in the course. If you skip a video, your score decreases, making it essential to watch the content attentively."

"I like how the tool does passive and active discovery and threat detection and shows risks, recommendations, and vulnerabilities. It gives risk scores and gathers everything in one place - IP, device name, etc. We can integrate it with other tools for overall network mapping. It's useful for audits, compliance, and monitoring of all devices in the industry. It provides both monitoring and control. We also have SRA for incident response, which lets us search all alerts if we deploy the Claroty Platform."

"Their SRA solution, the Secure Remote Access solution, is very useful for industrial environments."

"The solution offers comprehensive tools that greatly enhance your IT operations if implemented correctly."

"The main advantage of Claroty, when compared to its competitors, is integrated secure remote access."

"Claroty is very beneficial for learning and adds value to your resume."

"Customer service is number one and the best."

"I appreciate the active coding, deep inspection of packages, and data retrieval. The tool covers information about assets and attack vectors, which I find superior to other tools. Based on alerts, I create reports detailing how an attacker can penetrate the plant, both externally and internally."

More Claroty Platform pros

"Qualys CyberSecurity Asset Management offers valuable features such as continuous vendor support, rapid response times, dedicated vendor partnerships, and advanced technical capabilities for risk identification."

"Qualys CyberSecurity Asset Management offers comprehensive features to cover our entire attack surface."

"There are no stability issues, and I would rate it a ten out of ten."

"We have a diverse organization with a robust infrastructure of more than 300,000 assets. By creating unauthorized lists and rules in the Qualys CSAM module, I can block certain software from being used in the organization."

"I appreciate the feature that simplifies cloud security posture, offering insights into vulnerabilities, and reducing the complexity of managing the security program."

"I would rate the Qualys CSAM a ten out of ten for its overall performance."

"Qualys CyberSecurity Asset Management has helped to improve the organization's security posture significantly."

"I like the EASM part because it provides visibility into unmanaged assets that are public-facing."

More Qualys CyberSecurity Asset Management pros

Cons

"Initially, we were somewhat concerned about the scalability of Zafran due to our large asset count and the substantial amount of information we needed to process."

"I think the ability to have some enhanced reporting capabilities is something they can improve on, as they have good reports but we have asked for some specific reporting enhancements."

"The dashboarding and reporting functionality of Zafran Security is an area that definitely could use some improvements."

"The product could be improved in terms of user interface design."

"Claroty Platform could improve the pricing to get more acceptability in the market."

"The product's integration capabilities are an area of concern where improvements are required."

"The graphical user interface is quite poor."

"I've reported four bugs and three feature requests so far. The main area of focus should be on how attacks are detected. The attack vector information needs to be more detailed. For example, it's not enough to state that an SMB v1 version open can lead to a WannaCry attack. A more detailed explanation should help clients understand the various ways an attack could occur."

"For improvement, I think the training could be more practical. We have external training, but they're mostly theoretical. I want the solution to provide hands-on lab experience to help users learn better."

"I think the only issue is that the hardware Claroty uses is expensive."

"If more AI features could be included with the Clarity solution, it would be feasible for everybody."

More Claroty Platform cons

"The only minor issue is occasionally being redirected to multiple teams, causing slight delays."

"Currently, whenever the agent is running, it consumes over ten percent of my CPU, indicating that CPU consumption is another area Qualys needs to address."

"The deployment is somewhat complicated and could be made more user-friendly for most users. It is currently not user-friendly for all users. It is good but can be improved. It is a new product, and they are working on it."

"The scanning function could be improved."

"The main aspect that needs improvement is the user interface, which should be more intuitive."

"They should address the false positives generated in EASM. It is fetching assets that have Infosys as the keyword."

"Further research and development are needed to enhance integration with other cloud agents and products, particularly improving communication with external products and vendors."

"We have had challenges modifying the agent configuration. Particularly, when we want to change the tenant that the agent is pointing to, we have had difficulties making that reliable and working properly."

More Qualys CyberSecurity Asset Management cons

Pricing and Cost Advice

Information not available

"The licensing for physical devices is cheap, but the software version is expensive. The software version costs around 26-28 dollars. I was surprised and even double-checked. It was shocking."

"It's a bit expensive compared to other solutions."

"The tool is quite expensive."

"The pricing is reasonable relative to the features provided, as it collects all module data and operates as a main, centralized inventory, making it a cost-effective solution."

"The pricing for Qualys CSAM is nominal."

"The pricing is fair. I would love to see the price come down a little bit, but we do get a lot of value out of it. We are squeezing every ounce of value we can out of the tool."

"It is cost-effective because, in a single tool, we are getting everything. All the solutions come in a single license or price."

"The Qualys Cybersecurity Asset Management pricing is well-aligned with our usage."

"The cost for Qualys CyberSecurity Asset Management is high."

"Qualys CyberSecurity Asset Management can be expensive, especially if we already have VMDR."

"Though the solution is considered expensive, if bundled with other services such as VMDR or cloud agents, its value would significantly increase. It is currently a bit costly, but with bundling, it could become attractive to more customers."

More Qualys CyberSecurity Asset Management pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.

See recommendations

865,384 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

10%

Computer Software Company

10%

Manufacturing Company

Healthcare Company

Manufacturing Company

15%

Computer Software Company

12%

Energy/Utilities Company

Financial Services Firm

Computer Software Company

17%

Financial Services Firm

15%

Government

Comms Service Provider

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What is your experience regarding pricing and costs for Zafran Security?

Since we stood Zafran Security up in our private cloud, we handle the maintenance on our side. As we opted not to use...

See all answers

What needs improvement with Zafran Security?

In terms of areas for improvement, Zafran Security is doing a really great job as a new and emerging company. Oftenti...

See all answers

What is your primary use case for Zafran Security?

My use cases for Zafran Security revolve around two primary areas. One is around vulnerability management and priorit...

See all answers

Which solution do you prefer: Nozomi Networks or Claroty Platform?

Nozomi Networks and Claroty Platform are both leading operational technology (OT) security solutions offering a wide ...

See all answers

What do you like most about Claroty Platform?

The product helps mitigate potential threats, especially if its users have signature rules. The product also provides...

See all answers

What needs improvement with Claroty Platform?

Regarding the cons of the Claroty Platform, it is not about the deployment, but rather the identification. The Clarot...

See all answers

What is your experience regarding pricing and costs for Qualys CyberSecurity Asset Management?

The pricing is reasonable relative to the features provided, as it collects all module data and operates as a main, c...

See all answers

What needs improvement with Qualys CyberSecurity Asset Management?

Qualys CyberSecurity Asset Management helps us prioritize assets according to operating system, kernel version, insta...

See all answers

What is your primary use case for Qualys CyberSecurity Asset Management?

We are using Qualys CyberSecurity Asset Management for daily activities such as identifying new assets through networ...

See all answers

Comparisons

Wiz Code vs Zafran Security

Compared 37% of the time

Vulcan Cyber vs Zafran Security

Compared 15% of the time

Tenable Vulnerability Management vs Zafran Security

Compared 9% of the time

ServiceNow Security Operations vs Zafran Security

Compared 8% of the time

Qualys VMDR vs Zafran Security

Compared 7% of the time

More Zafran Security Competitors

Nozomi Networks vs Claroty Platform

Compared 33% of the time

Dragos vs Claroty Platform

Compared 10% of the time

Tenable OT Security vs Claroty Platform

Compared 9% of the time

Armis vs Claroty Platform

Compared 9% of the time

Microsoft Defender for IoT vs Claroty Platform

Compared 5% of the time

More Claroty Platform Competitors

CrowdStrike Falcon vs Qualys CyberSecurity Asset Management

Compared 11% of the time

Amazon Inspector vs Qualys CyberSecurity Asset Management

Compared 10% of the time

Armis vs Qualys CyberSecurity Asset Management

Compared 8% of the time

Axonius vs Qualys CyberSecurity Asset Management

Compared 8% of the time

Bitsight vs Qualys CyberSecurity Asset Management

Compared 7% of the time

More Qualys CyberSecurity Asset Management Competitors

Product Reports

Buyer's Guide

Zafran Security

July 2025

Download Zafran Security product report

Buyer's Guide

Claroty Platform

August 2025

Download Claroty Platform product report

Buyer's Guide

Qualys CyberSecurity Asset Management

August 2025

Qualys CyberSecurity Asset Management report

Download Qualys CyberSecurity Asset Management product report

Overview

Zafran Security integrates with existing security tools to identify and mitigate vulnerabilities effectively, proving that most critical vulnerabilities are not exploitable, optimizing threat management.

Zafran Security introduces an innovative operating model for managing security threats and vulnerabilities. By leveraging the threat exposure management platform, it pinpoints and prioritizes exploitable vulnerabilities, reducing risk through immediate remediation. This platform enhances your hybrid cloud security by normalizing vulnerability signals and integrating specific IT context data, such as CVE runtime presence and internet asset reachability, into its analysis. No longer reliant on patch windows, Zafran Security allows you to manage risks actively.

What are the key features of Zafran Security?

Threat Exposure Management: Utilizes existing tools to prioritize vulnerabilities and manage threats.
Integrative Analysis: Combines security data with IT context for precise vulnerability management.
Real-time Risk Reduction: Enables immediate risk management without waiting for patches.
Hybrid Cloud Compatibility: Functions across diverse cloud environments for comprehensive security.

What benefits can users expect from Zafran Security?

Improved Security: Enhances protection by efficiently identifying and mitigating risks.
Cost Efficiency: Reduces unnecessary patching expenses by confirming non-exploitable vulnerabilities.
Time Savings: Frees developers to focus on root causes by handling immediate threats.
Comprehensive Insight: Offers a holistic view of security threats and vulnerabilities.

In industries where security is paramount, such as finance and healthcare, Zafran Security provides invaluable protection by ensuring that only exploitable vulnerabilities are addressed. It allows entities to maintain robust security measures while allocating resources efficiently, fitting seamlessly into existing security strategies.

Zafran Security

The Claroty Platform is tailored for monitoring and securing industrial control systems. It offers deep visibility into OT networks, enabling effective anomaly detection and vulnerability assessments. Its user-friendly interface and robust reporting tools facilitate easy management and compliance, enhancing organizational efficiency and cybersecurity posture in industrial environments.

Claroty

Qualys CyberSecurity Asset Management provides advanced real-time asset visibility, dynamic tagging, and External Attack Surface Management. It streamlines asset discovery and management using cloud agents and IP-based scanning, enhancing risk management and software lifecycle tracking.

Qualys CyberSecurity Asset Management offers a comprehensive solution for managing asset inventories and tracking software lifecycle states. It facilitates network visibility and supports zero-day vulnerability solutions, enhancing security posture through efficient monitoring. Users benefit from its cloud-based interface, which provides in-depth asset configurations and insights. Key features include automated vulnerability scanning and unauthorized software management, reducing manual efforts. The platform also emphasizes the importance of timely remediation and ongoing risk mitigation across multiple environments. Despite its strengths, users note the need for enhanced integration with additional CMDBs beyond ServiceNow, as well as cost efficiency improvements. Requests also include better report customization, more scan control, and a simplified UI.

What are the key features of Qualys CyberSecurity Asset Management?

Real-time Visibility: Offers continuous insight into asset status and condition.
Dynamic Tagging: Allows for flexible organization and assessment of assets.
External Attack Surface Management: Identifies potential threats from external sources.
Automated Vulnerability Scanning: Reduces manual scanning efforts and identifies vulnerabilities instantly.
Unauthorized Software Management: Detects and manages software not approved for use.
Asset Purge Rule: Automates the removal of obsolete assets from the inventory.

What benefits should users look for in reviews?

Enhanced Security Posture: Gains stronger defense through effective asset monitoring.
Efficient Risk Management: Identifies threats quickly, enabling timely resolutions.
Improved Compliance: Assists in meeting industry standards and regulations.
Reduced Manual Effort: Automates repetitive tasks, saving time and resources.
Comprehensive Insight: Provides detailed data for informed decision making.

In industries like finance, healthcare, and manufacturing, Qualys CyberSecurity Asset Management enhances asset control by offering visibility into hardware and software configurations. It aids in maintaining security compliance and identifying unauthorized software, crucial for sectors with strict regulatory requirements.

Qualys

Sample Customers

Information Not Available

Rockwell Automation

Information Not Available

Buyer's Guide

Claroty Platform vs. Qualys CyberSecurity Asset Management

July 2025

Free Report: Claroty Platform vs. Qualys CyberSecurity Asset Management

Find out what your peers are saying about Claroty Platform vs. Qualys CyberSecurity Asset Management and other solutions. Updated: July 2025.

DOWNLOAD NOW

865,384 professionals have used our research since 2012.

See our Claroty Platform vs. Qualys CyberSecurity Asset Management report.

See our list of best Vulnerability Management vendors.

We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.