We performed a comparison between CloudPassage and VMware Aria Automation based on real PeerSpot user reviews.
Find out what your peers are saying about Palo Alto Networks, Wiz, Microsoft and others in Cloud Security Posture Management (CSPM)."With Wiz, we get timely alerts for leaked data or any vulnerabilities already existing in our environment."
"The vulnerability management modules and the discovery and inventory are the most valuable features. Before using Wiz, it was a very manual process for both. After implementing it, we're able to get all of the analytics into a single platform that gives us visibility across all the systems in our cloud. We're able to correspond and understand what the vulnerability landscape looks like a lot faster."
"Our most important features are those around entitlement, external exposure, vulnerabilities, and container security."
"I like Wiz's reporting, and it's easy to do queries. For example, it's pretty simple to find out how many servers we have and the applications installed on each. I like Wiz's security graph because you can use it to see the whole organization even if you have multiple accounts."
"The automation roles are essential because we ultimately want to do less work and automate more. The dashboards are easy to read and visually pleasing. You can understand things quickly, which makes it easy for our other teams. The network and infrastructure teams don't know as much about security as we do, so it helps to have a tool that's accessible and nice to look at."
"The CSPM module has been the most effective. It was easy to deploy and covered all our accounts through APIs, requiring no agents. Wiz provides instant visibility into high-level risks that we need to address."
"The solution is very user-friendly."
"The first thing that stood out was the ease of installation and the quick value we got out of the solution."
"Policies are very easy to manage on a day-to-day basis."
"Key features are the Software Vulnerability Assessment and the CSM, which is the configuration check."
"We've just shifted to an Agile development so there has absolutely been an improvement in speed to market. We now have consistent release plans because we have these environments as ready as they are."
"It's quite user friendly. Everyone can use it, even non-technical people. This is good, since we use it to build a self-service portal which even users with not a lot of technical background can use."
"The most valuable features are the metrics and reporting aspects. The historical data and extraction enable us to tell where the trends are and where contentions may exist in the future."
"It is mostly for our tech support to test new versions, find bugs, and troubleshoot what is happening at customer sites."
"Before it would take months to deploy a VM, now, with this solution, we can deploy many VMs in one hour. We can do a stack of them with Mediaware."
"With the advent of the automation, we've been able to give DevOps the ability to spin up environments, give them lease times, and then have it automatically reclaim the environment."
"The most valuable feature of VMware Aria Automation is the versatile automation and deployments."
"A lot of its DevOps for infrastructure capabilities improve reliability. Much effort was put in by some customers, like a large automobile manufacturer, a large telecom, and two large banks, to achieve a certain level of capabilities in this space. These DevOps for infrastructure capabilities have saved time for developers. In one use case for a large marketplace, a typical release cycle took about 80 hours and was brought down to three hours by automating deployment for developers. The quicker that deployments happen, the faster that they can do their product release cycles."
"The solution's container security could be improved."
"One significant issue is that the searches are case-sensitive, so finding a misconfigured resource can become very challenging."
"We wish there were a way, beyond providing visibility and automated remediation, to wait on a given remediation, due to a critical aspect, such as the cost associated with a particular upgrade... We would like to see preventive controls that can be applied through Wiz to protect against vulnerabilities that we're not going to be able to remediate immediately."
"We're looking at some of the data compliance stuff that they've got Jon offer. I know they're looking at container security, which we gonna be looking at next."
"Wiz's reporting capabilities could be refined a bit. They are making headway on that, but more executive-style dashboards would be nice. They just implemented a community aspect where you can share documents and feedback. This was something users had been requesting for a while. They are listening to customer feedback and making changes."
"The only small pain point has been around some of the logging integrations. Some of the complexities of the script integrations aren't supported with some of the more automated infrastructure components. So, it's not as universal. For example, they have great support for cloud formation and other services, but if you're using another type of management utility or governance language for your infrastructure-as-code automation components, it becomes a little bit trickier to navigate that."
"Given the level of visibility into all the cloud environments Wiz provides, it would be nice if they could integrate some kind of mechanism to better manage tenants on multiple platforms. For example, let's say that some servers don't have an application they need, such as an antivirus. Wiz could include an API or something to push those applications out to the servers. It would be great if you could remedy these issues directly from the Wiz platform."
"The only thing that needs to be improved is the number of scans per day."
"Anything outside of the software vulnerability management and the CSM, things like the GhostPort, need some improvement. The dashboard is in beta. It looks really good, I wish it would come out of beta."
"In the CSM module the policies are really hard to work with it. It is not very flexible at all. I would suggest that they change that. Right now, the scan is based on the group that the server is in. What happens if the server is in multiple groups?"
"The reports and graphs are unintuitive."
"Of all the advertised functions, I only find two things that really work in my environment, even though I wanted to use all of them. They're not flexible enough to be used."
"Deploying and configuring the solution takes a lot of time."
"In terms of usability, It has had its challenges. It requires a lot of custom code to integrate into our environment. It can take a little while to get it to do what we want, takes some code instead of having built-in functionality. Part it is how we use it. It would be a lot easier to use in a greenfield scenario versus brownfield, which is the way we using it."
"It is too broad scale and complicated. It takes too many clicks to do things."
"They should concentrate on navigation and service improvements."
"The stability is okay, but could be improved. We sometimes receive strange errors, which can only be solved with specialists."
"vCenter and vRA, I believe they share two different databases so sometimes you have to somehow sync them up. I wish there was only one database between the two or, somehow, one database would rule over the other one, so if you have both products, the vCenter might use the vRA database. Otherwise, when you do stuff in vCenter, you have to write a command on vRA to update the databases."
"Something as simple as formatting the catalog in a different way would be helpful because there is no option for doing so. A lot of the contents for the virtual machine, blueprints that you can request, are hidden from view and there's no way to change the view."
"Technical support could be improved. I definitely feel that the product is accelerating faster than the support engineers are able to keep up with the knowledge needed to know what's going on. The developers maintaining vRealize Automation are doing a great job improving it, but VMware is not doing a great job of training the people who we call to get support for it."
Earn 20 points
CloudPassage is ranked 43rd in Cloud Security Posture Management (CSPM) while VMware Aria Automation is ranked 15th in Cloud Security Posture Management (CSPM) with 133 reviews. CloudPassage is rated 8.0, while VMware Aria Automation is rated 8.0. The top reviewer of CloudPassage writes "CloudPassage has a bunch of features. Be sure you understand all of them and how to extract value to your organization". On the other hand, the top reviewer of VMware Aria Automation writes "Allows for a lot of orchestration or customization within our environment to suit our customers". CloudPassage is most compared with , whereas VMware Aria Automation is most compared with Red Hat Ansible Automation Platform, VMware Aria Operations, vCloud Director, Morpheus and vCenter Orchestrator.
See our list of best Cloud Security Posture Management (CSPM) vendors.
We monitor all Cloud Security Posture Management (CSPM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.