No more typing reviews! Try our Samantha, our new voice AI agent.

ESET Cloud Apps Protection vs FortiCNAPP comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Feb 22, 2026

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Qualys TotalCloud
Sponsored
Ranking in Vulnerability Management
11th
Average Rating
8.6
Reviews Sentiment
7.3
Number of Reviews
39
Ranking in other categories
Container Security (11th), Cloud Workload Protection Platforms (CWPP) (7th), Cloud Security Posture Management (CSPM) (8th), SaaS Security Posture Management (SSPM) (1st), Cloud-Native Application Protection Platforms (CNAPP) (6th)
ESET Cloud Apps Protection
Ranking in Vulnerability Management
70th
Average Rating
9.6
Reviews Sentiment
7.4
Number of Reviews
2
Ranking in other categories
Email Security (44th), Patch Management (29th)
FortiCNAPP
Ranking in Vulnerability Management
29th
Average Rating
8.4
Reviews Sentiment
6.8
Number of Reviews
16
Ranking in other categories
Container Security (19th), Cloud Workload Protection Platforms (CWPP) (12th), Cloud Security Posture Management (CSPM) (14th), Cloud-Native Application Protection Platforms (CNAPP) (10th), Compliance Management (9th)
 

Mindshare comparison

As of July 2026, in the Vulnerability Management category, the mindshare of Qualys TotalCloud is 1.1%, up from 1.0% compared to the previous year. The mindshare of ESET Cloud Apps Protection is 0.5%, up from 0.1% compared to the previous year. The mindshare of FortiCNAPP is 1.8%, up from 1.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Vulnerability Management Mindshare Distribution
ProductMindshare (%)
Qualys TotalCloud1.1%
FortiCNAPP1.8%
ESET Cloud Apps Protection0.5%
Other96.6%
Vulnerability Management
 

Featured Reviews

RO
IT Security Expert at Alior Bank S.A.
Unified risk scoring has improved our cloud visibility and simplifies remediation priorities
Qualys TotalCloud provides unified vulnerability and threat assessment across both IAS and SaaS. This solution provides a single prioritized view of risk, which helps reduce the work I would have to do. We are no longer based on CVSS; we are based on Qualys risk scoring, which is based on CVSS plus internal findings made by Qualys, and then assigns its own score. The TruRisk insight feature has found a small number of assets with high vulnerability scores, though I am cautious since some information is classified. Qualys TotalCloud has positively impacted our bank's performance, and we have definitely seen benefits after implementing this solution.
LA
Team Manager at JJ soluciones
Great protection, good privacy, and helpful support
The only thing I would like is a way to open the email that is going to quarantine. Based on the level of security, they cannot open the email to check the message. Even for the administrator, you have to create a security copy to be sent, which will lock the log support. It's not easy for an admin to check and decide if the email is good or not. That is the only thing that I'm seeing could be improved. Basically, ESET doesn't have the ability to let the administrator release an email showing the message on the email. It's not possible. If you want to have an email review, you have to select an option to send a copy. In the way that they designed the system, for security, they are not letting anyone even have the admin privileges to make this happen. Privacy is at a really high level.
Charl Pinches - PeerSpot reviewer
Solutions Sales Specialist at a outsourcing company with 1,001-5,000 employees
Cloud risk has become visible and security teams prioritize and act on threats efficiently
FortiCNAPP can be improved because the platform can feel complex at the start, especially for teams new to CNAP tooling. Some users mention that they found the interface and data models less intuitive than expected, and I have had situations where reporting and alert configurations might require time. Regarding other improvements needed for FortiCNAPP, the majority of the time is that reporting and alert configuration might require time to tune properly. This is the significant issue, combined with the fact that some users find the interface and data model less intuitive than expected. Regarding FortiCNAPP's AI capabilities, I think there might be a bit of improvement needed. However, since Fortinet is a security vendor overall, keeping the data safe is not a problem. I know they have invested a lot in getting it to a place where it is a trusted platform.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Qualys TotalCloud's most valuable features are its cloud security posture management, Kubernetes, and container security capabilities."
"Qualys TotalCloud has improved our security posture."
"Qualys TotalCloud has significantly reduced our workload in terms of managing risks, helping us to be more efficient and save substantial resources."
"Once you have your vulnerabilities fixed and your patches pushed out using Qualys TotalCloud, then you are able to eliminate threats and cyber risk."
"Its excellent graphical interface makes the scanning process simple."
"Qualys TotalCloud fulfills all these needs."
"I would definitely recommend Qualys TotalCloud to other users."
"Qualys TotalCloud's most valuable feature is its agent versatility."
"It's a trustworthy solution that is easy to learn."
"The most valuable features are the precision of detection and the level of customization of the policy."
"We are close to having 99% or 98% detection."
"The machine learning capability in Lacework FortiCNAPP is used for threat detection, and automated policy recommendation helps to improve my security measures in general."
"FortiCNAPP definitely brings time-saving benefits, and security is the main concern for the company."
"The most valuable feature, from a compliance perspective, is the ability to use Lacework as a platform for multiple compliance standards. We have to meet multiple standards like PCI, SOC 2, CIS, and whatever else is out there. The ability to have reports generated, per security standard, is one of the best features for me."
"I find the cloud configuration compliance scanning mature. It generates a lot of data and supports major frameworks like ISO 27001 or SOC 2, providing reports and datasets. Another feature I appreciate is setting custom alerts for specific events. Additionally, I value the agent-based monitoring and scanning for compute nodes. It gives us deeper insights into our workloads and helps identify vulnerabilities across our deployed assets."
"Lacework is helping a lot in reducing the noise of the alerts. Usually, whenever you have a tool in place, you have a lot of noise in terms of alerts, but the time for an engineer to look into those alerts is limited. Lacework is helping us to consolidate the information that we are getting from the agents and other sources. We are able to focus only on the things that matter, which is the most valuable thing for us. It saves time, and for investigations, we have the right context to take action."
"FortiCNAPP is a competitive and robust solution, the only one in the IT sphere that addresses all quadrants in the Gartner Quadrants."
"The best feature, in my opinion, is the ease of use, as well as some levels of machine learning anomaly detection that they have that can detect pivotal anomalies faster."
"The most valuable feature is Lacework's ability to distill all the security and audit logs. I recommend it to my customers. Normally, when I consult for other customers that are getting into the cloud, we use native security tools. It's more of a rule-based engine."
 

Cons

"Areas that need improvement in every solution include the remediation part. The remediation steps should be simple enough for everyone to understand."
"Qualys TotalCloud needs to enhance its scanning capabilities in the IP domain, as it currently lacks the functionality to resolve IPs to their corresponding domain names."
"It has been working very well, but it would be helpful if the dashboard could generate reports tailored to specific compliance needs. For example, in India, we have to comply with RBI and SEBI guidelines. It w"
"There is room for improvement in the support."
"Qualys TotalCloud needs to improve its accuracy for non-Windows operating systems."
"I sometimes have difficulty detecting or uninstalling certain versions of applications, which I have to do manually."
"TotalCloud could improve its scanning of niche devices like Wi-Fi dongles and USB modems because they are often untested. It covers everything else, like laptops, mobile devices, and Bluetooth IoT devices. They can improve on the small IoT devices because hackers and testers use these."
"Enhancing clarity regarding its compliance capabilities would be beneficial, as the current scope is limited in geographic coverage."
"The specific domain file for Apache needs to be well-defined."
"It's not easy for an admin to check and decide if the email is good or not."
"FortiCNAPP can be improved because the platform can feel complex at the start, especially for teams new to CNAP tooling."
"In general, I would not recommend Lacework right now. There are more mature solutions that would be a better fit."
"Policy implementation is quite complex, and the stability will take more time for the solutions."
"Lacework has not reduced the number of alerts we get. We've actually had to add resources as a result of using it because the application requires a lot of people to understand it to get the value out of it properly."
"When considering improvements for FortiCNAPP, I think there could be enhancements regarding the license, possibly adding more options to it."
"Visibility is lacking, and both compliance-related metrics and IAM security control could be improved."
"The customer support for FortiCNAPP is fine, though it can take time as we need to engage with AWS first, but I would rate it around 7 or 8 out of 10."
"The biggest thing I would like to see improved is for them to pursue and obtain a FedRAMP moderate authorization... I don't believe they have any immediate plans to get FedRAMP moderate authorized, which is a bit of a challenge for us because we can only use Lacework in our commercial environment."
 

Pricing and Cost Advice

"Qualys TotalCloud is expensive, but it offers a premier solution with no headaches."
"TotalCloud's price is about right where I would expect it to be."
"Qualys TotalCloud is cost-efficient and was selected for its value compared to other products."
"As a middle management member, I do not have direct pricing knowledge, but based on the knowledge from our meetings, its pricing is competitive."
"The pricing for TotalCloud is attractive and competitive in the market. Given the features, especially the dashboard, I have no concerns regarding pricing."
"While Qualys TotalCloud's pricing is currently acceptable, it is becoming increasingly expensive and may soon be considered overpriced."
"Qualys TotalCloud offers cost-effective licensing flexibility."
"Its price seems higher compared to other tools, but it is worth it. If they could adjust the pricing and make it comparable with other tools, that would be great."
"The solution provides affordable pricing for medium sized industries."
"My smaller deployments cost around 200,000 a year, which is probably not as expensive as Wiz."
"The pricing has gotten better. That scenario was somewhat unstable. They have a rather interesting licensing structure. I believe you get 200 resources per "Lacework unit." It was difficult, in the beginning, to figure out exactly what a "resource" was... That was a problem until about a year or so ago. They have improved it and it has stabilized quite a bit."
"The licensing fee was approximately $80,000 USD, per year."
"It is slightly expensive. It depends on how big your environment is, but it is expensive. Right now, we are spending a lot of money. We have covered all of the cloud providers and most of our colocation facilities as well, so we cannot complain, but it is slightly expensive. It is not super expensive."
report
Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.
902,988 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Manufacturing Company
17%
Financial Services Firm
14%
Construction Company
8%
Comms Service Provider
7%
Construction Company
13%
Comms Service Provider
12%
Computer Software Company
10%
Financial Services Firm
8%
Financial Services Firm
9%
Computer Software Company
9%
Construction Company
8%
Manufacturing Company
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business9
Midsize Enterprise4
Large Enterprise29
No data available
By reviewers
Company SizeCount
Small Business9
Midsize Enterprise5
Large Enterprise7
 

Questions from the Community

What needs improvement with Qualys TotalCloud?
Areas that need improvement in every solution include the remediation part. The remediation steps should be simple en...
What is your primary use case for Qualys TotalCloud?
Our use case involves the assets that we have under cloud, the assets exposed to the internet, and the internal appli...
Ask a question
Earn 20 points
What is your experience regarding pricing and costs for Lacework?
The pricing is a mediator compared to other products; it is not that much higher and not much lower than other produc...
What needs improvement with Lacework?
When considering improvements for FortiCNAPP, I think there could be enhancements regarding the license, possibly add...
What is your primary use case for Lacework?
Deploying FortiCNAPP is easy for us because our technicians know FortiGate, which is the solution, and they are famil...
 

Also Known As

Qualys TotalCloud with FlexScan
ESET Mail Security
Polygraph, FortiCNP, Lacework
 

Overview

 

Sample Customers

Information Not Available
Information Not Available
J.Crew, AdRoll, Snowflake, VMWare, Iterable, Pure Storage, TrueCar, NerdWallet, and more.
Find out what your peers are saying about ESET Cloud Apps Protection vs. FortiCNAPP and other solutions. Updated: June 2026.
902,988 professionals have used our research since 2012.