Try our new research platform with insights from 80,000+ expert users

JFrog DevOps Cloud Platform vs Qualys CyberSecurity Asset Management comparison

JFrog and Qualys are both solutions in the Software Supply Chain Security category. JFrog is ranked #16 with an average rating of 8.0, while Qualys is ranked #5 with an average rating of 9.1. JFrog holds a 0.5% mindshare in SSCS, compared to Qualys’s 1.7% mindshare. Additionally, 100% of JFrog users are willing to recommend the solution, compared to 100% of Qualys users who would recommend it.
JFrog DevOps Cloud Platform
Read 3 JFrog DevOps Cloud Platform reviews
  • 22 Views
  • 12 Comparison Views
100% willing to recommend
Qualys CyberSecurity Asset ...
Read 21 Qualys CyberSecurity Asset Management reviews
  • 78 Views
  • 51 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Apr 20, 2025

JFrog DevOps Cloud Platform and Qualys CyberSecurity Asset Management are competing products in DevOps and cybersecurity asset management. JFrog seems favorable in pricing and deployment support, whereas Qualys leads in comprehensive cybersecurity features.

Features: JFrog DevOps Cloud Platform enhances CI/CD processes through artifact management, integration capabilities, and robust DevOps workflows. Qualys CyberSecurity Asset Management offers cybersecurity asset discovery, assessment, and risk management, providing superior asset visibility, security compliance, and more comprehensive cybersecurity features.

Ease of Deployment and Customer Service: JFrog DevOps Cloud Platform integrates seamlessly within existing DevOps infrastructures, thanks to extensive documentation and community support. Qualys CyberSecurity Asset Management features a SaaS deployment model for quick implementation and centralized asset management, with direct customer support.

Pricing and ROI: JFrog DevOps Cloud Platform offers a competitive pricing structure, delivering solid ROI in streamlining DevOps tasks. Qualys CyberSecurity Asset Management, priced higher, provides significant ROI by improving security posture and reducing threat response time. Both platforms balance upfront costs with long-term gains.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed JFrog DevOps Cloud Platform vs. Qualys CyberSecurity Asset Management Report (Updated: April 2025).
Buyer's Guide
JFrog DevOps Cloud Platform vs. Qualys CyberSecurity Asset Management
April 2025
Download the complete report
Helped 850,028 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

JFrog DevOps Cloud Platform
Ranking in Software Supply Chain Security
16th
Average Rating
8.0
Reviews Sentiment
7.2
Number of Reviews
3
Ranking in other categories
AWS Marketplace (32nd), DevSecOps (11th)
Qualys CyberSecurity Asset ...
Ranking in Software Supply Chain Security
5th
Average Rating
9.2
Reviews Sentiment
7.6
Number of Reviews
21
Ranking in other categories
Vulnerability Management (10th), Patch Management (7th), Cyber Asset Attack Surface Management (CAASM) (2nd), Attack Surface Management (ASM) (4th)
 

Mindshare comparison

As of May 2025, in the Software Supply Chain Security category, the mindshare of JFrog DevOps Cloud Platform is 0.5%. The mindshare of Qualys CyberSecurity Asset Management is 1.7%, up from 0.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Software Supply Chain Security
 

Featured Reviews

Fredierick Saladas - PeerSpot reviewer
Provides superior integration options and comprehensive reporting features
The product could benefit from enhanced integration capabilities with older software systems and more customizable reporting options. Improved support for mobile devices would also be advantageous, allowing team members to access the system more effectively while on the go. In the next release, we would like to see advanced analytics features, including predictive analytics to help forecast project outcomes. Additionally, a more robust mobile app with offline capabilities would be valuable for remote work scenarios.
Read full review
Revathi VeeraRaghavan - PeerSpot reviewer
Provides comprehensive visibility and covers the complete attack surface
For some of the software, there was no life cycle or general information. We wanted them to give details in the database as and when the software comes. I raised a ticket for that, and after that, they updated the details for more than one million software. They should address the false positives generated in EASM. It is fetching assets that have Infosys as the keyword. They should fix that. When we click on the web application, it only shows potential web assets. The application details are not there. Overall, CSAM has matured a lot. These are the few enhancements that need to be done.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable features include task tracking and reporting capabilities."
"They have a professional service team that works alongside their engineering and performance teams."
"I appreciate the features in JFrog DevOps Cloud Platform, especially the efficient file management where downloads and uploads are optimized, saving time. The storage efficiency is also great as it avoids redundancy, which is crucial for our team. It is also quite easy to use, especially for basic commands through the command line. It's straightforward for us internally, and our data is well-hosted on their servers, which makes data location and querying fast and efficient. Moving our storage to JFrog has streamlined our development cycle by eliminating duplicated data, which previously took up extra space locally. This efficiency is crucial for our workflow, although network speeds still play a significant role in performance."
"With Qualys CSAM, we can see which assets have critical application vulnerabilities. This feature helps us prioritize and address these vulnerabilities more efficiently."
"We have a diverse organization with a robust infrastructure of more than 300,000 assets. By creating unauthorized lists and rules in the Qualys CSAM module, I can block certain software from being used in the organization."
"The scanning results are pretty good, and some of the insights are quite valuable."
"I like the EASM part because it provides visibility into unmanaged assets that are public-facing."
"Qualys CSAM is valuable for providing end-of-life and end-of-sale information. It gives me visibility into the number of products or hardware items that are end-of-life."
"I would rate Qualys CyberSecurity Asset Management ten out of ten."
"I would rate the Qualys CSAM a ten out of ten for its overall performance."
"I would rate Qualys CSAM a ten out of ten."
More Qualys CyberSecurity Asset Management pros
 

Cons

"Our locations are in different environments, so the remote server takes time to catch up, causing replication delays. The engineering team suggested that this issue would be resolved, but I'm not sure if it has been addressed yet. This is more of a feature enhancement that we suggested."
"We have encountered stability issues lately, particularly with frequent 500 internal server errors. Despite efforts from our DevOps team to adjust settings, these issues persist, affecting our workflow, especially with machine learning data uploads. Overall, while it's beneficial for storage and accessibility, stability issues need improvement for seamless operations. The occasional occurrence of internal server errors takes several minutes to resolve on their own and can disrupt workflows. Another concern is that sometimes files appear to be successfully uploaded, but then they cannot be downloaded, with no error message indicating the issue during the upload process. This inconsistency needs to be addressed by JFrog to ensure reliable functionality for users like us."
"The product could benefit from enhanced integration capabilities with older software systems and more customizable reporting options."
"From the user experience perspective, we need a simpler interface and reduced complexity in certain features, particularly with the Qualys Query Language."
"Further research and development are needed to enhance integration with other cloud agents and products, particularly improving communication with external products and vendors."
"The Qualys CAPS service requires further exploration and improvement, particularly in its handling of protocols and reactivity with MAC and IP addresses for CAP agents."
"Based on the company's budget, Qualys offers limited features, which can also be utilized in other environments."
"Currently, whenever the agent is running, it consumes over ten percent of my CPU, indicating that CPU consumption is another area Qualys needs to address."
"Further research and development are needed to enhance integration with other cloud agents and products, particularly improving communication with external products and vendors."
"The main aspect that needs improvement is the user interface, which should be more intuitive."
"Currently, in the EASM module, the scan frequency is limited to once daily, but allowing end users control over scan scheduling would be advantageous."
More Qualys CyberSecurity Asset Management cons
 

Pricing and Cost Advice

"The product pricing is competitive but worth negotiating for volume discounts or longer-term contracts."
"Regarding pricing, I focus on the platform's interface and user communication rather than costs."
"Qualys offers excellent value for money."
"The pricing is market-competitive."
"Qualys is competitively priced for its features. Its pricing is suitable for large organizations with more than 4,000 assets, but for smaller organizations with few assets, such as banks, the costs might be high. They should come up with packages that are suitable for small organizations."
"The pricing for Qualys CSAM is nominal."
"The pricing is reasonable relative to the features provided, as it collects all module data and operates as a main, centralized inventory, making it a cost-effective solution."
"Qualys CyberSecurity Asset Management can be expensive, especially if we already have VMDR."
"It is cost-effective because, in a single tool, we are getting everything. All the solutions come in a single license or price."
"The cost for Qualys CyberSecurity Asset Management is high."
More Qualys CyberSecurity Asset Management pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Software Supply Chain Security solutions are best for your needs.
See recommendations
850,028 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
No data available
Computer Software Company
20%
Financial Services Firm
13%
Government
9%
Retailer
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What needs improvement with JFrog DevOps Cloud Platform?
The product could benefit from enhanced integration capabilities with older software systems and more customizable reporting options. Improved support for mobile devices would also be advantageous,...
See all answers
What advice do you have for others considering JFrog DevOps Cloud Platform?
Overall, the solution has been a great asset to our team. I advise investing time in the initial setup and training to leverage its capabilities fully. Ensure you clearly understand your needs and ...
See all answers
What is your experience regarding pricing and costs for JFrog DevOps Cloud Platform?
The product pricing is competitive but worth negotiating for volume discounts or longer-term contracts. Licensing options are flexible, but ensure you understand the terms and any additional costs ...
See all answers
What is your experience regarding pricing and costs for Qualys CyberSecurity Asset Management?
The pricing is reasonable relative to the features provided, as it collects all module data and operates as a main, centralized inventory, making it a cost-effective solution.
See all answers
What needs improvement with Qualys CyberSecurity Asset Management?
The deployment is somewhat complicated and could be made more user-friendly for most users. It is currently not user-friendly for all users. It is good but can be improved. It is a new product, and...
See all answers
What is your primary use case for Qualys CyberSecurity Asset Management?
We use it to identify all our assets, including those on our premises, cloud, and remote environments. It continuously monitors our assets, collects details like installed software, configurations,...
See all answers
 

Comparisons

No data available
Amazon Inspector vs Qualys CyberSecurity Asset Management Logo
Amazon Inspector vs Qualys CyberSecurity Asset Management
Compared 15% of the time
Armis vs Qualys CyberSecurity Asset Management Logo
Armis vs Qualys CyberSecurity Asset Management
Compared 14% of the time
Microsoft Defender External Attack Surface Management vs Qualys CyberSecurity Asset Management Logo
Microsoft Defender External Attack Surface Management vs Qualys CyberSecurity Asset Management
Compared 10% of the time
CrowdStrike Falcon vs Qualys CyberSecurity Asset Management Logo
CrowdStrike Falcon vs Qualys CyberSecurity Asset Management
Compared 9% of the time
Axonius vs Qualys CyberSecurity Asset Management Logo
Axonius vs Qualys CyberSecurity Asset Management
Compared 7% of the time
More Qualys CyberSecurity Asset Management Competitors
 

Product Reports

Buyer's Guide
AWS Marketplace
April 2025
JFrog DevOps Cloud Platform reportDownload JFrog DevOps Cloud Platform product report
Buyer's Guide
Qualys CyberSecurity Asset Management
April 2025
Qualys CyberSecurity Asset Management reportDownload Qualys CyberSecurity Asset Management product report
 

Overview

The JFrog DevOps Cloud Platform optimizes software development life cycles through robust artifact management, CI/CD automation, and strong version control. Notable for its security features, it supports seamless software version maintenance and vulnerability scanning. Praised for enhancing organizational efficiency, it ensures faster, secure deliveries, improving collaboration within teams.

JFrog

Qualys CyberSecurity Asset Management provides advanced real-time asset visibility, dynamic tagging, and External Attack Surface Management. It streamlines asset discovery and management using cloud agents and IP-based scanning, enhancing risk management and software lifecycle tracking.

Qualys CyberSecurity Asset Management offers a comprehensive solution for managing asset inventories and tracking software lifecycle states. It facilitates network visibility and supports zero-day vulnerability solutions, enhancing security posture through efficient monitoring. Users benefit from its cloud-based interface, which provides in-depth asset configurations and insights. Key features include automated vulnerability scanning and unauthorized software management, reducing manual efforts. The platform also emphasizes the importance of timely remediation and ongoing risk mitigation across multiple environments. Despite its strengths, users note the need for enhanced integration with additional CMDBs beyond ServiceNow, as well as cost efficiency improvements. Requests also include better report customization, more scan control, and a simplified UI.

What are the key features of Qualys CyberSecurity Asset Management?
  • Real-time Visibility: Offers continuous insight into asset status and condition.
  • Dynamic Tagging: Allows for flexible organization and assessment of assets.
  • External Attack Surface Management: Identifies potential threats from external sources.
  • Automated Vulnerability Scanning: Reduces manual scanning efforts and identifies vulnerabilities instantly.
  • Unauthorized Software Management: Detects and manages software not approved for use.
  • Asset Purge Rule: Automates the removal of obsolete assets from the inventory.
What benefits should users look for in reviews?
  • Enhanced Security Posture: Gains stronger defense through effective asset monitoring.
  • Efficient Risk Management: Identifies threats quickly, enabling timely resolutions.
  • Improved Compliance: Assists in meeting industry standards and regulations.
  • Reduced Manual Effort: Automates repetitive tasks, saving time and resources.
  • Comprehensive Insight: Provides detailed data for informed decision making.

In industries like finance, healthcare, and manufacturing, Qualys CyberSecurity Asset Management enhances asset control by offering visibility into hardware and software configurations. It aids in maintaining security compliance and identifying unauthorized software, crucial for sectors with strict regulatory requirements.

Qualys
Buyer's Guide
JFrog DevOps Cloud Platform vs. Qualys CyberSecurity Asset Management
April 2025
Free Report: JFrog DevOps Cloud Platform vs. Qualys CyberSecurity Asset Management
Find out what your peers are saying about JFrog DevOps Cloud Platform vs. Qualys CyberSecurity Asset Management and other solutions. Updated: April 2025.
DOWNLOAD NOW
850,028 professionals have used our research since 2012.
See our JFrog DevOps Cloud Platform vs. Qualys CyberSecurity Asset Management report.
See our list of best Software Supply Chain Security vendors.

We monitor all Software Supply Chain Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.