No more typing reviews! Try our Samantha, our new voice AI agent.

JupiterOne vs Vicarius vRx comparison

Sponsored
 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Qualys TotalCloud
Sponsored
Ranking in Vulnerability Management
11th
Average Rating
8.6
Reviews Sentiment
7.3
Number of Reviews
39
Ranking in other categories
Container Security (11th), Cloud Workload Protection Platforms (CWPP) (7th), Cloud Security Posture Management (CSPM) (8th), SaaS Security Posture Management (SSPM) (1st), Cloud-Native Application Protection Platforms (CNAPP) (6th)
JupiterOne
Ranking in Vulnerability Management
48th
Average Rating
8.2
Reviews Sentiment
7.1
Number of Reviews
5
Ranking in other categories
Identity and Access Management as a Service (IDaaS) (IAMaaS) (22nd), Cloud Security Posture Management (CSPM) (29th), Cyber Asset Attack Surface Management (CAASM) (5th)
Vicarius vRx
Ranking in Vulnerability Management
16th
Average Rating
8.0
Reviews Sentiment
7.6
Number of Reviews
21
Ranking in other categories
Patch Management (6th), Risk-Based Vulnerability Management (10th)
 

Mindshare comparison

As of July 2026, in the Vulnerability Management category, the mindshare of Qualys TotalCloud is 1.1%, up from 1.0% compared to the previous year. The mindshare of JupiterOne is 0.5%, up from 0.2% compared to the previous year. The mindshare of Vicarius vRx is 0.9%, up from 0.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Vulnerability Management Mindshare Distribution
ProductMindshare (%)
Qualys TotalCloud1.1%
Vicarius vRx0.9%
JupiterOne0.5%
Other97.5%
Vulnerability Management
 

Featured Reviews

RO
IT Security Expert at Alior Bank S.A.
Unified risk scoring has improved our cloud visibility and simplifies remediation priorities
Qualys TotalCloud provides unified vulnerability and threat assessment across both IAS and SaaS. This solution provides a single prioritized view of risk, which helps reduce the work I would have to do. We are no longer based on CVSS; we are based on Qualys risk scoring, which is based on CVSS plus internal findings made by Qualys, and then assigns its own score. The TruRisk insight feature has found a small number of assets with high vulnerability scores, though I am cautious since some information is classified. Qualys TotalCloud has positively impacted our bank's performance, and we have definitely seen benefits after implementing this solution.
Prakhar Birthare - PeerSpot reviewer
Machine Learning And Gen Ai Engineer at Jaypee University of Engineering and Technology
Automated cloud insights have transformed compliance monitoring and reduced audit preparation time
Regarding the advantages of JupiterOne, the automated asset discovery, graph-based visualizations, and compliance mapping against SOC 2 and ISO 27001 policy management with pre-built templates are standout features. The J1QL query language for custom security queries, alerting for misconfigurations, and integrations with AWS, GitHub, Okta, and CloudTrail are also valuable. The graph-based querying is underrated. Most people think of it as just an asset inventory tool, but the ability to query relationships between assets and understand what is connected to what in an automated compliance context is truly powerful once the team becomes comfortable with it. The impact is much better visibility into cloud security posture than I had before. My security team has spent less time manually hunting for information and more time actually acting on risk. The query capability helps me reduce back-and-forth between security and engineering. Instead of security asking the team manual questions about the environment, much of the context is now available directly in JupiterOne, allowing me to query it directly and get answers immediately. The monitoring part covers assets and metrics including asset coverage counts, compliance score percentage, policy violation counts, mean time to detect, mean time to respond, alert response rate, and integration count across connected tools. The policy violation count is the best metric I use to measure the impact of JupiterOne's centralized asset management repository on security initiatives.
OrenBen Shalom - PeerSpot reviewer
Information Security Manager at Pango
Consolidates vulnerability discovery, prioritization, and remediation in a single platform
Vicarius vRx offers several advantages, especially for organizations with diverse operating systems and applications requiring frequent patching. The platform helps prioritize patch installation by identifying high-risk vulnerabilities, allowing IT teams to focus on critical threats first. This prioritization is crucial because it prevents IT teams from being overwhelmed by the constant influx of patches, enabling them to create a manageable plan and allocate resources effectively. By distinguishing between critical, high-risk, and medium-risk vulnerabilities, Vicarius vRx empowers IT teams to address the most urgent threats promptly and schedule less critical patches for later. Both native operating system updates and Vicarius vRx offer vulnerability remediation. Native OS updates allow for the patching of system vulnerabilities on Windows, macOS, and Linux. However, Vicarius vRx provides a single solution for installing both operating system and application updates by also discovering application vulnerabilities. Another valuable feature is virtual patching, which allows us to protect an asset from a specific vulnerability without installing a patch. Sometimes, installing a patch alone is insufficient and requires restarting the asset. However, production servers often cannot be restarted during the day, restricting restarts to specific timeslots. Virtual patching creates a network-based protection layer that prevents exploitation of a vulnerability, offering a temporary safeguard. While not a foolproof solution for long-term use, it's a valuable tool that reduces tension between IT and security teams by providing time to properly install patches.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"By integrating TotalCloud, we have significantly reduced vulnerabilities in our deployment pipeline."
"TotalCloud's best feature is the integration of cloud accounts. It helps with the risk and security posture management of our cloud infrastructure."
"While automatic inventory detection upon connection is a helpful feature, a truly valuable capability would be assessing an environment's security posture against Azure and CIS best practices."
"TruRisk Insights is the most important innovation they've released this year."
"We were able to realize its benefits within 24 to 48 hours."
"If someone were to ask me to review Qualys TotalCloud, I would summarize it as an end-to-end solution for cloud security with visibility and governance-grade controls without needing to manage multiple disconnected tools."
"Qualys TotalCloud has positively impacted our bank's performance, and we have definitely seen benefits after implementing this solution."
"Qualys TotalCloud's most valuable feature is its agent versatility."
"Using JupiterOne, I have observed an increase in transaction success rates to 99% without improper data, translating to 99% time saved."
"The product’s UI is pretty decent and fast."
"I have definitely seen a positive return on investment from JupiterOne in a few concrete ways."
"JupiterOne helps us aggregate all those things on one single platform, allowing us to quickly identify what environment that asset lives in and what type of asset it is."
"The security team saved 80% of manual tracking time, reducing the weekly effort from 15 to 20 hours down to 3 to 4 hours."
"vRx seemed to be user-friendly and very easy to use."
"I liked the initial dashboard."
"Vicarius vRx's ability to patch third-party software is particularly valuable for us."
"Vicarius vRx's automation feature is its most valuable, allowing us to automate manual tasks, receive automated reports, and easily check device update status."
"Vicarius vRx consolidates vulnerability discovery, prioritization, and remediation in a single platform."
"Patchless Protection helps protect us from vulnerabilities that may not yet have patches from the manufacturer. I've used it for a piece of software that we don't have a patch for. It monitors that software, analyzes it, and makes sure nothing nefarious is going on when it's vulnerable."
"I also like how easy it is to use. We instructed some companies on how to use it, provided them with an account, and gave them the ability to deploy and patch. They could quickly figure it out. We can spend an hour in the office showing someone how everything works, and they're good to go. It's the same with our customers."
"Vicarius vRx offers several advantages, especially for organizations with diverse operating systems and applications requiring frequent patching."
 

Cons

"A feature improvement could be the inclusion of Windows OS support for container security, as it is currently only supported for Linux."
"With the growing integration of AI, I would like Qualys to enhance its service offerings to better accommodate AI-related risks."
"I would appreciate additional integration options to connect Qualys TotalCloud with our other vulnerability management tools."
"The response part of the Cloud Detection and Response (CDR) module can be improved."
"The patching process with Qualys Patch Management, which is part of TotalCloud, does not cover installing certain prerequisites on the servers or workstations. This shortcoming means we must rely on SCCM when any service stack updates or additional prerequisites are needed."
"Qualys TotalCloud has the potential to improve by integrating a hybrid platform for comprehensive management of both on-premises and cloud infrastructures."
"The support process is inefficient due to the excessive number of replies required when submitting tickets."
"The onboarding process is a bit difficult. In the initial phase, it is very difficult to understand the features, what the dashboard contains, and what criteria they are using."
"Regarding performance and speed scenarios for JupiterOne, queries sometimes take too long, especially when dealing with large datasets or complex graph relationships that can slow down significantly."
"However, the compliance module has not worked well, and we have had to continue tracking our compliance manually with the tools we use."
"You can only write Python queries in Jupiter, not other languages, like, SQL or PySpark."
"The only improvements I would suggest for JupiterOne are addressing the J1QL learning curve with better tutorials."
"JupiterOne could improve regarding the cost, as enterprise deployment can be costly."
"I don't like logging in. The portal could be a better process. You could use some third-party push notification rather than sending an email, waiting for the link to generate, and clicking on it. That would be good. It's somewhat frustrating when I need to log in."
"They do have a search function for device names. They already have a list of all our devices, however, if I'm looking for something, sometimes the name does not come up at the top of the list."
"Areas that need improvement include the CPU usage and the delay between sending updates and receiving feedback on their status."
"I would appreciate additional filter options, such as the ability to filter by AWS tags."
"While I appreciate the automation of vulnerability management, Vicarius vRx's current manual patchless application is a point for improvement."
"We did some automation. We kicked off scheduled updates to update our systems, but it did not work. When we attempted to scale the product and update multiple systems, we ran into a lot of issues. We also ran into the issue of it creating double assets."
"The multi-tenant portal has room for improvement."
"Vicarius vRx's application management capabilities could be improved by allowing users to manage and uninstall applications directly within the GUI, eliminating the need for scripting and streamlining the process."
 

Pricing and Cost Advice

"Qualys TotalCloud is expensive."
"Qualys TotalCloud is cost-efficient and was selected for its value compared to other products."
"The cost is high, but it meets our organizational needs."
"The pricing is comparable. It is built into our other product, so I cannot piecemeal it. It is a part of our subscription."
"As a middle management member, I do not have direct pricing knowledge, but based on the knowledge from our meetings, its pricing is competitive."
"I am not sure about the pricing. From what I understand, it is a bit on the higher side, but I do not have the exact numbers."
"TotalCloud's price is about right where I would expect it to be."
"Qualys TotalCloud offers competitive pricing given its comprehensive suite of features, including integration, assessment, remediation, and detection capabilities, all within a single platform."
Information not available
"From a pricing perspective, Vicarius was cheaper compared to other competitors."
"Vicarius vRx's per-asset pricing makes it easy for me to market to clients as it scales with their needs."
"Vicarius vRx offers a competitive price point for the features it provides."
"The pricing was very reasonable and fair compared to other products. I liked that there was no tiered system. One price gave access to everything, which is nice. It is not something you get too often with enterprise IT."
"I am not sure how much it costs, but it would have saved us some costs."
"Vicarius vRx is priced competitively within the market."
"I do not use other solutions, so I cannot compare its pricing to others, but its price seems okay."
"It is in the middle. It is not the cheapest solution, but it is also not terribly expensive. We found it to be a good fit. It is fairly priced."
report
Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.
902,988 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Manufacturing Company
17%
Financial Services Firm
14%
Construction Company
8%
Comms Service Provider
7%
Construction Company
17%
Financial Services Firm
15%
Comms Service Provider
6%
Manufacturing Company
6%
Computer Software Company
11%
Non Profit
10%
Media Company
9%
Manufacturing Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business9
Midsize Enterprise4
Large Enterprise29
No data available
By reviewers
Company SizeCount
Small Business11
Midsize Enterprise7
Large Enterprise3
 

Questions from the Community

What needs improvement with Qualys TotalCloud?
Areas that need improvement in every solution include the remediation part. The remediation steps should be simple en...
What is your primary use case for Qualys TotalCloud?
Our use case involves the assets that we have under cloud, the assets exposed to the internet, and the internal appli...
What needs improvement with JupiterOne?
Regarding performance and speed scenarios for JupiterOne, queries sometimes take too long, especially when dealing wi...
What is your primary use case for JupiterOne?
I have been using JupiterOne for four to five months. I explored JupiterOne during my cybersecurity studies, and it s...
What advice do you have for others considering JupiterOne?
I have several practical pieces of advice for anyone looking into JupiterOne. The first is to start with clear asset ...
What is your experience regarding pricing and costs for Vicarius vRx?
I do not use other solutions, so I cannot compare its pricing to others, but its price seems okay.
What needs improvement with Vicarius vRx?
I would be happy if the patch update could be downloaded to the Vicarius server and then implemented on the client. C...
What is your primary use case for Vicarius vRx?
We use Vicarius vRx to manage all third-party software updates. Previously, we could manage Windows updates, but thir...
 

Also Known As

Qualys TotalCloud with FlexScan
No data available
No data available
 

Overview

Find out what your peers are saying about JupiterOne vs. Vicarius vRx and other solutions. Updated: June 2026.
902,988 professionals have used our research since 2012.