Qualys CyberSecurity Asset Management vs SentinelOne Singularity Identity comparison

Qualys and SentinelOne are both solutions in the Vulnerability Management category. Qualys is ranked #7 with an average rating of 9.0, while SentinelOne is ranked #21 with an average rating of 9.5. Qualys holds a 1.3% mindshare in VM, compared to SentinelOne’s 0.8% mindshare. Additionally, 97% of Qualys users are willing to recommend the solution, compared to 95% of SentinelOne users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Nov 2, 2025

SentinelOne Singularity Identity and Qualys CyberSecurity Asset Management compete in the cybersecurity market. SentinelOne seems to have the upper hand due to strong endpoint protection and responsive customer support, offering high ROI despite a higher price.

Features: SentinelOne Singularity Identity provides robust behavioral-based threat detection, AI-driven prevention, and effective endpoint protection, appreciated for its lightweight agent and dynamic security approach. Its unified view and real-time monitoring are significant assets. Qualys CyberSecurity Asset Management offers comprehensive asset visibility with dynamic tagging and integration capabilities, providing in-depth insights into vulnerabilities and broad attack surface management ideal for large organizations needing detailed asset views and compliance tracking.

Room for Improvement: SentinelOne Singularity Identity could improve endpoint management flexibility, web filtering, and the update process, alongside reporting functionalities. Qualys CyberSecurity Asset Management can benefit from a more intuitive UI, enhanced scan configuration options, and improved dynamic tagging, with better integration capabilities and a clearer pricing structure to attract smaller organizations.

Ease of Deployment and Customer Service: SentinelOne Singularity Identity is noted for its responsive customer support, offering varying support levels. First-level support may need improvement. Qualys CyberSecurity Asset Management has decent support across multiple cloud environments but faces initial setup complexity and ongoing integration challenges that need addressing for improved customer interaction, especially in hybrid cloud environments.

Pricing and ROI: SentinelOne Singularity Identity, though high-priced, delivers strong ROI through effective threat protection and time savings, with a competitive and fair pricing model. Cost transparency and diverse price points could enhance its appeal. Qualys CyberSecurity Asset Management, offering valuable features at a high cost, may be prohibitive for smaller organizations but provides good value for money with competitive pricing, especially when bundled with other services.

To learn more, read our detailed Qualys CyberSecurity Asset Management vs. SentinelOne Singularity Identity Report (Updated: December 2025).

Buyer's Guide

Qualys CyberSecurity Asset Management vs. SentinelOne Singularity Identity

December 2025

Download the complete report

Helped 881,082 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Zafran Security

Mindshare comparison

As of January 2026, in the Vulnerability Management category, the mindshare of Zafran Security is 1.1%, up from 0.2% compared to the previous year. The mindshare of Qualys CyberSecurity Asset Management is 1.3%, up from 0.4% compared to the previous year. The mindshare of SentinelOne Singularity Identity is 0.8%, up from 0.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Vulnerability Management Market Share Distribution
Product	Market Share (%)
Qualys CyberSecurity Asset Management	1.3%
Zafran Security	1.1%
SentinelOne Singularity Identity	0.8%
Other	96.8%

Vulnerability Management

Featured Reviews

Reviewer6233

Works at a healthcare company with 10,001+ employees

Has become an indispensable tool in our cybersecurity arsenal

While Zafran Security is already a powerful tool, there are areas where it could be further improved to provide even greater value. One key area for enhancement is the searching capabilities within its vulnerabilities module. By incorporating the ability to create Boolean searches, users would gain the ability to apply more complex filters and customize their search criteria. This would greatly enhance the precision and efficiency with which security teams can identify and prioritize vulnerabilities. Having such tailored search capabilities would save time and resources by narrowing down vast lists of vulnerabilities to those that meet specific parameters relevant to our unique risk environment. Additionally, integrating more robust reporting and visualization tools would be advantageous. Enhanced dashboards that offer customizable visual representations of risk configurations and threat landscapes would facilitate better communication with stakeholders, making it easier to explain vulnerabilities and the rationale behind certain security measures. This would also aid in demonstrating the improvements and value derived from existing security investments to leadership and non-technical team members.

Read full review

Arshad N. R.

Cyber Security Specialist at UBS Financial

Customized dashboards and quick deployment support comprehensive asset management

We use the True Risk Score for vulnerability prioritization, though we do not solely rely upon it since some assets may be decommissioned soon or not in use. From Qualys CyberSecurity Asset Management, we primarily focus on internet-facing assets. We have created separate tasks for internet-facing assets and track the True Risk dashboard specifically for these assets. If the True Risk Score is higher for any internet-facing assets, then we take action accordingly. The True Risk Score is very helpful for prioritization. The initial setup was straightforward and easy. We needed to create customized tags, group them twice, and validate whether the operating system detection was true positive or false positive. We encountered some false positives, which required coordination with the IT team for verification. In six months, we had approximately 20-25 machines that needed verification on a weekly basis. We coordinated with the IT team to identify the exact operating system specifications.

Read full review

Roftiel Constantine

Global Chief Information Security Officer at Barry-Wehmiller

Provides proactive threat remediation, reduces alert volume, and enhances incident response capabilities

During our pre-purchase evaluation of SentinelOne's EDR capabilities three years ago, we were consistently impressed by the positive relationships customers reported having with SentinelOne's engineers, sales teams, and customer success managers. These strong relationships, evident in the customers' unsolicited feedback, highlighted the "soft skills" and intangible qualities that SentinelOne possessed. This positive customer experience has been mirrored in our own interactions with them. Their responsiveness to our needs, particularly when addressing a couple of challenges we faced, has been excellent. They proactively scheduled weekly meetings to demonstrate their commitment to resolving our issues, a customer-centric approach I admire. SentinelOne's dedication to customer service, including their rapid technology updates and responsiveness to our suggestions, has been crucial to our success in protecting our organization. Their ability to quickly incorporate our needs into new releases is truly impressive and sets them apart. Overall, I highly recommend SentinelOne based on our positive interactions across all levels of their organization.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Overall, we have seen about eighty-seven percent reduction of the number of vulnerabilities that require urgency to remediate, specifically the number of criticals."

"Zafran has become an indispensable tool in our cybersecurity arsenal."

"Zafran is an excellent tool."

"With Zafran Security, it integrates with your security controls, allowing you to take that risk score and reduce it based on the controls in place or increase the risk based on different factors, such as if the issue is internet reachable or if there's an exploit in the wild."

"We saw benefits from Zafran Security almost immediately after deploying it."

"We are able to see the real risk of a vulnerability on our environment with our security tools."

"It provides most of the information needed regarding the assets, including the operating system and whether the assets are network devices or servers."

"The main thing I appreciate about Qualys CyberSecurity Asset Management is the cloud environment while tracking software and zero-day vulnerability risk, alongside asset discovery and tagging, as well as attack surface management."

"Authorized and unauthorized software visibility is the best feature for me."

"I recommend Qualys CyberSecurity Asset Management due to its superior asset information collection capabilities, including comprehensive hardware and software inventorying."

"I would rate Qualys CyberSecurity Asset Management ten out of ten."

"Tags are very useful for us since we can tag virus applications in infrastructure types such as databases, operating systems, or web platforms."

"Our favorite features are the tagging and the ability to quickly find assets in the portal."

"The scanning results are pretty good, and some insights are quite valuable."

More Qualys CyberSecurity Asset Management pros

"Having high visibility into all of our network concerns and a customizable UI are the most valuable features."

"The response is a valuable aspect of SentinelOne."

"I like the detection and protection features. We don't need to do anything, and it will alert us when the mitigation is not successful. We only need to target those endpoints. Otherwise, we don't have to do anything about that."

"Incident response is one of the key areas where the solution has been very useful. Whenever there is an incident, instead of being reactive, the government is now able to quickly gain the data that it needs to see what its end agency is also seeing and partner with them in real-time to look at the same data and to collaborate where needed, empowering the agency to be able to do their job."

"The threat detection capability is the most valuable feature."

"The most valuable feature of SentinelOne Singularity Identity is its ability to detect based on behavior rather than just static signatures."

"The product's initial setup phase is straightforward."

"The XDR capabilities are very good."

More SentinelOne Singularity Identity pros

Cons

"I think the ability to have some enhanced reporting capabilities is something they can improve on, as they have good reports but we have asked for some specific reporting enhancements."

"Initially, we were somewhat concerned about the scalability of Zafran due to our large asset count and the substantial amount of information we needed to process."

"The dashboarding and reporting functionality of Zafran Security is an area that definitely could use some improvements."

"It is automatically exporting the vulnerabilities and the assets. However, it would be useful to have the ability to select or to filter which we would like to export."

"The Qualys CAPS service requires further exploration and improvement, particularly in its handling of protocols and reactivity with MAC and IP addresses for CAP agents."

"In our reporting, we faced a challenge syncing with cloud devices."

"Qualys CSAM is not super responsive, and there can be delays sometimes, especially with the network passive sensor. You might see duplicate objects which eventually disappear but it takes time. If that can be done faster, it will be great."

"The main aspect that needs improvement is the user interface, which should be more intuitive."

"Further research and development are needed to enhance integration with other cloud agents and products, particularly improving communication with external products and vendors."

"Currently, whenever the agent is running, it consumes over ten percent of my CPU, indicating that CPU consumption is another area Qualys needs to address."

"The scanning function could be improved."

More Qualys CyberSecurity Asset Management cons

"To enhance our already strong partnership with SentinelOne, we should focus on improving collaboration."

"Our engineers are dealing with issues to add exclusions to the antivirus for custom applications."

"A lot of those features came from an acquisition of a different company."

"The solution's query resolution time could be reduced further, and a faster resolution could be provided."

"There is a clear roadmap for improvements, including enhancing capabilities with AI and seamless functionality in an MSP model for deeper visibility across multiple agencies. Further development is anticipated to continue enhancing the solution."

"Agent connectivity can be improved, as it is one aspect of the product with certain shortcomings."

"SentinelOne Singularity Identity could be more user-friendly."

"Sometimes I get kicked out of the console. I don't know why."

More SentinelOne Singularity Identity cons

Pricing and Cost Advice

Information not available

"The pricing is fair. I would love to see the price come down a little bit, but we do get a lot of value out of it. We are squeezing every ounce of value we can out of the tool."

"The pricing is market-competitive."

"The Qualys Cybersecurity Asset Management pricing is well-aligned with our usage."

"Though the solution is considered expensive, if bundled with other services such as VMDR or cloud agents, its value would significantly increase. It is currently a bit costly, but with bundling, it could become attractive to more customers."

"Qualys offers excellent value for money."

"The cost for Qualys CyberSecurity Asset Management is high."

"It is cost-effective because, in a single tool, we are getting everything. All the solutions come in a single license or price."

"The pricing is reasonable relative to the features provided, as it collects all module data and operates as a main, centralized inventory, making it a cost-effective solution."

More Qualys CyberSecurity Asset Management pricing and cost advice

"The price is affordable."

"SentinelOne seemed to offer more while being priced lower than its competitors."

"SentinelOne Singularity Identity's pricing is cheaper than CrowdStrike and is really good."

"Ideally, I would like SentinelOne to lower their prices a little bit."

"The price of SentinelOne Singularity Identity is relatively high, but it offers numerous features and capabilities that make it well worth the investment."

"As a SentinelOne partner, we offer competitive pricing on comprehensive packages that include the SentinelOne license, our management services, and a proof-of-concept to ensure the technology meets your needs."

"Their pricing has been fair, especially in the current market, and they haven't excessively increased prices at renewal times like many vendors do."

"There is a need to make yearly payments towards the licensing charges associated with the product...I think the prices associated with the product are okay and it is not too expensive."

More SentinelOne Singularity Identity pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.

See recommendations

881,082 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

11%

Manufacturing Company

Computer Software Company

Outsourcing Company

Computer Software Company

13%

Financial Services Firm

13%

Manufacturing Company

Comms Service Provider

Computer Software Company

11%

Manufacturing Company

Financial Services Firm

Performing Arts

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

By reviewers
Company Size	Count
Small Business	8
Midsize Enterprise	2
Large Enterprise	23

By reviewers
Company Size	Count
Small Business	4
Midsize Enterprise	5
Large Enterprise	13

Questions from the Community

What is your experience regarding pricing and costs for Zafran Security?

Since we stood Zafran Security up in our private cloud, we handle the maintenance on our side. As we opted not to use...

See all answers

What needs improvement with Zafran Security?

In terms of areas for improvement, Zafran Security is doing a really great job as a new and emerging company. Oftenti...

See all answers

What is your primary use case for Zafran Security?

My use cases for Zafran Security revolve around two primary areas. One is around vulnerability management and priorit...

See all answers

What is your experience regarding pricing and costs for Qualys CyberSecurity Asset Management?

I'm not entirely sure about the pricing; I don't know.

See all answers

What needs improvement with Qualys CyberSecurity Asset Management?

I think the one thing Qualys CyberSecurity Asset Management can do better is the package management and the updating ...

See all answers

What is your primary use case for Qualys CyberSecurity Asset Management?

I primarily use it for a small, single-site, multi-source setup with multi-WAN inputs. I have a main fiber connection...

See all answers

What is your experience regarding pricing and costs for SentinelOne Singularity Identity?

I have no visibility into pricing, setup costs, or licensing as the government handles these aspects directly with Se...

See all answers

What needs improvement with SentinelOne Singularity Identity?

Regarding improvements, I believe that API integration in third-party applications could be better. The Singularity t...

See all answers

What is your primary use case for SentinelOne Singularity Identity?

One of the main use cases I describe is that we face lateral movement in our customer's server side. The customer is ...

See all answers

Comparisons

Wiz Code vs Zafran Security

Compared 24% of the time

Tenable Vulnerability Management vs Zafran Security

Compared 10% of the time

Vulcan Cyber vs Zafran Security

Compared 10% of the time

Nucleus vs Zafran Security

Compared 8% of the time

Qualys VMDR vs Zafran Security

Compared 6% of the time

More Zafran Security Competitors

Armis vs Qualys CyberSecurity Asset Management

Compared 7% of the time

CrowdStrike Falcon vs Qualys CyberSecurity Asset Management

Compared 6% of the time

Axonius vs Qualys CyberSecurity Asset Management

Compared 5% of the time

Amazon Inspector vs Qualys CyberSecurity Asset Management

Compared 4% of the time

Bitsight vs Qualys CyberSecurity Asset Management

Compared 4% of the time

More Qualys CyberSecurity Asset Management Competitors

Huntress Managed ITDR vs SentinelOne Singularity Identity

Compared 12% of the time

Tenable Vulnerability Management vs SentinelOne Singularity Identity

Compared 8% of the time

Microsoft Defender for Identity vs SentinelOne Singularity Identity

Compared 5% of the time

Wiz vs SentinelOne Singularity Identity

Compared 5% of the time

Adlumin Security Operations vs SentinelOne Singularity Identity

Compared 5% of the time

More SentinelOne Singularity Identity Competitors

Product Reports

Buyer's Guide

Zafran Security

January 2026

Download Zafran Security product report

Buyer's Guide

Qualys CyberSecurity Asset Management

January 2026

Qualys CyberSecurity Asset Management report

Download Qualys CyberSecurity Asset Management product report

Buyer's Guide

SentinelOne Singularity Identity

January 2026

Download SentinelOne Singularity Identity product report

Overview

Zafran Security integrates with existing security tools to identify and mitigate vulnerabilities effectively, proving that most critical vulnerabilities are not exploitable, optimizing threat management.

Zafran Security introduces an innovative operating model for managing security threats and vulnerabilities. By leveraging the threat exposure management platform, it pinpoints and prioritizes exploitable vulnerabilities, reducing risk through immediate remediation. This platform enhances your hybrid cloud security by normalizing vulnerability signals and integrating specific IT context data, such as CVE runtime presence and internet asset reachability, into its analysis. No longer reliant on patch windows, Zafran Security allows you to manage risks actively.

What are the key features of Zafran Security?

Threat Exposure Management: Utilizes existing tools to prioritize vulnerabilities and manage threats.
Integrative Analysis: Combines security data with IT context for precise vulnerability management.
Real-time Risk Reduction: Enables immediate risk management without waiting for patches.
Hybrid Cloud Compatibility: Functions across diverse cloud environments for comprehensive security.

What benefits can users expect from Zafran Security?

Improved Security: Enhances protection by efficiently identifying and mitigating risks.
Cost Efficiency: Reduces unnecessary patching expenses by confirming non-exploitable vulnerabilities.
Time Savings: Frees developers to focus on root causes by handling immediate threats.
Comprehensive Insight: Offers a holistic view of security threats and vulnerabilities.

In industries where security is paramount, such as finance and healthcare, Zafran Security provides invaluable protection by ensuring that only exploitable vulnerabilities are addressed. It allows entities to maintain robust security measures while allocating resources efficiently, fitting seamlessly into existing security strategies.

Zafran Security

Qualys CyberSecurity Asset Management provides key features including asset inventory management, end-of-life tracking, dynamic tagging, and integration with CMDB, offering extensive visibility and support for proactive threat response.

Qualys offers comprehensive visibility across hardware and software assets, aiding in tracking unauthorized applications and facilitating automated vulnerability remediation. Its user-friendly interface and dynamic risk scoring enhance security posture management. Users leverage it for vulnerability management and compliance, benefiting from real-time risk identification and efficient operations in cloud and on-premises environments.

What are the key features of Qualys CyberSecurity Asset Management?

Asset Inventory Management: Provides detailed visibility over hardware and software assets.
End-of-Life Tracking: Helps identify technical debt by pinpointing outdated hardware and software.
Dynamic Tagging: Allows flexible classification and categorization of assets.
Real-Time Risk Identification: Detects risks as they arise, enhancing threat response capabilities.
CMDB Integration: Streamlines data integration for comprehensive asset insights.

What benefits should users look for in Qualys reviews?

Improved Security Posture: Enables proactive threat management and streamlined operations.
Efficient Remediation: Automates vulnerability management and patch deployment.
User-Friendly Operations: Simplifies cybersecurity operations with an intuitive interface.
Comprehensive Asset Visibility: Offers unparalleled insight into organizational assets.
Scalable Solutions: Facilitates asset tracking across cloud and on-premises environments.

Cybersecurity teams in various industries, such as financial services, healthcare, and manufacturing, utilize Qualys to manage technical debt through end-of-life tracking and facilitate robust patch management. It supports compliance and visibility initiatives, essential for maintaining data integrity and operational security in dynamic environments.

Qualys

Singularity Identity, a component of the Singularity platform, provides threat detection & response (ITDR) capabilities to defend Active Directory and domain-joined endpoints in real-time from adversaries aiming to gain persistent, elevated privilege and move covertly. Singularity Identity provides actionable, high-fidelity insight as attacks emerge from managed and unmanaged devices. It detects identity misuse and reconnaissance activity happening within endpoint processes targeting critical domain servers, service accounts, local credentials, local data, network data, and cloud data. On-agent cloaking and deception techniques slow the adversary down while providing situational awareness and halting adversarial attempts at lateral movement. Singularity Identity helps you detect and respond to identity-based attacks, providing early warning while misdirecting them away from production assets.

Singularity Identity’s primary use case is to protect credential data and disrupt identity-based attacks. The most valuable function of Singularity Identity is its ability to misdirect attackers by providing deceptive data to identity-based recon attacks. Additionally, it can hide and deny access to locally stored credentials or identity data on Active Directory domain controllers.

Singularity Identity also provides rapid detection and respond to identity attacks, capturing attack activity and feeding it directly to the Singularity platform’s Security DataLake for enterprise-wide analysis and response.

By implementing Singularity Identity, organizations benefit from enhanced security, reduced credential-related risks, and improved user productivity. It detects and responds to identity-based attacks, ensuring only authorized individuals can access critical identity data. With its cloaking capabilities to hide identity stored locally on endpoints or in the identity infrastructure and it’s ability to provide decoy results to identity-based attacks, organizations can effectively secure their sensitive or privileged identities, resulting in improved overall identity security.

SentinelOne

Buyer's Guide

Qualys CyberSecurity Asset Management vs. SentinelOne Singularity Identity

December 2025

Free Report: Qualys CyberSecurity Asset Management vs. SentinelOne Singularity Identity

Find out what your peers are saying about Qualys CyberSecurity Asset Management vs. SentinelOne Singularity Identity and other solutions. Updated: December 2025.

DOWNLOAD NOW

881,082 professionals have used our research since 2012.

See our Qualys CyberSecurity Asset Management vs. SentinelOne Singularity Identity report.

See our list of best Vulnerability Management vendors.

We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.