Try our new research platform with insights from 80,000+ expert users

Qualys CyberSecurity Asset Management vs Skybox Security Suite comparison

Qualys and Tufin are both solutions in the Vulnerability Management category. Qualys is ranked #8 with an average rating of 9.2, while Tufin is ranked #30 with an average rating of 7.6. Qualys holds a 0.9% mindshare in VM, compared to Tufin’s 0.5% mindshare. Additionally, 100% of Qualys users are willing to recommend the solution, compared to 83% of Tufin users who would recommend it.
Sponsored
Zafran Security
Read 5 Zafran Security reviews
  • 858 Views
  • 101 Comparison Views
100% willing to recommend
Qualys CyberSecurity Asset ...
Read 22 Qualys CyberSecurity Asset Management reviews
  • 585 Views
  • 232 Comparison Views
100% willing to recommend
Skybox Security Suite
Read 37 Skybox Security Suite reviews
  • 511 Views
  • 229 Comparison Views
83% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Jun 1, 2025

Skybox Security Suite and Qualys CyberSecurity Asset Management offer robust solutions in the cybersecurity market, but Skybox appears to have an advantage due to its comprehensive features, including firewall management and scalability, which are well-suited for large-scale implementations.

Features: Skybox excels in its Firewall Assurance, offering in-depth firewall change audits and compliance checks. Its Vulnerability Management integrates effectively with third-party tools. Network path analysis adds value by independently resolving connectivity issues. Qualys focuses on real-time asset monitoring and external attack surface management. Its asset discovery and tagging support efficient categorization, while role-based management is key for exposure management and compliance.

Room for Improvement: Skybox is transitioning to a web-based interface and needs better automation and reporting in Firewall Assurance. It also seeks to enhance rule provisioning and admin visibility. Qualys must refine EASM configuration flexibility and scan frequency controls. There is also a need for improved dynamic tagging and a more user-friendly interface, as well as enhanced third-party integration.

Ease of Deployment and Customer Service: Skybox mostly supports on-premises deployment with some hybrid options, which may limit cloud flexibility. Its technical support can be slow but valuable when escalated. Qualys offers versatile deployment options with its cloud-based solutions, praised for effective and prompt customer service, crucial for continuous operation.

Pricing and ROI: Skybox's robust features come at a higher cost, presenting value through extensive configuration features despite its price. It's particularly cost-effective for large networks. Qualys offers a clear pricing model; however, it can be expensive for smaller organizations. Its bundled offerings like VMDR enhance its appeal for operations with significant infrastructure requirements.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Qualys CyberSecurity Asset Management vs. Skybox Security Suite Report (Updated: June 2025).
Buyer's Guide
Qualys CyberSecurity Asset Management vs. Skybox Security Suite
June 2025
Download the complete report
Helped 859,533 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Zafran Security
Sponsored
Ranking in Vulnerability Management
18th
Average Rating
9.4
Reviews Sentiment
8.2
Number of Reviews
5
Ranking in other categories
Continuous Threat Exposure Management (CTEM) (2nd)
Qualys CyberSecurity Asset ...
Ranking in Vulnerability Management
8th
Average Rating
9.2
Reviews Sentiment
7.7
Number of Reviews
22
Ranking in other categories
Patch Management (6th), Cyber Asset Attack Surface Management (CAASM) (3rd), Attack Surface Management (ASM) (3rd), Software Supply Chain Security (4th)
Skybox Security Suite
Ranking in Vulnerability Management
30th
Average Rating
7.6
Reviews Sentiment
6.8
Number of Reviews
37
Ranking in other categories
Firewall Security Management (6th)
 

Mindshare comparison

As of June 2025, in the Vulnerability Management category, the mindshare of Zafran Security is 0.7%, up from 0.0% compared to the previous year. The mindshare of Qualys CyberSecurity Asset Management is 0.9%, up from 0.1% compared to the previous year. The mindshare of Skybox Security Suite is 0.5%, down from 0.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Vulnerability Management
 

Featured Reviews

Israel Cavazos Landini - PeerSpot reviewer
Weekly insights and risk analysis facilitate informed security decisions
I appreciate the weekly insights Zafran provides, which include critical topics for networks and IT security, allowing us to evaluate which insights apply to our environment. The organization score feature is valuable to keep the leadership team updated on how our infrastructure fares security-wise. The applicable risk level versus base risk level feature is beneficial because prior to Zafran, we only used the base risk level, but now understand that risk depends on the asset itself. Zafran is an excellent tool.
Read full review
Scott Frederick - PeerSpot reviewer
Well-integrated with our vulnerability scanning utilities and efficient in asset tagging and identification
Our favorite features are the tagging and the ability to quickly find assets in the portal. Additionally, I do like the fact that Qualys CSAM is integrated with the rest of our vulnerability scanning utilities. We use the full suite from Qualys. The fact that it is integrated makes it very easy to understand. It shares tagging information with VMDR. That is very nice. Qualys CSAM has discovered assets not previously covered by our vulnerability management program. Primarily, if we have assets without vulnerabilities, they become less visible, but Qualys CSAM alerts us to them because they have IP addresses and are attached to our network. It could discover everything from printers to servers to endpoints. It could discover UPSs, network devices, and across all operating systems. It discovers our security badge readers and digital signage. We have to feed that the IP address ranges, but beyond that, it finds everything in our internal network. We were able to realize its benefits within the first quarter of installing it. We did have to take some time to learn it and understand how to operationally leverage what it was telling us, but it was very quick. In addition to vulnerabilities, Qualys CSAM helps identify other risk factors to a degree. For instance, we can see if servers or assets have incorrect naming standards. We have our network segmented into development model, test, and production, and we have server naming standards that identify which management they should be in. If a production server has the naming standard of a development model server, we can find that. That is one area we have used it for. We are not fully using TruRisk, but we are using the Qualys detection score that is central to our corporate risk prioritization approach. It has completely replaced our homegrown one.
Read full review
NenadMijatovic - PeerSpot reviewer
Efficient in vulnerability management, stable and easy to use
Vulnerability management is the most valuable feature because it lets you focus on the most critical vulnerabilities. That's the important thing. Here in Serbia, there are not so many companies that have too many firewalls inside one company. So, they usually don't buy this model for Firewall Assurance unless there is some compliance. So you can prove that your firewalls are compliant. So, that model is not so important here in Serbia. It's for bigger companies. So, they usually buy network assurance to build the model of the network and vulnerability management to focus on the most important vulnerabilities. Moreover, Skybox can collect data for many vendors. From the endpoint protection vendors to the network equipment vendors to other security vendors. So, it supports more than one hundred vendors to collect data from them.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"We saw benefits from Zafran Security almost immediately after deploying it."
"Overall, we have seen about eighty-seven percent reduction of the number of vulnerabilities that require urgency to remediate, specifically the number of criticals."
"Zafran has become an indispensable tool in our cybersecurity arsenal."
"Zafran is an excellent tool."
"We are able to see the real risk of a vulnerability on our environment with our security tools."
"Qualys CyberSecurity Asset Management has helped to improve the organization's security posture significantly."
"Authorized and unauthorized software visibility is the best feature for me."
"I like the EASM part because it provides visibility into unmanaged assets that are public-facing."
"There are no stability issues, and I would rate it a ten out of ten."
"I would rate Qualys CSAM a ten out of ten."
"When you implement a dynamic tag using a query, you do not need to manually tag all the servers. It categorizes all the servers that come under that query. The tagging part is automatically done within a few minutes. It reduces the effort."
"We have a diverse organization with a robust infrastructure of more than 300,000 assets. By creating unauthorized lists and rules in the Qualys CSAM module, I can block certain software from being used in the organization."
"The fact that it is integrated makes it very easy to understand."
More Qualys CyberSecurity Asset Management pros
"Key features for us include the firewall change audit every week. Also, being able to track firewall ACL usage, so that we can produce semiannual reports on ACL usage and shadowed and redundant rules on the firewall."
"The ability to appropriately prioritize vulnerabilities inside the environment, and then to have visibility into the traffic and rule sets of an organization, are two of the top capabilities that I recommend. Skybox is the only one that does both of those in a single platform."
"Skybox Security Suite is cost-effective."
"instead of asking for firewall rules which may or may not be relevant, or could already be there, or could be over-permissioned, Skybox can be used to map out the resources that that application is going to use and provide the exact rules that an application would require to function correctly. If the traffic isn't able to flow for the application, if it's erring out, Skybox can be used to troubleshoot that and say, "All right, where is the traffic being stopped and why, and how do I fix that.""
"The solution's most valuable and unique assets are the vulnerability management and change management solutions because they identify mistakes in the network before implementation which reduces risks."
"Skybox allows organizations to reprioritize the vulnerability they attempt to patch and mitigate, based on the contextual awareness of the network."
"The most valuable features of Skybox Security Suite are all the modules that are provided, such as vulnerability assessments and network, and firewall assessments."
"The product's most valuable feature is vulnerability management."
More Skybox Security Suite pros
 

Cons

"The dashboarding and reporting functionality of Zafran Security is an area that definitely could use some improvements."
"Initially, we were somewhat concerned about the scalability of Zafran due to our large asset count and the substantial amount of information we needed to process."
"I think the ability to have some enhanced reporting capabilities is something they can improve on, as they have good reports but we have asked for some specific reporting enhancements."
"The deployment is somewhat complicated and could be made more user-friendly for most users."
"The scanning function could be improved."
"One improvement that they can make in the EASM module is the scan frequency. After EASM is configured the first time, it allows you to do the complete configuration, but if you want to reconfigure it, it will not ask or provide any option for scan frequency. For that, you need to raise a case with Qualys and talk to the Qualys team."
"All required features are available in Qualys CSAM. However, it would be helpful if Qualys CSAM started incorporating AI models. An inclusion of threat details for AI and LLM-related risks would be beneficial."
"Currently, in the EASM module, the scan frequency is limited to once daily, but allowing end users control over scan scheduling would be advantageous."
"There can be further simplification to reduce the overall noise and provide ESAM-related data."
"Further research and development are needed to enhance integration with other cloud agents and products, particularly improving communication with external products and vendors."
"The Qualys CAPS service requires further exploration and improvement, particularly in its handling of protocols and reactivity with MAC and IP addresses for CAP agents."
More Qualys CyberSecurity Asset Management cons
"The stability is something that is questionable. I don't know whether it is because of the kind of infrastructure we have or because of the product in itself. We're running it on a virtual machine right now. Maybe once a month, or once in every 45 days, it requires a restart because the application fails to connect. So I have to restart the whole Skybox Manager itself, the Skybox server itself, and then connect to it from our Skybox Manager."
"Skybox Security Suite's attack surface management feature needs improvement."
"The solution was quite technical. It would be easier to manage if the solution was more specific about aspects of the solution and provided more advisory around how to use it effectively. It would help users a lot if they were more clear about everything."
"The solution needs improvement in firewall configuration checks. I would also like to see more configuration checks for Forcepoint and for other non-supported firewalls."
"The company made bad business decisions impacting many clients and their own staff. Reporting could have been improved, and feature requests often were not implemented."
"The cloud site could be better. They should provide some use cases to help users."
"There is room for improvement in the product's user interface. It could be more user-friendly."
"If anything could be improved it would be staying on top of the collector scripts, but I understand that's a very tough challenge."
More Skybox Security Suite cons
 

Pricing and Cost Advice

Information not available
"The Qualys Cybersecurity Asset Management pricing is well-aligned with our usage."
"The pricing is fair. I would love to see the price come down a little bit, but we do get a lot of value out of it. We are squeezing every ounce of value we can out of the tool."
"It is cost-effective because, in a single tool, we are getting everything. All the solutions come in a single license or price."
"Qualys offers excellent value for money."
"Though the solution is considered expensive, if bundled with other services such as VMDR or cloud agents, its value would significantly increase. It is currently a bit costly, but with bundling, it could become attractive to more customers."
"The pricing is market-competitive."
"The cost for Qualys CyberSecurity Asset Management is high."
"Qualys CyberSecurity Asset Management can be expensive, especially if we already have VMDR."
More Qualys CyberSecurity Asset Management pricing and cost advice
"It's expensive."
"Skybox comes with extra licenses and has a change management license. The licenses are expensive, but they come with extra value."
"Pricing is on the higher side. In terms of licensing, you should buy the complete suite rather than buying only the Change Manager. I think Change Manager with Vulnerability Control is something that would be interesting to look at."
"I've seen the pricing of every solution on the market. When you compare apples to apples, where Skybox becomes exceedingly expensive is if you look at it compared to something like FireMon that only does a fraction of what Skybox does. But if you include everything that Skybox does, it becomes way more expensive than the competition, but you're also not comparing apples to apples. If you look at FireMon, and you look at like just the firewall assurance piece, they are fairly comparable and, actually, Skybox comes in a little bit cheaper in some cases, depending on which product you're looking at."
"The product's pricing is excellent value. In terms of licensing, make sure you understand your network components, all your hops through your network, thoroughly, before you decide on the total cost. If you want to do point-to-point flow analysis and such, you need to have the configuration of all the devices in between point A and point B. A lot of people don't realize all their network components until they start using this product."
"Currently, the licensing costs me about $300 USD for the year. This is a huge amount for my environment."
"The price is not expensive."
"The software is expensive. I rate its pricing an eight out of ten."
More Skybox Security Suite pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.
See recommendations
859,533 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
12%
Financial Services Firm
11%
Manufacturing Company
7%
Healthcare Company
6%
Computer Software Company
18%
Financial Services Firm
14%
Government
9%
Comms Service Provider
7%
Financial Services Firm
18%
Computer Software Company
17%
Manufacturing Company
10%
Energy/Utilities Company
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What is your experience regarding pricing and costs for Zafran Security?
The current pricing of Zafran Security is fair overall. They were good to work with to accommodate our organization w...
See all answers
What needs improvement with Zafran Security?
The dashboarding and reporting functionality of Zafran Security is an area that definitely could use some improvement...
See all answers
What is your primary use case for Zafran Security?
Zafran Security is helping reduce the amount of critical vulnerabilities in our environments that require prompt reme...
See all answers
What is your experience regarding pricing and costs for Qualys CyberSecurity Asset Management?
The pricing is reasonable relative to the features provided, as it collects all module data and operates as a main, c...
See all answers
What needs improvement with Qualys CyberSecurity Asset Management?
Qualys CyberSecurity Asset Management helps us prioritize assets according to operating system, kernel version, insta...
See all answers
What is your primary use case for Qualys CyberSecurity Asset Management?
We are using Qualys CyberSecurity Asset Management for daily activities such as identifying new assets through networ...
See all answers
What do you like most about Skybox Security Suite?
Overall, the tool has helped us reduce risks. If any step is missing, it's easier for my team or engineers to identif...
See all answers
What is your experience regarding pricing and costs for Skybox Security Suite?
From a commercial perspective, AlgoSec is more expensive compared to Skybox Security Suite. Skybox Security Suite is ...
See all answers
What needs improvement with Skybox Security Suite?
The dashboard's UI is not interesting; it is quite normal. It would be better if something more attractive or similar...
See all answers
 

Comparisons

Wiz Code vs Zafran Security Logo
Wiz Code vs Zafran Security
Compared 41% of the time
Vulcan Cyber vs Zafran Security Logo
Vulcan Cyber vs Zafran Security
Compared 17% of the time
ServiceNow Security Operations vs Zafran Security Logo
ServiceNow Security Operations vs Zafran Security
Compared 10% of the time
Tenable Vulnerability Management vs Zafran Security Logo
Tenable Vulnerability Management vs Zafran Security
Compared 8% of the time
Qualys VMDR vs Zafran Security Logo
Qualys VMDR vs Zafran Security
Compared 7% of the time
More Zafran Security Competitors
Amazon Inspector vs Qualys CyberSecurity Asset Management Logo
Amazon Inspector vs Qualys CyberSecurity Asset Management
Compared 13% of the time
Armis vs Qualys CyberSecurity Asset Management Logo
Armis vs Qualys CyberSecurity Asset Management
Compared 10% of the time
CrowdStrike Falcon vs Qualys CyberSecurity Asset Management Logo
CrowdStrike Falcon vs Qualys CyberSecurity Asset Management
Compared 9% of the time
Axonius vs Qualys CyberSecurity Asset Management Logo
Axonius vs Qualys CyberSecurity Asset Management
Compared 7% of the time
Microsoft Defender External Attack Surface Management vs Qualys CyberSecurity Asset Management Logo
Microsoft Defender External Attack Surface Management vs Qualys CyberSecurity Asset Management
Compared 7% of the time
More Qualys CyberSecurity Asset Management Competitors
AlgoSec vs Skybox Security Suite Logo
AlgoSec vs Skybox Security Suite
Compared 32% of the time
Tufin Orchestration Suite vs Skybox Security Suite Logo
Tufin Orchestration Suite vs Skybox Security Suite
Compared 30% of the time
FireMon Security Manager vs Skybox Security Suite Logo
FireMon Security Manager vs Skybox Security Suite
Compared 13% of the time
RedSeal vs Skybox Security Suite Logo
RedSeal vs Skybox Security Suite
Compared 5% of the time
Qualys VMDR vs Skybox Security Suite Logo
Qualys VMDR vs Skybox Security Suite
Compared 3% of the time
More Skybox Security Suite Competitors
 

Product Reports

Buyer's Guide
Continuous Threat Exposure Management (CTEM)
June 2025
Zafran Security reportDownload Zafran Security product report
Buyer's Guide
Qualys CyberSecurity Asset Management
June 2025
Qualys CyberSecurity Asset Management reportDownload Qualys CyberSecurity Asset Management product report
Buyer's Guide
Skybox Security Suite
June 2025
Skybox Security Suite reportDownload Skybox Security Suite product report
 

Overview

Zafran Security integrates with existing security tools to identify and mitigate vulnerabilities effectively, proving that most critical vulnerabilities are not exploitable, optimizing threat management.

Zafran Security introduces an innovative operating model for managing security threats and vulnerabilities. By leveraging the threat exposure management platform, it pinpoints and prioritizes exploitable vulnerabilities, reducing risk through immediate remediation. This platform enhances your hybrid cloud security by normalizing vulnerability signals and integrating specific IT context data, such as CVE runtime presence and internet asset reachability, into its analysis. No longer reliant on patch windows, Zafran Security allows you to manage risks actively.

What are the key features of Zafran Security?

  • Threat Exposure Management: Utilizes existing tools to prioritize vulnerabilities and manage threats.
  • Integrative Analysis: Combines security data with IT context for precise vulnerability management.
  • Real-time Risk Reduction: Enables immediate risk management without waiting for patches.
  • Hybrid Cloud Compatibility: Functions across diverse cloud environments for comprehensive security.

What benefits can users expect from Zafran Security?

  • Improved Security: Enhances protection by efficiently identifying and mitigating risks.
  • Cost Efficiency: Reduces unnecessary patching expenses by confirming non-exploitable vulnerabilities.
  • Time Savings: Frees developers to focus on root causes by handling immediate threats.
  • Comprehensive Insight: Offers a holistic view of security threats and vulnerabilities.

In industries where security is paramount, such as finance and healthcare, Zafran Security provides invaluable protection by ensuring that only exploitable vulnerabilities are addressed. It allows entities to maintain robust security measures while allocating resources efficiently, fitting seamlessly into existing security strategies.

Zafran Security

Qualys CyberSecurity Asset Management provides advanced real-time asset visibility, dynamic tagging, and External Attack Surface Management. It streamlines asset discovery and management using cloud agents and IP-based scanning, enhancing risk management and software lifecycle tracking.

Qualys CyberSecurity Asset Management offers a comprehensive solution for managing asset inventories and tracking software lifecycle states. It facilitates network visibility and supports zero-day vulnerability solutions, enhancing security posture through efficient monitoring. Users benefit from its cloud-based interface, which provides in-depth asset configurations and insights. Key features include automated vulnerability scanning and unauthorized software management, reducing manual efforts. The platform also emphasizes the importance of timely remediation and ongoing risk mitigation across multiple environments. Despite its strengths, users note the need for enhanced integration with additional CMDBs beyond ServiceNow, as well as cost efficiency improvements. Requests also include better report customization, more scan control, and a simplified UI.

What are the key features of Qualys CyberSecurity Asset Management?
  • Real-time Visibility: Offers continuous insight into asset status and condition.
  • Dynamic Tagging: Allows for flexible organization and assessment of assets.
  • External Attack Surface Management: Identifies potential threats from external sources.
  • Automated Vulnerability Scanning: Reduces manual scanning efforts and identifies vulnerabilities instantly.
  • Unauthorized Software Management: Detects and manages software not approved for use.
  • Asset Purge Rule: Automates the removal of obsolete assets from the inventory.
What benefits should users look for in reviews?
  • Enhanced Security Posture: Gains stronger defense through effective asset monitoring.
  • Efficient Risk Management: Identifies threats quickly, enabling timely resolutions.
  • Improved Compliance: Assists in meeting industry standards and regulations.
  • Reduced Manual Effort: Automates repetitive tasks, saving time and resources.
  • Comprehensive Insight: Provides detailed data for informed decision making.

In industries like finance, healthcare, and manufacturing, Qualys CyberSecurity Asset Management enhances asset control by offering visibility into hardware and software configurations. It aids in maintaining security compliance and identifying unauthorized software, crucial for sectors with strict regulatory requirements.

Qualys

Skybox Security Suite provides comprehensive tools for network and firewall compliance, vulnerability management, and change management, with a focus on risk reduction and network optimization.

Skybox Security Suite supports over 130 vendors with massive scalability and seamless integration, notably with Nessus and Qualys. Its features include network path analysis and offline attack simulation, which enhance management effectiveness. Despite its robust offering, improvements are needed in its UI, web interface, reporting detail, and customization. Automation, orchestration, and device policy provisioning require better support, and integration with tools like Rapid7 could be improved. Enhancements in firewall configuration checks, cloud connectivity, pricing, and marketing awareness are also called for, alongside a transition from Java GUI to a consistent web-based system.

What Are Key Features of Skybox Security Suite?
  • Network Assurance: Enhances visibility and optimization of network paths.
  • Firewall Assurance: Facilitates firewall rule set audits for compliance.
  • Vulnerability Management: Offers path detection and risk prioritization.
  • Compliance Management: Ensures adherence to standards like PCI.
  • Change Management: Simplifies management across extensive infrastructures.
What Benefits and ROI Can Users Expect?
  • Scalability: Supports numerous vendors and large-scale deployments.
  • Integration: Seamlessly connects with tools like Nessus and Qualys.
  • Risk Reduction: Improves security across network infrastructures.
  • Simplified Management: User-friendly interface and reporting tools enhance usability.
  • Network Optimization: Streamlines processes and improves performance.

Skybox Security Suite is commonly used in industries requiring strict compliance like finance and healthcare. Firms employ it for firewall audits, enhancing network visibility, and managing configurations against standards such as PCI, ensuring security and policy compliance across expansive networks.

Tufin
 

Sample Customers

Information Not Available
Information Not Available
ADP, Blue Cross Blue Shield, BT, USAID, Delta Dental, EDF Energy, EMC, HSBC, Johnson & Johnson
Buyer's Guide
Qualys CyberSecurity Asset Management vs. Skybox Security Suite
June 2025
Free Report: Qualys CyberSecurity Asset Management vs. Skybox Security Suite
Find out what your peers are saying about Qualys CyberSecurity Asset Management vs. Skybox Security Suite and other solutions. Updated: June 2025.
DOWNLOAD NOW
859,533 professionals have used our research since 2012.
See our Qualys CyberSecurity Asset Management vs. Skybox Security Suite report.
See our list of best Vulnerability Management vendors.

We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.