Qualys VMDR vs Tenable Vulnerability Management comparison

Cancel
You must select at least 2 products to compare!
Comparison Buyer's Guide
Executive Summary
Updated on Sep 20, 2023

We compared Qualys VMDR and Tenable Vulnerability Management based on our users reviews in six parameters. After reading the collected data, you can find our conclusion below:

  • Ease of Deployment

    Users generally find the setup process for Qualys VMDR to be easy and fast, taking only a few minutes. However, there are some integration issues with other systems. In contrast, setting up Tenable Vulnerability Management can be time-consuming, ranging from a couple of hours to a few weeks. Some users find it difficult to configure IP ranges and firewall settings.

  • Features

    Qualys VMDR offers a prioritization mechanism, continuous monitoring, a customizable dashboard, and a comprehensive overview of vulnerabilities. On the other hand, Tenable Vulnerability Management provides complete visibility, scalability, and a user-friendly dashboard for vulnerability analysis.

  • Room for Improvement

    Both Qualys VMDR and Tenable Vulnerability Management have areas that require improvement. Qualys VMDR could benefit from enhancements in user experience, UI design, SLA tracking, batch prioritization, integration, reporting, and dashboards. On the other hand, Tenable Vulnerability Management needs improvements in visibility, support, dashboards, integration, reporting, pricing, user interface, and automation.

  • Pricing

    The cost of setting up Qualys VMDR can be high for smaller customers, as it varies depending on the specific features needed. Some reviewers mentioned that additional fees are required for features like patch management and EDR policy compliance. In contrast, Tenable Vulnerability Management has a pricing model that varies among users, which some users did not find ideal. While basic vulnerability scanning and management have no hidden costs, the overall cost can be relatively expensive compared to other solutions.

  • ROI

    Qualys VMDR is praised for its ability to effectively reduce risks and mitigate cybersecurity threats, resulting in a good return on investment. On the other hand, Tenable Vulnerability Management is acknowledged for providing long-term value and identifying vulnerabilities, although not everyone experiences a significant return on investment.

  • Service and Support

    The feedback for Qualys VMDR's customer service varies, with some customers appreciating the support provided, while others highlight the need for quicker response times and more knowledgeable staff. Similarly, Tenable Vulnerability Management's customer service has received mixed reviews, with certain users expressing dissatisfaction regarding issue resolution and turnaround time, while others commend the team's round-the-clock availability and promptness.

Comparison Results

In comparing Qualys VMDR to Tenable Vulnerability Management, both solutions have easy initial setups and offer comprehensive vulnerability management. Qualys VMDR provides a prioritization mechanism, continuous monitoring, and great technical support. It also has a customizable dashboard. However, it lacks user-friendliness, integration with other systems, and needs improvement in reporting and dashboards. On the other hand, Tenable Vulnerability Management offers complete visibility, is considered reliable and cost-effective, and has a user-friendly dashboard. It also provides efficient risk assessments. However, it lacks coverage of the entire vulnerability management process and needs improvements in support, pricing, and user interface customization.

To learn more, read our detailed Qualys VMDR vs. Tenable Vulnerability Management Report (Updated: March 2024).
765,234 professionals have used our research since 2012.
Featured Review
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The most valuable feature is the ability to run different capabilities with the same agent. With only one agent, we can have EDR, vulnerability management, compliance and some basic SaaS security capabilities.""Technical support is fantastic.""Qualys VM's best features are vulnerability management and customizable scoring.""I find the solution's dashboard interesting...The response time is fine. You can pull up reports without dragging or consuming bandwidth.""There are fewer false positives when using this solution.""The most valuable feature is automation.""We also like the flexibility in their licensing.""The most valuable feature is that this solution is very lightweight."

More Qualys VMDR Pros →

"It is very stable, and it is updated periodically by adding new vulnerabilities.""A new user can easily understand the workflow, even if they are creating users for other divisions and the user is a beginner.""Tenable.io, in particular, is quite a powerful product. It looks at your traditional environment, which is pretty much anything that is on-premises, and it also goes a step ahead and covers your modern assets, which is anything that is currently sitting in the cloud. You get complete visibility of your entire environment and tech operation. The ability to give you visibility across the entire tech surface is one of the biggest advantages that Tenable.io has.""Technical support has been good. They respond quite quickly.""It is quite straightforward to set up.""It is a very, very user-friendly tool...The setup is easy""The vulnerability management itself is the most valuable feature as well as references to the mitigation techniques.""The solution creates vulnerability tickets within the VM profile but should also include them under the Remediation tab so the fixes can be viewed in the ticketing queue."

More Tenable Vulnerability Management Pros →

Cons
"Qualys VM's machine learning and artificial intelligence features could be improved.""Certain integration factors between different options could be improved.""Qualys VM should improve its methodology.""Qualys VM could improve by having more skilled support personnel.""This solution could be improved by extending the agent capabilities to different operating systems including Mac and Linux. We would also like the capability to easily check for vulnerability in assets in the IOTs.""The only improvement I can think of is on the implementation side. At times it is a bit slow.""The tool needs to improve the adding assets and report generation features. I would like to see the policy scan of offline appliances in the product's future releases.""The customer support is very bad."

More Qualys VMDR Cons →

"Users get confused between VPR and CVSS ratings.""They need to have more dependable and faster support.""They should include better customization of the dashboard, and integration tools.""The pricing of the solution could be more reasonable.""The UI has room for improvement.""The solution must be promoted more in the market.""The solution seems to focus too much on enterprises, and they really need a product that works for SMBs.""An area of improvement for this solution is being able to customize the dashboard. For example, the dashboard does not allow us to view a previous months vulnerability results alongside current results to make comparisons."

More Tenable Vulnerability Management Cons →

Pricing and Cost Advice
  • "Usually every implementation is different and the quote is in function of number of assets."
  • "When you want to cover yourself for scalability, you will be charged for the number you place on the scan itself."
  • "It is more expensive than other products on the market."
  • "They have recently changed the pricing model, which is now better than it was before."
  • "It is different for every company, but for us, it's every three years."
  • "Qualys is cheaper and more affordable than other solutions."
  • "The pricing and licensing for Qualys could be improved."
  • "The license is on a yearly basis."
  • More Qualys VMDR Pricing and Cost Advice →

  • "There are additional features that can be licensed for an additional cost."
  • "The solution is not too expensive."
  • "Tenable.io Vulnerability Management's pricing solution model isn't great."
  • "The total cost we pay for this solution is over 45K. This is for a large education organization."
  • "Compared to other VM solutions, Tenable.io Vulnerability Management is expensive."
  • "On a scale of one to ten, where one is low, and ten is high price, I rate the pricing an eight. So, it is a pretty expensive solution."
  • "Tenable.io is not known for being a cheap product."
  • "A yearly payment has to be made toward the solution's licensing costs."
  • More Tenable Vulnerability Management Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which Risk-Based Vulnerability Management solutions are best for your needs.
    765,234 professionals have used our research since 2012.
    Questions from the Community
    Top Answer:Qualys VM is used for vulnerability scans for the internet and applications using application exchange. There are many applications. We also use the solution for asset management per team, and the… more »
    Top Answer:The process of defining and discovering scans is organized efficiently.
    Top Answer:The product is more expensive than that of any other vendor.
    Top Answer: Tenable Nessus is a vulnerability assessment solution that is both easy to deploy and easy to manage. The design of the program is such that if a company should desire to handle the installation… more »
    Top Answer:I would rate Tenable's dashboards and reporting capabilities for illustrating security posture a nine out of ten, with ten being the best.
    Top Answer:It's a fantastic product, but there are some things to consider. One is the price. Compared to on-prem solutions, the SaaS model can be expensive. Price is definitely a concern and needs improvement… more »
    Ranking
    Views
    6,663
    Comparisons
    5,110
    Reviews
    26
    Average Words per Review
    423
    Rating
    8.0
    Views
    11,865
    Comparisons
    9,490
    Reviews
    25
    Average Words per Review
    469
    Rating
    8.3
    Comparisons
    Also Known As
    Qualys VM, QualysGuard VM, Qualys Asset Inventory, Qualys Container Security, Qualys Virtual Scanner Appliance
    Tenable.io
    Learn More
    Overview

    With VMDR, enterprises are empowered with visibility and insight into cyber risk exposure - making it easy to prioritize vulnerabilities, assets, or groups of assets based on business risk. Security teams can take action to mitigate risk, helping the business measure its true risk, and track risk reduction over time.

    Qualys VMDR offers an all-inclusive risk-based vulnerability management solution to prioritize vulnerabilities and assets based on risk and business criticality. VMDR seamlessly integrates with configuration management databases (CMDB) and patch management solutions to quickly discover, prioritize, and automatically remediate vulnerabilities at scale to reduce risk. Additionally, it integrates with ITSM solutions such as ServiceNow to automate and operationalize vulnerability management end-to-end.

    Get an all-Inclusive risk-based vulnerability management solution that prioritizes vulnerabilities, misconfigurations and assets based on risk, reduces risk by remediating vulnerabilities at scale, and helps organizations measure security program effectiveness by tracking risk reduction over time.

    Managed in the cloud and powered by Tenable Nessus, Tenable Vulnerability Management (formerly Tenable.io) provides the industry's most comprehensive vulnerability coverage with real-time continuous assessment of your organization. Built-in prioritization, threat intelligence and real-time insight help you understand your exposures and proactively prioritize remediations.

    Sample Customers
    Agrokor Group, American Specialty Health, American State Bank, Arval, Life:), Axway, Bank of the West, Blueport Commerce, BSkyB, Brinks, CaixaBank, Cartagena, Catholic Health System, CEC Bank, Cegedim, CIGNA, Clickability, Colby-Sawyer College, Commercial Bank of Dubai, University of Utah, eBay Inc., ING Singapore, National Theatre, OTP Bank, Sodexo, WebEx
    Global Payments AU/NZ
    Top Industries
    REVIEWERS
    Financial Services Firm18%
    Comms Service Provider16%
    Manufacturing Company16%
    Transportation Company11%
    VISITORS READING REVIEWS
    Educational Organization32%
    Computer Software Company11%
    Financial Services Firm11%
    Manufacturing Company6%
    REVIEWERS
    Security Firm24%
    Government12%
    Computer Software Company12%
    Financial Services Firm12%
    VISITORS READING REVIEWS
    Educational Organization23%
    Computer Software Company12%
    Government9%
    Financial Services Firm8%
    Company Size
    REVIEWERS
    Small Business20%
    Midsize Enterprise12%
    Large Enterprise68%
    VISITORS READING REVIEWS
    Small Business15%
    Midsize Enterprise41%
    Large Enterprise44%
    REVIEWERS
    Small Business50%
    Midsize Enterprise3%
    Large Enterprise47%
    VISITORS READING REVIEWS
    Small Business18%
    Midsize Enterprise32%
    Large Enterprise51%
    Buyer's Guide
    Qualys VMDR vs. Tenable Vulnerability Management
    March 2024
    Find out what your peers are saying about Qualys VMDR vs. Tenable Vulnerability Management and other solutions. Updated: March 2024.
    765,234 professionals have used our research since 2012.

    Qualys VMDR is ranked 3rd in Risk-Based Vulnerability Management with 76 reviews while Tenable Vulnerability Management is ranked 2nd in Risk-Based Vulnerability Management with 35 reviews. Qualys VMDR is rated 8.2, while Tenable Vulnerability Management is rated 8.2. The top reviewer of Qualys VMDR writes "Good visibility but expensive and needs better support". On the other hand, the top reviewer of Tenable Vulnerability Management writes "Reliable with good vulnerability management but needs better reporting". Qualys VMDR is most compared with Tenable Nessus, Tenable Security Center, Rapid7 InsightVM, Microsoft Defender Vulnerability Management and Microsoft Defender for Cloud Apps, whereas Tenable Vulnerability Management is most compared with Tenable Security Center, Tenable Nessus, Amazon Inspector, Microsoft Defender Vulnerability Management and Rapid7 InsightVM. See our Qualys VMDR vs. Tenable Vulnerability Management report.

    See our list of best Risk-Based Vulnerability Management vendors.

    We monitor all Risk-Based Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.