I have not been working with real-time threat intelligence updates. Back then, AI integration was not there with the product, but I am uncertain about how the tool has upgraded itself now. If it is still not there, then AI integration could be a helpful addition. Compared to Microsoft, there were already advanced tools, so I had seen some drawbacks compared to licensing or technical side. I am uncertain about the product now, but if AI is not there, then it is good to have AI because when I was using Qualys Enterprise TruRisk Platform, AI was not that much developed. So far, only AI integration is the only area for improvement with Qualys Enterprise TruRisk Platform.
Mediation Specialist III at a tech vendor with 201-500 employees
Real User
Top 20
Sep 26, 2025
One thing which I really want Qualys Enterprise TruRisk Platform to improve is the UI. While it might not be the case for everyone and it's subjective, in my team, most people agree on that part. The UI should be more user-friendly. If you have uploaded a file containing many IP addresses, you don't have a straightforward option to check what the IP addresses were. If we want to search an IP address from the list, we need to check it one by one. Also, when we download something, the feature should be upfront. When we get the result of the scan, it should be 'download this file'. In many scanners, when you go to the download option, you get the options for particular formats immediately. However, in this case, when you click on download, it loads another page before giving you the output options for PDF or CSV. This feature should be upfront.
The report sometimes inaccurately identifies the corresponding operating system version. It would be beneficial if the solution could correctly identify the exact OS version, potentially requiring code adjustments. Additionally, the possibility of Qualys Enterprise TruRisk Platform ( /products/qualys-enterprise-trurisk-platform-reviews ) handling remediation tasks and re-scanning the environment would be advantageous.
Support could be improved. Contacting support is a lengthy process for raising a case. Recently, while attempting to set up a customized CI checklist, I faced difficulties updating parameters and obtaining results. Each Control ID in the checklist required a separate case, which presented a significant challenge given the number of checks involved. If issues arise with these checks, we must raise cases. Despite providing documentation and evidence, we receive standard instructions to follow rules we've already adhered to, making the process repetitive.
Learn what your peers think about Qualys Enterprise TruRisk Platform. Get advice and tips from experienced pros sharing their opinions. Updated: December 2025.
Qualys TruRisk Platform provides an end-to-end solution, allowing you to avoid the cost and complexities that come with managing multiple security vendors. Qualys TruRisk Platform automatically gathers and analyzes IT, security, and compliance data in a scalable, state-of-the-art backend. Provisioning any of Qualys’ natively integrated security and compliance apps - twenty and counting - is as easy as checking a box.
I have not been working with real-time threat intelligence updates. Back then, AI integration was not there with the product, but I am uncertain about how the tool has upgraded itself now. If it is still not there, then AI integration could be a helpful addition. Compared to Microsoft, there were already advanced tools, so I had seen some drawbacks compared to licensing or technical side. I am uncertain about the product now, but if AI is not there, then it is good to have AI because when I was using Qualys Enterprise TruRisk Platform, AI was not that much developed. So far, only AI integration is the only area for improvement with Qualys Enterprise TruRisk Platform.
One thing which I really want Qualys Enterprise TruRisk Platform to improve is the UI. While it might not be the case for everyone and it's subjective, in my team, most people agree on that part. The UI should be more user-friendly. If you have uploaded a file containing many IP addresses, you don't have a straightforward option to check what the IP addresses were. If we want to search an IP address from the list, we need to check it one by one. Also, when we download something, the feature should be upfront. When we get the result of the scan, it should be 'download this file'. In many scanners, when you go to the download option, you get the options for particular formats immediately. However, in this case, when you click on download, it loads another page before giving you the output options for PDF or CSV. This feature should be upfront.
The report sometimes inaccurately identifies the corresponding operating system version. It would be beneficial if the solution could correctly identify the exact OS version, potentially requiring code adjustments. Additionally, the possibility of Qualys Enterprise TruRisk Platform ( /products/qualys-enterprise-trurisk-platform-reviews ) handling remediation tasks and re-scanning the environment would be advantageous.
Support could be improved. Contacting support is a lengthy process for raising a case. Recently, while attempting to set up a customized CI checklist, I faced difficulties updating parameters and obtaining results. Each Control ID in the checklist required a separate case, which presented a significant challenge given the number of checks involved. If issues arise with these checks, we must raise cases. Despite providing documentation and evidence, we receive standard instructions to follow rules we've already adhered to, making the process repetitive.