We performed a comparison between CyberGRX and Qualys VMDR based on real PeerSpot user reviews.
Find out what your peers are saying about RSA, AuditBoard, Trend Micro and others in GRC."The interface is simple to use."
"The initial setup is straightforward."
"The most valuable feature is the ability to run different capabilities with the same agent. With only one agent, we can have EDR, vulnerability management, compliance and some basic SaaS security capabilities."
"Qualys VM's best feature is vulnerability management."
"The most valuable feature is the connection of threat intelligence information with identified vulnerabilities, which means you can prioritize vulnerabilities according to actual attacks."
"It is a simple solution that makes scanning easy. You just give it a scheduled task, and it will do everything for you."
"The solution shows us classic categories, including high, medium, and low risks. It also shows critical items, and that gives us the advantage of prioritizing things."
"The most valuable features of Qualys VM are its ability to do proper vulnerability assessment. It has a lot of updates for all the vulnerability databases from all over the globe. It's an amazing solution when it comes to the versatility of the features it has. Additionally, the reports are very good. It generates very detailed reports about the vulnerabilities inside the environment"
"Great web application security for scanning."
"There are not many partners for this product in India, which makes the OEM very difficult to reach."
"It's quite complex on the way it is set up, so it takes a fair bit of time in order to get your head around it in order to deploy it. Once you've deployed it, then you're never confident on the versions of the browsers and the SSL certificates, etc. You have to always go back into Qualys and check."
"What we have found is that the solution is not closely tied with the patch management. It is okay with newer ones, like Windows 10 machines; it gives the correct patch. But for Windows 7 or Windows Server 2008, it does not give us the correct patch so we have to manually identify the patches. This is a major problem."
"Integration could be better. When you think about scanning, it's not used just with this product alone but with other Qualys products. If you think about the bundle, the product itself is good. But integration with other products and packages has space for improvement. They should also offer a better price for bundles."
"Its integration with ServiceNow and other similar products is complicated and can be improved. It should also have virtual batching. They should support more standards and compliance requirements and more customizations. For policy compliance, they can add the standards required by the countries in the Middle East. Each country generates its own standards and frameworks, and those frameworks should be there in all products, not only in Qualys. The market here is huge, especially in the cybersecurity field. Qatar has a framework for Qatar 2022, and each and every company in the public or private sector has to follow the Qatar 2022 framework."
"They should make it accessible for more operating systems."
"I would like to see this solution more developed and competitive in the Cloud space."
"I would like to have CSPM, a continuous scan-like cloud added to the solution."
"Qualys VM should improve its methodology."
Earn 20 points
CyberGRX is ranked 61st in GRC while Qualys VMDR is ranked 3rd in Risk-Based Vulnerability Management with 77 reviews. CyberGRX is rated 6.0, while Qualys VMDR is rated 8.2. The top reviewer of CyberGRX writes "Scales well and technical support is good, but it is expensive". On the other hand, the top reviewer of Qualys VMDR writes "Good visibility but expensive and needs better support". CyberGRX is most compared with Rapid7 InsightVM, whereas Qualys VMDR is most compared with Tenable Nessus, Tenable Security Center, Rapid7 InsightVM, Microsoft Defender Vulnerability Management and Tenable Vulnerability Management.
We monitor all GRC reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.