We compared Qualys VMDR and Tenable Vulnerability Management based on our users reviews in six parameters. After reading the collected data, you can find our conclusion below:
Users generally find the setup process for Qualys VMDR to be easy and fast, taking only a few minutes. However, there are some integration issues with other systems. In contrast, setting up Tenable Vulnerability Management can be time-consuming, ranging from a couple of hours to a few weeks. Some users find it difficult to configure IP ranges and firewall settings.
Qualys VMDR offers a prioritization mechanism, continuous monitoring, a customizable dashboard, and a comprehensive overview of vulnerabilities. On the other hand, Tenable Vulnerability Management provides complete visibility, scalability, and a user-friendly dashboard for vulnerability analysis.
Both Qualys VMDR and Tenable Vulnerability Management have areas that require improvement. Qualys VMDR could benefit from enhancements in user experience, UI design, SLA tracking, batch prioritization, integration, reporting, and dashboards. On the other hand, Tenable Vulnerability Management needs improvements in visibility, support, dashboards, integration, reporting, pricing, user interface, and automation.
The cost of setting up Qualys VMDR can be high for smaller customers, as it varies depending on the specific features needed. Some reviewers mentioned that additional fees are required for features like patch management and EDR policy compliance. In contrast, Tenable Vulnerability Management has a pricing model that varies among users, which some users did not find ideal. While basic vulnerability scanning and management have no hidden costs, the overall cost can be relatively expensive compared to other solutions.
Qualys VMDR is praised for its ability to effectively reduce risks and mitigate cybersecurity threats, resulting in a good return on investment. On the other hand, Tenable Vulnerability Management is acknowledged for providing long-term value and identifying vulnerabilities, although not everyone experiences a significant return on investment.
The feedback for Qualys VMDR's customer service varies, with some customers appreciating the support provided, while others highlight the need for quicker response times and more knowledgeable staff. Similarly, Tenable Vulnerability Management's customer service has received mixed reviews, with certain users expressing dissatisfaction regarding issue resolution and turnaround time, while others commend the team's round-the-clock availability and promptness.
Comparison Results
In comparing Qualys VMDR to Tenable Vulnerability Management, both solutions have easy initial setups and offer comprehensive vulnerability management. Qualys VMDR provides a prioritization mechanism, continuous monitoring, and great technical support. It also has a customizable dashboard. However, it lacks user-friendliness, integration with other systems, and needs improvement in reporting and dashboards. On the other hand, Tenable Vulnerability Management offers complete visibility, is considered reliable and cost-effective, and has a user-friendly dashboard. It also provides efficient risk assessments. However, it lacks coverage of the entire vulnerability management process and needs improvements in support, pricing, and user interface customization.
"I like Qualys because it is a very complete product, more so than Tenable."
"Monitors workstations and servers for vulnerabilities and creates reports."
"It is a stable solution."
"The prioritization feature is great. I think it has all of the advanced features that we need."
"The most valuable features of Qualys VM are its ability to do proper vulnerability assessment. It has a lot of updates for all the vulnerability databases from all over the globe. It's an amazing solution when it comes to the versatility of the features it has. Additionally, the reports are very good. It generates very detailed reports about the vulnerabilities inside the environment"
"Qualys VM's most valuable feature is automatic detection."
"The most valuable feature is the connection of threat intelligence information with identified vulnerabilities, which means you can prioritize vulnerabilities according to actual attacks."
"What I like about Qualys VM is the dashboard presentation. It's very good."
"The initial setup is pretty straightforward."
"It is quite straightforward to set up."
"The integration of Tenable into our security ecosystem was very good."
"The initial setup is mostly straightforward."
"It's a recommended tool for penetration testers because it's effective for that purpose."
"Technical support has been good. They respond quite quickly."
"They are on a good trajectory as a company and investing in R&D in the right ways."
"The price of Tenable.io Vulnerability Management is reasonable as it is ten times cheaper than other options."
"Integration could be better. When you think about scanning, it's not used just with this product alone but with other Qualys products. If you think about the bundle, the product itself is good. But integration with other products and packages has space for improvement. They should also offer a better price for bundles."
"The reporting needs improvement. It should generate much more stuff like field reports."
"It's too early for me to say if there is any room for improvement since we're in the first couple of months of using this solution."
"One of the biggest issues from the clients' perspective is that all Qualys computing is on the cloud."
"What we have found is that the solution is not closely tied with the patch management. It is okay with newer ones, like Windows 10 machines; it gives the correct patch. But for Windows 7 or Windows Server 2008, it does not give us the correct patch so we have to manually identify the patches. This is a major problem."
"If anything, I would like to see the user interface modernized a bit more."
"This solution could be improved by extending the agent capabilities to different operating systems including Mac and Linux. We would also like the capability to easily check for vulnerability in assets in the IOTs."
"The only improvement I can think of is on the implementation side. At times it is a bit slow."
"The pricing of the solution could be more reasonable."
"Tenable.io Vulnerability Management could be improved with an increased number of dashboards and MSSP integration."
"The price could be lower."
"The initial setup is complex and has room for improvement."
"The solution seems to focus too much on enterprises, and they really need a product that works for SMBs."
"We'd like to see a bit more user-friendliness."
"I'm not satisfied with the reporting structure."
"It's not a user-friendly tool since it has a complicated interface."
More Tenable Vulnerability Management Pricing and Cost Advice →
Qualys VMDR is ranked 3rd in Risk-Based Vulnerability Management with 77 reviews while Tenable Vulnerability Management is ranked 2nd in Risk-Based Vulnerability Management with 39 reviews. Qualys VMDR is rated 8.2, while Tenable Vulnerability Management is rated 8.2. The top reviewer of Qualys VMDR writes "Good visibility but expensive and needs better support". On the other hand, the top reviewer of Tenable Vulnerability Management writes "Discovers vulnerabilities and integrates well with other solutions". Qualys VMDR is most compared with Tenable Nessus, Tenable Security Center, Rapid7 InsightVM, Microsoft Defender Vulnerability Management and Tanium, whereas Tenable Vulnerability Management is most compared with Tenable Security Center, Tenable Nessus, Amazon Inspector, Microsoft Defender Vulnerability Management and Rapid7 InsightVM. See our Qualys VMDR vs. Tenable Vulnerability Management report.
See our list of best Risk-Based Vulnerability Management vendors.
We monitor all Risk-Based Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.