We performed a comparison between Check Point CloudGuard CNAPP and Qualys VMDR based on real PeerSpot user reviews.
Find out what your peers are saying about Tenable, Wiz, Check Point Software Technologies and others in Vulnerability Management."The two most valuable features for us are the central firewall administrator and the real-time cloud compliance monitoring."
"The way they offer container security is a big highlight that I have noticed. The solution is also agentless, so the scanning, runtime, really everything is offered directly by CloudGuard."
"The most valuable feature is the ability to work with the APIs to integrate into our own backend systems."
"This product provides a really nice visualization of the infrastructure, including network topology, firewalls, etc."
"The rulesets and the findings are valuable. The actual core functionality of it and the efficacy of events are great."
"It offers security insights and recommendations to assist organizations in acting and remediating issues swiftly."
"On Dome9, you can have reports on compliance, users created, and EAM access to the cloud infrastructure. For example, if some machine is exposed to the Internet, importing and exporting to the Internet when it shouldn't, we get immediate alerts if someone does this type of configuration by mistake. Dome9 is very important because AWS doesn't protect us for this. It is the client's responsibility to make sure that we don't export things to the Internet. This solution helps us ensure that we comply with our security measures."
"It has great scalability."
"The prioritization feature is great. I think it has all of the advanced features that we need."
"What I like about Qualys VM is the dashboard presentation. It's very good."
"It gives a very good overview of the inventory assessment process, and it can be accessed across our company because it's a global tool."
"The most recent is VMDR, which provides a comprehensive overview of how to detect, patch, and remediate specific vulnerabilities."
"They also have threat detection which maps threats. There is a feed that comes from Qualys when a new vulnerability is found. It tells us which machines are infected with that vulnerability."
"The biggest benefit is from a security operations perspective, where we are able to drive our security posture upwards by remediating any discovered vulnerabilities."
"The features that are most valuable are the identification, scan features, and the identification of vulnerabilities."
"The vulnerability management feature is what I used the most. It is a good SaaS product. It is easy to use. It has a nice UI where you can see all the assets and vulnerabilities."
"The main issue that we found with Dome9 is that we have a default rule set with better recommendations that we want to use. So, you do a clone of that rule set, then you do some tweaks and customizations, but there is a problem. When they activate the default rule set with the recommendations and new security measures, it doesn't apply the new security measures to your clones profile. Therefore, you need to clone the profile again. We are already writing a report to Check Point."
"Making basic rules is easy, but it's complex if you want to do something a little more nuanced. I've been unable to make some rules that I wanted. I couldn't evaluate some values or parameters of the components I look for. I haven't always been able to assess them."
"You do need to pay extra in order to get better support."
"The setup can be better. With every other Check Point product, the setup is scripted. You just approve versions, and then you are off. The setup for this solution is still very much manual. I would like to see that transition to more of a scripted setup."
"Streamlining the user interface would greatly improve the user experience."
"We're looking for a solution that can incorporate legacy infrastructure for some of our business needs."
"The false positives can be annoying at times."
"In general, for the product to be successful, they need to improve security, and configuration detection."
"There's a need to upgrade or fix the potential vulnerability rate. Around 20,000 potential vulnerabilities were showing in Qualys VMDR, but none of the other tools showed them. When we checked, it wasn't the case. Support explained that even small issues were being counted as vulnerabilities, causing issues in our audit. So, the security features could be improved to identify vulnerabilities accurately."
"Make some minimal dashboard improvements."
"The customer support is very bad."
"If anything, I would like to see the user interface modernized a bit more."
"Qualys VMDR is basically susceptible to false positives, and false negatives."
"Sometimes we face a problem with accessing the tool and not getting an expected result. From a technology point of view, they need to look into this."
"It's not very user-friendly at times and requires in-depth understanding. So, a layman or someone new to Qualys won't be able to easily understand it. You need education to use the solution."
"The reporting in this solution can be improved."
Check Point CloudGuard CNAPP is ranked 5th in Vulnerability Management with 60 reviews while Qualys VMDR is ranked 3rd in Risk-Based Vulnerability Management with 77 reviews. Check Point CloudGuard CNAPP is rated 8.6, while Qualys VMDR is rated 8.2. The top reviewer of Check Point CloudGuard CNAPP writes "Threat intel integration provides us visibility in case any workload is communicating with suspicious or blacklisted IPs". On the other hand, the top reviewer of Qualys VMDR writes "Good visibility but expensive and needs better support". Check Point CloudGuard CNAPP is most compared with Prisma Cloud by Palo Alto Networks, AWS GuardDuty, Wiz, Microsoft Defender for Cloud and Prisma Access by Palo Alto Networks, whereas Qualys VMDR is most compared with Tenable Nessus, Tenable Security Center, Rapid7 InsightVM, Microsoft Defender Vulnerability Management and Tenable Vulnerability Management.
We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.