We compared Qualys VMDR and Tanium based on our users reviews in six parameters. After reading the collected data, you can find our conclusion below:
The setup process for Qualys VMDR is generally smooth and efficient, requiring minimal effort and encountering few problems. On the other hand, Tanium's setup is more dependent on the size and complexity of the network, resulting in differing experiences for users. While some find it simple, others encounter difficulties. Additionally, Tanium's deployment involves multiple team members and can be time-consuming, taking several months to finish.
Qualys VMDR is notable for its effective prioritization system, ongoing monitoring, adaptable dashboard, and extensive vulnerability overview. In contrast, Tanium shines in its exceptional threat hunting, patch management, software inventory, and incident response capabilities.
The cost of setting up Qualys VMDR can vary depending on the desired features, with some users finding it reasonably priced or competitive. However, there are extra charges for specific features such as patch management and EDR policy compliance. Qualys VMDR has proven to be effective in minimizing cybersecurity risks and resolving vulnerabilities, resulting in a positive return on investment. In contrast, Tanium has an annual license fee and is considered expensive compared to its competitors. Despite the higher cost, users believe that Tanium provides value for money and is a strong solution.
Service and Support
The feedback on customer service and support for Qualys VMDR is varied. Some customers have praised the technical support, mentioning the availability of a global team and positive interactions. However, there are also customers who have had negative experiences and highlighted the lack of skilled support personnel. In contrast, Tanium offers a direct relationship with customers and provides an educated technical account manager. Nevertheless, some customers have mentioned that support could be enhanced, specifically in terms of reducing response delay times for issues. In summary, both products have received mixed feedback regarding their customer service and support.
Comparison Results
Based on user feedback, Qualys VMDR and Tanium were compared. Users found Qualys VMDR to be highly effective in identifying vulnerabilities and providing comprehensive reports. It was praised for its user-friendly interface and ease of use. Users also appreciated the platform's ability to automate remediation processes and its integration with other security tools. On the other hand, Tanium received positive reviews for its scalability and ability to manage large networks efficiently. Users highlighted its real-time visibility and quick response time. However, some users mentioned that Tanium's interface could be complex and required a learning curve. Overall, based on user reviews, Qualys VMDR and Tanium both offer valuable features, but Qualys VMDR seems to have an edge in terms of user-friendliness and comprehensive vulnerability management.
"Technical support is fantastic."
"It gives a very good overview of the inventory assessment process, and it can be accessed across our company because it's a global tool."
"The process of defining and discovering scans is organized efficiently."
"Technical support is great and we've never really had a problem."
"The solution shows us classic categories, including high, medium, and low risks. It also shows critical items, and that gives us the advantage of prioritizing things."
"What I like about Qualys VM is the dashboard presentation. It's very good."
"This solution gives us insight into our environment and improves our security. It helps us to maintain a good patching system whereby we know that XYZ is vulnerable within the system."
"The most valuable feature is the ability to run different capabilities with the same agent. With only one agent, we can have EDR, vulnerability management, compliance and some basic SaaS security capabilities."
"The most valuable features of this solution are the consolidation of all historical data on device endpoints, security drivers, firmware, and Software version gaps."
"Threat hunting is a very good feature on Tanium. We have just started using it and have not used it extensively."
"The product is granular and can build complex roles compared to other EDR vendors."
"The solution is scalable and helps to understand how infrastructure works. It helps to improve the health of the organization."
"For incident response tasks, all these tasks can get done in minutes with minimal disruption to the end-user."
"Tanium's most valuable features are patch management, inventory, and distribution software."
"I'm not so familiar with the tool but I like the interaction of the console to the picture. Patching is the primary model I have been focusing on for the last couple of weeks. So I have created a proof of concept environment and have been checking the available features."
"Tanium’s linear-chain architecture is valuable."
"Its integration with ServiceNow and other similar products is complicated and can be improved. It should also have virtual batching. They should support more standards and compliance requirements and more customizations. For policy compliance, they can add the standards required by the countries in the Middle East. Each country generates its own standards and frameworks, and those frameworks should be there in all products, not only in Qualys. The market here is huge, especially in the cybersecurity field. Qatar has a framework for Qatar 2022, and each and every company in the public or private sector has to follow the Qatar 2022 framework."
"Qualys currently does not have any features for scanning SCADA, IoT, and Industrial Control Systems."
"The price could be better. Asset view is still a legacy feature. I'm not able to extract the information about the asset with complete details. It would be better if they fixed that in the next release. I know Qualys is already working on it, so I'm hopeful it will be available in the next five or six months. That would be something that's changed where I seek improvement."
"It's too early for me to say if there is any room for improvement since we're in the first couple of months of using this solution."
"The IoT scan is not great."
"There needs to be better documentation."
"Qualys VM's machine learning and artificial intelligence features could be improved."
"I do not like that all of the data is stored on the cloud."
"I would like to have more integrations and custom plugins to input. Integration is always a big deal in a lot of different environments."
"The solution can give a lot of false positives."
"The reporting could be improved."
"The solution needs to improve the reporting and tracking capabilities."
"The most painful thing is the interface. It's a bit unclear sometimes."
"Any movement into a SaaS solution has challenges since the processes and data flows are not well defined. Hence, you need to build it at the same time."
"We had some issues with the solution's OS upgrade."
"Tanium's limitations should be improved because although it is a great tool, it is limited to only a few classes during a session."
Qualys VMDR is ranked 3rd in Risk-Based Vulnerability Management with 77 reviews while Tanium is ranked 36th in Endpoint Protection Platform (EPP) with 15 reviews. Qualys VMDR is rated 8.2, while Tanium is rated 7.4. The top reviewer of Qualys VMDR writes "Good visibility but expensive and needs better support". On the other hand, the top reviewer of Tanium writes "Useful tool for vulnerability management and deploying applications, needing improvement in its OS upgrade". Qualys VMDR is most compared with Tenable Nessus, Tenable Security Center, Rapid7 InsightVM, Microsoft Defender Vulnerability Management and Microsoft Defender for Cloud Apps, whereas Tanium is most compared with CrowdStrike Falcon, Microsoft Defender for Endpoint, Microsoft Configuration Manager, ServiceNow Discovery and BigFix. See our Qualys VMDR vs. Tanium report.
We monitor all Risk-Based Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
