• Home
  • Qualys VMDR vs. Splunk User Behavior Analytics

Qualys VMDR vs Splunk User Behavior Analytics comparison

Cancel
You must select at least 2 products to compare!
Qualys Logo
Qualys VMDR
Read 77 Qualys VMDR reviews
6,732 views|5,110 comparisons
93% willing to recommend
Splunk Logo
Splunk User Behavior Analytics
Read 18 Splunk User Behavior Analytics reviews
2,217 views|1,362 comparisons
100% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Risk-Based Vulnerability Management
May 2024
Executive Summary

We performed a comparison between Qualys VMDR and Splunk User Behavior Analytics based on real PeerSpot user reviews.

Find out what your peers are saying about Tenable, Qualys, Rapid7 and others in Risk-Based Vulnerability Management.
To learn more, read our detailed Risk-Based Vulnerability Management Report (Updated: May 2024).
Download the complete report
772,679 professionals have used our research since 2012.
Featured Review
Harold Jensen
Good visibility but expensive and needs better support
We are seeing more of the issues we suspected were there. Qualys is allowing us to get an overall picture of our Risk posture. It has enabled us to... Read more →
Genrlmgr67
Easy to configure and easy to use solution that integrates with many applications and scripts
It is a great product because it is intelligent and does everything for us. We have a LAN (Local Area Network) and sensitive, classified data and... Read more →
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The most valuable feature is the certificate management.""The most valuable features are vulnerability detection and the scanning capability to enable identification of vulnerabilities across our network.""Provides great functionality.""The reporting is fine.""The solution shows us classic categories, including high, medium, and low risks. It also shows critical items, and that gives us the advantage of prioritizing things.""The most valuable feature is that this solution is very lightweight.""I like that we have many scanners and channels that don't overload. It helps us scan and track easily. Also, the tagging system is good for tagging. We can still use QualysAgent task ID tools even if tags aren't made.""The most valuable features are vulnerability scanning, policy compliance scanning, and tablet for web application scanning."

More Qualys VMDR Pros →

"The most valuable features are the indexing and powerful search features.""Splunk is more user-friendly than some competing solutions we tried.""The product is at the forefront of auto-remediation networking. It's great.""The solution is extremely scalable. Our customers are regularly scaling up after installing Splunk.""The solution is fast, flexible, and easy to use.""The most valuable feature is being able to take data and put it into other systems so that we could see the output, and to see where we need to apply our focus.""The most valuable features are its data aggregation and the ability to automatically identify a number of threats, then suggest recommended actions upon them.""It's easily scalable."

More Splunk User Behavior Analytics Pros →

Cons
"The price could be better. Asset view is still a legacy feature. I'm not able to extract the information about the asset with complete details. It would be better if they fixed that in the next release. I know Qualys is already working on it, so I'm hopeful it will be available in the next five or six months. That would be something that's changed where I seek improvement.""They're still evolving their platform in terms of reporting capabilities.""Some of the older features could be polished instead of focusing on releasing new features.""The customer support is very bad.""Qualys VM should improve its methodology.""When you want to cover yourself for scalability, you will be charged for the number you place on the scan itself.""The only improvement I can think of is on the implementation side. At times it is a bit slow.""If anything, I would like to see the user interface modernized a bit more."

More Qualys VMDR Cons →

"We'd like the ability to do custom searches.""I would like improved downward integration with other tools such as McAfee and other GCP solutions.""There are occasional bugs.""We want to have an automated system for bot hunting that enables us to detect anomalies predictively based on historical data. It would be helpful if Splunk included process mining as an alternative option. We have a threat workflow, but it would be useful if we could supplement that with some process mining capabilities over time.""They should work to add more built-in correlation searches and more use cases based on worldwide customer experiences. They need more ready-made use cases.""The correlation engine should have persistent and definable rules.""I'm not aware of any lacking features.""It could be easier to scale the solution if you are using it on-premise, not in the cloud."

More Splunk User Behavior Analytics Cons →

Pricing and Cost Advice
  • "Usually every implementation is different and the quote is in function of number of assets."
  • "When you want to cover yourself for scalability, you will be charged for the number you place on the scan itself."
  • "It is more expensive than other products on the market."
  • "They have recently changed the pricing model, which is now better than it was before."
  • "It is different for every company, but for us, it's every three years."
  • "Qualys is cheaper and more affordable than other solutions."
  • "The pricing and licensing for Qualys could be improved."
  • "The license is on a yearly basis."

    • More Qualys VMDR Pricing and Cost Advice →

  • "I hope we can increase the free license to be more than 5 gig a day. This would help people who want to introduce a POC or a demo license for the solution."
  • "My biggest complaint is the way they do pricing... You can never know the pricing for next year. Every single time you adjust to something new, the price goes up. It's impossible to truly budget for it. It goes up constantly."
  • "There are additional costs associated with the integrator."
  • "The licensing costs is around 10,000 dollars."
  • "Pricing varies based on the packages you choose and the volume of your usage."
  • "I am not aware of the price, but it is expensive."

    • More Splunk User Behavior Analytics Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Risk-Based Vulnerability Management solutions are best for your needs.
    See Recommendations
    772,679 professionals have used our research since 2012.
    Questions from the Community
    What is your primary use case for Qualys VM?
    Top Answer:Qualys VM is used for vulnerability scans for the internet and applications using application exchange. There are many applications. We also use the solution for asset management per team, and the… more »
    Read all 36 answers   →
    What do you like most about Qualys VMDR?
    Top Answer:I like that we have many scanners and channels that don't overload. It helps us scan and track easily. Also, the tagging system is good for tagging. We can still use QualysAgent task ID tools even if… more »
    Read all 57 answers   →
    What is your experience regarding pricing and costs for Qualys VMDR?
    Top Answer:We have an annual contract for Qualys VMDR. I believe it's for either two years or five years.
    Read all 34 answers   →
    What do you like most about Splunk User Behavior Analytics?
    Top Answer:The solution's most valuable feature is Splunk queries, which allow us to query the logs and analyze the attack vectors.
    Read all 17 answers   →
    What is your experience regarding pricing and costs for Splunk User Behav...
    Top Answer:I am not aware of the price, but it is expensive. A rough estimate would be around 150 gigabytes, given the huge amount of data. At the moment there are no additional costs for maintenance.
    Read all 12 answers   →
    What needs improvement with Splunk User Behavior Analytics?
    Top Answer:Sometimes, we need to write explicit queries. It would be good if the solution had an analytics tool that allowed us to analyze the data without writing specific queries. The solution's user interface… more »
    Read all 17 answers   →
    Ranking
    3rd
    out of 42 in Risk-Based Vulnerability Management
    Views
    6,732
    Comparisons
    5,110
    Reviews
    23
    Average Words per Review
    446
    Rating
    7.9
    2nd
    out of 43 in User Entity Behavior Analytics (UEBA)
    Views
    2,217
    Comparisons
    1,362
    Reviews
    6
    Average Words per Review
    360
    Rating
    8.3
    Comparisons
    Also Known As
    Qualys VM, QualysGuard VM, Qualys Asset Inventory, Qualys Container Security, Qualys Virtual Scanner Appliance
    Caspida, Splunk UBA
    Learn More
    Qualys
    Splunk
    Video Not Available
    Overview

    Vulnerability Management, Detection, and Response (VMDR) is a cornerstone product of the Qualys TruRisk Platform and a global leader in the enterprise-grade vulnerability management (VM) vendor space. With VMDR, enterprises are empowered with visibility and insight into cyber risk exposure - making it easy to prioritize vulnerabilities, assets, or groups of assets based on business risk. Security teams can take action to mitigate risk, helping the business measure their actual risk exposure over time. 

    Qualys VMDR offers an all-inclusive risk-based vulnerability management solution to prioritize vulnerabilities and assets based on risk and business criticality. VMDR seamlessly integrates with configuration management databases (CMDB), Qualys Patch Management, Custom Assessment and Remediation (CAR), Qualys TotalCloud and other Qualys and non-Qualys solutions to facilitate vulnerability detection and remediation across the entire enterprise.

    With VMDR, users are empowered with actionable risk insights that translate vulnerabilities and exploits into optimized remediation actions based on business impact. Qualys customers can now aggregate and orchestrate data from the Qualys Threat Library, 25+ threat intelligence feeds, and third-party security and IT solutions, empowering organizations to measure, communicate, and eliminate risk across on-premises, hybrid, and cloud environments.

    Splunk User Behavior Analytics is a behavior-based threat detection is based on machine learning methodologies that require no signatures or human analysis, enabling multi-entity behavior profiling and peer group analytics for users, devices, service accounts and applications. It detects insider threats and external attacks using out-of-the-box purpose-built that helps organizations find known, unknown and hidden threats, but extensible unsupervised machine learning (ML) algorithms, provides context around the threat via ML driven anomaly correlation and visual mapping of stitched anomalies over various phases of the attack lifecycle (Kill-Chain View). It uses a data science driven approach that produces actionable results with risk ratings and supporting evidence that increases SOC efficiency and supports bi-directional integration with Splunk Enterprise for data ingestion and correlation and with Splunk Enterprise Security for incident scoping, workflow management and automated response. The result is automated, accurate threat and anomaly detection.

    Sample Customers
    Agrokor Group, American Specialty Health, American State Bank, Arval, Life:), Axway, Bank of the West, Blueport Commerce, BSkyB, Brinks, CaixaBank, Cartagena, Catholic Health System, CEC Bank, Cegedim, CIGNA, Clickability, Colby-Sawyer College, Commercial Bank of Dubai, University of Utah, eBay Inc., ING Singapore, National Theatre, OTP Bank, Sodexo, WebEx
    8 Securities, AAA Western, AdvancedMD, Amaya, Cerner Corporation, CJ O Shopping, CloudShare, Crossroads Foundation, 7-Eleven Indonesia
    Top Industries
    REVIEWERS
    Financial Services Firm19%
    Comms Service Provider15%
    Manufacturing Company15%
    Transportation Company11%
    VISITORS READING REVIEWS
    Educational Organization33%
    Computer Software Company11%
    Financial Services Firm11%
    Manufacturing Company6%
    REVIEWERS
    Financial Services Firm40%
    Insurance Company10%
    Government10%
    Security Firm10%
    VISITORS READING REVIEWS
    Computer Software Company15%
    Financial Services Firm14%
    Government10%
    Manufacturing Company8%
    Company Size
    REVIEWERS
    Small Business19%
    Midsize Enterprise12%
    Large Enterprise69%
    VISITORS READING REVIEWS
    Small Business15%
    Midsize Enterprise41%
    Large Enterprise43%
    REVIEWERS
    Small Business29%
    Midsize Enterprise29%
    Large Enterprise41%
    VISITORS READING REVIEWS
    Small Business20%
    Midsize Enterprise12%
    Large Enterprise68%
    Buyer's Guide
    Risk-Based Vulnerability Management
    May 2024
    Download Free Report
    Find out what your peers are saying about Tenable, Qualys, Rapid7 and others in Risk-Based Vulnerability Management. Updated: May 2024.
    DOWNLOAD NOW
    772,679 professionals have used our research since 2012.

    Qualys VMDR is ranked 3rd in Risk-Based Vulnerability Management with 77 reviews while Splunk User Behavior Analytics is ranked 2nd in User Entity Behavior Analytics (UEBA) with 18 reviews. Qualys VMDR is rated 8.2, while Splunk User Behavior Analytics is rated 8.2. The top reviewer of Qualys VMDR writes "Good visibility but expensive and needs better support". On the other hand, the top reviewer of Splunk User Behavior Analytics writes "Easy to configure and easy to use solution that integrates with many applications and scripts ". Qualys VMDR is most compared with Tenable Nessus, Tenable Security Center, Rapid7 InsightVM, Microsoft Defender Vulnerability Management and Tenable Vulnerability Management, whereas Splunk User Behavior Analytics is most compared with Darktrace, Microsoft Defender for Identity, IBM Security QRadar, Cynet and Exabeam Fusion SIEM.

    We monitor all Risk-Based Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.