We compared Qualys VMDR and Tanium based on our users reviews in six parameters. After reading the collected data, you can find our conclusion below:
The setup process for Qualys VMDR is generally smooth and efficient, requiring minimal effort and encountering few problems. On the other hand, Tanium's setup is more dependent on the size and complexity of the network, resulting in differing experiences for users. While some find it simple, others encounter difficulties. Additionally, Tanium's deployment involves multiple team members and can be time-consuming, taking several months to finish.
Qualys VMDR is notable for its effective prioritization system, ongoing monitoring, adaptable dashboard, and extensive vulnerability overview. In contrast, Tanium shines in its exceptional threat hunting, patch management, software inventory, and incident response capabilities.
The cost of setting up Qualys VMDR can vary depending on the desired features, with some users finding it reasonably priced or competitive. However, there are extra charges for specific features such as patch management and EDR policy compliance. Qualys VMDR has proven to be effective in minimizing cybersecurity risks and resolving vulnerabilities, resulting in a positive return on investment. In contrast, Tanium has an annual license fee and is considered expensive compared to its competitors. Despite the higher cost, users believe that Tanium provides value for money and is a strong solution.
Service and Support
The feedback on customer service and support for Qualys VMDR is varied. Some customers have praised the technical support, mentioning the availability of a global team and positive interactions. However, there are also customers who have had negative experiences and highlighted the lack of skilled support personnel. In contrast, Tanium offers a direct relationship with customers and provides an educated technical account manager. Nevertheless, some customers have mentioned that support could be enhanced, specifically in terms of reducing response delay times for issues. In summary, both products have received mixed feedback regarding their customer service and support.
Comparison Results
Based on user feedback, Qualys VMDR and Tanium were compared. Users found Qualys VMDR to be highly effective in identifying vulnerabilities and providing comprehensive reports. It was praised for its user-friendly interface and ease of use. Users also appreciated the platform's ability to automate remediation processes and its integration with other security tools. On the other hand, Tanium received positive reviews for its scalability and ability to manage large networks efficiently. Users highlighted its real-time visibility and quick response time. However, some users mentioned that Tanium's interface could be complex and required a learning curve. Overall, based on user reviews, Qualys VMDR and Tanium both offer valuable features, but Qualys VMDR seems to have an edge in terms of user-friendliness and comprehensive vulnerability management.
"I like Qualys because it is a very complete product, more so than Tenable."
"The reporting functionality is great."
"The solution is easy to use."
"Qualys has a continuous endpoint monitoring feature for agent-based scanning. Once you deploy the solution, it monitors everything that is happening every 30 minutes. Then, if there are any vulnerabilities, they are reported."
"It is quite easy to implement."
"It's stable and quite reliable."
"I find Qualys VM very robust, and it's very useful for vulnerability management and patch management. The value that it brings to my environment is economies of scale. There is no limitation on adding any endpoints. You go by the rule, and it's added once another endpoint is added to our environment. It's automatically installed, and it's less work from our end. It frees up my license automatically if I don't need an endpoint or if my machine is decommissioned. I like the dashboard displays because I don't see any duplication. The most important part is vulnerability management and prioritization. Unlike Symantec, it shows the kind of vulnerability I would want to patch first. It provides a holistic view of the kind of vulnerabilities and the ones I should remediate first. I don't have to do a scan; it just brings up those critical kinds of vulnerabilities like zero-day vulnerabilities and tells me to prioritize them. You have to prioritize these vulnerabilities first and go on with the rest. The dashboard shows me the ones that have been fixed, so I don't have to complete an aging report. The user experience and the graphical interface are good. As it's user-friendly and understandable on an executive level, it brings real value. We also use this solution because it's robust and flexibile."
"The initial setup was good. We didn't have any problems with it."
"The interrogation piece was the most valuable feature because it was very detailed."
"The security features are very valuable."
"The most valuable features of this solution are the consolidation of all historical data on device endpoints, security drivers, firmware, and Software version gaps."
"Tanium has made the process of detecting threats more proactive with its detection. So, the process is easier and more efficient."
"I'm not so familiar with the tool but I like the interaction of the console to the picture. Patching is the primary model I have been focusing on for the last couple of weeks. So I have created a proof of concept environment and have been checking the available features."
"The product is granular and can build complex roles compared to other EDR vendors."
"The solution is scalable and helps to understand how infrastructure works. It helps to improve the health of the organization."
"For incident response tasks, all these tasks can get done in minutes with minimal disruption to the end-user."
"We are moving away from Qualys to Defender ATP because I find that Defender ATP is much better at prioritizing the vulnerabilities that I should be looking at."
"Certain integration factors between different options could be improved."
"Qualys could improve the inbuilt dashboards."
"I would like to have CSPM, a continuous scan-like cloud added to the solution."
"Sometimes the scanning can get overwhelmed and start to drag when a lot of users are trying to scan at once."
"It's too early for me to say if there is any room for improvement since we're in the first couple of months of using this solution."
"Improve the user interface."
"If anything, I would like to see the user interface modernized a bit more."
"Tanium’s scalability could be improved."
"Most of the time, agent-relative issues have to be more equipped with self-healing features. At times, the agent is there, but for some reason, it doesn't report a status. It gives certain problems that are obviously agent-based."
"I would like to have more integrations and custom plugins to input. Integration is always a big deal in a lot of different environments."
"It is not really additional functions, or the features that are needed, rather the complexity would be reduced based on the number of modules required to put together a comprehensive operational security and risk compliance model."
"The reporting could be improved."
"They could improve the UI."
"The performance could improve in future releases. We have had performance issues in specialized web environments, but overall I think the problems are less than 2% of the computer systems being used."
"Any movement into a SaaS solution has challenges since the processes and data flows are not well defined. Hence, you need to build it at the same time."
Qualys VMDR is ranked 3rd in Risk-Based Vulnerability Management with 77 reviews while Tanium is ranked 36th in Endpoint Protection Platform (EPP) with 15 reviews. Qualys VMDR is rated 8.2, while Tanium is rated 7.4. The top reviewer of Qualys VMDR writes "Good visibility but expensive and needs better support". On the other hand, the top reviewer of Tanium writes "Useful tool for vulnerability management and deploying applications, needing improvement in its OS upgrade". Qualys VMDR is most compared with Tenable Nessus, Tenable Security Center, Rapid7 InsightVM, Microsoft Defender Vulnerability Management and Microsoft Defender for Cloud Apps, whereas Tanium is most compared with CrowdStrike Falcon, Microsoft Defender for Endpoint, Microsoft Configuration Manager, ServiceNow Discovery and Tenable Security Center. See our Qualys VMDR vs. Tanium report.
We monitor all Risk-Based Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
