Qualys Patch Management Reviews

Name: Qualys Patch Management
Brand: Qualys
Rating: 4.3 (14 reviews)

4.3 out of 5

14 reviews
92% willing to recommend

What is Qualys Patch Management?

Qualys Patch Management optimizes patching and vulnerability remediation through automation and intelligence insights, accelerating the process by 43% and improving patch rates by 90%. Its integration with CMDB and ITSM tools speeds up ticket closures by 60%, effectively reducing the attack surface while freeing IT and security resources. This cloud-based solution bridges the IT-security gap, making it essential for cybersecurity.

Get the Qualys Patch Management Buyer's Guide and find out what your peers are saying about Qualys Patch Management, Microsoft Configuration Manager, BigFix and more!

Qualys Patch Management is the #12 ranked solution in top Patch Management solutions. PeerSpot users give Qualys Patch Management an average rating of 8.6 out of 10. Based on the analysis of the 14 most recent Qualys Patch Management reviews, the overall sentiment is positive, with a sentiment score of 7.0. (Among the lowest in the category). Qualys Patch Management is most commonly compared to Microsoft Configuration Manager: Qualys Patch Management vs Microsoft Configuration Manager. Qualys Patch Management is popular among the large enterprise segment, accounting for 65% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a computer software company, accounting for 15% of all views.

Buyer's Guide

Qualys Patch Management

November 2024

Get the report

Helped 816,660 peers since 2012

Featured reviews

Brad Mathis

Employee-Owner, Senior Consultant, Information Security at Keller Schroeder

Qualys query language simplifies patch selection by allowing us to define risk-based criteria. We can target patches based on severity medium to critical and Qualys rating while excluding specific unwanted patches like "Patch xyz". As long as a patch meets our pre-approved criteria, it's automatically selected, making the approval process quick and efficient. The Patch Management integration with VMDR including all development patches and configuration changes required to remediate vulnerabilities detected by the VMDR is significantly important. While Qualys offered benefits initially, the deployment of the cloud agent truly transformed our security posture. Previously, regular scans provided only point-in-time vulnerability identification. Now, with continuous updates from the cloud agent every four hours, we have near real-time visibility into our risk levels, allowing us to prioritize and swiftly address vulnerabilities to minimize overall security exposure. TruRisk automation streamlines vulnerability remediation by prioritizing threats based on real-world exploitability, not just a generic CVSS score. This allows us to focus on the most critical issues first, avoiding the time-wasting whack-a-mole approach of patching everything at once. While all vulnerabilities eventually need to be addressed, TruRisk helps us prioritize effectively and work through them in a methodical way. Qualys' prioritization feature streamlines vulnerability management by offering a central hub to find, rank, and address critical security issues. This unified approach significantly improves collaboration between security and IT teams. Previously, prioritizing vulnerabilities was often a matter of simply patching critical ones. Patching policies also play a role, with most companies aiming for a 30-day window or less for critical patches. While the industry average turnaround is 17 days, faster patching remains crucial. Qualys' TruRisk scoring system helps identify outliers – vulnerabilities that might slip through the cracks in a well-managed environment. Traditional patching methods, like Microsoft's WSUS, may miss these outliers, but Qualys excels at finding them, providing better communication and faster remediation. This single source has helped reduce soft costs where employees were wasting time spinning their wheels searching for answers. This newfound focus allows them to dedicate their energy to more important tasks. Prior to implementing patch management, a random sampling of systems would often reveal outdated patches, some exceeding 60 days old. However, with patch management in place, finding such aged patches is now a rarity. We integrated Patch Management on top of Qualys VMDR. This gave us a lot more visibility and accuracy. Patch Management has helped to reduce our organizational risk.

Read full review

Darrell Elmore

System Architect at a leisure / travel company with 10,001+ employees

I used Patch Management with Qualys VMDR when I was doing a proof of concept with Patch management. It works well. To me, it was just a shortcut or another way to patch a system versus doing it with the job, but it was straightforward. We were able to realize its benefits immediately. Patch Management gave my side and the security side a single pane of glass and the ability to better coordinate the delivery of patches. After using it, I felt a lot more comfortable with it. TruRisk gives the confidence that we are attacking the major issues, but we do leverage our security team to make the final decision. It does help. Patch Management gives us a single source of truth for assets and vulnerabilities that need to be assessed, prioritized, and remediated. Currently, we are in a hybrid environment until we fully transition over. We have Ivanti and Qualys. They are two separate agents, two separate infrastructures. Moving to Qualys Patch Management gives us instant access to all of the systems we have. We do not have to worry about building up new infrastructure. We just go and start patching. It streamlines everything a lot, especially the dialogue between our teams, that is, the risk side versus the security side. It reduces confusion over patches. Patch Management has definitely given us the opportunity to do more hands-off patching. Some in my team are manually pushing the patches out. We click a button, schedule it, and shoot it out. We are going to take advantage of zero-touch patching for browsers. We are going to do a lot more scheduled or agent-based patching. It will be hands-off. It will free us up to do more analytical things and spread ourselves out to other tasks. Patch Management will help us reduce our organization's risk. We have not had the opportunity to start using it the way we want to. We are still early on, but just from what I see, I expect that it would have a significant impact on our ability to patch. Personally, I think the impact will be significant.

Read full review

Yuvaraaj Adhithya

Cyber Security Analyst at WPP

If a server has two applications, and one has a patch and the other one does not have a patch, you do not need to worry. You just select the server and the patches you want to deploy. If you have selected four patches but only two are applicable, it will only deploy the ones that are applicable. The other two are skipped so that there are no issues or errors with the existing image. That is an advantage of this solution. There is no automation. You have to manually create a job. There is a scanned report, and based on that, you can select a patch or server. You can select multiple servers or multiple patches. We have used the solution's Risk Reduction Recommendation Report. After the remediation, we run the scan again. It is simple. Using Patch Management, we have not seen any improvement in our patch rates.

Read full review

Valuable Features

Qualys Patch Management features include a powerful query language for seamless patch deployment, comprehensive vulnerability search, automated scheduling, and real-time reporting. Its integration with Qualys Gateway Scanner optimizes bandwidth and allows flexibility in script execution. The platform's interface delivers easy navigation and prioritization by risk score, supports deferred reboots, and ensures endpoint security. Users appreciate the dashboard, efficient asset management, on-demand patching, and strong customer support team's real-time assistance.

"The most valuable feature of Qualys Patch Management is the support and service provided by Qualys."
"The most valuable feature of Qualys Patch Management is the support and service provided by Qualys. The feedback that I got from our team is that Qualys' team is very supportive. They are always there to help us and solve queries in real-time. I liked the service aspect."
"Qualys Patch Management streamlines our vulnerability management process by providing a single source of truth to assess, prioritize, and remediate vulnerabilities across all assets."

Room for Improvement

Qualys Patch Management requires improvements in driver updates, expanding application support, and enhancing automation. Users report limitations in patch deployment for Oracle and find the reporting interface challenging. They encounter issues with patch errors and vulnerability detection accuracy. Some experience authorization issues and asset duplication. There's a call for better customer support and faster response to vulnerabilities. Users note the need for enhanced detection logic and greater patch availability from various vendors.

"Pricing is on the higher side. We found it costly compared to other vendors."
"It would be beneficial to have more efficiently scheduled task deployments that are tailored to specific asset types or deployment needs."
"The GUI has areas that need improvement, particularly in the accuracy of results when adding dashboards and running queries."

ROI

Users reported a significant reduction in vulnerability exposure and a streamlined patching process through Qualys Patch Management. They experienced faster remediation times and increased efficiency in managing updates. Users also mentioned reduced operational risks and better compliance with industry regulations, attributing these improvements to prioritized and automated patching. Consequently, businesses observed cost savings due to fewer security incidents and less manual labor in patching tasks.

Pricing

Qualys Patch Management's pricing is perceived as competitive among users, though some consider it expensive compared to alternatives like Nessus and similar tools. Pricing is moderate, with scaling options reducing per-asset costs. There is demand for improved support and additional features. Pricing bundles for smaller environments offer better value, yet the separate SKU for added functionalities is a barrier. Despite varied opinions, many find the overall cost reasonable for enterprise needs.

"Pricing is on the higher side. We found it costly compared to other vendors."
"The pricing is reasonable and less expensive than the previous tool."
"Pricing for Qualys Patch Management is moderate."

Popular Use Cases

Organizations utilize Qualys Patch Management primarily to address and remediate vulnerabilities within their infrastructure. They leverage its cloud-based platform to efficiently deploy patches, reduce remediation time, and enhance security by identifying critical vulnerabilities. The integration with Vulnerability Management, Detection, and Response provides a comprehensive view, allowing direct patching from the module. By using its capabilities for patch automation and management, they improve patch deployment efficiency without on-premise servers.

Service and Support

Users report varied experiences with customer service and support of Qualys Patch Management. While some find support highly efficient, quick, and effective, addressing issues promptly, others face challenges such as reliance on knowledge-based articles and difficulty reaching support through calls. Support quality often depends on case priority. Some users appreciate the access to technical account managers for issue resolution and communication. Overall, satisfaction ranges from excellent service to moderate support challenges.

Deployment

Many find Qualys Patch Management's initial setup straightforward, especially with proper documentation and whitelisting in place. It requires minimal manual intervention once jobs are set. For some, it initially seemed complex, but ease improved with experience. Deployment varies, with some completing it within days and others taking weeks. Internal processes sometimes pose challenges rather than Qualys itself. Support needs improvement. Cloud and on-premise deployment options exist, offering flexibility.

Scalability

Qualys Patch Management is rated highly for scalability, often receiving ratings of eight to ten out of ten. Users find it efficiently expands with organizational growth and handles global deployment seamlessly. They note it can adapt to new technologies and modules but mention licensing considerations. Though feedback on multi-tenancy varies, the cloud-based nature allows for smooth scaling. Organizations utilize it widely, ranging from dozens to over seventy users.

Stability

Qualys Patch Management displays strong stability, frequently earning high ratings ranging from eight to ten out of ten. Users appreciate the advance notice of maintenance and minimal downtime, with rare glitches typically traced to network factors. Occasional issues, such as with new Linux patches, are noted but seen as minor. Users report high-speed fiber optic connections contributing to stability, consistently describing Qualys Patch Management as dependable and reliable with only minimal latency concerns.

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our Qualys Patch Management Buyer's Guide for additional reliable information.