Qualys Patch Management Reviews

Name: Qualys Patch Management
Brand: Qualys
Rating: 4.4 (27 reviews)

4.4 out of 5

27 reviews
96% willing to recommend

What is Qualys Patch Management?

Qualys Patch Management optimizes patching and vulnerability remediation through automation and intelligence insights, accelerating the process by 43% and improving patch rates by 90%. Its integration with CMDB and ITSM tools speeds up ticket closures by 60%, effectively reducing the attack surface while freeing IT and security resources. This cloud-based solution bridges the IT-security gap, making it essential for cybersecurity.

Get the Qualys Patch Management Buyer's Guide and find out what your peers are saying about Qualys Patch Management, Microsoft Configuration Manager, BigFix and more!

Qualys Patch Management is the #4 ranked solution in top Patch Management solutions. PeerSpot users give Qualys Patch Management an average rating of 8.8 out of 10. Qualys Patch Management is most commonly compared to Microsoft Configuration Manager: Qualys Patch Management vs Microsoft Configuration Manager. Qualys Patch Management is popular among the large enterprise segment, accounting for 67% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a computer software company, accounting for 21% of all views.

Buyer's Guide

Qualys Patch Management

November 2024

Get the report

Helped 831,020 peers since 2012

Featured reviews

Revathi VeeraRaghavan

Senior Process Executive at Infosys

We have prioritized products for automated patching. This means that whenever a vendor releases a patch, it is seamlessly and robustly applied. Qualys VMDR detects vulnerabilities and correlates them with relevant patches in the Qualys Patch Management module. Although separate databases, they work together to provide a comprehensive solution for identifying and remediating vulnerabilities. When VMDR detects a vulnerability, it identifies corresponding patches released in the Patch Management module, streamlining the patching process. Before the pandemic in 2020, we relied on remote scanning, which limited our ability to deploy and manage patches effectively. Our on-premises SCCM server struggled to push patches to remote users relying on VPN. To address this, we deployed the Qualys Cloud Agent on all 360,000 assets in our infrastructure. This provided comprehensive vulnerability detection, unlike the limited results from remote scans. However, the sheer volume of vulnerabilities overwhelmed our SCCM server. Consequently, we collaborated with Qualys to develop a backend solution integrated with the Cloud Agent for seamless patch management. After successful testing and implementation, Qualys Patch Management now efficiently handles patching for Windows, Linux, and macOS devices. Qualys Patch Management provides a centralized platform for managing assets and vulnerabilities, enabling assessment, prioritization, and remediation. We rely on Qualys for both vulnerability detection and patch deployment. We initially faced challenges as the IT team was hesitant about Qualys Patch Management, and the deployment of cloud agents revealed millions of vulnerabilities. However, Qualys Patch Management significantly reduced these vulnerabilities, particularly on our Windows machines, which comprise 70 percent of our systems. The team observed a 70 percent remediation rate through scheduled patching, establishing Qualys as a reliable source of truth. Consequently, they shifted from relying on SCCM or Intune to Qualys Patch Management for scheduling patching jobs to meet our five-day SLA. With Qualys publishing QIDs the day after vendor patch releases, automated jobs promptly deploy patches to all machines upon vulnerability detection. Qualys Patch Management helps lower operational costs and enhances our security posture by reducing vulnerabilities and streamlining compliance efforts. I have observed an improvement in our patch rate using Qualys Patch Management. Qualys now facilitates over 80 percent compliance within five days, a task that previously required the IT team 12 days to accomplish. By integrating Patch Management with VMDR, we gain immediate vulnerability detections and leverage TruRisk values to derive our own severity rankings for prioritization. These prioritized vulnerabilities are then addressed using the Qualys Patch Management Module, streamlining our remediation process. Qualys Patch Management has helped reduce our organizational risk by providing current vulnerability data, including exploitability and active threat information. The platform's live threat feed and risk score enhance the standard CVSS rating by considering factors like active malware association and exploit availability, allowing us to prioritize patching efforts effectively.

Read full review

ShantanuChoubal

Project Lead at Persistent Systems

The most valuable features of Qualys Patch Management include its ability to automate patch deployment for hundreds or thousands of assets, reducing our reliance on the IT team to perform these tasks manually. It is able to fix most of our vulnerabilities. The count is reducing significantly. We do not have to rely on our IT team to manually log in to systems or deploy using the AD group. We can just put in a command and schedule the patches for our hundreds or thousands of assets. The vulnerability count has reduced significantly. Secondly, it helps us not just deploy a patch, it also helps us to install a particular software if it is required from an IT standpoint. Tomorrow, if the organization has a requirement for certain software to be installed on a device, Qualys Patch Management has that capability as well. It can install that software on the machine irrespective of whether it is a security tool or some other tool. We can just put in the URL or source path of it, and it will install that software. The last one is the registry remediation. It is not just limited to patch management or patch deployment. We can also create a script to fix a particular vulnerability that cannot be fixed through patch deployment. It might require logging into the system, opening the registry keys, and editing some values to it. We can create a script for that.

Read full review

Karan Bhateja

System Engineer at a tech services company with 11-50 employees

To enhance vulnerability management by upgrading or updating applications, we've implemented a recurring job in Qualys Patch Management. This job automatically scans for missing updates on a daily or weekly basis, ensuring all applications remain current. This automated process streamlines patch management and strengthens our overall security posture. We use Patch Management with Qualys VMDR and find its integration capabilities helpful. This tool automatically identifies vulnerabilities and provides the necessary patches, configuration changes, or updates for remediation. Previously, we needed separate tools for vulnerability scanning, solution finding, and implementation. Qualys streamlines this process by not only identifying vulnerabilities but also recommending and implementing solutions, including patches, updates, and configuration changes, effectively helping us remediate vulnerabilities in our environment. The machines connected to the environment and reporting to Qualys have a better patching system. It continuously monitors for missing updates daily through scheduled tasks. If any are found, they are automatically installed. This ongoing monitoring and automatic installation is an excellent benefit of Qualys Patch Management. TruRisk automation allows us to address vulnerabilities without direct involvement from our security team. When we first implemented Qualys, we had a backlog of approximately 130,000 vulnerabilities, some dating back six months or more. By utilizing Qualys as a remediation tool to track, address, and resolve these vulnerabilities, we have successfully reduced the number to 15,000. Qualys Patch Management provides a centralized platform to identify, prioritize, and address vulnerabilities across our assets. It uses a severity scoring system ranging from one to five, allowing us to assess and prioritize vulnerabilities accordingly. Before using Qualys, we used SCCM, which gave us good results with over 95 percent compliance. Qualys achieves similar compliance rates if we maintain regular monthly patching. While the compliance numbers haven't changed significantly, Qualys offers greater automation, eliminating the need for manual checks on individual machines. This automation is a significant advantage over our previous system. We are using Qualys Patch Management in parallel with our Vulnerability Management solution. Qualys Patch Management has reduced our organization's risk by almost 90 percent.

Read full review

PeerAnalyst reports

Type	Title	Date
Category	Patch Management	Jan 17, 2025	Download
Product	Reviews, tips, and advice from real users	Jan 17, 2025	Download
Comparison	Qualys Patch Management vs Microsoft Configuration Manager	Jan 17, 2025	Download
Comparison	Qualys Patch Management vs BigFix	Jan 17, 2025	Download
Comparison	Qualys Patch Management vs Microsoft Windows Server Update Services	Jan 17, 2025	Download

Title	Rating	Mindshare	Recommending
Microsoft Configuration Manager	4.1	19.6%	90%	81 interviews Add to research
BigFix	4.3	13.1%	97%	95 interviews Add to research

Valuable Features

Qualys Patch Management offers automated patch scheduling, risk-based patching, comprehensive reporting, and a user-friendly interface. Its query language allows efficient patch deployment. Real-time updates, integration abilities, and vulnerability scanning ensure thorough assessments. Deferred reboot options enhance flexibility. Users can automate scripts for registry modifications, providing security enhancements. It facilitates vulnerability identification, prioritizes critical patches, and supports multiple OS environments. Asset management, patch compliance, and visibility into patch status are significantly improved.

"We have seen about 60% to 70% improvement in the patch rate so far."
"Patch Management offers pre-action and post-action features, which provide the ability to execute scripts during the installation or uninstallation of software. This helps me make changes from Qualys itself."
"Qualys Patch Management has reduced our organization's risk by almost 90 percent."

Room for Improvement

Qualys Patch Management requires improvements in driver updates, application support, and user interface. There are integration issues with legacy systems and inconsistent patch deployments. Users experience difficulty with asset tracking and errors during updates. Customer support needs enhancement for better communication. Pricing is a concern for many, and there's a need for faster patch releases. Users seek expanded third-party integration and better reporting features, especially for compliance and visualization.

"Not all patches are supported, so there are some restrictions. Some remediations require script-level changes which Qualys does not support."
"They should focus on increasing the list of supported patches. New software or data is continuously released, and it would be beneficial if patches were updated in the knowledge base more quickly."
"Customer support for Qualys Patch Management is lacking. The support cases we've raised often resulted in us finding the solution independently."

ROI

Qualys Patch Management contributes positively to reducing vulnerabilities, achieving up to 80 percent reduction. Users experience significant time savings, sometimes up to 90 percent, and report saving between 30 to 40 percent in costs. Some estimates suggest a 50 percent return due to increased efficiency in patching. The tool helps organizations maintain security posture and offers insights that minimize manual intervention. Satisfaction is high, but some cannot quantify outcomes precisely.

Pricing

Qualys Patch Management is priced competitively, with some users finding it on the expensive side. However, its robust features, efficiency, and effectiveness justify the cost for many enterprises. Pricing scales lower with increased assets, and recent bundles offer better rates for smaller environments. While some express that more features and improved support would enhance value, many agree it delivers good value compared to alternatives like Microsoft SCCM and Rapid7.

"Qualys Patch Management comes as part of a bundled package with several modules, making it a cost-effective deal for us."
"Its price is competitive in the market. Compared to other solutions like Rapid7, Qualys offers a favorable price point and robust features."
"Qualys Patch Management offers a moderate price point, neither cheap nor expensive, considering its comprehensive functionality."

Popular Use Cases

Organizations primarily use Qualys Patch Management for identifying, prioritizing, and deploying patches to remediate vulnerabilities in infrastructure and endpoints. They find it effective for its automation capabilities, centralized patch management, and integration with cloud agents, allowing seamless updates across Windows, Linux, and third-party applications without relying on on-premise servers. Users integrate it with Vulnerability Management, Detection, and Response for a unified risk mitigation approach, addressing critical security updates promptly.

Service and Support

Qualys Patch Management customer service is generally praised for its responsiveness and efficiency, with ratings often reaching nine out of ten. Many users find the support team experienced and quick to resolve issues. However, some feedback indicates challenges with initial response times and difficulties reaching live technical support. While high-priority cases tend to receive efficient attention, others may require additional follow-up. Quality and reliability of support seem to vary based on individual experiences.

Deployment

Qualys Patch Management's initial setup is generally straightforward, especially with the right team and prior knowledge of whitelisting. Most deployments were smooth, with clear documentation aiding the process. While some found it overwhelming initially, tutorials helped simplify it. Minimal maintenance is required, and many users found the automatic features beneficial. Setup times varied, but it typically was completed efficiently with collaboration between security and IT departments, and Qualys provided essential support.

Scalability

Qualys Patch Management excels in scalability, frequently earning top ratings for its ability to manage increasing workloads across global environments efficiently. It accommodates various organizational sizes and adapts to different operational needs with minimal limitations, although some users suggest enhancements in specific areas like multi-tenancy support and affordability. While most entities experience no issues scaling, it's noted that expansion is dependent on licensing.

Stability

Users consistently find Qualys Patch Management stable, rating it between eight to ten out of ten for stability. Scheduled maintenance is well-communicated, requiring minimal downtime. While occasional issues arise, such as minor glitches or implementation errors, they are generally resolved quickly. Stability might be affected by network issues rather than the platform itself. Users have experienced limited cases of latency or portal inaccessibility during specific updates, but these are uncommon and promptly addressed.

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our Qualys Patch Management Buyer's Guide for additional reliable information.