Try our new research platform with insights from 80,000+ expert users

Armis vs Qualys CyberSecurity Asset Management comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Apr 20, 2025

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Armis
Ranking in Cyber Asset Attack Surface Management (CAASM)
1st
Average Rating
8.6
Reviews Sentiment
7.2
Number of Reviews
10
Ranking in other categories
IoT Security (2nd), Risk-Based Vulnerability Management (8th), Cyber-Physical Systems Protection (1st)
Qualys CyberSecurity Asset ...
Ranking in Cyber Asset Attack Surface Management (CAASM)
3rd
Average Rating
9.2
Reviews Sentiment
7.7
Number of Reviews
22
Ranking in other categories
Vulnerability Management (8th), Patch Management (6th), Attack Surface Management (ASM) (3rd), Software Supply Chain Security (5th)
 

Mindshare comparison

As of July 2025, in the Cyber Asset Attack Surface Management (CAASM) category, the mindshare of Armis is 24.1%, up from 13.2% compared to the previous year. The mindshare of Qualys CyberSecurity Asset Management is 8.0%, up from 2.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Cyber Asset Attack Surface Management (CAASM)
 

Featured Reviews

SaketShrivastava - PeerSpot reviewer
Comprehensive asset visibility and OT operations support enhance risk mitigation
I use Armis for asset discovery and vulnerability assessments of the OT network Armis is easy to use. Very few software solutions have OT capabilities that do not impact OT operations. Its asset visibility is good as well. This comprehensive feature set is crucial for our operations.…
Scott Frederick - PeerSpot reviewer
Well-integrated with our vulnerability scanning utilities and efficient in asset tagging and identification
Our favorite features are the tagging and the ability to quickly find assets in the portal. Additionally, I do like the fact that Qualys CSAM is integrated with the rest of our vulnerability scanning utilities. We use the full suite from Qualys. The fact that it is integrated makes it very easy to understand. It shares tagging information with VMDR. That is very nice. Qualys CSAM has discovered assets not previously covered by our vulnerability management program. Primarily, if we have assets without vulnerabilities, they become less visible, but Qualys CSAM alerts us to them because they have IP addresses and are attached to our network. It could discover everything from printers to servers to endpoints. It could discover UPSs, network devices, and across all operating systems. It discovers our security badge readers and digital signage. We have to feed that the IP address ranges, but beyond that, it finds everything in our internal network. We were able to realize its benefits within the first quarter of installing it. We did have to take some time to learn it and understand how to operationally leverage what it was telling us, but it was very quick. In addition to vulnerabilities, Qualys CSAM helps identify other risk factors to a degree. For instance, we can see if servers or assets have incorrect naming standards. We have our network segmented into development model, test, and production, and we have server naming standards that identify which management they should be in. If a production server has the naming standard of a development model server, we can find that. That is one area we have used it for. We are not fully using TruRisk, but we are using the Qualys detection score that is central to our corporate risk prioritization approach. It has completely replaced our homegrown one.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Armis is very easy to implement due to its agentless design and offers a granular level of visibility for all assets in the network."
"It determines which assets and devices are at risk, alerts you if there's a risk, and categorizes all assets, including personal computers, mobile phones, servers, televisions, cars, and video game consoles."
"The solution’s vulnerability monitoring system is very good."
"Armis is easy to use."
"The initial setup and deployment were simple."
"Armis is a straightforward and user-friendly solution."
"The tool is user-friendly and helps to detect vulnerabilities."
"The most valuable feature of the solution is asset tracking."
"Qualys CyberSecurity Asset Management offers valuable features such as continuous vendor support, rapid response times, dedicated vendor partnerships, and advanced technical capabilities for risk identification."
"There are no stability issues, and I would rate it a ten out of ten."
"The most valuable feature is the real-time visibility Qualys CyberSecurity Asset Management provides into all assets across our development and operational environments."
"Qualys CyberSecurity Asset Management offers comprehensive features to cover our entire attack surface."
"I like the EASM part because it provides visibility into unmanaged assets that are public-facing."
"I would rate Qualys CSAM a ten out of ten."
"Tags are very useful for us since we can tag virus applications in infrastructure types such as databases, operating systems, or web platforms."
"The fact that it is integrated makes it very easy to understand."
 

Cons

"We face issues during implementation."
"Armis could improve its geographic spread and marketing campaigns across regions."
"There are occasional issues with some built-in integrations that require troubleshooting, particularly with DHCP integration. Developing additional integrations would be beneficial."
"We face difficulties in integrating the product with ticketing tools like ServiceNow."
"Like any IT tool, continuous learning and improvement are essential for the solution."
"The vulnerability assessment for Windows is not that great. It misses out on a lot of vulnerabilities."
"The solution's vulnerability testing could be improved."
"We have faced issues with the tool's stability."
"We encountered some false positives, which required coordination with the IT team for verification."
"There can be further simplification to reduce the overall noise and provide ESAM-related data."
"We have had challenges modifying the agent configuration. Particularly, when we want to change the tenant that the agent is pointing to, we have had difficulties making that reliable and working properly."
"Further research and development are needed to enhance integration with other cloud agents and products, particularly improving communication with external products and vendors."
"The main aspect that needs improvement is the user interface, which should be more intuitive."
"It is automatically exporting the vulnerabilities and the assets. However, it would be useful to have the ability to select or to filter which we would like to export."
"The deployment is somewhat complicated and could be made more user-friendly for most users. It is currently not user-friendly for all users. It is good but can be improved. It is a new product, and they are working on it."
"Qualys could improve by enhancing its dynamic tagging and role-based access control features, and by refining its user interface for a more intuitive and efficient user experience."
 

Pricing and Cost Advice

"The tool is cheap."
"Qualys offers excellent value for money."
"Though the solution is considered expensive, if bundled with other services such as VMDR or cloud agents, its value would significantly increase. It is currently a bit costly, but with bundling, it could become attractive to more customers."
"The cost for Qualys CyberSecurity Asset Management is high."
"The pricing is fair. I would love to see the price come down a little bit, but we do get a lot of value out of it. We are squeezing every ounce of value we can out of the tool."
"The pricing for Qualys Cybersecurity Asset Management is reasonable, with an annual subscription costing around $1,000 per year or a monthly subscription starting at approximately $72 per month, depending on the specific package and features included."
"The Qualys Cybersecurity Asset Management pricing is well-aligned with our usage."
"The pricing is reasonable relative to the features provided, as it collects all module data and operates as a main, centralized inventory, making it a cost-effective solution."
"The pricing is market-competitive."
report
Use our free recommendation engine to learn which Cyber Asset Attack Surface Management (CAASM) solutions are best for your needs.
861,524 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Government
12%
Computer Software Company
11%
Manufacturing Company
10%
Financial Services Firm
9%
Computer Software Company
17%
Financial Services Firm
14%
Government
8%
Comms Service Provider
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Armis?
Armis is a straightforward and user-friendly solution.
What needs improvement with Armis?
The vulnerability assessment for Windows is not that great. It misses out on a lot of vulnerabilities. Additionally, the filtration process in Armis is not that great.
What is your primary use case for Armis?
I use Armis ( /products/armis-reviews ) for asset discovery and vulnerability assessments of the OT network.
What is your experience regarding pricing and costs for Qualys CyberSecurity Asset Management?
The pricing is reasonable relative to the features provided, as it collects all module data and operates as a main, centralized inventory, making it a cost-effective solution.
What needs improvement with Qualys CyberSecurity Asset Management?
Qualys CyberSecurity Asset Management helps us prioritize assets according to operating system, kernel version, installed software, and current version information. The ASM assists with attack surf...
What is your primary use case for Qualys CyberSecurity Asset Management?
We are using Qualys CyberSecurity Asset Management for daily activities such as identifying new assets through network scanning and agent-based scanning for newly provisioned assets. When any new a...
 

Overview

 

Sample Customers

Samsung Research America, IDT Corporation, Gett
Information Not Available
Find out what your peers are saying about Armis vs. Qualys CyberSecurity Asset Management and other solutions. Updated: June 2025.
861,524 professionals have used our research since 2012.