Try our new research platform with insights from 80,000+ expert users

AWS Security Hub vs VMware Aria Automation comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Jan 12, 2025

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

AWS Security Hub
Ranking in Cloud Security Posture Management (CSPM)
12th
Average Rating
7.6
Reviews Sentiment
7.2
Number of Reviews
22
Ranking in other categories
Security Orchestration Automation and Response (SOAR) (5th)
VMware Aria Automation
Ranking in Cloud Security Posture Management (CSPM)
17th
Average Rating
8.0
Reviews Sentiment
6.8
Number of Reviews
170
Ranking in other categories
Cloud Management (1st), Configuration Management (7th), Network Automation (3rd), Cloud Infrastructure Entitlement Management (CIEM) (6th)
 

Mindshare comparison

As of April 2025, in the Cloud Security Posture Management (CSPM) category, the mindshare of AWS Security Hub is 4.6%, down from 5.5% compared to the previous year. The mindshare of VMware Aria Automation is 0.3%, up from 0.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Cloud Security Posture Management (CSPM)
 

Featured Reviews

MuhammadAzhar Khan - PeerSpot reviewer
Offers best practice recommendations and supports various compliance standards
Security Hub provides insightful information about what is running and where there might be weaknesses. It offers best practice recommendations and supports various compliance standards such as ISO and PCI DSS. Enabling these compliance checks helps identify non-compliant services and suggests steps to achieve compliance. The main advantage is providing information and compliance insights rather than prevention.
Le Quang Long - PeerSpot reviewer
Significantly streamlined operations with good automation that helps with simplifying workflows
It helps me build a big catalog and provide it to my end users. It helps us automate the workflow of creating many VMs and the TensorFlow key method. I do not meet many people to operate it live beforehand. It operates for both of my products, but as a product, it is complicated to integrate and automate with other products.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"It's a security posture management tool from AWS. Basically, it identifies misconfigurations, similar to Trusted Advisor but on a larger scale."
"The most beneficial aspect of Security Hub is its proactive capability, allowing us to identify potential security issues before they escalate."
"AWS Security Hub can check your infrastructure against multiple compliance frameworks. You can turn on or off specific frameworks based on your needs."
"Security Hub provides insightful information about what is running and where there might be weaknesses."
"The platform has valuable features for security."
"I like that AWS Security Hub currently has several good features, around four or five. The technical support for AWS Security Hub is also responsive."
"The most beneficial aspect of Security Hub is its proactive capability, allowing us to identify potential security issues before they escalate."
"The advantage is that it is cloud-native, and we do not need to install agents or sensors to find findings."
"The most valuable feature is the portal where you can assign permissions to specific people to request specific items in the catalog and allow them to provision things for themselves. Or it enables them to request different services that you can create through vRO and vRA."
"It provides velocity both from management and customer perspectives, from ingesting new catalog items, developing new workflows for additional features, and/or allowing customer access to multiple guest OS instances at scale in a shorter time frame."
"The operations manager does a fantastic job on the front end because it includes on-premises and cloud use cases."
"Scalability is perfect. We haven't had any issues."
"We've just shifted to an Agile development so there has absolutely been an improvement in speed to market. We now have consistent release plans because we have these environments as ready as they are."
"vRealize automation stability is pretty good. They are always fixing bugs. The product team is doing a great job of addressing any issues that we might have."
"It's much more stable than the highest available variant."
"The extensibility of the solution when it comes to writing your own ABX actions is a valuable feature. You can write it in PowerShell, JavaScript, or Python, which is great."
 

Cons

"Adding SIEM features would be beneficial because of the limited customization of AWS Security Hub."
"We need more granular-level customizations to enable or disable the rules in AWS Security Hub."
"It's not user-friendly. Too much going on, too many unnecessary findings, not very visual. You can't do much compared to other similar tools that are cheaper and better."
"The solution lacks self-sufficiency."
"The solution will only give you insight if you have configure rule enabled. It should work more like Prisma Cloud and Dome9 which have a better approach."
"The telemetry doesn't always go into the control center. When you have multiple instances running in AWS, you need a control tower to take feeds from Security Hub and analyze your results. Sometimes exemptions aren't passed between the control tower and Security Hub. The configuration gets mixed up or you don't get the desired results."
"Although AWS Security Hub does a periodic scan of your overall infrastructure, it doesn't do it in real time."
"I would like a more fine-grained capability for creating custom rules and a more user-friendly experience programmatically in writing queries and configuring custom security rules, making it quicker and easier."
"We still struggle a little bit with the configuration as far as making sure that we have all the endpoints where they need to be, because that's not as agile as we'd like in the back-end. We're working towards that with our DevOps teams to make sure that we're touching the right endpoints and getting the right data."
"It would be nice in the next release if they added in tool tips. Whether you're putting it together, adding a blueprint, or you're making a change in the system, highlighting or selecting something and having it tell you what it does or what it will do would be nice. Because it's such a complex system, it's hard to work with unless you've been using it for years to know what everything is doing."
"I know you can spin up virtual desktops in vRA, but they're not thin-provisioned. I don't know if that's because the other product, Horizon View, is there, but it would be nice to see more integration."
"Something as simple as formatting the catalog in a different way would be helpful because there is no option for doing so. A lot of the contents for the virtual machine, blueprints that you can request, are hidden from view and there's no way to change the view."
"They can improve on the dashboard representations and the options for non-technical people. I would like to see the ability to customize that and maybe provide them with helpful guides to what subscriptions they have. Sometimes, I find that I have to do more explanation to people who do approvals. I would really like to customize the display to the terms they use in their particular business unit. So a little bit more of a nod to the customization of the UI for non-technical users would be helpful."
"The stability is why I rated it a seven and not higher. There were several cases where we had to restart some services because it wasn't working correctly anymore. People cannot extend their machine or replay their machine. There is no alert to say that there is a problem and that we should stop the service. The monitoring system is not very good."
"Deploying and configuring the solution takes a lot of time."
"The upgrade experience is horrible. It's not straightforward, there are a lot of failures, a lot of support interactions. It's not something that we are able to pull off ourselves. I've been with vRA since it was termed vCSA. We've gone through multiple rounds, and it has never been easy."
 

Pricing and Cost Advice

"The price of AWS Security Hub is average compared to other solutions."
"AWS Security Hub is not an expensive tool. I would consider it to be a cheap solution. AWS Security Hub follows the PAYG pricing model, meaning you will have to pay for whatever you use."
"AWS Security Hub's pricing is pretty reasonable."
"There are multiple subscription models, like yearly, monthly, and packaged."
"The pricing is fine. It is not an expensive tool."
"The price of the solution is not very competitive but it is reasonable."
"The cost is based on the number of compliances, core checks, and services required, and for more than 10,000 recommendations, the charge is just one dollar."
"Security Hub is not an expensive solution."
"We do plan to see ROI with any new implementation of new technologies being implemented within our environment."
"I'm very interested in the integration with Puppet. However, my organization doesn't have the funding for something like Puppet right now. If VMware would integrate that feature set (Puppet) into vRA. That would be very awesome."
"The solution is pretty expensive but provides good workload management."
"The cost of the solution is reasonable for us. Although it is relatively high, we prioritize stability and integration over cost."
"This is an expensive product and the high price is starting to become an issue for us."
"The pricing for this solution is roughly 20% lower than the competitive products in the market."
"From a budget point of view, the pricing is a bit on the higher side."
"VMware Aria Automation is expensive."
report
Use our free recommendation engine to learn which Cloud Security Posture Management (CSPM) solutions are best for your needs.
845,040 professionals have used our research since 2012.
 

Comparison Review

it_user186927 - PeerSpot reviewer
Feb 16, 2015
Cybereason vs. Interset vs. SQRRL
Capture DB - they all use NoSQL db and hence solve the ad hoc query and 'go back in time' problem with current best of breed SIEM and DLP solutions that rely on real time analysis of incoming logs (and don't store them). This means deeper and quicker iterative threat analysis and assessment…
 

Top Industries

By visitors reading reviews
Computer Software Company
15%
Financial Services Firm
13%
Manufacturing Company
9%
Government
7%
Financial Services Firm
14%
Computer Software Company
13%
Manufacturing Company
10%
Government
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Which is better - Azure Sentinel or AWS Security Hub?
We like that Azure Sentinel does not require as much maintenance as legacy SIEMs that are on-premises. Azure Sentinel is auto-scaling - you will not have to worry about performance impact, you will...
What do you like most about AWS Security Hub?
The most valuable features of the solution are the scanning of all the cloud environments and most of the compliances available in the cloud.
What needs improvement with AWS Security Hub?
There is room for improvement in implementing AI capabilities. It would be beneficial for Security Hub to implement preventative measures and to directly apply recommendations instead of just sugge...
What's the difference between VMware vRA (automation) and vROps (operations)?
vROP is a virtualization management solution from VMWare. It is efficient and easy to manage. You can find anything you need from the software interface. It provides complete visibility over applic...
Is there any way to try VMware Aria Automation for free?
When it comes to VMware Aria Automation, you have three choices for free runs: Hands-on Lab (HOL) Advanced lab A free trial I cannot describe in detail the second and third options as my company ...
Which sectors can benefit the most from VMware Aria Automation?
I was looking at VMware Aria Automation case studies recently and I got the impression that three main kinds of companies were using it most often: Social organizations Financial institutions and ...
 

Also Known As

SQRRL
VMware vRealize Automation, vRA, VMware DynamicOps Cloud Suite, SaltStack
 

Overview

 

Sample Customers

Edmunds, Frame.io, GoDaddy, Realtor.com
Rent-a-Center, Amway, Vistra Energy, Liberty Mutual
Find out what your peers are saying about AWS Security Hub vs. VMware Aria Automation and other solutions. Updated: March 2025.
845,040 professionals have used our research since 2012.