Try our new research platform with insights from 80,000+ expert users

AWS Security Hub vs VMware Aria Automation comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Apr 20, 2025

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

AWS Security Hub
Ranking in Cloud Security Posture Management (CSPM)
12th
Average Rating
7.6
Reviews Sentiment
7.2
Number of Reviews
22
Ranking in other categories
Security Orchestration Automation and Response (SOAR) (5th)
VMware Aria Automation
Ranking in Cloud Security Posture Management (CSPM)
17th
Average Rating
8.0
Reviews Sentiment
6.8
Number of Reviews
170
Ranking in other categories
Cloud Management (1st), Configuration Management (7th), Network Automation (3rd), Cloud Infrastructure Entitlement Management (CIEM) (6th)
 

Mindshare comparison

As of April 2025, in the Cloud Security Posture Management (CSPM) category, the mindshare of AWS Security Hub is 4.6%, down from 5.5% compared to the previous year. The mindshare of VMware Aria Automation is 0.3%, up from 0.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Cloud Security Posture Management (CSPM)
 

Featured Reviews

MuhammadAzhar Khan - PeerSpot reviewer
Offers best practice recommendations and supports various compliance standards
Security Hub provides insightful information about what is running and where there might be weaknesses. It offers best practice recommendations and supports various compliance standards such as ISO and PCI DSS. Enabling these compliance checks helps identify non-compliant services and suggests steps to achieve compliance. The main advantage is providing information and compliance insights rather than prevention.
Le Quang Long - PeerSpot reviewer
Significantly streamlined operations with good automation that helps with simplifying workflows
It helps me build a big catalog and provide it to my end users. It helps us automate the workflow of creating many VMs and the TensorFlow key method. I do not meet many people to operate it live beforehand. It operates for both of my products, but as a product, it is complicated to integrate and automate with other products.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Currently, our organization utilizes AWS for various purposes, including SaaS (Software as a Service), PaaS (Platform as a Service), and hosting applications in the cloud. We develop our applications and use AWS services as a platform for basic functions and secondary development needs. Additionally, we rely on PaaS for accounting services. Approximately, 50% of our applications are hosted in the cloud environment, making it a significant part of our current setup."
"The best feature of AWS Security Hub is that you can get compliance or your cloud's current security posture."
"The solution shows us our compliance score."
"AWS Security Hub provides comprehensive alerts about potential compliance issues with CIS standards. The integration with third-party tools is another excellent feature. All our workloads are on AWS."
"The most valuable features of the solution are the scanning of all the cloud environments and most of the compliances available in the cloud."
"Very good at detection and providing real-time alerts."
"One of the most effective features of AWS Security Hub is the easy access to a dashboard with a ready-to-use security score."
"The platform has valuable features for security."
"Today, if I want to provision one VM, it takes me five minutes. Earlier, it would take a minimum of 30 minutes to go and choose everything. Now, I can just do one click and it can provision my whole VM. We also integrated with our Alexa, so even through voice functionality, I can create a VM. One of the guys at VMware, along with our partner, deployed that in our environment. If I say, "Hey, Alexa, I need a VM with four gigs of RAM," it will go and start creating it."
"The automation functionality has been most valuable. With a click of a button, we are able to automate provisioning, the build of new hardware and apply patches. These are all extremely important and differentiated tasks that can be automated in SaltStack."
"VMware Aria Automation supports integration with ServiceNow, Kubernetes, and other tools. It is cloud-agnostic, making it a stronger platform than Ansible."
"The most valuable feature is the consistency it delivers, at the end of the day. We know that we have consistent images based off consistent Blueprints, check-pointed or QA'ed in a consistent manner."
"SaltStack has given us the ability to deal with systems at scale and rectify issues at scale."
"Instead of deploying a VM from a template and going through the process of configuring that VM, with vRA we're able to click once and it does everything: grabs an IP, joins it to the domain, loads whatever configuration agents are needed. It does all of that without manual intervention."
"vRA has enabled us to derive value from the cloud faster. It is five to six times faster than traditional solutions."
"The infrastructure has helped us to greatly increase our agility."
 

Cons

"Security needs to be measured based on their own criteria. We can't add custom criteria specific to our organization. For example, having an S3 bucket publicly available might be flagged as a critical alert, but it might not be critical in a sandbox environment. So, it gets flagged as critical, which becomes a false positive. So, customization options and creating custom dashboards would be areas for improvement."
"We need more granular-level customizations to enable or disable the rules in AWS Security Hub."
"The telemetry doesn't always go into the control center. When you have multiple instances running in AWS, you need a control tower to take feeds from Security Hub and analyze your results. Sometimes exemptions aren't passed between the control tower and Security Hub. The configuration gets mixed up or you don't get the desired results."
"The solution will only give you insight if you have configure rule enabled. It should work more like Prisma Cloud and Dome9 which have a better approach."
"One aspect that could be improved in the solution is its adaptability to different markets and geopolitical restrictions. In certain regions like Thailand, specific services from certain countries or providers, such as AWS or Azure, might be limited or blocked. It also needs improvement in would require configuring the solution more adaptable to AWS infrastructure and function."
"Adding SIEM features would be beneficial because of the limited customization of AWS Security Hub."
"I would like a more fine-grained capability for creating custom rules and a more user-friendly experience programmatically in writing queries and configuring custom security rules, making it quicker and easier."
"The support must be quicker."
"Our primary challenge is upgrading the product to the latest version. This process requires careful communication with the vendor to mitigate risks."
"It's not a smooth upgrade process. For a DTA environment, which is very simple, it is a smooth process, but for our production environment, which is quite enhanced and has a lot of dependencies, it's not easy at all, and it results in a lot of errors... It takes a lot of retries to upgrade which ends up being costly."
"The deployment mechanisms for the initial deployment of the product line lacks the appropriate documentation to give someone who's never used it before... There might be cases where someone wants to go to the website, go to the doc section, and do a step-by-step on how to deploy it. That's really not as brushed-up as other documents I've seen that they have. That would definitely be an improvement on their end."
"Our current use cases aren't very complex, but as our environment grows, we're seeing a greater need for automation. We're considering expanding our automation efforts, especially since other competitive products are starting to offer similar features."
"They can improve on the dashboard representations and the options for non-technical people. I would like to see the ability to customize that and maybe provide them with helpful guides to what subscriptions they have. Sometimes, I find that I have to do more explanation to people who do approvals. I would really like to customize the display to the terms they use in their particular business unit. So a little bit more of a nod to the customization of the UI for non-technical users would be helpful."
"As a product, it is complicated to integrate and automate with other products."
"I would like to see better integration capabilities. Maybe if they could develop libraries within Aria Automation for simpler integration with other third-party solutions, instead of just basic integration."
"We are migrating from vRA version 7 to 8, but the migration is really hectic and time-consuming. There are no straightforward paths to migrate. We are doing an entirely new deployment to go to vRA version 8.0, then somehow get all of the VMs to vRA 8.0. Therefore, it would have been great if VMware had some solutions to upgrade from vRA 7 to 8 seamlessly. This includes the management of all the objects or VMs from the older version. Unfortunately, it is not there."
 

Pricing and Cost Advice

"Security Hub is not an expensive solution."
"AWS Security Hub is not an expensive tool. I would consider it to be a cheap solution. AWS Security Hub follows the PAYG pricing model, meaning you will have to pay for whatever you use."
"The pricing is fine. It is not an expensive tool."
"The price of the solution is not very competitive but it is reasonable."
"AWS Security Hub's pricing is pretty reasonable."
"The price of AWS Security Hub is average compared to other solutions."
"The cost is based on the number of compliances, core checks, and services required, and for more than 10,000 recommendations, the charge is just one dollar."
"There are multiple subscription models, like yearly, monthly, and packaged."
"I'm very interested in the integration with Puppet. However, my organization doesn't have the funding for something like Puppet right now. If VMware would integrate that feature set (Puppet) into vRA. That would be very awesome."
"Better pricing is always handy, but I feel it's at the right price point."
"From the customer perspective, the value was worth it."
"Customers say this solution is costlier compared to its competitors."
"It is an expensive product. After VMware's acquisition by Broadcom, there was a rise in the price of VMware Aria Automation."
"The solution is pretty expensive but provides good workload management."
"VMware Aria Automation is expensive."
"So much can be done with the Open Source side, and especially for smaller shops. I personally think the pricing for Enterprise is hard to justify."
report
Use our free recommendation engine to learn which Cloud Security Posture Management (CSPM) solutions are best for your needs.
848,716 professionals have used our research since 2012.
 

Comparison Review

it_user186927 - PeerSpot reviewer
Feb 16, 2015
Cybereason vs. Interset vs. SQRRL
Capture DB - they all use NoSQL db and hence solve the ad hoc query and 'go back in time' problem with current best of breed SIEM and DLP solutions that rely on real time analysis of incoming logs (and don't store them). This means deeper and quicker iterative threat analysis and assessment…
 

Top Industries

By visitors reading reviews
Computer Software Company
15%
Financial Services Firm
12%
Manufacturing Company
10%
Government
7%
Financial Services Firm
14%
Computer Software Company
13%
Government
9%
Manufacturing Company
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Which is better - Azure Sentinel or AWS Security Hub?
We like that Azure Sentinel does not require as much maintenance as legacy SIEMs that are on-premises. Azure Sentinel is auto-scaling - you will not have to worry about performance impact, you will...
What do you like most about AWS Security Hub?
The most valuable features of the solution are the scanning of all the cloud environments and most of the compliances available in the cloud.
What needs improvement with AWS Security Hub?
There is room for improvement in implementing AI capabilities. It would be beneficial for Security Hub to implement preventative measures and to directly apply recommendations instead of just sugge...
What's the difference between VMware vRA (automation) and vROps (operations)?
vROP is a virtualization management solution from VMWare. It is efficient and easy to manage. You can find anything you need from the software interface. It provides complete visibility over applic...
Is there any way to try VMware Aria Automation for free?
When it comes to VMware Aria Automation, you have three choices for free runs: Hands-on Lab (HOL) Advanced lab A free trial I cannot describe in detail the second and third options as my company ...
Which sectors can benefit the most from VMware Aria Automation?
I was looking at VMware Aria Automation case studies recently and I got the impression that three main kinds of companies were using it most often: Social organizations Financial institutions and ...
 

Also Known As

SQRRL
VMware vRealize Automation, vRA, VMware DynamicOps Cloud Suite, SaltStack
 

Overview

 

Sample Customers

Edmunds, Frame.io, GoDaddy, Realtor.com
Rent-a-Center, Amway, Vistra Energy, Liberty Mutual
Find out what your peers are saying about AWS Security Hub vs. VMware Aria Automation and other solutions. Updated: March 2025.
848,716 professionals have used our research since 2012.