Try our new research platform with insights from 80,000+ expert users

HCL AppScan vs Trend Vision One - Cloud Security comparison

 

Comparison Buyer's Guide

Executive Summary
 

Categories and Ranking

HCL AppScan
Average Rating
7.8
Number of Reviews
42
Ranking in other categories
Application Security Tools (13th), Static Application Security Testing (SAST) (12th), Dynamic Application Security Testing (DAST) (1st)
Trend Vision One - Cloud Se...
Average Rating
8.6
Number of Reviews
21
Ranking in other categories
Vulnerability Management (9th), Container Security (9th), Cloud Workload Protection Platforms (CWPP) (7th), Hybrid Cloud Computing Platforms (6th), Extended Detection and Response (XDR) (13th), Cloud Security Posture Management (CSPM) (7th), Cloud-Native Application Protection Platforms (CNAPP) (6th), Attack Surface Management (ASM) (4th), Cloud Infrastructure Entitlement Management (CIEM) (4th)
 

Mindshare comparison

HCL AppScan and Trend Vision One - Cloud Security aren’t in the same category and serve different purposes. HCL AppScan is designed for Application Security Tools and holds a mindshare of 2.6%, down 2.8% compared to last year.
Trend Vision One - Cloud Security, on the other hand, focuses on Extended Detection and Response (XDR), holds 0.1% mindshare, up 0.1% since last year.
Application Security Tools
Extended Detection and Response (XDR)
 

Featured Reviews

Gladwin Christian - PeerSpot reviewer
Sep 29, 2023
A useful tool to scan applications that can be easily installed
Given that we have been using HCL AppScan for many years, I think the setup process is not difficult at all. Sometimes, some issues stop or prevent my company from moving forward with the product's setup phase. We have to call HCL's support team and engage in long discussions to smoothly carry out the setup phase. In general, the product's setup phase is not difficult in our company. The solution is deployed on an on-premises model. The licenses for the solution are available only on cloud deployments nowadays. The solution is already installed in our environment. Every time a new release or software comes out from HCL, our company does a scan, which takes maybe a day or two.
Brett Tatum - PeerSpot reviewer
Oct 20, 2023
We can quickly deploy cloud conformity, provides good visibility, and control
I am satisfied with the protection that Trend Vision One - Cloud Security provides for our multi-cloud environment. I need a single pane of glass that will give me the information I need quickly and easily. I set up Trend Vision One - Cloud Security in one afternoon, which I have done before. With one person, it only takes a day or so. Now, it is so simple to get it into any cloud and give it a small permission set to go in there and read our infrastructure, and then get some valuable insights very quickly. Trend Vision One - Cloud Security provides us with contextual data, which is especially useful when we are acquiring a company or when I take on a new role and need to quickly understand what they have. Trend Vision One - Cloud Security also helps me to quickly correlate information in the DevSec process, as it protects everything. There are three times when a security vulnerability can be caught: when we write the code, when we deploy the code, or when the code is running. If a vulnerability is not caught until the code is running, we probably made a mistake. We can then go back and look at the first two steps to see where we should have caught the issue. I am 100 percent satisfied with the context provided by Trend Vision One - Cloud Security. Trend Vision One - Cloud Security protects my cloud workloads. If an attack gets past the first two layers, I still need a way to protect the endpoints, whether they're EC2 instances, virtual machines in Azure, or even on-premises servers. I need a single pane of glass to see all of my endpoints. And let's say there's a zero-day attack, something that no one knew about and couldn't have caught. With Workload Security, I don't need to patch it immediately, even if it's a Windows update. Workload Security can patch it for me and put security tools around it. So we use it for patching and filtering, as well as other security needs. It sits on our virtual machines and whatever cloud we use. The biggest benefit of Trend Vision One - Cloud Security is its single pane of glass view. Other cloud providers, such as AWS and Azure, offer similar features, but they require multiple dashboards and reports. With Trend Vision One - Cloud Security, I have a single pane of glass view of my entire infrastructure. We also use Trend Vision One - Cloud Security for many security needs, including endpoint protection and Office 365 protection. This gives me a single vendor, a single pane of glass, and a single console to manage the security of all of my platforms. Trend Vision One - Cloud Security gives us full visibility and control of our cloud environments. When I am asked difficult questions, or when I am going through an audit or other process, I use its reporting and dashboarding capabilities to get all the information I need in one place. This saves me from having to correlate data from different sources, and it helps me to resolve audit and compliance workflows more quickly. Visibility helps us resolve complexity in our environment by providing quick snapshots of an account. This is especially useful when I'm trying to get an overview of a new workload or a new company, as it allows us to take a snapshot of the environment to make it easier to ingest. We buy our subscriptions through the marketplace because it's easier. I don't want to buy credits, because I can use the marketplace as needed. It also allows us to quickly bill the subscriptions to our existing account, so I don't have to set up another vendor or billing terms. I can just quickly use the marketplace, choose the subscriptions I want, and pay as I go. It's perfect. Conformity would give me a good overview of what infrastructure we are using and where we can potentially save costs by emphasizing the infrastructure that we do not necessarily need. Trend Vision One - Cloud Security protects me in the cloud, protects my registry, and protects my DevOps pipeline. It is not necessary for Trend Vision One - Cloud Security to protect all of these things. Additionally, Trend Vision in general also protects our Office 365 infrastructure, including SharePoint, Teams, and Outlook. Protecting all the data across our environment is extremely important these days. No matter what industry we're in, it's crucial to understand our data security protocols, where our data is stored, how it's protected, and how it's accessed. This information gives us a single, overarching view of our data security posture, which helps us to identify and remediate misconfigurations and quickly respond to zero-day attacks or compromises. The sooner we know about a security incident, the fewer repercussions we're likely to experience.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Usually when we deploy the application, there is a process for ethical hacking. The main benefit is that, the ethical hacking is almost clean, every time. So it's less cost, less effort, less time to production."
"The HCL AppScan turnaround time for Burp Suite or any new feature request is pretty good, and that is why we are sticking with the HCL."
"This solution saves us time due to the low number of false positives detected."
"The static scans are good, and the SaaS as well."
"The solution is easy to install. I would rate the product's setup between six to seven out of ten. The deployment time depends on the applications that need to be scanned. We have a development and operations team to take care of the product's maintenance."
"Technical support is helpful."
"The most valuable feature of HCL AppScan is its integration with the SDLC, particularly during the coding phase."
"The solution is cheap."
"Trend Vision One - Cloud Security's best features are security analysis, remote access security, and driver security."
"I really like Trend Vision One - Cloud Security's dashboard."
"We use the solution to protect our cloud-based applications like Office 365."
"The stability is quite good."
"The perfect package for all security platforms, providing more than any other endpoint solution."
"The security is good."
"I use the tool for security solutions. It's a leader in Gartner and Forrester Wave reports. Customers rely on these reports."
"The most valuable features are intrusion prevention and anti-malware capabilities."
 

Cons

"They could incorporate AI to enhance vulnerability detection and improve the product's reporting capabilities."
"Many silly false positives are produced."
"They should have a better UI for dashboards."
"​IBM Security AppScan Source is rather hard to use​."
"The dashboard, for AppScan or the Fortified fast tool, which we use needs to be improved."
"The databases for HCL are small and have room for improvement."
"I would like to see the roadmap for this product. We are still waiting to see it as we have only so many resources."
"It's a little bit basic when you talk about the Web Services. If AppScan improved its maturity on Web Services testing, that would be good."
"The product could use a little bit of automation."
"They should provide a way for users to see violations for specific compliance."
"The licensing model could be improved. To gain full coverage, you need to spend more to buy subscriptions for each kind of service they offer. It will start to be pricey if you want full coverage."
"Securing S3 using Trend Vision One - Cloud Security can cost too much. Trend Vision One - Cloud Security has a tool that requires lots of privileges. From my understanding, it's only for static application testing, so they need to add dynamic application testing, and there should be more collaboration with the application testing tools on the market. We have not used this product, and I don't know if they plan to decommission it or something. They should focus on application security because this tool's unique feature is multi-cloud support. However, they should improve integration with tools for these kinds of use cases, especially application security and dynamic scanning. For example, I would like it to support Dell SecureOps. I'd also like to see some enhancements to API gateway security."
"The initial setup is easy for someone who operates container platforms on a daily basis. However, it could be difficult for those coming purely from informational security or another field of an IT."
"The local agent should be able to show more logs. At present, the logs are only available from the web console and not from the local agent."
"The dashboard should be a bit more intuitive."
"Documentation on cloud architecture and job architecture would be helpful."
 

Pricing and Cost Advice

"The solution is moderately priced."
"The tool was expensive."
"Our clients are willing to pay the extra money. It is expensive."
"AppScan is a little bit expensive. IBM needs to work a little bit on the pricing model, decreasing the license cost."
"The price is very expensive."
"HCL AppScan is expensive."
"I would rate the product's pricing a nine out of ten. The product's pricing is expensive compared to the features that they offer."
"The price of HCL AppScan is okay, in my opinion. You just buy HCL AppScan and don't pay anything anymore, meaning it is just a one-time purchase."
"The is price is 25% cheaper than it was a couple of years ago, which is good."
"Two years ago, it cost $200 for 20 credits, which was a high cost."
"Pricing for Trend Micro Cloud One Container Security in the corporate market is okay."
"It's a slightly expensive product."
"The pricing for Cloud One is reasonable because my costs scale up and down based on my infrastructure usage."
"The price could be lower. That is a bit of a consideration."
"One year ago, Trend transitioned to a credit system for licensing, which has confused users."
"With everything I deal with, Trend Micro Cloud One's pricing is somewhere in the middle."
report
Use our free recommendation engine to learn which Application Security Tools solutions are best for your needs.
814,572 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
18%
Financial Services Firm
14%
Manufacturing Company
11%
Government
10%
Educational Organization
30%
Computer Software Company
14%
Manufacturing Company
6%
Healthcare Company
5%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about HCL AppScan?
The most valuable feature of HCL AppScan is its integration with the SDLC, particularly during the coding phase.
What needs improvement with HCL AppScan?
They could incorporate AI to enhance vulnerability detection and improve the product's reporting capabilities.
What is your primary use case for HCL AppScan?
We use AppScan primarily for security testing and performance monitoring across our systems.
What do you like most about Trend Micro Cloud One Workload Security?
The the most valuable feature is the scanning engine. It does not impact server performance. It's very lightweight.
What is your experience regarding pricing and costs for Trend Micro Cloud One Workload Security?
The is price is 25% cheaper than it was a couple of years ago, which is good.
What needs improvement with Trend Micro Cloud One Workload Security?
The local agent should be able to show more logs. At present, the logs are only available from the web console and not from the local agent.
 

Also Known As

IBM Security AppScan, Rational AppScan, AppScan
Trend Micro Cloud One , Cloud One Workload Security, Trend Micro Cloud One Container Security, Trend Micro Cloud One Application Security, Cloud One File Storage Security, Cloud One Network Security, Cloud One Conformity
 

Overview

 

Sample Customers

Essex Technology Group Inc., Cisco, West Virginia University, APIS IT
Information Not Available
Find out what your peers are saying about HCL AppScan vs. Trend Vision One - Cloud Security and other solutions. Updated: July 2024.
814,572 professionals have used our research since 2012.