Prevasio vs Qualys TotalCloud comparison

AlgoSec and Qualys are both solutions in the Cloud-Native Application Protection Platforms (CNAPP) category. AlgoSec is ranked #28, while Qualys is ranked #9 with an average rating of 8.8. AlgoSec holds a 0.1% mindshare in CNAP, compared to Qualys’s 1.2% mindshare. Additionally, 90% of AlgoSec users are willing to recommend the solution, compared to 100% of Qualys users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Oct 9, 2024

Prevasio and Qualys TotalCloud compete in cloud security solutions. Prevasio has an edge in ease of use, while Qualys TotalCloud stands out for its comprehensive features and long-term value.

Features: Prevasio's standout features include threat detection, a user-friendly design, and straightforward deployment. Qualys TotalCloud offers scalability, integration capabilities, and a wide range of comprehensive features that cater to complex environments.

Room for Improvement: Prevasio users seek enhanced scalability and better reporting tools, along with improved integration capabilities. Qualys TotalCloud users look for improvements in cost management, better configuration flexibility, and a more intuitive user interface.

Ease of Deployment and Customer Service: Prevasio provides an easy deployment process and is praised for its responsive support. Qualys TotalCloud offers detailed guidance though the setup can be more complex, with customer service not as highly rated as that of Prevasio.

Pricing and ROI: Prevasio stands out with competitive setup costs and a favorable ROI perception. Qualys TotalCloud, though more expensive initially, is viewed as providing significant long-term value that justifies its cost.

To learn more, read our detailed Prevasio vs. Qualys TotalCloud Report (Updated: March 2025).

Buyer's Guide

Prevasio vs. Qualys TotalCloud

March 2025

Download the complete report

Helped 846,617 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

SentinelOne Singularity Clo...

Mindshare comparison

As of April 2025, in the Cloud-Native Application Protection Platforms (CNAPP) category, the mindshare of SentinelOne Singularity Cloud Security is 3.1%, up from 1.2% compared to the previous year. The mindshare of Prevasio is 0.1%, down from 0.2% compared to the previous year. The mindshare of Qualys TotalCloud is 1.2%, up from 0.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Cloud-Native Application Protection Platforms (CNAPP)

Featured Reviews

Andrew W

VP - Information Technology at a financial services firm with 201-500 employees

Tells us about vulnerabilities as well as their impact and helps to focus on real issues

Looking at all the different pieces, it has got everything we need. Some of the pieces we do not even use. For example, we do not have Kubernetes Security. We are not running any K8 clusters, so it is good for us. Overall, we find the solution to be fantastic. There can be additional education components. This may not be truly fair to them because of what the product is going for, but it would be great to see additional education for compliance. It is not a criticism of the tool per se, but anything to help non-development resources understand some of the complexities of the cloud is always appreciated. Any additional educational resources are always helpful for security teams, especially those without a development background.

Read full review

Reviewer75941

Consultant at Tata Consultancy

An excellent, intelligent tool that is helpful for finding duplicate rules

AFA is helpful when finding duplicate rules, subnets, and policies for your ports that have not been used in the last six months. It also helps to find out which ports have been opened for all firewalls. After that, we run the reports and share them with the customer. After getting approval from the customer, if there is a block on a particular port or ports not used in a current environment, Analyzer is helpful when placing the change request of the users. In this case, AlgoSec provides the link to the user who raises the request though the automation, which is the change request. From that change request, it comes through our ticketing tools, e.g., BMC Remedy. Then, we have to check and approve it. Once it gets approved, we deploy the particular policies, as per the user's request. It provides visibility for the risk. Whenever unnecessary ports have been opened in our environment, whether by mistake or human error, a support ticket gets opened so we can find out about it in an easy way. After that, we can implement or block the particular ports if they are not necessary for the organization's production. The solution has become more helpful during the cleanup rules for the firewall, when we do those activities twice a month. For example, if a user raises a request two to three months ago, then we forget to block the particular port by human error. During the client's cleanup workshop, we can make things clearer, which is more useful for us when cleaning up unnecessary rules and ports from the firewall. AlgoSec enables us to manage these hybrid environments in a single pane of glass. It is an excellent, intelligent tool. The console is user-friendly for understanding and implementing things on firewalls. It is helpful for finding duplicate rules.

Read full review

Sushant Samantara

IT Manager at Capgemini

Helps us minimize attack surfaces by identifying root accounts and encryption issues

TotalCloud provides written explanations to guide remediation and eliminate cyber risks. While all cloud platforms offer security features, it's challenging to consolidate them into a single dashboard. Qualys TotalCloud effectively addresses this by consolidating multiple cloud platforms and subscriptions onto one dashboard. This allows users to quickly identify and mitigate misconfigurations and risks, simplifying security management. Before implementing TotalCloud, our compliance rate was approximately 50 to 60 percent. However, after adopting the platform, it has increased to 80 to 90 percent. TotalCloud also helps us minimize attack surfaces by identifying root accounts and encryption issues, thereby enhancing our overall security by 40 percent. TotalCloud offers a unified platform for assessing vulnerabilities and threats across both IaaS and PaaS environments. This unified view has improved our cloud security posture management. We gain a single, prioritized view of risks through TotalCloud's TruRisk Insights feature. This feature considers not only the QDA score but also factors in cost and other relevant elements to provide a comprehensive risk assessment. From a potentially overwhelming list of findings, TruRisk Insights prioritizes the most critical risks, allowing us to focus our efforts and resources on addressing these high-priority tasks efficiently. A single, prioritized view of risk streamlines the risk assessment process by eliminating the need to consolidate multiple sources. This comprehensive view is instrumental in communicating with other business customers who may be unaware of potential risks or misconfigurations within their resources. By identifying and informing them of these issues, we can guide them towards compliance and ensure a more secure environment. TruRisk Insights provides valuable findings by identifying vulnerabilities and misconfigurations, displaying them on a dashboard, and offering deeper insights into the attack surface. It analyzes not only internet-facing devices but also those indirectly connected, providing a comprehensive understanding of potential risks. This is crucial because even devices not directly connected to the internet can be vulnerable if they have an attack surface. TruRisk Insights also offers mitigation strategies, making it a highly useful tool for managing security risks. With the VMDR feature enabled and the Qualys Agent installed on various assets, we can identify existing vulnerabilities. TruRisk Insights then calculates risk scores, prioritizes tasks, and presents the number of findings. This allows us to focus on mitigating high-priority vulnerabilities while deferring those with lower priority, ultimately reducing overall risk. TruRisk Insights provides device details, allowing for containerization of misconfigured devices. This process involves isolating problematic devices and rectifying misconfigurations, ultimately enhancing our security posture.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"SentinelOne Singularity Cloud Security has significantly improved our risk posture."

"Cloud Native Security's evidence-based reporting allows us to prioritize issues by understanding their impact, helping us resolve the most important problems first."

"It is advantageous in terms of time-saving and cost reduction."

"PingSafe offers an intuitive user interface that lets us navigate quickly and easily."

"The best features we value in SentinelOne Singularity Cloud Security include compliance monitoring features, as we are a frequently audited company. They provide reports with compliance scores, showing how well we meet certain regulatory standards, such as HIPAA, and we can show our compliance as a percentage."

"We liked the search bar in PingSafe. It is a global search. We were able to get some insights from there."

"I would definitely recommend SentinelOne Singularity Cloud Security for infrastructure security."

"It is pretty easy to integrate with this platform. When properly integrated, it monitors end-to-end."

More SentinelOne Singularity Cloud Security pros

"AlgoBot is a Slack chatbot that they've designed to help people identify if the firewalls are going to allow or block specific network traffic. We leveraged this to allow our staff to check themselves if the firewalls are going to be blocking traffic or not. That saves us logging into the firewalls and running the query off the host. We give them the power to use it and it saves us time."

"Because we get about 60 to 70 rules to deploy a week during the firewall maintenance window, we might create some duplicate rules or open duplicate ports. AlgoSec has become very helpful whenever we need to find out the nodes or subnets that have already been created, then we don't need to create the duplicate subnet of that particular IP address."

"The most valuable feature is the automation that can be accomplished by using scripts. If we didn't have AlgoSec, I would have to do everything manually."

"AlgoSec has good tools to manage policies and devices. Many administrators like how it helps you monitor and clean up the policy for the on-premise firewall."

"The workflow and the fact that I can follow up on a request that I've created and clearly see the status it is in are the most valuable features of this solution. When I need things to move on, for example, if the security guys didn't look at the request or the implementation is not going as it should, then I can contact people. There is a mechanism in there that clearly indicates the service level agreement we have for implementation. We can see if it is being attained."

"The optimizations are the most useful aspect because most customers have a very unmanaged network with a lot of rules. We use a lot of the optimizations in our reports for improving firewall rules."

"The firewall policy summarization is the most valuable feature. It helps us to cross-check the firewall ruleset. That's the main purpose of it. And of course, it monitors changes of the firewall policy. It provides full visibility into the risk involved in firewall change requests. It helps us to check for any integrity issues and conflicts with other rulesets, and of course the compliance."

"We have Check Point, Palo Alto, and FortiGate firewalls, and it integrates pretty seamlessly with these firewalls. We have had no issues so far."

More Prevasio pros

"It is a cloud-native app that integrates with both IaaS and SaaS. It seamlessly integrates with other platforms."

"One of the features I appreciate is the ability to generate daily reports without relying on anyone else."

"Qualys TotalCloud's most valuable features are its cloud security posture management, Kubernetes, and container security capabilities."

"Qualys TotalCloud has significantly reduced our workload in terms of managing risks, helping us to be more efficient and save substantial resources."

"The most valuable feature of Qualys TotalCloud is the visibility it provides."

"Qualys TotalCloud's most valuable features are its security capabilities that help identify and mitigate risk factors."

"TotalCloud provides the easiest and the best approach for cloud infrastructure management."

"Qualys TotalCloud has helped us view our risk structure, vulnerabilities, and security posture."

More Qualys TotalCloud pros

Cons

"I used to work on AWS. At times, I would generate a normal bug in my system, and then I would check PingSafe. The alert used to come after about three and a half hours. It used to take that long to generate the alert about the vulnerability in my system. If a hacker attacks a system and PingSafe takes three to four hours to generate an alert, it will not be beneficial for the company. It would be helpful if we get the alert in five to ten minutes."

"Implementing single sign-on requires a pre-class account feature, which is currently not available."

"The categorization of the results from the vulnerability assessment could be improved."

"If I had to pick a complaint, it would be the way the hosts are listed in the tool. You have different columns separated by endpoint name, Cloud Account, and Cloud Instances ID. I wish there was something where we could change the endpoint name and not use just the IP address. We would like to have custom names or our own names for the instances. If I had a complaint, that would be it, but so far, it meets all the needs that we have."

"We repeatedly get alerts on the tool dashboard that we've already solved on our end, but they still appear. That is somewhat irritating."

"A vulnerability alert would appear, and we'd fix it, but then the same alert would return the next day."

"I'd like to see better onboarding documentation."

"There can be a specific type of alert showing that a new type of risk has been identified."

More SentinelOne Singularity Cloud Security cons

"In the new version H32, there are many, many bugs."

"There is a little bit of scope for improvement in the risk profiles that come with the AlgoSec Firewall Analyzer module. Currently, AlgoSec provides only three standard zones within a risk profile. These standard zones are external, internal, and DMZ. Everybody's network is divided into different zones within a data center, but AlgoSec only provides three zones. This is a limitation that I see for the risk profile analysis. If there was an option to customize these zones, it would be great."

"AlgoSec cannot be integrated with solutions that require two-step or multi-factor authentication. Embedding multi-factor authentication capability into the solution would be a valuable feature."

"The analysis part can be improved when I make a flow request. There should be a clear analysis of which metric part needs to be opened and which firewalls will be opened. It should give you a bit more graphical visibility about these."

"Integration with Oracle on the cloud is not supported. I would also like to see integrations with network devices in Layer 2."

"The technical support response time is low. This might be due to the coronavirus pandemic situation, but I am not getting full support when working with them."

"Now that we've moved to the VM it is more stable and independent of hardware."

"We work with multiple security vendors. It's rather difficult to integrate the vendors. AlgoSec is a platform that hasn't really been developed as much as we would like to just because of its complexity to set up. If it was easy to set up and easy to get integrations with other companies, then we would be doing it. But the thought is that we are relatively stretched thin in our team as it is and the complexity of configuring AlgoSec doesn't make it any easier."

More Prevasio cons

"The cloud licensing unit system is unclear, especially since "units" aren't well-defined."

"Two areas for improvement in Qualys TotalCloud are the speed of the public cloud platform and vulnerability detection."

"With the growing integration of AI, I would like Qualys to enhance its service offerings to better accommodate AI-related risks."

"Some major banks and insurance companies require an on-premises solution for comprehensive vulnerability management, which TotalCloud does not offer."

"Qualys TotalCloud needs to improve its accuracy for non-Windows operating systems."

"TotalCloud could improve the classification of vulnerabilities. Specifically, it could enhance the categorization of what aspects fall under patches resolved by OS or software updates and what pertains to configuration adjustments."

"Qualys's ticketing system can be confusing when assigning tasks to individuals, and support could be improved by offering instant call solutions with engineers in addition to ticket replies."

"With the growing integration of AI, I would like Qualys to enhance its service offerings to better accommodate AI-related risks."

More Qualys TotalCloud cons

Pricing and Cost Advice

"I am not involved in the pricing, but it is cost-effective."

"I would rate the cost a seven out of ten with ten being the most costly."

"It is not that expensive. There are some tools that are double the cost of PingSafe. It is good on the pricing side."

"Its pricing is constant. It has been constant over the previous year, so I am happy with it. However, price distribution can be better explained. That is the only area I am worried about. Otherwise, the pricing is very reasonable."

"SentinelOne offers excellent pricing and licensing options."

"I wasn't sure what to expect from the pricing, but I was pleasantly surprised to find that it was a little less than I thought."

"Singularity Cloud Security by SentinelOne is cost-efficient."

"PingSafe is not very expensive compared to Prisma Cloud, but it's also not that cheap. However, because of its features, it makes sense to us as a company. It's fairly priced."

More SentinelOne Singularity Cloud Security pricing and cost advice

"I heard that the licensing was around $100,000 a year."

"For the South American market, the prices are very high."

"I am not sure about the pricing. From what I understand, it is a bit on the higher side, but I do not have the exact numbers."

"The pricing for TotalCloud is attractive and competitive in the market. Given the features, especially the dashboard, I have no concerns regarding pricing."

"Qualys TotalCloud is expensive."

"Its price seems higher compared to other tools, but it is worth it. If they could adjust the pricing and make it comparable with other tools, that would be great."

"Qualys TotalCloud offers good pricing that is affordable and competitive with the market. Our partnership also provides us with additional benefits."

"Qualys TotalCloud offers cost-effective licensing flexibility."

"While Qualys TotalCloud's pricing is currently acceptable, it is becoming increasingly expensive and may soon be considered overpriced."

"Qualys TotalCloud offers competitive pricing given its comprehensive suite of features, including integration, assessment, remediation, and detection capabilities, all within a single platform."

More Qualys TotalCloud pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Cloud-Native Application Protection Platforms (CNAPP) solutions are best for your needs.

See recommendations

846,617 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

17%

Financial Services Firm

15%

Manufacturing Company

Government

No data available

Computer Software Company

20%

Financial Services Firm

16%

Government

13%

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about PingSafe?

The dashboard gives me an overview of all the things happening in the product, making it one of the tool's best featu...

See all answers

What is your experience regarding pricing and costs for PingSafe?

It is cost-effective compared to other solutions in the market.

See all answers

What needs improvement with PingSafe?

The documentation could be better. Besides improving the documentation, obtaining a professional or partner specializ...

See all answers

Ask a question

Earn 20 points

What is your experience regarding pricing and costs for Qualys TotalCloud?

It is not cheap. For smaller businesses, people running businesses with a small number of users cannot afford Qualys,...

See all answers

What needs improvement with Qualys TotalCloud?

While I am still learning TotalCloud, which has the latest features introduced, I attended a Qualys event this year. ...

See all answers

What is your primary use case for Qualys TotalCloud?

Sometimes I lack the details of misconfigured devices, such as cloud servers and cloud machines, which are hosted in ...

See all answers

Comparisons

Wiz vs SentinelOne Singularity Cloud Security

Compared 25% of the time

Prisma Cloud by Palo Alto Networks vs SentinelOne Singularity Cloud Security

Compared 19% of the time

AWS GuardDuty vs SentinelOne Singularity Cloud Security

Compared 8% of the time

Microsoft Defender for Cloud vs SentinelOne Singularity Cloud Security

Compared 7% of the time

Orca Security vs SentinelOne Singularity Cloud Security

Compared 5% of the time

More SentinelOne Singularity Cloud Security Competitors

No data available

Wiz vs Qualys TotalCloud

Compared 41% of the time

Prisma Cloud by Palo Alto Networks vs Qualys TotalCloud

Compared 11% of the time

AWS GuardDuty vs Qualys TotalCloud

Compared 9% of the time

Amazon Inspector vs Qualys TotalCloud

Compared 8% of the time

Qualys VMDR vs Qualys TotalCloud

Compared 8% of the time

More Qualys TotalCloud Competitors

Product Reports

Buyer's Guide

SentinelOne Singularity Cloud Security

March 2025

SentinelOne Singularity Cloud Security report

Download SentinelOne Singularity Cloud Security product report

Buyer's Guide

Prevasio

March 2025

Download Prevasio product report

Buyer's Guide

Qualys TotalCloud

March 2025

Download Qualys TotalCloud product report

Also Known As

PingSafe

No data available

Qualys TotalCloud with FlexScan

Overview

SentinelOne Singularity Cloud Security protects cloud workloads, offering advanced threat detection and automated response. It integrates seamlessly with cloud environments and secures containerized applications and virtual machines against vulnerabilities.

SentinelOne Singularity Cloud Security is renowned for its efficiency in mitigating threats in real-time. The platform integrates effortlessly with existing cloud environments, ensuring robust cloud security management with minimal manual intervention. Securing containerized applications and virtual machines, it excels in threat intelligence and endpoint protection. However, improvements are needed in performance during high workload periods, and more integrations with third-party tools and better documentation would be beneficial. Users often find the installation process complex, support response times slow, and the dashboard's navigation unintuitive.

What are the key features of SentinelOne Singularity Cloud Security?

Real-time Threat Detection: Identifies and mitigates threats as they occur.
Automated Response: Automatically responds to threats to minimize impact.
Ease of Deployment: Simple setup process with scalable options.
Machine Learning Insights: AI-driven insights enhance threat prevention.
Seamless Integration: Integrates with cloud environments for unified security management.

What are the primary benefits or ROI to expect from SentinelOne Singularity Cloud Security?

Enhanced Threat Mitigation: Improved security against real-time threats.
Reduced Manual Intervention: Automated processes save time and resources.
Scalability: Easily adapts to growing security requirements.
Centralized Management: Manage security across platforms from a single console.
Advanced Threat Intelligence: Provides in-depth analysis and protection.

In specific industries, SentinelOne Singularity Cloud Security is implemented to safeguard critical data and infrastructure. Organizations in finance, healthcare, and technology depend on its real-time threat detection and automated response to protect sensitive information. Its ability to secure containerized applications and virtual machines is particularly valuable in dynamic environments where rapid scaling is necessary.

SentinelOne

Prevasio is an agentless cloud-native application protection platform (CNAPP) that provides increased visibility into security and compliance gaps, enabling cloud operations and security teams to prioritize risks and ensure compliance with internet security benchmarks.

Prevasio combines cloud-native security with SRI International's proprietary AI capabilities and AlgoSec’s expertise in securing 1,800 of the world’s most complex organizations.

AlgoSec

TotalCloud is the Qualys approach to Cloud Native Application Protection Platform (CNAPP) for cloud infrastructure and SaaS environments. With TotalCloud, customers extend TruRisk insights (transparent cyber risk scoring methodology) from the Qualys Enterprise TruRisk Platform to their cloud environments allowing for a seamless unified view of cyber risk across on-prem, hybrid, and multi-cloud environments.

Features and capabilities of Qualys TotalCloud include, but are not limited to:

Discover: Complete visibility and insights into cyber-risk exposure across multi-cloud. Continuously discover and monitor all your workloads across a multi-cloud environment for a 360-degree view of your cloud footprint. Identify known and previously unknown internet-facing assets for 100% visibility and tracking of risks.

Assess: Comprehensive cloud-native assessments with FlexScanTM. Extensive scanning capabilities with Qualys FlexScan, including no-touch, agentless, API- and snapshot-based scanning, along with agent- and network-based scanning for in-depth assessment. Use these multiple scanning methods to scan a workload to get a unified and comprehensive view of vulnerabilities and misconfigurations.

Prioritize: Unified security view to prioritize cloud risk with TruRiskTM. Experience a unified risk-based view of cloud security with insights across workloads, services, and resources. Qualys TruRisk quantifies security risk by workload criticality and vulnerabilities; it correlates with ransomware, malware, and exploitation threat intelligence to prioritize, trace, and reduce risk.

Defend: Real-time protection against evolving and unknown threats with InstaProtectTM. Qualys enables continuous monitoring of all cloud assets to ensure they are protected against threats and attacks at runtime. Qualys keeps your cloud runtime safe by detecting known and unknown threats across the entire kill chain in near real-time across a multi-cloud environment.

Remediate: Fast remediation with QFlow – no code, drag-and-drop workflows. The integration of QFlow technology into Qualys TotalCloud saves security and DevOps teams valuable time and resources. Automation and no-code, drag-and-drop workflows help simplify the time-consuming operational tasks of assessing vulnerabilities on ephemeral cloud assets, alerting on high-priority threats, remediating misconfigurations, and quarantining high-risk assets.

Qualys

Buyer's Guide

Prevasio vs. Qualys TotalCloud

March 2025

Free Report: Prevasio vs. Qualys TotalCloud

Find out what your peers are saying about Prevasio vs. Qualys TotalCloud and other solutions. Updated: March 2025.

DOWNLOAD NOW

846,617 professionals have used our research since 2012.

See our Prevasio vs. Qualys TotalCloud report.

See our list of best Cloud-Native Application Protection Platforms (CNAPP) vendors and best Cloud Security Posture Management (CSPM) vendors.

We monitor all Cloud-Native Application Protection Platforms (CNAPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.