Qualys VMDR vs Skybox Security Suite comparison

Qualys and Skybox Security are both solutions in the Vulnerability Management category. Qualys is ranked #2 with an average rating of 8.2, while Skybox Security is ranked #37 with an average rating of 7.5. Qualys holds a 12.2% mindshare in VM, compared to Skybox Security’s 0.5% mindshare. Additionally, 94% of Qualys users are willing to recommend the solution, compared to 82% of Skybox Security users who would recommend it.

Qualys VMDR

Read 89 Qualys VMDR reviews

13,508 Views
10,253 Comparison Views

94% willing to recommend

Skybox Security Suite

Read 35 Skybox Security Suite reviews

728 Views
515 Comparison Views

82% willing to recommend

Qualys VMDR

Skybox Security Suite

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 29, 2024

Qualys VMDR and Skybox Security Suite are two prominent security solutions competing in vulnerability management and threat intelligence. Users are happier with Qualys VMDR pricing and support, while Skybox stands out for advanced features worth the higher price.

Features: Qualys VMDR is praised for integrated vulnerability detection, management, and prioritization capabilities. Skybox Security Suite stands out due to its comprehensive vulnerability management, threat intelligence, and advanced analytics. Skybox's features are deemed superior for complex environments, while Qualys offers a simpler, more cost-effective solution.

Room for Improvement: Qualys VMDR could benefit from improved reporting capabilities, more intuitive configuration options, and enhanced performance. Skybox Security Suite users cite the need for enhanced performance, more frequent updates, and improved ease of use.

Ease of Deployment and Customer Service: Qualys VMDR is praised for straightforward deployment and dependable customer service. Skybox Security Suite, although flexible, is more challenging to deploy, with mixed reviews on customer support. Users find deploying and supporting Qualys VMDR easier.

Pricing and ROI: Qualys VMDR offers competitive pricing with quick ROI, making it attractive for smaller budgets. Skybox Security Suite, while more expensive, is seen as a worthwhile investment for its advanced features, justifying the higher initial setup costs. Users generally find Qualys more cost-effective, but those opting for Skybox find its long-term value beneficial.

To learn more, read our detailed Qualys VMDR vs. Skybox Security Suite Report (Updated: October 2024).

Buyer's Guide

Qualys VMDR vs. Skybox Security Suite

October 2024

Download the complete report

Helped 814,649 peers since 2012

Categories and Ranking

Qualys VMDR

Ranking in Vulnerability Management

2nd

Average Rating

8.2

Reviews Sentiment

7.3

Number of Reviews

Ranking in other categories

IT Asset Management (4th), Configuration Management Databases (3rd), Container Security (10th), Risk-Based Vulnerability Management (3rd)

Skybox Security Suite

Ranking in Vulnerability Management

37th

Average Rating

7.6

Number of Reviews

Ranking in other categories

Firewall Security Management (7th)

Mindshare comparison

As of November 2024, in the Vulnerability Management category, the mindshare of Qualys VMDR is 12.2%, down from 13.6% compared to the previous year. The mindshare of Skybox Security Suite is 0.5%, down from 0.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Vulnerability Management

Featured Reviews

Harold Jensen

Senior Cybersecurity Engineer at 3M Health Information Systems

Jul 13, 2023

Good visibility but expensive and needs better support

Support: It's often overseas and often following a script, basically asking us to redo what we opened the case with. Multiple APIs: There seems to be a lack of easy onboarding into Qualys. We had to use manual inputs and some API calls to get items in place. Dashboard: It is very rudimentary with very little customization. The Qualys Scripting Language (QSL) works differently in different Qualys modules, so when you get it working in one area you have to modify the syntax in others. User account management: We often have to give users more rights than needed just to give them what they need. Integration with the various Qualys Modules: You can tell the UI is different based on of the different teams that created them. QSL syntax same in all modules Responsiveness of some of the components: They time out, you get a blank screen, etc. Backend updates between the various modules: You update connectors and information takes a few minutes to show in VMDR or Global Asset View Connectors: Connectors have a throttling issue with AWS which causes them to frequently fail unless you manually run them again.

Read full review

NenadMijatovic

Director of Sales at S4E Serbia

Feb 8, 2024

Efficient in vulnerability management, stable and easy to use

Vulnerability management is the most valuable feature because it lets you focus on the most critical vulnerabilities. That's the important thing. Here in Serbia, there are not so many companies that have too many firewalls inside one company. So, they usually don't buy this model for Firewall Assurance unless there is some compliance. So you can prove that your firewalls are compliant. So, that model is not so important here in Serbia. It's for bigger companies. So, they usually buy network assurance to build the model of the network and vulnerability management to focus on the most important vulnerabilities. Moreover, Skybox can collect data for many vendors. From the endpoint protection vendors to the network equipment vendors to other security vendors. So, it supports more than one hundred vendors to collect data from them.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Qualys VMDR provides us with a quick response to threat findings through regular scheduled scanning, which improves our security operations."

"I like that we have many scanners and channels that don't overload. It helps us scan and track easily. Also, the tagging system is good for tagging. We can still use QualysAgent task ID tools even if tags aren't made."

"The most valuable feature is that this solution is very lightweight."

"The features that are most valuable are the identification, scan features, and the identification of vulnerabilities."

"Qualys VM's best feature is vulnerability management."

"The solution is easy to use."

"The reporting functionality is great."

"It's really beneficial for scanning and interacting with the agent."

More Qualys VMDR pros

"The most impressive feature is optimization and clean-up."

"The most valuable features are the rule compliance and the OS vulnerability checks."

"It's given us more visibility in terms of what are the kinds of configurations that are on these devices, and how many of these are stale rules. So it's helped greatly in terms of cleaning up of rules, for sure. And it has definitely given us a more secure way of backing up the configuration on these devices."

"The most valuable features of Skybox Security Suite are all the modules that are provided, such as vulnerability assessments and network, and firewall assessments."

"The solution offers very nice dashboards and they've recently added a very good Java-based web interface."

"The performance could be good because we chose it at the time, but it is too complex for us to appreciate its performance because we lack the necessary skills."

"The ability to appropriately prioritize vulnerabilities inside the environment, and then to have visibility into the traffic and rule sets of an organization, are two of the top capabilities that I recommend. Skybox is the only one that does both of those in a single platform."

"I think that compliance checks and policy compliance are the product's good features."

More Skybox Security Suite pros

Cons

"The reporting and dashboards could improve in Qualys VM. However, they have improved since the previous versions."

"It's not very user-friendly at times and requires in-depth understanding. So, a layman or someone new to Qualys won't be able to easily understand it. You need education to use the solution."

"Make some minimal dashboard improvements."

"One of the biggest issues from the clients' perspective is that all Qualys computing is on the cloud."

"Qualys Container Security can improve the interface. It could be easier to navigate and be enriched."

"Qualys does have an on-prem solution, but it is very expensive."

"I would like to have CSPM, a continuous scan-like cloud added to the solution."

"Qualys currently does not have any features for scanning SCADA, IoT, and Industrial Control Systems."

More Qualys VMDR cons

"There is room for improvement in pricing. It would be better, especially if a customer bought all four modules."

"The Network Assurance, which helps to create the network model, is not so rich."

"There are multiple dashboards but no custom dashboard. It would be good to include a custom dashboard so that we can actually choose which field and what kinds of things we want to look at."

"The stability is something that is questionable. I don't know whether it is because of the kind of infrastructure we have or because of the product in itself. We're running it on a virtual machine right now. Maybe once a month, or once in every 45 days, it requires a restart because the application fails to connect. So I have to restart the whole Skybox Manager itself, the Skybox server itself, and then connect to it from our Skybox Manager."

"The most recent update was not tested with all of the vendors before it was released, so some of the features are misbehaving."

"Skybox Security Suite can improve the change management module. It is the one part of the tool that is used with the firewall devices and you have a change management module that is used to record changes of all firewalls in the company. It's not compatible with all brands, this is where they can improve the solution."

"Reporting. A lot of the reports, out of the box, are limited to a certain number of either configuration violations or access rule violations. So when you first set up a new firewall to be monitored by Skybox, you don't get a real full report. You have to really tweak it to get everything."

"Skybox Security Suite's attack surface management feature needs improvement."

More Skybox Security Suite cons

Pricing and Cost Advice

"The license is on a yearly basis."

"The solution is costly."

"It is more expensive than other products on the market."

"Qualys VM is quite expensive. It's a subscription-based license, and it's yearly. Right now, it's open for me, and I don't have any limitations or caps on the licenses. They are seeing if the product is viable for 4500 users. I can add as much as I want, and at the end of the subscription, they'll let me know how many licenses were actually used and bill me accordingly. On a scale from one to five, I would give their pricing a three. It's still expensive."

"Qualys VM is reasonably priced."

"The product is more expensive than that of any other vendor."

"The solution is reasonably priced for the value it provides."

"Qualys VM is better suited for medium to large companies because the price can be too much for smaller customers."

More Qualys VMDR pricing and cost advice

"I think for the cost, what we got definitely is worth it. The only caution I would give is that whenever you license for Firewall Assurance at the same time, for some weird reason, you have to get one Network Assurance license, just to manage one firewall. That's a little bit of overkill. But otherwise, in general, the pricing is fairly okay."

"I rate the pricing two on a scale of one to ten, where one is very expensive, and ten is cost-effective."

"The price is not expensive."

"Skybox Security Suite has indeed helped us reduce costs. The prices of AlgoSec and Skybox Security Suite are approximately 50 percent different. The tool may require special vendor support from abroad, resulting in slightly higher costs. Its pricing is in the middle."

"When compared with other companies, the license is more costly."

"Skybox comes with extra licenses and has a change management license. The licenses are expensive, but they come with extra value."

"Pricing is on the higher side. In terms of licensing, you should buy the complete suite rather than buying only the Change Manager. I think Change Manager with Vulnerability Control is something that would be interesting to look at."

"The price of the Skybox Security Suite can be expensive."

More Skybox Security Suite pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.

See recommendations

814,649 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Educational Organization

35%

Computer Software Company

11%

Financial Services Firm

11%

Manufacturing Company

Computer Software Company

18%

Financial Services Firm

16%

Manufacturing Company

10%

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What is your primary use case for Qualys VM?

Qualys VM is used for vulnerability scans for the internet and applications using application exchange. There are many applications. We also use the solution for asset management per team, and the ...

See all answers

What do you like most about Qualys VMDR?

I like that we have many scanners and channels that don't overload. It helps us scan and track easily. Also, the tagging system is good for tagging. We can still use QualysAgent task ID tools even ...

See all answers

What is your experience regarding pricing and costs for Qualys VMDR?

I am not aware of the actual cost or pricing as it is managed by the client.

See all answers

What do you like most about Skybox Security Suite?

Overall, the tool has helped us reduce risks. If any step is missing, it's easier for my team or engineers to identify it. The tool provides accurate recommendations based on the data. Its integrat...

See all answers

What is your experience regarding pricing and costs for Skybox Security Suite?

Skybox Security Suite has indeed helped us reduce costs. The prices of AlgoSec and Skybox Security Suite are approximately 50 percent different. The tool may require special vendor support from abr...

See all answers

What needs improvement with Skybox Security Suite?

There is room for improvement in the product's user interface. It could be more user-friendly.

See all answers

Comparisons

Tenable Nessus vs Qualys VMDR

Compared 19% of the time

Rapid7 InsightVM vs Qualys VMDR

Compared 9% of the time

Microsoft Defender Vulnerability Management vs Qualys VMDR

Compared 8% of the time

Tenable Security Center vs Qualys VMDR

Compared 8% of the time

Wiz vs Qualys VMDR

Compared 5% of the time

More Qualys VMDR Competitors

AlgoSec vs Skybox Security Suite

Compared 32% of the time

Tufin Orchestration Suite vs Skybox Security Suite

Compared 29% of the time

FireMon Security Manager vs Skybox Security Suite

Compared 15% of the time

RedSeal vs Skybox Security Suite

Compared 5% of the time

Tenable Nessus vs Skybox Security Suite

Compared 2% of the time

More Skybox Security Suite Competitors

Product Reports

Buyer's Guide

Qualys VMDR

October 2024

Download Qualys VMDR product report

Buyer's Guide

Skybox Security Suite

October 2024

Download Skybox Security Suite product report

Also Known As

Qualys VM, QualysGuard VM, Qualys Asset Inventory, Qualys Container Security, Qualys Virtual Scanner Appliance

No data available

Learn More

Qualys

Skybox Security

Overview

Vulnerability Management, Detection, and Response (VMDR) is a cornerstone product of the Qualys TruRisk Platform and a global leader in the enterprise-grade vulnerability management (VM) vendor space. With VMDR, enterprises are empowered with visibility and insight into cyber risk exposure - making it easy to prioritize vulnerabilities, assets, or groups of assets based on business risk. Security teams can take action to mitigate risk, helping the business measure their actual risk exposure over time.

Qualys VMDR offers an all-inclusive risk-based vulnerability management solution to prioritize vulnerabilities and assets based on risk and business criticality. VMDR seamlessly integrates with configuration management databases (CMDB), Qualys Patch Management, Custom Assessment and Remediation (CAR), Qualys TotalCloud and other Qualys and non-Qualys solutions to facilitate vulnerability detection and remediation across the entire enterprise.

With VMDR, users are empowered with actionable risk insights that translate vulnerabilities and exploits into optimized remediation actions based on business impact. Qualys customers can now aggregate and orchestrate data from the Qualys Threat Library, 25+ threat intelligence feeds, and third-party security and IT solutions, empowering organizations to measure, communicate, and eliminate risk across on-premises, hybrid, and cloud environments.

The Skybox Security Suite platform combines firewall and network device data with vulnerability and threat intelligence, prioritizing security issues in the context of your unique environment. Powerful attack vector analytics reduce response times and risks, bringing firewall, vulnerability and threat management processes for complex networks under control.

Firewall Assurance brings all firewalls into one normalized view, continuously monitoring policy compliance, optimizing firewall rulesets and finding attack vectors that others miss. Skybox covers the most comprehensive list of firewall vendors, complex rulesets, even virtual and cloud-based firewalls. With proven scalability in 1,500+ firewall deployments, Firewall Assurance keeps rules optimized and ensures changes don’t introduce new risk.

Gain total visibility of the vulnerabilities in your attack surface without waiting for a scan. Leverage Skybox Research Lab's vulnerability and threat intelligence, and automatically correlate it to your unique environment. With network modeling and advanced simulations, pinpoint exposed vulnerabilities and other attack vectors. And use context to prioritize vulnerabilities in terms of actual risk and respond to threats with accuracy and efficiency.

For more information or to view a demo, visit www.skyboxsecurity.com.

Sample Customers

Agrokor Group, American Specialty Health, American State Bank, Arval, Life:), Axway, Bank of the West, Blueport Commerce, BSkyB, Brinks, CaixaBank, Cartagena, Catholic Health System, CEC Bank, Cegedim, CIGNA, Clickability, Colby-Sawyer College, Commercial Bank of Dubai, University of Utah, eBay Inc., ING Singapore, National Theatre, OTP Bank, Sodexo, WebEx

ADP, Blue Cross Blue Shield, BT, USAID, Delta Dental, EDF Energy, EMC, HSBC, Johnson & Johnson

Buyer's Guide

Qualys VMDR vs. Skybox Security Suite

October 2024

Free Report: Qualys VMDR vs. Skybox Security Suite

Find out what your peers are saying about Qualys VMDR vs. Skybox Security Suite and other solutions. Updated: October 2024.

DOWNLOAD NOW

814,649 professionals have used our research since 2012.

See our Qualys VMDR vs. Skybox Security Suite report.

See our list of best Vulnerability Management vendors.

We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.