Qualys VMDR vs Zscaler Internet Access comparison

The compared Qualys and Zscaler solutions aren't in the same category. Qualys is ranked #2 in VM , with an average rating of 8.2, and holds a 12.2% mindshare in the category. Zscaler is ranked #2 in WSG , with an average rating of 8.0, and holds a 15.5% mindshare. Additionally, 94% of Qualys users are willing to recommend the solution, compared to 98% of Zscaler users who would recommend it.

Qualys VMDR

Read 90 Qualys VMDR reviews

13,508 Views
10,253 Comparison Views

94% willing to recommend

Zscaler Internet Access

Read 51 Zscaler Internet Access reviews

12,948 Views
8,230 Comparison Views

98% willing to recommend

Qualys VMDR

Zscaler Internet Access

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 23, 2024

Qualys VMDR and Zscaler Internet Access are significant solutions in the cybersecurity market. Based on our data, Qualys VMDR has an upper hand in-depth of threat detection, while Zscaler Internet Access excels in usability and integration.

Features: Qualys VMDR is known for its extensive vulnerability scanning, detailed threat intelligence, and comprehensive security analytics. Zscaler Internet Access is favored for its seamless integration, advanced security features, and ease of use.

Room for Improvement: Qualys VMDR could enhance its reporting capabilities, user experience, and technical support. Zscaler Internet Access needs improvements in customer support response times, documentation, and support infrastructure.

Ease of Deployment and Customer Service: Qualys VMDR is noted for straightforward deployment and reliable customer support, though technical support could be better. Zscaler Internet Access also has an easy deployment model but suffers from slower customer service response times.

Pricing and ROI: Qualys VMDR offers a budget-friendly setup with a satisfying ROI. Zscaler Internet Access, though higher in cost, provides comprehensive security features considered valuable in the long run.

To learn more, read our detailed Vulnerability Management Report (Updated: October 2024).

Buyer's Guide

Vulnerability Management

October 2024

Download the complete report

Helped 815,854 peers since 2012

Categories and Ranking

Qualys VMDR

Average Rating

8.2

Reviews Sentiment

7.1

Number of Reviews

Ranking in other categories

IT Asset Management (4th), Vulnerability Management (2nd), Configuration Management Databases (3rd), Container Security (10th), Risk-Based Vulnerability Management (3rd)

Zscaler Internet Access

Average Rating

8.2

Number of Reviews

Ranking in other categories

Secure Web Gateways (SWG) (2nd), Internet Security (2nd)

Mindshare comparison

While both are Security Software solutions, they serve different purposes. Qualys VMDR is designed for Vulnerability Management and holds a mindshare of 12.2%, down 13.6% compared to last year.
Zscaler Internet Access, on the other hand, focuses on Secure Web Gateways (SWG), holds 15.5% mindshare, down 16.8% since last year.

Vulnerability Management

Secure Web Gateways (SWG)

Featured Reviews

Harold Jensen

Senior Cybersecurity Engineer at 3M Health Information Systems

Jul 13, 2023

Good visibility but expensive and needs better support

Support: It's often overseas and often following a script, basically asking us to redo what we opened the case with. Multiple APIs: There seems to be a lack of easy onboarding into Qualys. We had to use manual inputs and some API calls to get items in place. Dashboard: It is very rudimentary with very little customization. The Qualys Scripting Language (QSL) works differently in different Qualys modules, so when you get it working in one area you have to modify the syntax in others. User account management: We often have to give users more rights than needed just to give them what they need. Integration with the various Qualys Modules: You can tell the UI is different based on of the different teams that created them. QSL syntax same in all modules Responsiveness of some of the components: They time out, you get a blank screen, etc. Backend updates between the various modules: You update connectors and information takes a few minutes to show in VMDR or Global Asset View Connectors: Connectors have a throttling issue with AWS which causes them to frequently fail unless you manually run them again.

Read full review

Bhaskar Rao

Network manager admin at Yamaha

May 27, 2024

It offers us a single point of control, but we've had some problems with performance

We use Zscaler as a secure internet proxy. All of the traffic is filtered through it. We have about 3,000 users at the organization. All internet traffic goes through Zscaler, which protects the organization's IP, which isn't published publicly. Zscaler's cloud services filter and clear all…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The reporting is fine."

"Qualys VM has allowed us to know the vulnerabilities we need to prioritize based on the threat levels and the possible impact if there's an intrusion."

"Continuous monitoring is a crucial feature that we use more frequently."

"The prioritization feature is great. I think it has all of the advanced features that we need."

"The most valuable feature is automation."

"Qualys VM had a recent upgrade and the newer version is supporting the cloud."

"Using this product, we now have a vulnerability management cycle wherein VMDR plays a major role."

"Provides great functionality."

More Qualys VMDR pros

"The most valuable feature of Zscaler Internet Access is that it is a consolidated solution, it comes with many features, such as DLP."

"The solution is stable and reliable."

"The solution offers a distributed organization to master and to control all of the endpoints."

"We don't have to buy equipment to use it. And when our engineers set it up on our side, we just configured a few settings and we were in."

"The most valuable features I found in Zscaler Internet Access are the restriction of users for a particular URL, the security feature related to stopping DDoS, and the VPN."

"The solution replaces multiple vendor technologies with one which makes it worth the cost."

"The most valuable feature of the solution is SWG traffic."

"Zscaler covers all the features needed to replace a VPN or proxy solution. They are good. They've been on the market for 15 years now, so they are mature enough."

More Zscaler Internet Access pros

Cons

"They're still evolving their platform in terms of reporting capabilities."

"Qualys VMDR should improve authenticated scanning capabilities."

"The solution is a bit expensive if you do not have access to discounts."

"The response time of technical support takes a while."

"There's a need to upgrade or fix the potential vulnerability rate. Around 20,000 potential vulnerabilities were showing in Qualys VMDR, but none of the other tools showed them. When we checked, it wasn't the case. Support explained that even small issues were being counted as vulnerabilities, causing issues in our audit. So, the security features could be improved to identify vulnerabilities accurately."

"We face issues while scanning multiple assets."

"Qualys does have an on-prem solution, but it is very expensive."

"There are scenarios where a vulnerability is reported once yet not in subsequent scans, even if we have not fixed it."

More Qualys VMDR cons

"When you have appliances, SSL inspection is always a headache due to poor performance and/or lack of ciphers implemented. "

"I would like to see more training and video documentation."

"Currently, the solution's interface is not that user-friendly."

"An improvement would be if they could provide an out-of-the-box experience, like 20 to 30 features all ready to go. In comparison, LogRhythm offers out-of-the-box features. With Zscaler Internet Access, there is firewall IPS, multiple security services, filtering, DLP, and CASB browser isolation. These are things that all users are going to be using. However, when an administrator or architect would start building this, I would definitely need to engage professional services to help clients do it."

"Zscaler does not provide dedicated IPs to each customer. Hence, they share a pool of IPs provided by Zscaler. There is a chance of blacklisting these IPs. I also do not like the multi-management portal."

"Sometimes it's not easy to use during large deployments of workstations."

"Zscale is providing a proxy IP, and most government sites will block traffic from a proxy. Also, we see some performance issues on the cloud side during DC failover."

"In every cloud service in the world, you have multiple upstream internet providers to create diversity so that if one of your providers fails, your network just continues. In South Africa, there is only one upstream provider, and that's not right. That that's a problem."

More Zscaler Internet Access cons

Pricing and Cost Advice

"I used to work there, so I never paid for the product. As an employee, we get a lifetime license for personal use, and that's what I'm using. It is a comprehensive platform, so there is a lot more to it. There could be other solutions that are probably a little bit cheaper, but it depends on what people need. Different people have different needs. It offers many things on the same platform. If you add all the things up, it should be cheaper, but I have not done any analysis specifically."

"There are no additional fees in addition to the standard licensing fees."

"The tool's pricing is expensive and I would rate the pricing a seven out of ten."

"The price is very reasonable."

"The license is on a yearly basis."

"The product is more expensive than that of any other vendor."

"We have an annual contract for Qualys VMDR. I believe it's for either two years or five years."

"The solution is reasonably priced for the value it provides."

More Qualys VMDR pricing and cost advice

"ZIA follows a subscription model pricing and charges you based on the number of users. I would say its price is good."

"We have found the solution to be expensive."

"Licenses are available on a per-host basis. Some features like sandboxing require an additional fee, but most standard features are included in the license."

"Roughly, we might spend $70,000 a month on the solution. We don't pay for anything beyond the standard licensing fee."

"The pricing is an issue. It is expensive compared to other firewalls on the market."

"Be aware that you will need to invest some time and money to adapt your environment for Zscaler (traffic redirection, software deployment, authentication, etc)."

"It is costlier than other solutions."

"It is a few pounds per user per month."

More Zscaler Internet Access pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.

See recommendations

815,854 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Educational Organization

35%

Computer Software Company

11%

Financial Services Firm

11%

Manufacturing Company

Educational Organization

23%

Computer Software Company

13%

Financial Services Firm

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What is your primary use case for Qualys VM?

Qualys VM is used for vulnerability scans for the internet and applications using application exchange. There are many applications. We also use the solution for asset management per team, and the ...

See all answers

What do you like most about Qualys VMDR?

I like that we have many scanners and channels that don't overload. It helps us scan and track easily. Also, the tagging system is good for tagging. We can still use QualysAgent task ID tools even ...

See all answers

What is your experience regarding pricing and costs for Qualys VMDR?

I am not aware of the actual cost or pricing as it is managed by the client.

See all answers

Which is the better security solution - Cisco Umbrella or Zscaler?

Cisco Umbrella and Zscaler Internet Access are two broad-spectrum Internet security solutions that I have tried. Zscaler Internet Access is a good option for carrying out multiple security functi...

See all answers

Which is better, Zscaler internet access or Netsckope CASB?

We researched Netskope but ultimately chose Zscaler. Netskope is a cloud access security broker that helps identify and manage cloud applications, protecting your sensitive data from exfiltration....

See all answers

What do you like most about Zscaler Internet Access?

The solution has reduced cyberattacks.

See all answers

Comparisons

Tenable Nessus vs Qualys VMDR

Compared 19% of the time

Rapid7 InsightVM vs Qualys VMDR

Compared 9% of the time

Microsoft Defender Vulnerability Management vs Qualys VMDR

Compared 8% of the time

Tenable Security Center vs Qualys VMDR

Compared 8% of the time

Wiz vs Qualys VMDR

Compared 5% of the time

More Qualys VMDR Competitors

Cisco Umbrella vs Zscaler Internet Access

Compared 25% of the time

Netskope vs Zscaler Internet Access

Compared 12% of the time

Microsoft Defender for Cloud Apps vs Zscaler Internet Access

Compared 12% of the time

Prisma Access by Palo Alto Networks vs Zscaler Internet Access

Compared 8% of the time

FortiSASE vs Zscaler Internet Access

Compared 6% of the time

More Zscaler Internet Access Competitors

Product Reports

Buyer's Guide

Qualys VMDR

November 2024

Download Qualys VMDR product report

Buyer's Guide

Zscaler Internet Access

October 2024

Download Zscaler Internet Access product report

Also Known As

Qualys VM, QualysGuard VM, Qualys Asset Inventory, Qualys Container Security, Qualys Virtual Scanner Appliance

ZIA

Learn More

Qualys

Zscaler

Overview

Vulnerability Management, Detection, and Response (VMDR) is a cornerstone product of the Qualys TruRisk Platform and a global leader in the enterprise-grade vulnerability management (VM) vendor space. With VMDR, enterprises are empowered with visibility and insight into cyber risk exposure - making it easy to prioritize vulnerabilities, assets, or groups of assets based on business risk. Security teams can take action to mitigate risk, helping the business measure their actual risk exposure over time.

Qualys VMDR offers an all-inclusive risk-based vulnerability management solution to prioritize vulnerabilities and assets based on risk and business criticality. VMDR seamlessly integrates with configuration management databases (CMDB), Qualys Patch Management, Custom Assessment and Remediation (CAR), Qualys TotalCloud and other Qualys and non-Qualys solutions to facilitate vulnerability detection and remediation across the entire enterprise.

With VMDR, users are empowered with actionable risk insights that translate vulnerabilities and exploits into optimized remediation actions based on business impact. Qualys customers can now aggregate and orchestrate data from the Qualys Threat Library, 25+ threat intelligence feeds, and third-party security and IT solutions, empowering organizations to measure, communicate, and eliminate risk across on-premises, hybrid, and cloud environments.

Zscaler Internet Access is a cloud-native security service edge (SSE) platform. Its main purpose is to provide AI-powered protection for all users, all applications, and all locations. The solution replaces other legacy network security solutions to stop advanced attacks and prevent data loss by using a comprehensive zero trust approach.

Zscaler Internet Access Features

Zscaler Internet Access has many valuable key features. Some of the most useful ones include:

Proxy (native SSL)
IPS and advanced protection
Cloud sandbox
DNS security
Cloud firewall
URL filtering
Bandwidth control
DNS filtering
Cloud DLP w/EDM and IDM
Cloud access security broker (CASB)
Cloud security posture management (CSPM)
CloudBrowser isolation
Cloud secure web gateway (SWG)
Zero trust network access (ZTNA)
Digital experience monitoring

Zscaler Internet Access Benefits

There are several benefits to implementing Zscaler Internet Access. Some of the biggest advantages the solution offers include:

Fast access with zero infrastructure: Zscaler Internet Access creates a fast, seamless user experience because of its direct-to-cloud architecture. With no infrastructure, Zscaler Internet Access helps you eliminate backhauling, which improves performance and simplifies network administration.

Threat intelligence: By using threat intelligence, Zscaler Internet Access can stop ransomware, zero-day malware, and advanced attacks via Inline inspection of all internet traffic, including SSL decryption, and a suite of AI-powered cloud security services.

Consistent security: With Zscaler Internet Access, your security policy goes everywhere your users go. When you move security to the cloud, all users, applications, devices, and locations remain protected and secure based on identity and context.

Hybrid workforce: Zscaler Internet Access enables secure access to all external and internal apps from anywhere, so remote work is not an issue. You can also enforce business policies that follow the user, making security identical regardless of location.

Reviews from Real Users

Below are some reviews and helpful feedback written by Zscaler Internet Access users.

A Service Manager at a construction company says, "There are a bunch of different capabilities that are valuable within the platform. We use quite a lot of them, but not everything. The ones that are most important to us are the URL Filtering and the application control. For our needs, the cloud-native proxy architecture is a very good solution. This architecture helps with cyber threats because we inspect most of the traffic and we can see that a lot of threats are stopped directly in the secure web gateway."

Owen N., Security Architect at Claro Enterprise Solutions, explains that the solution’s most valuable features include “The integration of the gateway that inspects all ports and protocols. So, there is threat prevention; The cloud sandbox; VNS security; Access control that will protect URL filtering and the cloud firewall; Data protection that will protect your gateway, like your CASB or your cloud DLP; The capabilities of this will point your traffic to Zscaler Cloud.”

An Architecture Senior Manager at an insurance company mentions, "The data loss prevention feature is the most valuable. It stops our users from inadvertently leaking our customers' data to the Internet or anywhere else it shouldn't go." He also adds, “The solution provides quick access to cloud services, securing our data and allowing us to inspect all our traffic.”

Sample Customers

Agrokor Group, American Specialty Health, American State Bank, Arval, Life:), Axway, Bank of the West, Blueport Commerce, BSkyB, Brinks, CaixaBank, Cartagena, Catholic Health System, CEC Bank, Cegedim, CIGNA, Clickability, Colby-Sawyer College, Commercial Bank of Dubai, University of Utah, eBay Inc., ING Singapore, National Theatre, OTP Bank, Sodexo, WebEx

Ulster-Greene ARC, BanRegio, HDFC, Ralcorp Holdings Inc., British American Tobacco, Med America Billing Services Inc., Lanco Group, Aquafil, Telefonica, Swisscom, Brigade Group

Buyer's Guide

Vulnerability Management

October 2024

Download Free Report

Find out what your peers are saying about Tenable, Qualys, Wiz and others in Vulnerability Management. Updated: October 2024.

DOWNLOAD NOW

815,854 professionals have used our research since 2012.

We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.