No more typing reviews! Try our Samantha, our new voice AI agent.

Skyhawk Security vs Zscaler Zero Trust Exchange Platform comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Feb 8, 2026

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Qualys TotalCloud
Sponsored
Average Rating
8.6
Reviews Sentiment
7.2
Number of Reviews
39
Ranking in other categories
Vulnerability Management (11th), Container Security (11th), Cloud Workload Protection Platforms (CWPP) (7th), Cloud Security Posture Management (CSPM) (8th), SaaS Security Posture Management (SSPM) (1st), Cloud-Native Application Protection Platforms (CNAPP) (6th)
Skyhawk Security
Average Rating
9.4
Reviews Sentiment
5.7
Number of Reviews
5
Ranking in other categories
Cloud Workload Protection Platforms (CWPP) (21st), Cloud Security Posture Management (CSPM) (28th)
Zscaler Zero Trust Exchange...
Average Rating
8.4
Reviews Sentiment
6.9
Number of Reviews
67
Ranking in other categories
Data Loss Prevention (DLP) (6th), Cloud Access Security Brokers (CASB) (9th), Application Control (4th), ZTNA as a Service (1st), Secure Access Service Edge (SASE) (2nd), Remote Browser Isolation (RBI) (1st)
 

Mindshare comparison

Cloud Workload Protection Platforms (CWPP) Mindshare Distribution
ProductMindshare (%)
Skyhawk Security0.7%
Microsoft Defender for Cloud12.7%
AWS GuardDuty10.0%
Other76.6%
Cloud Workload Protection Platforms (CWPP)
Secure Access Service Edge (SASE) Mindshare Distribution
ProductMindshare (%)
Zscaler Zero Trust Exchange Platform8.8%
Prisma Access by Palo Alto Networks10.2%
Cato SASE Cloud Platform7.6%
Other73.4%
Secure Access Service Edge (SASE)
 

Featured Reviews

RO
IT Security Expert at Alior Bank S.A.
Unified risk scoring has improved our cloud visibility and simplifies remediation priorities
Qualys TotalCloud provides unified vulnerability and threat assessment across both IAS and SaaS. This solution provides a single prioritized view of risk, which helps reduce the work I would have to do. We are no longer based on CVSS; we are based on Qualys risk scoring, which is based on CVSS plus internal findings made by Qualys, and then assigns its own score. The TruRisk insight feature has found a small number of assets with high vulnerability scores, though I am cautious since some information is classified. Qualys TotalCloud has positively impacted our bank's performance, and we have definitely seen benefits after implementing this solution.
Abhimanyu Das - PeerSpot reviewer
Senior Cybersecurity Engineer at Kyndryl
Cloud threat validation has reduced alert fatigue and now focuses investigations on real attacks
Skyhawk Security is pretty solid overall, but there are a few things I wish were better. One thing would be more native integration with Microsoft security tools such as Sentinel and Defender, since those are what we use daily. Having deeper built-in integration instead of relying on generic SIM connections would save time. The training and documentation could also be more comprehensive, with more real-world use case examples specific to different industries. Additionally, having more general customization for the AI models to adjust what gets flagged as anomalous in our specific environment would help reduce alert noise. These are pretty minor improvements, and most of them are probably already in their roadmap based on their recent updates adding self-AI training and bulk status changes for their customers. I believe a mobile app would benefit SOC analysts who need to respond frequently while on the go, as most of the platform feels focused on desktop use. Having a robust mobile experience for approving automated responses and reviewing critical alerts would be really useful.
Vibin Thomas - PeerSpot reviewer
Technical Team Lead - Content Security at Valuepoint Systems
Zero trust access has transformed remote connectivity and now simplifies secure app usage
Zscaler Zero Trust Exchange Platform, especially Zscaler Private Access, is very strong, though there are a few areas where improvements can be made. One challenge observed is around initial troubleshooting and visibility. While Zscaler Private Access provides logs, it can sometimes take time to pinpoint the exact cause of access issues, especially in complex environments with multiple policies and identity integration. Another area is the dependency on identity and connector health. Since Zscaler Private Access is heavily reliant on app connectors and identity providers, any issues with these components can impact user access, making proper monitoring critical. During the initial setup, policy configuration and application onboarding require careful planning, especially for larger environments with many applications. These challenges are manageable with proper design and monitoring. Overall, the platform delivers strong security and user experience. I would recommend a few improvements, especially around user interface, reporting, and troubleshooting experience. From a user interface perspective, while the platform is powerful, the policy configuration and navigation can feel complex, especially for new users. A more simplified and intuitive layout for policy mapping and application access would help reduce the learning curve. In terms of reporting, Zscaler Private Access provides logs, but having more built-in customizable dashboards and analytics would be very helpful. Better visibility into user access patterns, application performance, and real-time troubleshooting insights would improve operational efficiency. From a support and troubleshooting standpoint, it would be beneficial to have more granular centralized visibility, allowing for quick end-to-end tracing of a user request from authentication to application access without switching between multiple views. These improvements would make the platform even more efficient, especially for large-scale enterprise environments.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable feature is extensibility."
"Qualys TotalCloud provides unified vulnerability and threat assessment for IaaS and SaaS and a single prioritized view of risk, which helps reduce my workload by not having to combine multiple sources."
"CSPM is currently the most used feature, and we are enjoying the new feature, FlexScan, which is valuable for Internet-facing VMs."
"I appreciate TotalCloud's real-time protection and remediation features. The remediation options include automated one-click remedies and custom changes that help manage vulnerabilities efficiently."
"I would definitely recommend Qualys TotalCloud to other users."
"TotalCloud's best feature is the integration of cloud accounts. It helps with the risk and security posture management of our cloud infrastructure."
"The dashboards are particularly valuable as they offer a comprehensive view of the environment, highlighting any misconfigurations."
"By integrating TotalCloud, we have significantly reduced vulnerabilities in our deployment pipeline."
"Skyhawk Security has positively impacted my organization because we are a small security team, and Skyhawk Security allows us to prioritize our work."
"Skyhawk Security has had a really positive impact on our organization, especially in reducing false positives and speeding up incident response times."
"It helps us in reaching the ISO27001 certification."
"Skyhawk Security has plenty of products and subscriptions available, and at this moment, Skyhawk Security appears to be the leading company in the cybersecurity area."
"We fell in love at the first sight."
"The initial setup process is easy and intuitive."
"You can close your data protection gaps with Zscaler. You can quickly find all the classified, sensitive data across the cloud."
"Its impressive scalability allows the combination of multiple dictionaries and using them as one engine, resulting in narrower data loss gaps."
"The customer service and support are very good."
"It does the job. What it is needed for. I can use it for VPN, I can use it for secure connections, I can use it as a firewall. So the solution does the job."
"The Live Logs are a cool feature. We can directly identify issues and divert user traffic."
"The most valuable features of Zscaler Private Access are reliability, scalability, and availability."
"What I find most valuable in Zscaler Private Access is that it's a VPN, and its connectivity as a VPN is its most valuable feature."
"The most valuable feature is its ability to establish connectivity for remote users and remote endpoints. It offers a high level of granularity compared to typical VPNs, which also encapsulate a lot of I/O."
 

Cons

"I sometimes have difficulty detecting or uninstalling certain versions of applications, which I have to do manually."
"Areas that need improvement in every solution include the remediation part. The remediation steps should be simple enough for everyone to understand."
"In TotalCloud, I would suggest improvements in policy checks to cater to various inventory types like VPCs, subnets, S3 buckets, or IAMs. There is a lack of data segregation according to criticality or inventory."
"Enhancing clarity regarding its compliance capabilities would be beneficial, as the current scope is limited in geographic coverage."
"It has been working very well, but it would be helpful if the dashboard could generate reports tailored to specific compliance needs. For example, in India, we have to comply with RBI and SEBI guidelines. It w"
"In a future release, I suggest that zero-day vulnerabilities should be predicted in advance using AI technologies. The system is not 100% secure yet, so proactive threat hunting could be enhanced to be more proactive than the current system."
"The areas in the solution that have room for improvement include the UI/UX design, which should be improved, and they should integrate more artificial intelligence into the product."
"We encountered challenges identifying the correct resource category for certain items, such as those in containers or storage."
"Skyhawk Security can be improved mainly by improving the UI so it is a little bit easier to use, and the speed that it takes pages to load are the main downfalls."
"The solution needs automatic testing."
"The platform’s interface needs enhancement."
"I wish there was more transparent self-service pricing information available instead of having to go through sales to get the details."
"The pricing for Private Access seems to be on the expensive side, and I believe they should consider making it more competitive with other solutions."
"There aren't really any missing features that I have witnessed."
"There could be a feature to view the VPN tunnel activities in terms of configuration."
"Zscaler CASB should include integrations with other SaaS applications."
"The interface needs a bit of work."
"The scalability is a weak point right now. Its scaling capabilities are lacking, and we'd like to see that improve in the future."
"Those folks will likely have some issues."
"We would like to extend the SASE applications for Zscaler."
 

Pricing and Cost Advice

"Although Qualys TotalCloud is relatively expensive due to its unique automation features, its cost-effectiveness is rated an eight out of ten, with ten being the most costly."
"The pricing is comparable. It is built into our other product, so I cannot piecemeal it. It is a part of our subscription."
"Qualys TotalCloud is expensive, but it offers a premier solution with no headaches."
"While Qualys TotalCloud's pricing is currently acceptable, it is becoming increasingly expensive and may soon be considered overpriced."
"I am not sure about the pricing. From what I understand, it is a bit on the higher side, but I do not have the exact numbers."
"The pricing for TotalCloud is attractive and competitive in the market. Given the features, especially the dashboard, I have no concerns regarding pricing."
"As a middle management member, I do not have direct pricing knowledge, but based on the knowledge from our meetings, its pricing is competitive."
"Qualys TotalCloud is cost-efficient and was selected for its value compared to other products."
Information not available
"It's an affordable solution"
"It has been relatively reasonable for what it does. Some of the additional license costs based on the advanced next-generation firewall functions are quite high, and they should have certain features ready and available as a baseline rather than having to purchase additional licenses for it. Overall, the cost seems reasonable."
"Zscaler Cloud DLP is moderately priced. We pay around 2 million rupees per year."
"Zscaler CASB is an expensive solution."
"My company is a Zscaler Private Access partner, so the customers pay for the license fees."
"Zscaler Private Access is extremely expensive."
"The pricing is quite high, especially when it comes to the gateway."
"There is definitely an ROI."
report
Use our free recommendation engine to learn which Cloud Workload Protection Platforms (CWPP) solutions are best for your needs.
903,871 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Manufacturing Company
16%
Financial Services Firm
14%
Construction Company
8%
Comms Service Provider
7%
No data available
Financial Services Firm
12%
Manufacturing Company
10%
Computer Software Company
8%
Outsourcing Company
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business9
Midsize Enterprise5
Large Enterprise29
No data available
By reviewers
Company SizeCount
Small Business16
Midsize Enterprise12
Large Enterprise46
 

Questions from the Community

What needs improvement with Qualys TotalCloud?
Areas that need improvement in every solution include the remediation part. The remediation steps should be simple en...
What is your primary use case for Qualys TotalCloud?
Our use case involves the assets that we have under cloud, the assets exposed to the internet, and the internal appli...
What is your experience regarding pricing and costs for Radware Cloud Native Protector?
I do not have access to specific pricing details and licensing costs as that is managed by our management team, but I...
What needs improvement with Radware Cloud Native Protector?
Skyhawk Security is pretty solid overall, but there are a few things I wish were better. One thing would be more nati...
What is your primary use case for Radware Cloud Native Protector?
My main use case of Skyhawk Security is cutting through the massive volume of alerts I deal with daily in my SOC oper...
What is the better solution - Prisma Access or Zscaler Private Access?
We looked into Prisma Access before choosing Zscaler Private Access (ZPA). Palo Alto’s Prisma Access is a secure ac...
How to minimize false positives for PII and PCI around different data systems across the globe?
Personal information always should be under high protection from manipulations which is why it is the responsibility ...
What is your experience regarding pricing and costs for Zscaler Cloud Protection?
This is an area where I have candid feedback from our organization regarding pricing, setup cost, and licensing for Z...
 

Also Known As

Qualys TotalCloud with FlexScan
Radware Cloud Native Protector
Zscaler SASE, Zscaler DLP, Zscaler CASB, Zscaler CSPM, Zscaler Browser Isolation, Zscaler Posture Control
 

Overview

 

Sample Customers

Information Not Available
Information Not Available
Siemens, AutoNation, GE, NOV
Find out what your peers are saying about Microsoft, Wiz, SentinelOne and others in Cloud Workload Protection Platforms (CWPP). Updated: June 2026.
903,871 professionals have used our research since 2012.