Try our new research platform with insights from 80,000+ expert users

Qualys TotalCloud pros and cons

Vendor: Qualys

4.4 out of 5

26 reviews
100% willing to recommend

Pros & Cons summary

Qualys TotalCloud delivers advanced security features, including cloud security posture management and real-time remediation. Users appreciate its vulnerability management and FlexScan for internet-facing VMs. Nevertheless, licensing complexity and niche device scanning need improvement. The service could better address cost concerns and accuracy for non-Windows systems. While patching lacks coverage for certain prerequisites, its dashboards significantly enhance organizational efficiency and security posture, appealing to tech buyers seeking comprehensive solutions.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.

Prominent pros & cons

PROS

Qualys TotalCloud offers flexibility in managing vulnerabilities via agent and agentless scanning, with features like FlexScan simplifying traditional methods.

Qualys TotalCloud significantly enhances security posture by providing a unified view of an organization's risk structure, vulnerabilities, and security posture.

Qualys TotalCloud's comprehensive feature set, including CSPM, Kubernetes, and container security capabilities, makes it highly recommended.

Qualys TotalCloud streamlines vulnerability management with automated reporting features, reducing report creation time from hours to minutes.

Qualys TotalCloud efficiently manages risk through advanced categorization, offering deep visibility into asset types and vulnerabilities.

CONS

Qualys TotalCloud's cloud licensing unit system is unclear, as "units" are not well-defined.

There is a need for improvement in Qualys TotalCloud's scanning capabilities in the IP domain, particularly in resolving IPs to domain names.

Reporting could be simplified for better comprehension by end users and project managers, enhancing issue resolution.

Qualys TotalCloud could improve its coverage of niche devices like Wi-Fi dongles and USB modems.

Qualys TotalCloud should enhance risk assessment and remediation by integrating with a wider range of tools, including data from sources like Cortex or other EDRs.

Qualys TotalCloud Pros review quotes

Sushant Samantara

IT Manager at Capgemini

Oct 31, 2024

TotalCloud has been excellent in providing us with immediate access to all the products and features we need, such as CSPM, TruRisk Insights, and compliance reports, including CIS and HIPAA.

Read full review

ShantanuChoubal

Project Lead at Persistent Systems

Nov 22, 2024

One of Qualys' best features is its categorization, which allows us to see the types of assets, their security postures, and the AI-powered version of the tool.

Read full review

Deputy Vice President at a financial services firm with 10,001+ employees

Nov 1, 2024

The best part of Qualys TotalCloud is that I don't have to manage any of the infrastructure, including patching, configuration, or maintaining the solution itself.

Read full review

Qualys TotalCloud

Free Report: Qualys TotalCloud Reviews and More

Learn what your peers think about Qualys TotalCloud. Get advice and tips from experienced pros sharing their opinions. Updated: January 2025.

832,138 professionals have used our research since 2012.

reviewer2589771

Senior Information Security Analyst at Veritas Technologies LLC

Oct 29, 2024

Qualys TotalCloud's most valuable features are its cloud security posture management, Kubernetes, and container security capabilities.

Read full review

Eshan Kshirsagar

retired at LTIMindtree

Oct 30, 2024

It is a cloud-native app that integrates with both IaaS and SaaS. It seamlessly integrates with other platforms.

Read full review

Employee-Owner, Senior Consultant, Information Security at Keller Schroeder

Jun 10, 2024

While automatic inventory detection upon connection is a helpful feature, a truly valuable capability would be assessing an environment's security posture against Azure and CIS best practices.

Read full review

Vishvanath Mulgund

IT Risk Manager at Capgemini

Oct 29, 2024

One of the most valuable features of Qualys TotalCloud is FlexScan, which is specifically for internet-facing VMs. We found this feature to be very useful. It was a key differentiator for us.

Read full review

Himanshun Singh

IT Architect at LTIMindtree

Nov 12, 2024

TotalCloud offers a comprehensive suite of features, including EDR, XDR, and TrueRisk, providing a centralized platform for managing vulnerabilities and security risks.

Read full review

PB

Senior Manager at a financial services firm with 10,001+ employees

Oct 30, 2024

Qualys TotalCloud's most valuable feature is its ability to link clusters of assets, providing a clear model of deployments, vulnerabilities, and statuses.

Read full review

AM

Manager SOC at a tech services company with 51-200 employees

Nov 1, 2024

I appreciate Qualys TotalCloud's ability to onboard any type of device with ease, including containers.

Read full review

Show 10 more reviews (out of 26)

Qualys TotalCloud Cons review quotes

Sushant Samantara

IT Manager at Capgemini

Oct 31, 2024

Although TotalCloud is a helpful tool, some of its advanced features are still under development.

Read full review

ShantanuChoubal

Project Lead at Persistent Systems

Nov 22, 2024

Two areas for improvement in Qualys TotalCloud are the speed of the public cloud platform and vulnerability detection.

Read full review

Deputy Vice President at a financial services firm with 10,001+ employees

Nov 1, 2024

To enhance risk assessment and remediation, the platform should integrate with a wider range of tools, including data from sources like Cortex or other EDRs.

Read full review

Qualys TotalCloud

Free Report: Qualys TotalCloud Reviews and More

Learn what your peers think about Qualys TotalCloud. Get advice and tips from experienced pros sharing their opinions. Updated: January 2025.

832,138 professionals have used our research since 2012.

reviewer2589771

Senior Information Security Analyst at Veritas Technologies LLC

Oct 29, 2024

We would like to see Windows-based sensors available in Qualys, as this would make the platform more versatile and support a broader range of environments.

Read full review

Eshan Kshirsagar

retired at LTIMindtree

Oct 30, 2024

The patching process with Qualys Patch Management, which is part of TotalCloud, does not cover installing certain prerequisites on the servers or workstations. This shortcoming means we must rely on SCCM when any service stack updates or additional prerequisites are needed.

Read full review

Employee-Owner, Senior Consultant, Information Security at Keller Schroeder

Jun 10, 2024

The cloud licensing unit system is unclear, especially since "units" aren't well-defined.

Read full review

Vishvanath Mulgund

IT Risk Manager at Capgemini

Oct 29, 2024

An area for improvement would be to focus on risks related to AI, such as large language models and potential data leakage.

Read full review

Himanshun Singh

IT Architect at LTIMindtree

Nov 12, 2024

Qualys TotalCloud needs to improve its accuracy for non-Windows operating systems.

Read full review

PB

Senior Manager at a financial services firm with 10,001+ employees

Oct 30, 2024

Qualys TotalCloud's increasing complexity, due to the development and deployment of multiple solutions, is making the GUI difficult to navigate.

Read full review

AM

Manager SOC at a tech services company with 51-200 employees

Nov 1, 2024

Qualys's ticketing system can be confusing when assigning tasks to individuals, and support could be improved by offering instant call solutions with engineers in addition to ticket replies.

Read full review

Show 10 more reviews (out of 26)

Product Categories

Product Categories

Cloud-Native Application Protection Platforms (CNAPP)

Vulnerability Management

Container Security

Cloud Workload Protection Platforms (CWPP)

Cloud Security Posture Management (CSPM)

SaaS Security Posture Management (SSPM)

Popular Comparisons

Popular Comparisons

Wiz vs Qualys TotalCloud

Prisma Cloud by Palo Alto Networks vs Qualys TotalCloud

Microsoft Defender for Cloud vs Qualys TotalCloud

Tenable Cloud Security vs Qualys TotalCloud

Rapid7 InsightCloudSec vs Qualys TotalCloud

See all alternatives

Product Categories

Product Categories

Cloud-Native Application Protection Platforms (CNAPP)

Vulnerability Management

Container Security

Cloud Workload Protection Platforms (CWPP)

Cloud Security Posture Management (CSPM)

SaaS Security Posture Management (SSPM)

Popular Comparisons

Popular Comparisons

Wiz vs Qualys TotalCloud

Prisma Cloud by Palo Alto Networks vs Qualys TotalCloud

Microsoft Defender for Cloud vs Qualys TotalCloud

Tenable Cloud Security vs Qualys TotalCloud

Rapid7 InsightCloudSec vs Qualys TotalCloud

See all alternatives

Related questions

22

When evaluating Cloud-Native Application Protection Platforms (CNAPP), what aspect do you think is the most important to look for?

41

Why is a CNAPP (Cloud-Native Application Protection Platform) important?

59

What CNAPP solution do you recommend for a hybrid cloud?

17

Why are Cloud-Native Application Protection Platforms (CNAPP) tools important for companies?

14

When evaluating Cloud-Native Application Protection Platforms (CNAPP) solutions, what aspect do you think is the most important to look for?

44

Why is Cloud-Native Application Protection Platforms (CNAPP) important for companies?

52

What Cloud-Native Application Protection Platform do you recommend?