I would recommend Qualys VMDR to the other stakeholders because it already has its place in the market, and it's very reliable. I'd rate the solution eight out of ten.
System Engineer at a financial services firm with 1-10 employees
Real User
Top 20
2024-10-08T08:37:00Z
Oct 8, 2024
I recommend using Qualys as it offers many valuable features and options. It is better compared to solutions like Nexus. I'd rate the solution nine out of ten.
Senior Global IT Security Specialist at a manufacturing company with 1,001-5,000 employees
Real User
Top 20
2024-09-16T07:14:00Z
Sep 16, 2024
I would recommend Qualys VMDR to other users if they want a comprehensive solution for real-time vulnerability detection and mitigation. The tool is easy to implement, backed by a reliable knowledge base, and offers quick updates during zero-day events. While there are areas for improvement, such as simplifications in handling certain features, the overall solution is robust and effective. I'd rate the solution eight out of ten.
T&S Specialist - Investigation and Prevention at Amazon
Real User
Top 10
2024-09-13T09:38:00Z
Sep 13, 2024
I would definitely recommend Qualys to other users. Depending on the number of users and specific needs, Qualys is a good vulnerability management product that offers efficient solutions. I'd rate the solution nine out of ten.
I would recommend it. For enterprises, I’d suggest understanding how the tool works and which modules meet your needs. It’s important to coordinate with the customer team or Qualys technical team to figure out how many licenses you need and which modules will benefit your organization. Proper calculation and understanding are key before purchasing. Overall, I would rate it a nine out of ten.
Sr. Vice President Group Security at a financial services firm with 10,001+ employees
Real User
Top 10
2024-09-09T07:53:35Z
Sep 9, 2024
I would recommend Qualys VMDR to other users because it is efficient and reliable, and it does what it's supposed to. Overall, I would rate it an eight out of ten.
I haven't personally done any integration, so I can't comment on it. However, I believe some integration was happening between Qualys VMDR and ServiceNow. Our asset management tool was also trying to integrate with Qualys VMDR, but I'm unsure about the details or how it works. I rate the overall product an eight out of ten.
Information Communication Technology Specialist at UNIVERSITY OF JOHANNESBURG
Real User
Top 5
2024-04-09T14:34:57Z
Apr 9, 2024
We integrate Qualys VMDR with our infrastructure, conducting weekly scans and generating reports based on the findings. This provides daily views of vulnerabilities, and we use Qualys' patch management to deploy patches promptly, starting with the most severe vulnerabilities, thus reducing our threat exposure. Conducting a thorough proof of concept is essential to evaluate its effectiveness in your environment and to see how it integrates with your existing systems and handles your specific security needs. I rate it a ten out of ten.
If you're considering implementing Qualys in your organization, work with a strong pre-sales partner. Evaluate the product, make sure it does what you need, make sure you buy the features that you need, and make sure to use the training and onboarding material that Qualys has made available on its website so you can leverage the solution's full capability from the start. I rate Qualys VMDR a nine out of ten.
Senior Cybersecurity Engineer at 3M Health Information Systems
Real User
Top 10
2023-07-13T18:03:00Z
Jul 13, 2023
If you're going to deploy Qualys it is key to have someone dedicated to supporting the back end, making sure all the components are working as expected. This is not a fire-and-forget solution.
Just consider the licenses we have within VMware. They could replicate some of these features, which are used for premium customers. So, it might be useful to include those features in the subscription plans. Overall, I would rate the solution a nine out of ten.
Security Expert at a insurance company with 10,001+ employees
Real User
Top 20
2023-01-05T15:26:43Z
Jan 5, 2023
I give the solution an eight out of ten. The maintenance is not difficult and we don't have any problems or concerns. Implementation of the solution is very easy, using the solution is very easy, and it is very efficient.
We're implementors. When it comes to security, my only advice is based on my experience. They always say to use multiple products due to the fact that, even if the vulnerability is missed in one product, it'll be identified in the other product so that you are safe. However, when it comes to implementation, if you have multiple products, pipelining is a big problem. For example, if I use the Qualys scanner, and then it gives me all the vulnerabilities: how do I fix it? Either I have to fix it manually, or I have to fix it automatically. I'd like to use one product, and, for example, use a vulnerability scanner from Qualys and have patch management as well. While the solution is still maturing, I like the tight integration and I like that the scanner can identify items and patch management can fix them. It simplifies things, instead of having to deal with multiple products and then maybe having to manually fix items on top of that. I'd rate the solution nine out of ten.
Security Specialist at a financial services firm with 1,001-5,000 employees
Real User
2022-11-16T14:42:11Z
Nov 16, 2022
I think mainly decide how you want to scan: based on IP or based on an agent. Then work with the interface and then explore how it works. I would rate Qualys VM an eight out of ten.
I would advise others to run a proof of concept and to exhaust all functionality if considering Qualys. This may take between 15 and 60 days to complete. I would rate this solution a six out of ten.
Manager|Cloud Security & Solution Architect| CloudOps|AppSec | DevSecOps | DevOps | CapOps | FinOps at Wipro
Real User
2022-09-16T20:19:58Z
Sep 16, 2022
I rate this solution a ten out of ten. Compared to other solutions, brand awareness and Azure integration are the strong points of Qualys VM. We would like to have some predefined parameters for the setup in regards to security and vulnerability, and how to maximize it. For example, we want scans and management with some predefined parameters that we need to have in the environment prior to deployment and initial setup.
The initial setup is not straightforward and it's important to have the agent connectivity linked to the cloud and available all the time. If you have assets that are not connected to the cloud, you will need help from a service provider or integrator because the introduction of passive scanning is not straightforward. I would rate this solution a seven out of ten.
Information Security Manager at a outsourcing company with 51-200 employees
Real User
2022-07-09T00:00:49Z
Jul 9, 2022
We pay for the Qualys platform, and we will maintain the vulnerability management for our clients until they get their own vulnerability management solution. I’d recommend the solution to others. In a world of the hybrid workforce and work from home, if you're looking for a more effective vulnerability management tool, you have to go to the agent-based vulnerability management tools that are out there, and we've been extremely happy with Qualys. We were also delighted with Nessus in terms of their ability to identify things. However, an agent-based scanner is above an appliance base for known devices. Ideally, you have both of them together so you can scan your network for devices that might have an agent on it. However, for known devices, we definitely have been switching and really appreciate the switch to agent-based in Qualys. I’d rate the solution eight out of ten. The only downside is that reporting can be slow, knowing that we're dealing with trying to load dashboards with 20,000 to 30,000 agents.
Everything is well-documented by Qualys. Their white paper is published and they have much visibility across the globe and on different platforms. If you look into their educational YouTube channel, you get a lot of information. There are a lot of seminars and talks on Qualys VMDR features. The advantage with Qualys is that you get a lot of features because it has been a market leader for quite a long time. The solution has an agent-based approach and I think it is highly evolved when compared to Tenable, for example. However, Qualys is a bit highly priced so if you're looking strictly at pricing, I think you will get a better value with Tenable. I would rate this solution as a nine out of ten.
Assistant Manager Solutions at Mutex Systems Pvt. Ltd.
Real User
2022-07-06T06:27:43Z
Jul 6, 2022
If you're going for an on-premises solution, you should dive into the POC. Because I wasn't procuring an on-premises solution, it was pretty easy for me, and the support was quite helpful. But if you're going to deploy it on-premises, you should go through a proper procedure of going through the POC and getting to know the product. I would rate it at the top because it's better than Nexpose, it's better than Tenable, and it's better than Symantec. On a scale from one to ten, I would give Qualys VM an eight.
Technical Architect at a outsourcing company with 1,001-5,000 employees
Real User
2022-06-01T16:03:47Z
Jun 1, 2022
Qualys VM is a really good tool for vulnerability scanning, and it has different sets of profiles that can be utilized for your own requirements. I would rate Qualys VM as seven out of ten.
Manager, Info Security Planning & Architecture at a comms service provider with 10,001+ employees
Real User
2022-05-05T12:49:37Z
May 5, 2022
I would advise anybody looking into using Qualys to go online to also check on Gartner and Forrester. From a planning perspective, you need to look at your estate to determine what kind of tool you need. I would rate Qualys VM eight out of ten.
GM Network Information Security at a tech services company with 1,001-5,000 employees
Real User
2022-02-11T22:58:20Z
Feb 11, 2022
My advice to others is this is one of the top solutions in its category. However, they can evaluate many solutions to see for themselves. I would recommend this solution to others to implement it in their network. I rate Qualys VM an eight out of ten
It is a good product. I would recommend it to others. It had whatever I needed for my personal use case. There are a lot of features that I have not explored. Some of the features are applicable for corporate networks, and they can't be used for personal use cases. I would rate it a nine out of 10.
I would advise potential users to look into the environment and understand what they want to do before implementing this solution. They must understand how to communicate with the network and what kind of network they want to put together. Just read the manual first. On a scale from one to ten, I would give Qualys Virtual Scanner Appliance a nine.
Senior Security Consultant at a tech services company with 10,001+ employees
Consultant
2021-11-01T19:45:02Z
Nov 1, 2021
They have the ability to improve SCADA. SCADA stands for Supervisory Control and Data Acquisition, and IoT stands for Internet of Things scanning. Recommending this solution would depend on the organization, the requirements, and the devices they have. For a typical IT system, it is very good to go with this solution. Microsoft, Deloitte, and the majority of organizations still use it, it is pretty much good to go. But, once again, it is entirely dependent on how the organization is, what type of devices they have, and what kind of scans they would like to have, it is entirely dependent. In a broad sense, it is a good solution to go with. I would rate Qualys VM an eight out of ten.
Senior Cyber Security Specialist at a tech services company with 1,001-5,000 employees
Real User
2021-10-05T10:55:53Z
Oct 5, 2021
We have regulations in place in Saudi Arabia and Egypt that require all vulnerability management solutions to be implemented on-premise. I would recommend this solution to others but Tenable is my preferred option. I would rate Qualys VM a five out of ten.
Cyber Security Director at a manufacturing company with 5,001-10,000 employees
Real User
Top 5
2021-09-22T12:03:29Z
Sep 22, 2021
We are just a customer and end-user. We are using the latest version of the solution. I cannot speak to the exact version we are using, however. We are using both the on-premises and cloud deployment models. We have on-premise sensors and we have a scan-over cloud service from Qualys. Qualys cloud has a scanning capability for pairing sensors, for scanning an external perimeter. Therefore, we are utilizing that and agents as well. I'd recommend the solution. If anybody looks forward to first perimeter security, if any conceptual work is done around perimeter security, they have to solve that agent issue first for their program. Companies need to select a solution that can work wherever the PC is.
Lead Cyber Security engineer at a manufacturing company with 10,001+ employees
Real User
2021-05-18T23:20:12Z
May 18, 2021
If you are familiar with or have hands on experience with Qualys Asset Inventory, this is a better tool. It will give you in-depth details of all the assets, and the managing inventory will be better. It will also give you advanced features compared to those of other inventory tools. I would rate Qualys Asset Inventory at eight on a scale from one to ten.
Chief Information Officer/Senior Vice President at a tech services company with 51-200 employees
Real User
2021-03-03T10:54:15Z
Mar 3, 2021
Overall, on a scale from one to ten, I would give this solution a rating of eight. For us, it's just more of gathering more experience. The more we learn, I think we'll appreciate it, and then maybe from that point, we'll be able to say it's a nine, or a ten. It's more on us versus the solution.
Overall, this is a good product and I recommend it, mainly because of the capabilities and the management using a single console. I can even create a calendar for activities from the main screen. I would rate this solution a nine out of ten.
Network and security Pre-sales Engineer at a tech services company with 51-200 employees
MSP
2021-01-04T17:17:01Z
Jan 4, 2021
I would recommend Qualys because it is a reliable, affordable, and very safe product. It can have everything that you are looking for. I would rate Qualys VM an eight out of ten.
AVP - Information Security at a financial services firm with 10,001+ employees
Real User
2020-09-17T08:05:51Z
Sep 17, 2020
We are a Qualys customer. We aren't a reseller or partner. Overall I'd rate the solution seven out of ten. We are currently looking at other options, to see if there's a better solution out there. This one has pretty good technical support and is easy to use, however, there are other issues associated with it.
If you are comparing Nexpose and Qualys, I would prefer Qualys. The UI is good and whatever reports you are getting, are very clear. If you present it to management, the reports are good. They require an executive report that highlights the vulnerability and how many servers are affected. You can customize it also. Nexpose is coming out with new features, but Qualys has already implemented them. I would rate this solution an eight out of ten.
A lot of our customers have a workload that is scattered across a multi-cloud environment. This means that some of the RFPs we answer are based on very large landscapes with distributed workloads. I would rate this solution a seven out of ten.
I would advise others to always have a proof of concept version of the solution put into play. Then spend a good two months on it. Stabilize the solution and check out the features and then deploy it into production. Otherwise, you will spend money during the real project for what could have been done as a POC. Deploy the core solution, get the scanning done and all the critical components put it in a proof of concept and then move it into production. I would rate the solution eight out of ten.
I would recommend Qualys because it's very easy to use. It does not require many specific skills. We are always on the latest version because Qualys provides automatic updates. We have a virtual appliance in each site and that sends the logs to the cloud. We have the consoles on the cloud which enable us to query and scan. All this happens through the cloud. We only have one administrator for the solution who monitors and checks if there is anything to be aware of. It sends the reports to all the different administrators, such as network, Linux, and Windows administrators and they take it from there. We also have Qualys configuration management module. If there are any particular issues in any servers or in any network, it gives us a report to suggest and rectify the issues. It tells us what changes are needed to on that device.
Information Security Engineer at a tech services company with 1,001-5,000 employees
MSP
2018-10-28T09:33:00Z
Oct 28, 2018
A really nice feature of Qualys is the asset management. Some of the end users were using that function, and paid for that particular function. It is helpful to get a bit of history of all types of supports of scanning of particular servers.
Vulnerability Management, Detection, and Response (VMDR) is a cornerstone product of the Qualys TruRisk Platform and a global leader in the enterprise-grade vulnerability management (VM) vendor space. With VMDR, enterprises are empowered with visibility and insight into cyber risk exposure - making it easy to prioritize vulnerabilities, assets, or groups of assets based on business risk. Security teams can take action to mitigate risk, helping the business measure their actual risk...
I would recommend Qualys VMDR to the other stakeholders because it already has its place in the market, and it's very reliable. I'd rate the solution eight out of ten.
I recommend using Qualys as it offers many valuable features and options. It is better compared to solutions like Nexus. I'd rate the solution nine out of ten.
I would recommend Qualys VMDR to other users if they want a comprehensive solution for real-time vulnerability detection and mitigation. The tool is easy to implement, backed by a reliable knowledge base, and offers quick updates during zero-day events. While there are areas for improvement, such as simplifications in handling certain features, the overall solution is robust and effective. I'd rate the solution eight out of ten.
I would definitely recommend Qualys to other users. Depending on the number of users and specific needs, Qualys is a good vulnerability management product that offers efficient solutions. I'd rate the solution nine out of ten.
I would recommend it. For enterprises, I’d suggest understanding how the tool works and which modules meet your needs. It’s important to coordinate with the customer team or Qualys technical team to figure out how many licenses you need and which modules will benefit your organization. Proper calculation and understanding are key before purchasing. Overall, I would rate it a nine out of ten.
I would recommend Qualys VMDR to other users because it is efficient and reliable, and it does what it's supposed to. Overall, I would rate it an eight out of ten.
I haven't personally done any integration, so I can't comment on it. However, I believe some integration was happening between Qualys VMDR and ServiceNow. Our asset management tool was also trying to integrate with Qualys VMDR, but I'm unsure about the details or how it works. I rate the overall product an eight out of ten.
We integrate Qualys VMDR with our infrastructure, conducting weekly scans and generating reports based on the findings. This provides daily views of vulnerabilities, and we use Qualys' patch management to deploy patches promptly, starting with the most severe vulnerabilities, thus reducing our threat exposure. Conducting a thorough proof of concept is essential to evaluate its effectiveness in your environment and to see how it integrates with your existing systems and handles your specific security needs. I rate it a ten out of ten.
I rate the product an eight out of ten.
If you're considering implementing Qualys in your organization, work with a strong pre-sales partner. Evaluate the product, make sure it does what you need, make sure you buy the features that you need, and make sure to use the training and onboarding material that Qualys has made available on its website so you can leverage the solution's full capability from the start. I rate Qualys VMDR a nine out of ten.
If you're going to deploy Qualys it is key to have someone dedicated to supporting the back end, making sure all the components are working as expected. This is not a fire-and-forget solution.
Just consider the licenses we have within VMware. They could replicate some of these features, which are used for premium customers. So, it might be useful to include those features in the subscription plans. Overall, I would rate the solution a nine out of ten.
I recommend the solution to others and rate it as a eight.
I would rate the product an eight out of ten. You need to complete the training before using the product.
I recommend the solution to others. It is excellent. We can detect and mitigate all the vulnerabilities using it. I rate the solution as an eight.
I give the solution an eight out of ten. The maintenance is not difficult and we don't have any problems or concerns. Implementation of the solution is very easy, using the solution is very easy, and it is very efficient.
We're implementors. When it comes to security, my only advice is based on my experience. They always say to use multiple products due to the fact that, even if the vulnerability is missed in one product, it'll be identified in the other product so that you are safe. However, when it comes to implementation, if you have multiple products, pipelining is a big problem. For example, if I use the Qualys scanner, and then it gives me all the vulnerabilities: how do I fix it? Either I have to fix it manually, or I have to fix it automatically. I'd like to use one product, and, for example, use a vulnerability scanner from Qualys and have patch management as well. While the solution is still maturing, I like the tight integration and I like that the scanner can identify items and patch management can fix them. It simplifies things, instead of having to deal with multiple products and then maybe having to manually fix items on top of that. I'd rate the solution nine out of ten.
I think mainly decide how you want to scan: based on IP or based on an agent. Then work with the interface and then explore how it works. I would rate Qualys VM an eight out of ten.
I would advise others to run a proof of concept and to exhaust all functionality if considering Qualys. This may take between 15 and 60 days to complete. I would rate this solution a six out of ten.
I am a consultant. I'd recommend the solution to others. I would rate the product ten out of ten.
I rate Qualys Container Security a six out of ten.
I rate this solution eight out of 10.
I would rate Qualys VM as nine out of ten.
I would rate Qualys VM eight out of ten.
I rate this solution a ten out of ten. Compared to other solutions, brand awareness and Azure integration are the strong points of Qualys VM. We would like to have some predefined parameters for the setup in regards to security and vulnerability, and how to maximize it. For example, we want scans and management with some predefined parameters that we need to have in the environment prior to deployment and initial setup.
The initial setup is not straightforward and it's important to have the agent connectivity linked to the cloud and available all the time. If you have assets that are not connected to the cloud, you will need help from a service provider or integrator because the introduction of passive scanning is not straightforward. I would rate this solution a seven out of ten.
We pay for the Qualys platform, and we will maintain the vulnerability management for our clients until they get their own vulnerability management solution. I’d recommend the solution to others. In a world of the hybrid workforce and work from home, if you're looking for a more effective vulnerability management tool, you have to go to the agent-based vulnerability management tools that are out there, and we've been extremely happy with Qualys. We were also delighted with Nessus in terms of their ability to identify things. However, an agent-based scanner is above an appliance base for known devices. Ideally, you have both of them together so you can scan your network for devices that might have an agent on it. However, for known devices, we definitely have been switching and really appreciate the switch to agent-based in Qualys. I’d rate the solution eight out of ten. The only downside is that reporting can be slow, knowing that we're dealing with trying to load dashboards with 20,000 to 30,000 agents.
Everything is well-documented by Qualys. Their white paper is published and they have much visibility across the globe and on different platforms. If you look into their educational YouTube channel, you get a lot of information. There are a lot of seminars and talks on Qualys VMDR features. The advantage with Qualys is that you get a lot of features because it has been a market leader for quite a long time. The solution has an agent-based approach and I think it is highly evolved when compared to Tenable, for example. However, Qualys is a bit highly priced so if you're looking strictly at pricing, I think you will get a better value with Tenable. I would rate this solution as a nine out of ten.
If you're going for an on-premises solution, you should dive into the POC. Because I wasn't procuring an on-premises solution, it was pretty easy for me, and the support was quite helpful. But if you're going to deploy it on-premises, you should go through a proper procedure of going through the POC and getting to know the product. I would rate it at the top because it's better than Nexpose, it's better than Tenable, and it's better than Symantec. On a scale from one to ten, I would give Qualys VM an eight.
I would rate Qualys VM as seven out of ten.
Qualys VM is a really good tool for vulnerability scanning, and it has different sets of profiles that can be utilized for your own requirements. I would rate Qualys VM as seven out of ten.
I would recommend identifying the right metrics to drive the program. I would rate Qualys VM an eight out of ten.
I would recommend this solution to others. I rate Qualys VM a nine out of ten.
I would rate Qualys VM as nine out of ten.
I would advise anybody looking into using Qualys to go online to also check on Gartner and Forrester. From a planning perspective, you need to look at your estate to determine what kind of tool you need. I would rate Qualys VM eight out of ten.
I would rate this solution a nine out of ten.
My advice to others is this is one of the top solutions in its category. However, they can evaluate many solutions to see for themselves. I would recommend this solution to others to implement it in their network. I rate Qualys VM an eight out of ten
It is a good product. I would recommend it to others. It had whatever I needed for my personal use case. There are a lot of features that I have not explored. Some of the features are applicable for corporate networks, and they can't be used for personal use cases. I would rate it a nine out of 10.
I would advise potential users to look into the environment and understand what they want to do before implementing this solution. They must understand how to communicate with the network and what kind of network they want to put together. Just read the manual first. On a scale from one to ten, I would give Qualys Virtual Scanner Appliance a nine.
They have the ability to improve SCADA. SCADA stands for Supervisory Control and Data Acquisition, and IoT stands for Internet of Things scanning. Recommending this solution would depend on the organization, the requirements, and the devices they have. For a typical IT system, it is very good to go with this solution. Microsoft, Deloitte, and the majority of organizations still use it, it is pretty much good to go. But, once again, it is entirely dependent on how the organization is, what type of devices they have, and what kind of scans they would like to have, it is entirely dependent. In a broad sense, it is a good solution to go with. I would rate Qualys VM an eight out of ten.
We have regulations in place in Saudi Arabia and Egypt that require all vulnerability management solutions to be implemented on-premise. I would recommend this solution to others but Tenable is my preferred option. I would rate Qualys VM a five out of ten.
We are just a customer and end-user. We are using the latest version of the solution. I cannot speak to the exact version we are using, however. We are using both the on-premises and cloud deployment models. We have on-premise sensors and we have a scan-over cloud service from Qualys. Qualys cloud has a scanning capability for pairing sensors, for scanning an external perimeter. Therefore, we are utilizing that and agents as well. I'd recommend the solution. If anybody looks forward to first perimeter security, if any conceptual work is done around perimeter security, they have to solve that agent issue first for their program. Companies need to select a solution that can work wherever the PC is.
I would recommend this solution and rate it a nine out of 10.
If you are familiar with or have hands on experience with Qualys Asset Inventory, this is a better tool. It will give you in-depth details of all the assets, and the managing inventory will be better. It will also give you advanced features compared to those of other inventory tools. I would rate Qualys Asset Inventory at eight on a scale from one to ten.
Overall, on a scale from one to ten, I would give this solution a rating of eight. For us, it's just more of gathering more experience. The more we learn, I think we'll appreciate it, and then maybe from that point, we'll be able to say it's a nine, or a ten. It's more on us versus the solution.
Overall, this is a good product and I recommend it, mainly because of the capabilities and the management using a single console. I can even create a calendar for activities from the main screen. I would rate this solution a nine out of ten.
I would recommend this solution. I would rate this solution a 10 out of 10.
I would recommend this product to others who are interested in using it. I would rate this solution an eight out of ten.
I would recommend Qualys because it is a reliable, affordable, and very safe product. It can have everything that you are looking for. I would rate Qualys VM an eight out of ten.
I would rate this solution a seven out of ten.
I would rate Qualys VM a ten out of ten.
We are a Qualys customer. We aren't a reseller or partner. Overall I'd rate the solution seven out of ten. We are currently looking at other options, to see if there's a better solution out there. This one has pretty good technical support and is easy to use, however, there are other issues associated with it.
I would like for Qualys to have the ability to scan OT operation technology assets as well. If it can I would rate it 8 out of 10.
If you are comparing Nexpose and Qualys, I would prefer Qualys. The UI is good and whatever reports you are getting, are very clear. If you present it to management, the reports are good. They require an executive report that highlights the vulnerability and how many servers are affected. You can customize it also. Nexpose is coming out with new features, but Qualys has already implemented them. I would rate this solution an eight out of ten.
A lot of our customers have a workload that is scattered across a multi-cloud environment. This means that some of the RFPs we answer are based on very large landscapes with distributed workloads. I would rate this solution a seven out of ten.
I would advise others to always have a proof of concept version of the solution put into play. Then spend a good two months on it. Stabilize the solution and check out the features and then deploy it into production. Otherwise, you will spend money during the real project for what could have been done as a POC. Deploy the core solution, get the scanning done and all the critical components put it in a proof of concept and then move it into production. I would rate the solution eight out of ten.
I would recommend Qualys because it's very easy to use. It does not require many specific skills. We are always on the latest version because Qualys provides automatic updates. We have a virtual appliance in each site and that sends the logs to the cloud. We have the consoles on the cloud which enable us to query and scan. All this happens through the cloud. We only have one administrator for the solution who monitors and checks if there is anything to be aware of. It sends the reports to all the different administrators, such as network, Linux, and Windows administrators and they take it from there. We also have Qualys configuration management module. If there are any particular issues in any servers or in any network, it gives us a report to suggest and rectify the issues. It tells us what changes are needed to on that device.
A really nice feature of Qualys is the asset management. Some of the end users were using that function, and paid for that particular function. It is helpful to get a bit of history of all types of supports of scanning of particular servers.
I advise that you see if this solution can fit your problems, and help your needs.