Ease of Deployment
Cloud-delivered or on-premises with 100% feature parity.
Partial
Cloud-based service and additional platform features require managing an on-premises version of the product.
Asset Coverage
Covers the entire Hybrid IT landscape, on-premises servers (Windows, Linux, Mac), workstations, 25% of servers, workstations, network devices, web applications, cloud assets, cloud databases, network devices, containers, cloud instances, and containers, etc.
Partial
Covers servers, workstations, network devices, web applications, cloud assets, cloud databases, network devices, containers, cloud instances, and containers, cloud storage, smartphones, tablets, containers, and OT infrastructure.
Agent Support
Qualys Cloud agents can be deployed on Windows, Mac, Linux, BSD, IBM AIX, Red Hat CoreOS, Solaris, and Chrome OS.
Partial
Tenable Agents support Windows, Linux, and macOS.
Vulnerability Identification
Vulnerabilities are identified based on running a vulnerability test against the application/ software components using network scanners, agents, container scanners, passive scanners, and API connections.
Partial
Vulnerabilities are detected by using vulnerability scanner appliances powered by Nessus.
Six Sigma Accuracy
Qualys consistently exceeds Six Sigma with 99.99966% accuracy.
Partial
Claims Six Sigma accuracy with their Nessus but does not offer remediation capabilities at all.
Comprehensive Vulnerability Coverage
75K+ CVEs out-of-box with Custom Assessment and Remediation (CAR) support for new and custom CVEs.
Partial
Covers 81K+ CVEs with plug-ins added within 24 hours of vulnerability disclosure.
Real-time Vulnerability Assessment
The mean time to detect new vulnerabilities is 4 hours or less.
Partial
Not clear how quickly Tenable One can detect vulnerabilities in real time.
Security Configuration
Qualys VMDR offers security configuration assessment against CIS benchmarks.
Partial
Nessus security configuration assessment for CIS benchmarks is not included with the Tenable One platform and requires a separate on-premises solution.
Vulnerability Prioritization
25+ sources of threat intelligence to assign TruRisk risk ratings to prioritize vulnerabilities based on business impact across the entire hybrid environment
Partial
A Vulnerability Priority Rating that combines threat intelligence to predict the likelihood a vulnerability is exploited.
Asset Discovery and Inventory
Starts from asset discovery using passive network sensors and then builds an updated asset inventory of software and hardware using agents for the entire hybrid Hybrid IT landscape.
Partial
Uses a combination of discovery scans, web applications, and cloud connectors to build an asset inventory.
Risk Remediation
VMDR performs Patch detection as well as Patch deployment without requiring a VPN connection.
Partial
Tenable One relies on third-party systems such as BigFix, SCCM, and WSUS for patching.
Risk Reporting
Ready-to-use reporting and dashboards to visualize and understand vulnerability risk across assets, business groups, and geographic locations.
Partial
Gives users the ability to run reports and create customizable dashboards with eight widget types.
Integrations
Self-contained ITSM app in the ServiceNow store to manage vulnerabilities with change management, exception, and false positive tracking.
Partial
Self-contained ITSM app in the ServiceNow store to create vulnerability tickets but lacks change management, exception, and false positive tracking.
