Sold by: QualysÂ
Deployed on AWS
Qualys VMDR (Vulnerability Management, Detection, and Response) allows you to discover, assess, prioritize in real time across your global hybrid IT environment.
Overview
Qualys VMDR seamlessly brings together discovery, assessment, detection and response into a single cloud-based app - significantly reducing risk, and effectively prevent breaches.
Highlights: Comprehensive coverage and visibility Pre-approved scanner for AWS EC2 Cloud AWS EC2 Cloud Connector
Highlights
- Comprehensive coverage and visibility. Cloud context aware scanning, providing end to end visibility from inventory and remediation.
Unlock automation with AI agent solutions
Fast-track AI initiatives with agents, tools, and solutions from AWS Partners.
Features and programs
Buyer guide
Gain valuable insights from real users who purchased this product, powered by PeerSpot.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on the duration and terms of your contract with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Description | Cost/month |
|---|---|---|
VMDR Package 128 | Package of 128 Hosts for VMDR | $596.00 |
VMDR Package 256 | Package of Hosts for VMDR | $942.00 |
VMDR Package 512 | Package of 512 Hosts for VMDR | $1,489.00 |
VMDR Package 1024 | Package of 1024 Hosts for VMDR | $2,352.00 |
VMDR Package 1536 | Package of 1536 Hosts for VMDR | $3,075.00 |
VMDR Package 2048 | Package of 2048 Hosts for VMDR | $3,719.00 |
VMDR Package 2560 | Package of 2560 Hosts for VMDR | $4,309.00 |
VMDR Package 3072 | Package of 3072 Hosts for VMDR | $4,857.00 |
VMDR Package 4096 | Package of 4096 Hosts for VMDR | $5,878.00 |
VMDR Package 5120 | Package of 5120 Hosts for VMDR | $6,805.00 |
Vendor refund policy
Licensed Qualys customers should refer to their Service User Agreement (SUA) or contact their Qualys Technical Account Manager if they have questions about refund or cancellation policies which would apply to them.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA)Â .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Resources
Vendor resources
Support
Vendor support
Qualys' policy is to respond to all Qualys customer cases promptly as per SLA. An incident ticket is assigned a priority number based on the nature of the issue. || Service Level Agreement (SLA): https://www.qualys.com/support/sla/ https://www.qualys.com/support/ || support@qualys.com || US/Canada: +1 (866) 801-6161 (toll free) or +1 (650) 801-6161 || UK/Europe/International: +44 (0)1753 872102 || France: +33 1 41 97 35 81
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By Qualys
By Tenable, Inc.
By SAINT
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Vulnerability Detection
Real-time vulnerability assessment and prioritization across hybrid IT environments
Cloud Scanning
Cloud context-aware scanning with pre-approved scanner for AWS EC2 infrastructure
Asset Discovery
Comprehensive inventory and visibility of global IT infrastructure and assets
Security Integration
Unified cloud-based platform combining discovery, assessment, detection, and response capabilities
Hybrid Environment Support
Seamless vulnerability management across diverse IT infrastructure including cloud and on-premises systems
Vulnerability Detection Coverage
Comprehensive vulnerability scanning with support for over 76,000 vulnerabilities and 186,000 security plugins
Cloud Asset Assessment
Agentless continuous discovery and assessment of EC2 instances without requiring agent installation or credential management
Security Configuration Analysis
Built-in compliance profiles with risk-based scoring to prioritize security threats and vulnerabilities
Vulnerability Disclosure Tracking
Real-time detection and response capabilities for newly disclosed zero-day vulnerabilities
Hybrid Environment Support
Unified vulnerability management and cloud security posture management for diverse infrastructure environments
Vulnerability Scanning
Integrated vulnerability scanning with comprehensive network and system assessment capabilities
Penetration Testing
Advanced penetration testing functionality with multiple scanning approaches and methodologies
Compliance Reporting
Supports multiple compliance standards including PCI, FISMA, HIPAA, NERC CIP, and SOX through predefined report templates
Scan Policy Management
Configurable scan policies with 20 built-in policies and support for custom policy creation
Asset Discovery
Automated asset tagging and discovery with powerful dashboards and analytics for comprehensive security management
Standard contract
No
No
No
Customer reviews
2
1 ratings
1 AWS reviews
|
187 external reviews
Star ratings include only reviews from verified AWS customers. External reviews can also include a star rating, but star ratings from external reviews are not averaged in with the AWS customer star ratings.
reviewer2753559
Reduces vulnerability exposure time and automates workflow for efficient security management
Reviewed on Sep 03, 2025
Review provided by PeerSpot
What is our primary use case?
My main use case for Qualys VMDRÂ is to manage and remediate vulnerabilities and prioritize it based on the criticality score.
I can give a quick, specific example of how I've managed and remediated vulnerabilities using Qualys VMDRÂ : First of all, we use it to quickly detect critical vulnerabilities in the network environment, and apart from that, we are using it to apply patches directly through integrated patch management, which reduces exposure time and human efforts.
I don't have anything else to add about my main use case or how I use Qualys VMDR at the moment.
What is most valuable?
The best features Qualys VMDR offers include built-in threat intelligence for prioritizing high-risk vulnerabilities and integrated patch management to remediate a vulnerability, providing coverage on the network level and on the OS level as well.
Qualys VMDR has positively impacted my organization by reducing vulnerability exposure time through faster detection and patching, and it has improved compliance reporting with accurate and up-to-date data. It also lowered manual effort for the security team by automating workflow.
One specific outcome I can share is that it has decreased by 30%.
What needs improvement?
One area where Qualys VMDR can be improved is the missing feature for deploying agents for over 1,000 assets, as we need to do it manually. Qualys doesn't have its own tool to deploy the agents all at once, so we need to use third-party tools such as BigFix or something else to deploy the agents, which is my main concern and should be fixed by the Qualys team.
That is the main thing I would like to see changed, and apart from that, everything is good.
For how long have I used the solution?
I have been using Qualys VMDR for the past one year.
What was my experience with deployment of the solution?
We directly purchased Qualys VMDR from Qualys, not through the AWS Marketplace .
What do I think about the stability of the solution?
Sometimes we are facing downtime, but it is very rare, occurring once in a blue moon.
Qualys VMDR is stable.
What do I think about the scalability of the solution?
Qualys VMDR's scalability is good, and the customer support is good, but sometimes the customer support occasionally delays in response more than expected.
How are customer service and support?
Qualys VMDR's scalability is good, and the customer support is good, but sometimes the customer support occasionally delays in response more than expected. I would rate the customer support an eight.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
We didn't use any solution before Qualys.
How was the initial setup?
My experience with pricing, setup cost, and licensing shows that we can consider both time and money saved.
The detail I can share is that it is around 30 to 40%.
What was our ROI?
One specific outcome or metric I can share is that it has decreased by 30%.
What's my experience with pricing, setup cost, and licensing?
My experience with pricing, setup cost, and licensing shows that we can consider both time and money saved.
Which other solutions did I evaluate?
Before choosing Qualys VMDR, we didn't evaluate any other options.
What other advice do I have?
I would advise others looking into using Qualys VMDR to make sure that Qualys is compatible with your network, and please ensure that all the configurations are in place before proceeding.
I wasn't offered any gift card or incentive for this review.
On a scale of 1-10, I rate Qualys VMDR a 10.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Nabanita Roy
Strong report clarity and efficient deployment but customer support needs faster resolution
Reviewed on May 22, 2025
Review provided by PeerSpot
What is our primary use case?
My main use cases for Qualys VMDRÂ are for server vulnerability and missing patches.
What is most valuable?
The most helpful and useful features of Qualys VMDRÂ are its user-friendly design.
Qualys VMDR is easy to understand and provides detailed reports.
It impacts my workflow overall, with the patch management features as it has the missing patches listed in detail, making it easier to get a comprehensive report and providing some dashboards that offer visual representation.
What needs improvement?
There were some issues later with Qualys VMDR regarding security, specifically with numerous false positive reports.
What was my experience with deployment of the solution?
It doesn't take much time to deploy Qualys VMDR. There is a process mentioned already on the website about how to proceed with the installation, so we followed that process.
How are customer service and support?
I am satisfied with the support of Qualys VMDR as they are supportive. However, there are sometimes issues where we cannot talk to customer support directly, and we have to raise tickets, which sometimes takes a lot of time to resolve issues because it goes through their own phase. We cannot change the SLA or the priority of the tickets, so that is an issue.
How would you rate customer service and support?
Positive
Which other solutions did I evaluate?
Our organization changed to something else due to a higher management decision, and that might be the reason for the change regarding the pricing.
What other advice do I have?
We are not using any AI features with Qualys VMDR.
Overall, I would rate Qualys VMDR as good, giving it an eight.
reviewer2588394
User-friendliness and effective prioritization improve remediation efforts
Reviewed on Mar 05, 2025
Review provided by PeerSpot
What is our primary use case?
We use Qualys VMDRÂ for daily vulnerability management, scanning vulnerabilities, identifying vulnerabilities, reporting, creating dashboards, and the whole vulnerability management process. We also use it for patch management.
What is most valuable?
What I find valuable about Qualys VMDR is the capability of the tool and its user-friendliness. It is easy to use and provides accurate results, which is exactly what we are looking for. The prioritization of vulnerabilities has improved our remediation efforts by around thirty to thirty-five percent. The tool's integration between Patch Management and other Qualys products is also indispensable.
What needs improvement?
They can tweak their UI since the new version seems a bit jumbled up, and the old UI was more user-friendly.
For how long have I used the solution?
I have been using Qualys VMDR for three years.
What do I think about the stability of the solution?
We find Qualys VMDR quite stable and have not faced any performance issues with it.
What do I think about the scalability of the solution?
I believe the solution is scalable.
How are customer service and support?
We usually get on calls with tech support, and they are very helpful. I would rate the technical support a nine out of ten.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
We worked with Nessus and Rapid7 before switching to Qualys VMDR. Qualys offers better pricing and more features compared to other tools. We did not find anything particularly missing from previous tools.
How was the initial setup?
The setup is straightforward and easy. We deployed scanners and agents on all our devices, configured the network, whitelisted policy scanners, and public URLs. Testing was conducted before deploying, and it went smoothly.
What about the implementation team?
We had a team of five to six people involved in the deployment aspect due to the large number of assets.
What was our ROI?
Qualys VMDR helps us be compliant, and vulnerability management is a crucial part of maintaining our organization's security, significantly contributing to ROI.
What's my experience with pricing, setup cost, and licensing?
Qualys offers better pricing and is feature-packed compared to other tools.
Which other solutions did I evaluate?
We evaluated Nessus and Rapid7 before choosing Qualys VMDR.
What other advice do I have?
I would recommend getting both VMDR and the Cloud Agent to ensure comprehensive asset coverage. Understanding the network architecture is crucial to ensure no segments are missed under Qualys. Overall, I rate Qualys a nine out of ten.
Which deployment model are you using for this solution?
Hybrid Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Other
Pramod V.
Enhancing Security Posture with Qualys VMDR: Comprehensive Asset Visibility & Vulnerability Alerts
Reviewed on Feb 18, 2025
Review provided by G2
What do you like best about the product?
Qualys VMDR provides a security configuration assessment feature that enables users to swiftly identify and correct misconfigurations, thereby enhancing their overall security posture. It also supports multiple sensors, facilitating comprehensive asset discovery and monitoring to ensure complete visibility of the IT environment. Additionally, the real-time alerting system promptly notifies users of critical vulnerabilities, allowing for quick responses and maintaining security
What do you dislike about the product?
hard to find any dislike about qualys VMDR
What problems is the product solving and how is that benefiting you?
Automate Vulnerability Management
Vignesh A.
A Good Vulnerability Management with good Automation
Reviewed on Dec 17, 2024
Review provided by G2
What do you like best about the product?
It provides a complete solution for vulnerability detection and remiediation.I like its cloud approach it makes it easy to deploy without needing any requirement infrastructure.
What do you dislike about the product?
The interface little bit complicates for me at the initial stage and also complex for the new user to understand.
What problems is the product solving and how is that benefiting you?
It helps to me identify and remidiate vulnerabilities accorss our softwares quickly and efficiently. It reduces my manual effort