Microsoft System Center Endpoint Protection vs. Qualys TruRisk Platform

It is well suited in environments that want a simple AV product/solution that, for the most part, can be easily deployed to client endpoints. It is also good for environments that want something that is easy to use by end-users, and also doesn't use a whole lot of system resources. It is less suited for environments that want an AV solution that is more robust feature-wise, or has more configurable options for the end-users. It is also less suited for those organizations that want an AV product to have the highest detection rate in the industry.

Incentivized

It is well suited for environments that are looking for a solution that is top notch for vulnerability scanning, and is the most accurate at doing so. It would also fit environments that have a lot of endpoints to scan or like to have scanning done on an automatic basis. It is less appropriate in environments that want to use a platform right away, without getting training in how to use it, or reading documentation on the product.

Incentivized

• Easy administration.
• Centralized management, patch deployment, and reporting.
• Easy auto-patch updating from Microsoft.
• Microsoft antivirus app with no special licensing required.

Incentivized

• Attestation is so easy with Qualys. I find this one feature makes the investment worth the cost
• Ease of use. Within an hour of first installing, a person can be running compliance tests without a hitch.
• Great training materials and support. I have never had to take more than twenty minutes to solve a problem either through support or the forums.

Incentivized

• The product could improve in the area of having better mechanisms in place with how the SCEP client is deployed/installed from the server on the management side. We have run into this firsthand with the client not installing on an endpoint, and then having to take the time to investigate why it was not installing.
• A second improvement that can be made is to keep trying to improve the products detection rate for finding malware/viruses. The case can be made that there are some products out there that do a better job at this and have a higher detection rate.

Incentivized

• Notices some findings which were not clear why they appear(suspected false positive).
• Working with Qualys support(for example due to the previous point) wasn't the best experience. the response was very slow.
• Qualys limit the daily API requests. In case you need more, it will cost.

Incentivized

It is integrated with Windows and SCCM, making it easy to use, license, manage, and update. Additionally, it is straightforward to diagnose when virus and ransomware alerts are detected on endpoints. IT Service Desk management is also easy.

Incentivized

Again, the usability of Qualys has been a pinpoint for this entire review. It was easily the worst thing about the product and because of this, I would not recommend Qualys to anybody in my field. This should be something that Qualys strives to improve if they wish to stay in business.

Incentivized

There was a time and a place in which Microsoft System Center Endpoint Protection was an excellent choice to provide threat protections. However, now that threats have been evolving, so too does the need for more advanced protections. In its current offering, it just no longer meets the needs of our organization in terms of providing protections against threats.

Incentivized

They had a support page within the WAS to report any concerns or seek help. But the UI of that is not smooth. Regardless support staff were pretty responsive and helpful. They scheduled calls to understand and address our problems. Email support is good as well.

Incentivized

Fewer licensing requirements, one less vendor to buy from, one less app to package, deploy, and update on systems. It is an integrated license to Windows that comes baked in when you have AD-connected systems and need to allow that system on the network. It's a natural tool that enables and uses with little complication after setup.

Incentivized

We find that Nessus is a great product, on par if not slightly better compared to Qualys in terms of their pricing model. However, Qualys Cloud Platform has better quality reporting, and offers great tips and suggestions on quickly closing a gap and eliminating the risk. In our organization, both products are great and meet our expectations, but due to pricing, we favor Nessus slightly more.

Incentivized

• There was little/no cost associated with this software since we are utilizing SCCM and are paying license costs for that anyways.
• The level or protection is excellent for the cost of the software.
• There was at least one instance in which Microsoft System Center Endpoint Protection identified a crypto-malware, but not before it had already started to encrypt many of our files. So it did detect the threat, but since it was a little delayed we still were infected.

Incentivized

• The most important thing that happens with this program is to automate one hundred percent the security of my system since this program is in charge of supervising each of the applications and websites in detail.
• One of the purposes for which we trust Qualys Cloud Platform is to keep our system clean and secure; the ability of this software to manage our vulnerability makes us more cautious about working with it.

Incentivized