Vulnerability assessment solution TVM vs Qualys?

New Contributor

Vulnerability assessment solution

 

  • Microsoft threat and vulnerability management
  • Microsoft Defender for Cloud integrated Qualys scanner

What is the difference, which one is recommended?

2 Replies

Both solutions are very similar in terms of quality and scanning capabilities. There are several design/implementation considerations need to be taken into account when making decision which solution suits your environment better. E.g., if you are already using MDE to secure your servers then there is no reasonable justification for deploying additional Qualys agent when MDE TVM is already there proving VA results.

https://docs.microsoft.com/en-us/azure/defender-for-cloud/deploy-vulnerability-assessment-tvm
https://docs.microsoft.com/en-us/azure/defender-for-cloud/deploy-vulnerability-assessment-vm

What about customer that start with VM with Qualys installation, and after x period (months) customer shift to Defender for Cloud with MDE?
Is it possible to have side by side, Qualys and MDE on same VM, and once customer make sure MDE deployment up and running (can be few days), remove Qualys agent from the machine?
Do you see any limitation/significant resource utilization spikes and/or other reporting issues?