Try our new research platform with insights from 80,000+ expert users

Cisco Vulnerability Management (formerly Kenna.VM) vs Vulcan Cyber comparison

Sponsored
 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Zafran Security
Sponsored
Average Rating
9.6
Reviews Sentiment
8.1
Number of Reviews
2
Ranking in other categories
Vulnerability Management (27th), Continuous Threat Exposure Management (CTEM) (6th)
Cisco Vulnerability Managem...
Average Rating
8.0
Reviews Sentiment
6.8
Number of Reviews
1
Ranking in other categories
Cisco Security Portfolio (11th), Risk-Based Vulnerability Management (18th)
Vulcan Cyber
Average Rating
7.4
Reviews Sentiment
7.1
Number of Reviews
11
Ranking in other categories
Vulnerability Management (19th), Security Orchestration Automation and Response (SOAR) (9th), Risk-Based Vulnerability Management (7th), Cloud Security Remediation (1st)
 

Featured Reviews

Israel Cavazos Landini - PeerSpot reviewer
Weekly insights and risk analysis facilitate informed security decisions
I appreciate the weekly insights Zafran provides, which include critical topics for networks and IT security, allowing us to evaluate which insights apply to our environment. The organization score feature is valuable to keep the leadership team updated on how our infrastructure fares security-wise. The applicable risk level versus base risk level feature is beneficial because prior to Zafran, we only used the base risk level, but now understand that risk depends on the asset itself. Zafran is an excellent tool.
AshishPaliwal - PeerSpot reviewer
Offers contextual prioritization and risk-based remediation of vulnerability
An improvement would be some sort of an integration with any GRC suite. There are a lot of GRC suites available, like Archer, MetricStream, Rsam, Protiviti, for example. So how would a solution like this work if my company has already invested thousands or maybe millions in a GRC solution? Do I still need it and how does it fit into an existing SAP environment? There could be interoperability, having more data sources, integrating Splunk, Qualys, FireEye, Rapid7, Carbon Black. I'm sure all that can be done to an extent, with a little more insight and a little more accuracy on the industry numbers and trends. I'd like the solution to offer any sort of assistance in any way with the remediation part, not just identification of vulnerability risk, and that is second.
Shreevinayak Deshpande - PeerSpot reviewer
Makes vulnerability management efficient with a single pane of glass and daily report generation
There are areas for improvement. Initially, when onboarding Vulcan Cyber, the setup and configuration was more complex than expected with a user-friendly approach. This aspect can be enhanced. An important area is performance and speed, as Vulcan Cyber often lacks speed when exporting reports. The team might have to work on scaling up servers. When we click on a vulnerability, it takes ten seconds to pop up a window and show the entire content. Instead of that, they can put a down arrow, and all the details should be shown on clicking the arrow. This will prevent that ten-second delay. Another area for improvement is providing support and documentation for their tool. Users should have access to easy-to-understand trial documentation for reference.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Zafran is an excellent tool."
"Zafran has become an indispensable tool in our cybersecurity arsenal."
"The risk context of any vulnerability is a valuable feature."
"The interface of Vulcan Cyber is intuitive with a lot of information about vulnerabilities, which helps in classifying and analyzing threats."
"Vulcan Cyber offers a single pane of glass for centralizing our security data."
"I was part of the initial deployment. It was pretty easy. To fully deploy, it took about three or four weeks."
"The most notable aspects include having prioritization capabilities and custom scripts."
"Vulcan Cyber helps us prioritize the vulnerabilities that are really exploitable and our point of interest for the industry based on the threat intelligence that we get."
"They recently upgraded their UI, which is great. It is user-friendly."
"The automation capabilities using the Vulcan API platform or the API feature allow me to easily automate scripts and reports and schedule them."
"Vulcan enables us to automate tickets from multiple scanners. It has lots of analytics options that show us charts and allow us to view the statuses in different waves. The dashboard is nice because it's highly informative about the big picture."
 

Cons

"Initially, we were somewhat concerned about the scalability of Zafran due to our large asset count and the substantial amount of information we needed to process."
"An improvement would be some sort of an integration with any GRC suite."
"The product helps, but the reporting relies heavily on Power BI. It is limited to graphical views and requires additional filtering, posing operational challenges."
"If there was a way for me to connect to the vendor directly from the application, it would be helpful."
"Their support is good, but there are some flaws as well. We often encounter some issues that are not applicable to Vulcan Cyber as a whole; they apply only to us because we have customized requirements. In such cases, when we reach out with specific data and issues to their support team, they sometimes come back and say that the issues have been resolved. However, when we test to see if they have been remediated, they are still there."
"Initially, when onboarding Vulcan Cyber, the setup and configuration was more complex than expected with a user-friendly approach. This aspect can be enhanced."
"I would rate the tool between six and seven because there have been instances when the tool was down, and I couldn't access Cyber reports. Additionally, the Vulcan Cyber team made changes to the tool and did not notify us."
"We've faced situations where we required support on a Friday, and support wasn't available."
"It would be extremely helpful to have a community group around the product."
"Mainly, what I would like from them is more maintenance of the different connectors they have in the platform."
 

Pricing and Cost Advice

Information not available
"I think the pricing is based on the number of endpoints, so it's more subscription-based."
"Our leadership knows better about the pricing. As per my knowledge, which might not be accurate, its price can come down."
"Its pricing is quite fair compared to what is out there in the market, especially compared to the tool from Microsoft. It is a SaaS platform that has an annual cost, so it is something that is already used by many companies. It is quite affordable."
report
Use our free recommendation engine to learn which Risk-Based Vulnerability Management solutions are best for your needs.
844,944 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
14%
Financial Services Firm
11%
University
6%
Manufacturing Company
6%
Computer Software Company
25%
Financial Services Firm
15%
Retailer
10%
Insurance Company
7%
Computer Software Company
29%
Manufacturing Company
9%
Financial Services Firm
9%
Construction Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
No data available
 

Questions from the Community

What is your experience regarding pricing and costs for Zafran Security?
Pricing for Zafran Security is not expensive. We have a contract for five years, and the cost is lower than other too...
What needs improvement with Zafran Security?
I would like to see an integration with Check Point firewalls. It's essential for us and they are currently working o...
What is your primary use case for Zafran Security?
We use Zafran Security for threat prioritization. We establish priority to understand which risks should be patched o...
Ask a question
Earn 20 points
What is your experience regarding pricing and costs for Vulcan Cyber?
I don't deal with the pricing of the solution. I'm not a part of that department.
What needs improvement with Vulcan Cyber?
One area for improvement is clarity in the results column of vulnerability reports. Currently, the path where the vul...
What is your primary use case for Vulcan Cyber?
I have been using the solution for more than six months. Essentially, any reporting I do for our internal Internet as...
 

Also Known As

No data available
Kenna.VM, Kenna Security, Kenna, Kenna Security Platform
No data available
 

Interactive Demo

Demo not available
Demo not available
 

Overview

 

Sample Customers

Information Not Available
TransUnion
Stitch Fix, Mandiant, Wealthsimple, Entrust, Anaplan, Deloitte, Origami Risk, Verana Health
Find out what your peers are saying about Tenable, Qualys, Rapid7 and others in Risk-Based Vulnerability Management. Updated: March 2025.
844,944 professionals have used our research since 2012.