Microsoft Defender for Cloud vs Tenable Nessus comparison

Microsoft and Tenable are both solutions in the Vulnerability Management category. Microsoft is ranked #8 with an average rating of 7.8, while Tenable is ranked #1 with an average rating of 8.3. Microsoft holds a 4.5% mindshare in VM, compared to Tenable’s 14.1% mindshare. Additionally, 94% of Microsoft users are willing to recommend the solution, compared to 98% of Tenable users who would recommend it.

Microsoft Defender for Cloud

Read 53 Microsoft Defender for Cloud reviews

4,632 Views
3,579 Comparison Views

94% willing to recommend

Tenable Nessus

Read 77 Tenable Nessus reviews

16,605 Views
12,246 Comparison Views

98% willing to recommend

Microsoft Defender for Cloud

Tenable Nessus

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Microsoft Defender for Cloud and Tenable Nessus based on real PeerSpot user reviews.

Find out in this report how the two Vulnerability Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed Microsoft Defender for Cloud vs. Tenable Nessus Report (Updated: September 2024).

Buyer's Guide

Microsoft Defender for Cloud vs. Tenable Nessus

September 2024

Download the complete report

Helped 805,335 peers since 2012

Categories and Ranking

Microsoft Defender for Cloud

Ranking in Vulnerability Management

8th

Average Rating

8.0

Number of Reviews

Ranking in other categories

Container Management (11th), Container Security (4th), Cloud Workload Protection Platforms (CWPP) (3rd), Cloud Security Posture Management (CSPM) (3rd), Cloud-Native Application Protection Platforms (CNAPP) (3rd), Data Security Posture Management (DSPM) (3rd), Microsoft Security Suite (3rd), Compliance Management (2nd)

Tenable Nessus

Ranking in Vulnerability Management

1st

Average Rating

8.4

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of September 2024, in the Vulnerability Management category, the mindshare of Microsoft Defender for Cloud is 4.5%, up from 2.5% compared to the previous year. The mindshare of Tenable Nessus is 14.1%, down from 16.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Vulnerability Management

Featured Reviews

Abdulrahman Muhammadi

IT Manager at Discover Dollar Technologies Pvt Ltd.

Sep 13, 2024

Enhanced security with exceptional threat detection and adaptable AI

We use Microsoft Defender for Cloud security, including endpoint detection and response, and user monitoring. We utilize every feature and functionality that Defender provides The threat detection capabilities of Microsoft Defender for Cloud have positively impacted our overall security posture.…

Read full review

reviewer1648176

Project Manager at a computer software company with 1,001-5,000 employees

Jul 4, 2024

Discovers all the assets and identifies existing vulnerabilities

Tenable Nessus could include a broader range of IT assets. Nowadays, IT is not limited to laptops and desktops. It can be any environment in the organization, such as iOS or Android mobile phones. Apart from that, organizations use APIs and specific tools. We would like Tenable to cover every aspect of IT infrastructure, not just generic systems like laptops, desktops, switches, or servers. It should include every kind of device, like Raspberry Pi. This small chunk of devices acts as sensors in several organizations. We would like to be able to scan every device in the network, and the solution should present vulnerabilities within their system.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The solution's robust security posture is the most valuable feature."

"The solution is up-to-date with the latest updates and identified threats."

"The dashboard is very good. It gives our clients a lot of information and allows them to have a complete overview of the system. Everything is visible in one glance."

"Provides a very good view of the entire security setup of your organization."

"It is very intuitive when it comes to policy administration, alerts and notifications, and ease of setting up roles at different hierarchies. It has also been good in terms of the network technology maps. It provides a good overview, but it also depends on the complexity of your network."

"Defender is a robust platform for dealing with many kinds of threats. We're protected from various threats, like viruses. Attacks can be easily minimized with this solution defending our infrastructure."

"Defender for Cloud is a plug-and-play solution that provides continuous posture management once enabled."

"The most valuable feature is that it's intuitive. It's very intuitive."

More Microsoft Defender for Cloud pros

"Nessus' most valuable feature is vulnerability management because it helps to discover vulnerabilities proactively and integrates with patch management solutions so you can push patches."

"The most valuable feature of Tenable Nessus is real-time monitoring."

"The solution can scale well."

"The most valuable feature of Tenable Nessus is vulnerability assessments. There are a lot of threats around the world and this solution is the first to come out with detection rules."

"Tenable Nessus is cheap and flexible."

"I like its ease of use. It has the script that is pre-built in it, and you just got to know which ones you're looking for."

"I have experience with it on my attack stations, and it's pretty good to optimize. Personally, I think Nessus is quite a good product."

"The product's most valuable features are vulnerability and asset management. It can define the rules and validate the configuration."

More Tenable Nessus pros

Cons

"The product was a bit complex to set up earlier, however, it is a bit streamlined now."

"Support needs to be highly responsive, especially in large enterprise environments."

"There is no perfect product in the world and there are always features that can be added."

"Microsoft Defender for Cloud is not compatible with Linux machines."

"Most of the time, when we log into the support, we don't get a chance to interact with Microsoft employees directly, except having it go to outsource employees of Microsoft. The initial interaction has not been that great because outsourced companies cannot provide the kind of quality or technical expertise that we look for. We have a technical manager from Microsoft, but they are kind of average unless we make noise and ask them to escalate. We then can get the right people and the right solution, but it definitely takes time."

"Azure Security Center takes a long time to update, compared to the on-premises version of Microsoft Defender."

"The solution could improve by being more intuitive and easier to use requiring less technical knowledge."

"The documentation could be much clearer."

More Microsoft Defender for Cloud cons

"The features are limited when it comes to scanning network devices for vulnerabilities."

"Pricing is one of the most important features, and it is something that they can improve on."

"They should try to create an all-in-one solution."

"We'd like to see more integration potential within the solution."

"We'd like to see the solution embrace more user-friendliness."

"I would like to see more on the automation side."

"The price could be more reasonable. I used the free Nessus version in my lab with which you can only scan 16 IP addresses. If I wanted to put it in the lab in my network at work, and I'm doing a test project that has over 30 nodes in it, I can't use the free version of Nessus to scan it because there are only 16 IP addresses. I can't get an accurate scan. The biggest thing with all the cybersecurity tools out there nowadays, especially in 2020, is that there's a rush to get a lot of skilled cybersecurity analysts out there. Some of these companies need to realize that a lot of us are working from home and doing proof of concepts, and some of them don't even offer trials, or you get a trial and it is only 16 IP addresses. I can't really do anything with it past 16. I'm either guessing or I'm doing double work to do my scans. Let's say there was a license for 50 users or 50 IP addresses. I would spend about 200 bucks for that license to accomplish my job. This is the biggest complaint I have as of right now with all cybersecurity tools, including Rapid7, out there, especially if I'm in a company that is trying to build its cybersecurity program. How am I going to tell my boss, who has no real budget of what he needs to build his cybersecurity program, to go spend over $100,000 for a tool he has never seen, whereas, it would pack the punch if I could say, "Let me spend 200 bucks for a 50 user IP address license of this product, do a proof of concept to scan 50 nodes, and provide the reason for why we need it." I've been a director, and now I'm an ISO. When I was a director, I had a budget for an IT department, so I know how budgets work. As an ISO, the only thing that's missing from my C-level is I don't have to deal with employees and budgets, but I have everything else. It's hard for me to build the program and say, "Hey, I need these tools." If I can't get a trial, I would scratch that off the list and find something else. I'm trying to set up Tenable.io to do external PCI scans. The documentation says to put in your IP addresses or your external IP addresses. However, if the IP address is not routable, then it says that you have to use an internal agent to scan. This means that you set up a Nessus agent internally and scan, which makes sense. However, it doesn't work because when you use the plugin and tell it that it is a PCI external, it says, "You cannot use an internal agent to scan external." The documentation needs to be a little bit more clear about that. It needs to say if you're using the PCI external plugin, all IP addresses must be external and routable. It should tell the person who's setting it up, "Wait a minute. If you have an MPLS network and you're in a multi-tenant environment and the people who hold the network schema only provide you with the IP addresses just for your tenant, then you are not going to know what the actual true IP address that Tenable needs to do a PCI scan." I've been working on Tenable.io to set up PCI scans for the last ten days. I have been going back and forth to the network thinking I need this or that only to find out that I'm teaching their team, "Hey, you know what, guys? I need you to look past your MPLS network. I need you to go to the edge's edge. Here's who you need to ask to give me the whitelist to allow here." I had the blurb that says the plugin for external PCI must be reachable, and you cannot use an internal agent. I could have cut a few days because I thought I had it, but then when I ran it, it said that you can't run it this way. I wasted a few hours in a day. In terms of new features, it doesn't require new features. It is a tool that has been out there for years. It is used in the cybersecurity community. It has got the CV database in it, and there are other plugins that you could pass through. It has got APIs you can attach to it. They can just improve the database and continue adding to the database and the plugins to make sure those don't have false positives. If you're a restaurant and you focus on fried chicken, you have no business doing hamburgers."

"They have added a new Tenable Nessus Expert. That is their new product, which caters to the cloud and everything else. I am assuming that the new features and product enhancements are based on that tool set, but we haven't reviewed it yet."

More Tenable Nessus cons

Pricing and Cost Advice

"Although I am outside of the discussion on budget and costing, I can say that the importance of security provided by this solution is of such importance that whatever the cost is, it is not a factor."

"The solution is expensive, and I rate it a five to six out of ten."

"The pricing is very difficult because every type of Defender for Cloud has its own metrics and pricing. If you have Cloud for Key Vault, the pricing is different than it is for storage. Every type has its own pricing list and rules."

"Security Center charges $15 per resource for any workload that you onboard into it. They charge per VM or per data-base server or per application. It's not like Microsoft 365 licensing, where there are levels like E3 and E5. Security Center is pretty straightforward."

"We are using the free version of the Azure Security Center."

"Our clients complain about the cost of Microsoft Defender for Cloud."

"I am not involved in this area. However, I believe its price is okay because even small customers are using Azure Security Center. I don't think it is very expensive."

"The product's pricing policy is generally favorable."

More Microsoft Defender for Cloud pricing and cost advice

"The price is okay. I would give it a seven out of ten, where one is cheap and ten is expensive."

"When comparing the price of Tenable Nessus to other similar solutions, such as Acunetix, Tenable Nessus is not as expensive. It is averagely priced in the market. We pay for the solution annually."

"One problem with Tenable is its pricing policy. Optimal results can be achieved with Greenbone Solutions which has much more friendly pricing policies."

"It has a fair cost and very good cost-benefit ratio."

"I think the price is fairly affordable. It provides a license that is fair."

"Its pricing is great and can't be improved. It is very cheap. It is less than 2,000 pounds a license, and you can't really ask for more. It has unlimited IPs and unlimited scans. There are no particular pricing constraints. The only additional cost is the inherent cost of the people to actually review the actual scans."

"We pay approximately $2,500 on a yearly basis."

"The solution has free options."

More Tenable Nessus pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.

See recommendations

805,335 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

17%

Financial Services Firm

14%

Manufacturing Company

Government

Educational Organization

38%

Computer Software Company

10%

Government

Financial Services Firm

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

How is Prisma Cloud vs Azure Security Center for security?

Azure Security Center is very easy to use, integrates well, and gives very good visibility on what is happening across your ecosystem. It also has great remote workforce capabilities and supports a...

See all answers

What do you like most about Microsoft Defender for Cloud?

The entire Defender Suite is tightly coupled, integrated, and collaborative.

See all answers

What is your experience regarding pricing and costs for Microsoft Defender for Cloud?

The solution is expensive, and I rate it a five to six out of ten.

See all answers

How would you choose between Rapid7 InsightVM and Tenable Nessus?

You have full visibility across cloud, network, virtual, and containerized infrastructures with Rapid7 Insight VM. You can easily prioritize vulnerabilities using attacker analytics. Overall, Rapid...

See all answers

What's the difference between Tenable Nessus and Tenable.io Vulnerability Management?

Tenable Nessus is a vulnerability assessment solution that is both easy to deploy and easy to manage. The design of the program is such that if a company should desire to handle the installation t...

See all answers

What do you like most about Tenable Nessus?

We have around 500 virtual machines. Therefore, we conduct monthly scans and open tickets for our developers to address identified vulnerabilities. These scans cover the servers, other network equi...

See all answers

Comparisons

AWS GuardDuty vs Microsoft Defender for Cloud

Compared 20% of the time

Prisma Cloud by Palo Alto Networks vs Microsoft Defender for Cloud

Compared 13% of the time

Wiz vs Microsoft Defender for Cloud

Compared 10% of the time

Microsoft Defender for Endpoint vs Microsoft Defender for Cloud

Compared 6% of the time

Microsoft Defender XDR vs Microsoft Defender for Cloud

Compared 5% of the time

More Microsoft Defender for Cloud Competitors

Qualys VMDR vs Tenable Nessus

Compared 26% of the time

Tenable Vulnerability Management vs Tenable Nessus

Compared 12% of the time

Rapid7 InsightVM vs Tenable Nessus

Compared 12% of the time

Pentera vs Tenable Nessus

Compared 7% of the time

Microsoft Defender Vulnerability Management vs Tenable Nessus

Compared 7% of the time

More Tenable Nessus Competitors

Product Reports

Buyer's Guide

Microsoft Defender for Cloud

August 2024

Download Microsoft Defender for Cloud product report

Buyer's Guide

Tenable Nessus

August 2024

Download Tenable Nessus product report

Also Known As

Microsoft Azure Security Center, Azure Security Center, Microsoft ASC, Azure Defender

No data available

Learn More

Microsoft

Tenable

Interactive Demo

Microsoft

Demo not available

Tenable

Overview

Microsoft Defender for Cloud is a comprehensive security solution that provides advanced threat protection for cloud workloads. It offers real-time visibility into the security posture of cloud environments, enabling organizations to quickly identify and respond to potential threats. With its advanced machine learning capabilities, Microsoft Defender for Cloud can detect and block sophisticated attacks, including zero-day exploits and fileless malware.

The solution also provides automated remediation capabilities, allowing security teams to quickly and easily respond to security incidents. With Microsoft Defender for Cloud, organizations can ensure the security and compliance of their cloud workloads, while reducing the burden on their security teams.

Tenable Nessus is a vulnerability management solution that aims to empower organizations to be aware of threats that both they and their customers face. It is the most deployed scanner in the vulnerability management industry. Organizations that use this product have access to the largest continuously updated global library of vulnerability and configuration checks. They can stay ahead of threats that Tenable Nessus’s competitors may be unable to spot. Additionally, Tenable Nessus supports a greater number of technologies than its competitors.

Tenable Nessus Benefits

Some of the ways that organizations can benefit by deploying Tenable Nessus include:

Ease of use. Tenable Nessus is designed with security administrators in mind. It is built so that users can manipulate it intuitively without having to undergo special systems training. Users can create security policies with the greatest level of ease and can initiate scans of their entire networks with only a few clicks.

Support and resources. Tenable Nessus has both a support system of clarification resources and technical support for users to rely on. The solution has a resource center that contains guides and tips that can clarify things that confuse users and can aid them in gaining the maximum level of value. Additionally, users can reach out to Tenable Nessus’s technical support team, which is available around the clock and is reachable via a number of methods. This makes it simple for users to get help if they need it.

Reduction of threat vectors. Tenable Nessus provides users with the ability to reduce the number of potential threat vectors that a hacker can exploit. It enables users to find where the vulnerabilities in their networks are so their security won’t be compromised. They can then quickly address those weak points and head off issues before any have the chance to arise.

Tenable Nessus Features

Report customization. Tenable Nessus enables users to customize the security reports that their system produces. They are able to set Tenable Nessus to generate reports that contain the information that is most relevant to their business objectives. Users can also utilize these report customization capabilities to customize the formats of their reports.

Vulnerability triage capability. Included in the Tenable Nessus security suite is a feature that enables users to conduct a triage of their vulnerabilities. The solution can apply one of five ratings to vulnerabilities that it detects. This makes it possible for organizations to work on addressing issues by order of severity.

Scaling. Tenable Nessus can scale to meet an organization’s needs by migrating the network that it is connected to, to other Tenable solutions. Users can scale up their systems as their security demands increase. It is capable of reaching hundreds of thousands of systems.

Reviews from Real Users

Tenable Nessus is a solution that stands out when compared to many of its competitors. Two major advantages it offers are its ease of use and its vulnerability scanning feature.

Rallis F., the principal security architect at a technology vendor, writes, “The ease of use is the primary valuable feature. This specific version is very straightforward. I like the ability to modify it and configure it based on the different policies.”

Sandip D., a cyber security expert at Birlasoft India Ltd, writes, “The vulnerability scanner is the most valuable feature. It's an important feature for us. We use the plugin output for that. It shows us the exact version of Nessus and what is needed for remediation. Based on that, we decide what should be remediated first to get the best result for security.”

Sample Customers

Microsoft Defender for Cloud is trusted by companies such as ASOS, Vatenfall, SWC Technology Partners, and more.

Bitbrains, Tesla, Just Eat, Crosskey Banking Solutions, Covenant Health, Youngstown State University

Buyer's Guide

Microsoft Defender for Cloud vs. Tenable Nessus

September 2024

Free Report: Microsoft Defender for Cloud vs. Tenable Nessus

Find out what your peers are saying about Microsoft Defender for Cloud vs. Tenable Nessus and other solutions. Updated: September 2024.

DOWNLOAD NOW

805,335 professionals have used our research since 2012.

See our Microsoft Defender for Cloud vs. Tenable Nessus report.

See our list of best Vulnerability Management vendors.

We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.