Tanium Reviews

We use the solution for patching and security response. 

I like the tool's incident response and security patching. 

The solution needs to improve the reporting and tracking capabilities. 

I have been using the product for six years. 

The solution is stable. Tanium's agents that get deployed are highly reliable, which is the one benefit it has over SCCM. 

The product is built to scale. 

I have not contacted the tool's support directly but my team has and finds them to be pretty responsive. They are top in customer service. 

The solution is expensive but it's a good investment. 

We decided to use Tanium instead of SCCM because of security reasons. It's one of the most effective security response tools.

I would rate the product a seven out of ten. I would not choose the product blindly. It's a product you almost can't do without. You need to have an experienced person with strong security background or experience in setting up and using Tanium. 

We primarily use the solution for inventory and incident response for the most part.

The inventory aspect of the solution has been the product's most valuable aspect for us so far.

The scalability is very good overall.

It's a really good tool. 

For inventory purposes, it's from one of the best things on the scene, as you can get live inventory. 

I like the architecture for a vulnerability scan, for example, as it doesn't put a whole lot of load on the asset. It basically queries. This is not a hub-and-spoke. It's more like a circling of the wagons that all the other assets in the circle or in that particular chain can report on things, that have not logged into Tanium, can report on each other, can grab near real-time data. For incident response tasks, all these tasks can get done in minutes with minimal disruption to the end-user.

The solution can give a lot of false positives. It's an aspect of the solution that could be looked at and worked on.

If you deploy all the threat intelligence rules that come with it, you may spend a lot of time suppressing some of the false positives as some of them are very vague. You'll have the indicators due to the fact that you can suppress by hash or by pass or by command and parents process. However, that information is often very limited. You may get an alert for common language image load which can be a hacker technique, however, it's also a normal process between valid Microsoft processes, between the Msiexec, or some sort of system process. 

It's frustrating that there's not enough data - at least that I've found - to be able to determine whether something is a false positive or true positive. Whether it should be suppressed or whether you should let it go, the number of false positives you may have to deal with, if you enable all of these sources, could be over a hundred thousand.

The scalability can be challenging, depending on a company's setup.

The ability to calculate risk with one query would be useful. In other words, to be able to combine known vulnerabilities on an asset with known threats that are targeting that vulnerability from Intel. 

Being able to determine some way or another, which processes you prefer would be ideal. There should be more access to automated processes. Somehow you should be able to determine the business value of that asset and be able to have a true risk meaning and a true way to bubble up these high-value, high-risk assets. They need to get more attention. The solution needs some sort of risk engine that takes into account threat vulnerability and business value.

I've been using the solution for less than a year. It hasn't been that long.

The stability is actually quite good. There are no bugs or glitches. It doesn't crash or freeze. Its performance is reliable.

The scalability isn't as straightforward as it seems in that adding more assets. Sometimes it depends on where those assets are - such as remote offices that have different controls. If it's a large organization that has bought other businesses, then there are different architectures and different protections and protocols. In that sense, Tanium may have difficulty with some of those different architectures due to the fact that you may have to go and troubleshoot one type also another. Of course, the most painful part is having to put RDP into assets and try and restart the services. 

The technical support on offer is below average.

For some of our other systems, I have a phone number I can call. I wait a few minutes, I get a ticket, I get a live agent. Then we troubleshoot live. Tanium doesn't have that. Instead, you can send in an email and when the technical support person has time, your cam will contact you. It's painful, that part, they get a C-rating on their level of support. We aren't quite satisfied.

I can't speak to the implementation process. I can't comment on if it was a difficult or straightforward process or how long the deployment actually took.

I can't speak to if the solution was delivered by a consultant or integrator or if it was handled in-house.

I'm a customer and end-user.

We are using the most current version of the solution in our organization at this time.

I'm not sure how the solution is typically deployed.

It's great for inventory and even incident response. It's right up there with some other top-notch products. However, in terms of the implementation, getting everything on board, all that sort of thing, a company initially setting it up is going to need help troubleshooting. I would advise a company takes the time to definitely engage with some sort of professional services. It's going to be required.

I'd rate the solution nine out of ten.

It's used at an enterprise level to monitor natural behavior and point behavior across the organization.

Tanium has made the process of detecting threats more proactive with its detection. So, the process is easier and more efficient.

The solution has helped to increase staff productivity. It has made the process a lot quicker.

Being able to go as granular while looking at our network and users. Also, getting as much detailed information on analytics, which is good.

• I would like to have more integrations and custom plugins to input. Integration is always a big deal in a lot of different environments.
• Custom modules would be nice.
• Visualization of data could be added to it. 
• Making the initial process easier always helps.

It is pretty stable and regularly maintained. Its updates are good.

It is pretty scalable. We use it on a pretty broad scale, so we have grown as the company's grown.

I don't deal with technical support directly.

It was pretty straightforward. I don't think it took that long to get it integrated.

From an efficiency and team perspective, we have seen a decrease in mean time to detect and respond to threats.

We look at what holes that we have in our system. The landscape is changing, and we look at what we could add to help improve detection and improve the visibility into our network more. So, based off of that, the team evaluates new products constantly. We try them out, then test them, and decide if they want to keep them.

We tested three or four solutions, going through one or two month trials. We chose this solution based on our testing, the scalability of our organization, and product cost.

We use it pretty regularly on quite a large scale. I don't think I've heard anyone have any major complaints so far, just the little things.

We have been growing quite a bit, so we have been trying out bigger solutions. From a maturity standpoint, we have been bringing in new environments relatively quickly and adding to our existing ones. So, scalability has been a big deal for us.

Try it out. The best way to test any of these technologies is implement them with real data. See how your environment works with each network and compare them.

Tanium is used for network security. We can acquire files, detect malicious file-related activities, and process-related activities in our environment.

Threat hunting is a very good feature on Tanium. We have just started using it and have not used it extensively.

The performance could improve in future releases. We have had performance issues in specialized web environments, but overall I think the problems are less than 2% of the computer systems being used.

I have been using Tanium for a few months.

The stability is good but it could still improve.

Tanium is highly scalable.

We have approximately 7,000 laptops and 40,000 regular systems that we have deployed Tanium on.

I have used other security solutions, such as CrowdStrike Falcon and HX FireEye.

The initial setup is straightforward.

We have a security engineering team of four people that does the implementation and maintenance of the solution.

There is an annual license required to use this solution.

I rate Tanium a six out of ten.

We collect end-point data. We use it to make AI models and provide it to customers. I use Tanium’s sensors, collect data, and develop dashboards. The sensors have many data types. If we need different data types, we can write scripts.

Tanium’s linear-chain architecture is valuable.

The reporting could be improved.

I have been using the solution for two to three years.

We have about ten users in our organization.

I also use Ansible. Many customers do not want to install agents in their systems.

I am a developer. We use the product because our CEO has a connection in Tanium. Our company is a partner. I researched and created some documents about agent and agent release. Overall, I rate the tool an eight out of ten.

Tanium can be deployed on the cloud and on-premise.

Tanium's most valuable features are patch management, inventory, and distribution software.

The upgrades in Tanium are easy because it is in the cloud. The upgrades are embedded in the solution, they do the upgrades. When the customer does not use the application and it's no problem. When using other solutions you need to do the upgrades through a technical team, that can apply the upgrades when agreed with the customer.

The main issues are the network connection because different customers have issues with their networks. It's difficult implementing this type of solution because the network is the main feature in the architecture for these types of solutions. Tanium could improve by creating some network optimization.

I have been using Tanium for approximately one year.

The support Tanium provides could improve by reducing the delay times for issue responses.

Tanium is a more expensive solution in Latin America than some of the competitors, such as BigFix.

I rate Tanium an eight out of ten.

Our primary use case of this solution is for endpoint protection and, more particularly, the patching. We are integrators and customers of Tanium and I'm a channel director.

The security features are very valuable to us as is the fact that the solution is easy to use with a quick implementation time. 

Our biggest issue with the solution is its lack of mobility. Also, when it comes to deploying the SaaS, it's more difficult to deploy on-prem.

I've been using this solution for five years. 

The stability of the solution is good. 

The solution is scalable. We currently have 1,500 mainly end users using this product. There are approximately 15 additional people working in the IT department that also use this solution. 

I have never used the technical support so can't comment. The community is pretty good although there's not enough technical information available. The community's helpful for the day-to-day business.

We previously used SCCM and we moved to Tanium because of the number of platforms we can manage with Tanium which is much greater than SCCM offers. SCCM is only Microsoft and we needed to cover all the platforms such as Linux as well as others.

The initial setup was relatively easy. Installation and deployment took less than a week. 

I would recommend the solution for what it is, but not for what it is not. It's actually lacking one major feature and that is mobility which is very important. The lack of this software is why I wouldn't recommend Tanium but in terms of security, deployment and installation, the solution is fine. 

I would rate this solution a seven out of 10.