Tenable Vulnerability Management Reviews

We use Tenable.io Vulnerability Management for our organization's endpoint and server vulnerability management.

The best feature of the solution is the amount of visibility it provides of the vulnerabilities.

Improvements should be made to the solution to make it easy to use. It's not a user-friendly tool since it has a complicated interface. The solution needs to have a more user-friendly interface.

I have been using Tenable.io Vulnerability Management for three years. I am using the solution's latest version.

It is a stable solution. Tenable.io is the leader in the market, having a very good database of vulnerabilities.

The solution's stability is good. From my experience, the solution's stability is good compared to its competitors.

It is a scalable solution.

In my company, more than 5,000 people use the solution.

The solution is extensively used in my company.

The technical support is not good.

The setup phase was good.

The setup phase could be completed in less than five minutes.

The deployment process was carried out through an automated process and wasn't done manually. It was done with the help of Intune.

Based on our requirements and business, we need around three to five people to deploy and maintain the solution.

No consultants were involved in the setup phase since we chose to manage the installation part directly.

Considering our scenario, the solution is worth it.

A yearly payment has to be made toward the solution's licensing costs.

Compared to other solutions, Tenable.io is expensive.

If technical support for the solution is not considered, I recommend it to those planning to use it.

Overall, I rate the solution a six out of ten.

The solution scans vulnerabilities in assets like workstations, network devices, desktops, or laptops. The product indicates vulnerabilities based on severity levels. There are high, critical, medium, low, and informational levels of severity.

The product can scan assets and web applications. It provides remediation for each vulnerability it scans. We get to know the actions we have to take to remediate the vulnerabilities. The solution is very simple to use. It also has cloud scanners. We can integrate Tenable and Nessus Scanner. It is easier to use.

The solution must provide penetration testing.

I have been using the solution since 2022.

The tool is very stable.

The tool is scalable.

We don't have many issues.

Positive

The initial setup is very easy.

The tool is easy to use and deploy. It's easy for customers to go through the documentation, see how it works, and scan their assets. Everything is straightforward, including the creation of users and enabling 2FA. Overall, I rate the tool a nine out of ten.

We use the tool to find loopholes in the system.

The product fulfills our needs. It gives reports and finds vulnerabilities in our system. The product is easy to use. It is easy to integrate the tool with other products.

The solution must be promoted more in the market. It will make the customers more aware of the product.

My organization has been using the solution for a month.

The tool is stable.

Around 20 people use the product in our organization. We have one to three administrators. We are most likely to increase the usage of the product in the future.

It was easy to deploy the solution.

The tool is reasonably priced. There are no additional costs associated with the product.

I have known the product for some time. So, I implemented it. Overall, I rate the solution an eight out of ten.

We use the solution to scan our environment, ServicePRO. 

You can customize each point in new scans. 

I don't recommend Tenable.io Vulnerability Management for web scanning. 

I have been working with the product for two years. 

Tenable.io Vulnerability Management is stable. 

We have seven users for the product. 

My colleagues say that the tech support team is very responsive and helpful. 

Tenable.io Vulnerability Management's installation is easy. You just need to access the credentials for it. 

We have not seen ROI with the product's use. 

I would rate the product a ten out of ten. You need to be specific with each step while using Tenable.io Vulnerability Management. 

Primarily we're a partner of Tenable and what we've done is we've essentially created a middleware. We created a middleware on top of Tenable.io engine, the API, and the middleware was developed back in 2003. It has gone through about three different iterations since then. 

Essentially, we simplify their user interface. It's been designed so that the managed service providers, the MSPs, are able to use the Tenable system with our interface on top. In a sense, what we've done is dramatically dummied down the Tenable interface through the use of our own GUI. We connect to the Tenable API in the backend, however, they're doing the heavy lifting, so to speak, and we're just presenting the information in a much more logical, easily understood manner. 

The API is pretty good.

The solution works well for enterprise-level organizations.

They're a standup product. They really are. They're one of the first in the industry which means they're a quite well-established site. It's pretty hard to improve upon. 

The initial setup is pretty straightforward.

They are on a good trajectory as a company and investing in R&D in the right ways.

The stability is excellent. 

The scalability is pretty good.

The solution seems to focus too much on enterprises, and they really need a product that works for SMBs. The enterprise product is too expensive for smaller companies, however, they really are looking for a product like this in the market.

It's too technologically advanced for SMBs - Tenable is kind of a little bit like flying a 747. There's a lot of bells and whistles and switches and things like that, that quite frankly are not used or not understood largely by the average user. If they don't begin to cater to smaller organizations, they'll likely lose market share.

They could use a better user interface that could be developed a lot better than it is. It really could be more intuitive.

I've used Tenable for 20 years or so. 18 to be exact. It's been a good amount of time. I have a lot of experience with the company.

The stability is excellent. There are no bugs or glitches. It doesn't crash or freeze. It's one of the reasons we chose it. It's reliable and the performance is excellent.

Aside from their licensing, which needs some serious reworking, when you get the licensing in order the scaling is not that bad. It's pretty much on-par in terms of what others are doing. However, getting the provisioning of the licensing and all of that stuff through their partners, namely Ingram Micro, is nothing short of pulling teeth really. 

I've never used technical support in the past. I've never had a need to. Therefore, I wouldn't be able to assess them. I can't say how knowledgeable or responsive they are.

We've only been with Nessus. Nessus Professional came out way back in the day, in 2002, 2003, there was WebInspect which was then, bought by IBM. We used WebInspect which was another iteration of vulnerability scanning. It's kind of like Burp Suite, which is commonly used now. That was our only other experience. That was very far back, it's almost another lifetime.

The initial setup is pretty straightforward. We've got staff members that are certified for decades, two decades or more, and they know their way around quite easily. It's quite easy in that regard to set up.

In terms of the pricing side, I would say that they've lost a little touch on the pricing. It seems that the enterprise companies are the ones that primarily use Tenable for DIY security. However, the needs are much greater adoption in terms of the SMB space. These companies are screaming for attention. They've gotten interest from the hackers as hackers seem to be quite focused on the SMB space - which means they need protection. Most of the VA companies that are out there are servicing the enterprise and they all need the help. They've got the budget, they've got the resources, they have the CISSP certified guys on the bench taking care of their needs.

In terms of the volume of users interacting with the solution, you're looking at tens of thousands. As a service provider, we use the solution for companies of all sizes.

We're a partner for Tenable Nessus.

The Tenable.io is what we're using currently. It suits our needs best due to the fact that it's in the cloud. The API is okay. It's not wonderful. Seems to serve a purpose.

The biggest problem with the solution is that if you're a small company, you're not going to be able to afford it, nor are you going to be able to manage it.

I would recommend other organizations use the product. People probably don't consider the amount of, let's say, understanding or comprehension that they need of their own network to truly be able to deploy and manage and get the results they're looking for, however. Many often underestimate all their skillsets. Tenable has a number of features and functionalities and it can be a little confusing for, let's say, a non-security savvy person. It could be a little bit of a challenge, to be honest. I'd suggest any company that considers it also does their homework first.

I'd rate the solution at a seven out of ten. It gets the job done. It really is smooth to operate once it's set up. It is for the most part pretty easy to set and forget.

We use the software to manage vulnerabilities in our environment.

The product’s most valuable feature is remediation. It shows a list of vulnerabilities per server once you scan on cloud or on-premise instances. It helps us create remediation projects and assign the console’s responsibility to specific engineers. We can set up a follow-up date depending on the organization's requirements.

The product could be easier to set up on the cloud.

We have been using Tenable Vulnerability Management for three years.

I rate the platform's stability an eight out of ten. Once, a few of our subsidiaries complained that channel usage in the environment was consuming bandwidth.

We have five admins using Tenable Vulnerability Management in our organization. I rate the product’s scalability a seven out of ten. It has many features, and it is complicated to train someone on how to use Tenable. You have to schedule a session every day for almost two weeks for it.

It was challenging to contact the technical support team earlier. However, we have found the right contact and can reach out to them easily.'

I have used open-source applications before.

The product is complicated to set up on AWS. However, it is easy to implement on-premises. It involves discovering IP addresses and schedule scanning. It requires acquiring some knowledge about the process to familiarize yourself with the AWS environment. We have to complete the setup for the whole environment. The deployment for a vast environment involves migrating a lot of data from on-premise to the cloud.

We execute the implementation for most of the tools in-house. We take help from third-party vendors for the rest of it.

I rate Tenable Vulnerability Management a nine out of ten. I advise you to choose Tenable.iO as it is a cloud-based solution.

The solution is quite friendly. 

Users get confused between VPR and CVSS ratings. 

I would rate the tool's stability an eight out of ten. 

I would rate the solution's scalability an eight out of ten. We have around 1000 users for the product. We plan to increase the tool's usage in the future. 

I have used Nessus before Tenable. We switched to Tenable since it covered the problem for us. 

The product's setup is very easy and the deployment took six months to complete. 

We relied on a third-party vendor to complete the tool's deployment. 

The tool is easy to use and user-friendly and I would rate it an eight out of ten. 

We primarily use the solution for vulnerability scanning.

The vulnerability scanning is the most important aspect of the solution for us.

The initial setup is easy. It's pretty straightforward.

The stability is very good. We have appreciated the performance it offers.

Technical support is responsive. They help if you have issues.

The pricing of the solution could be more reasonable.

We've been working with the solution for many years. We have clients that have been using this solution for the last year.

The stability has been very good overall. It's reliable. There aren't bugs or glitches. It doesn't crash or freeze. It's good.

The solution is very highly scalable, and I don't have any complaints about that. If a company needs to expand it, it can do so fairly easily.

We typically deal with medium to large-sized organizations. Typically, there are thousands of users.

Technical support is okay. We don't have any complaints about their level of service. They are knowledgeable and responsive and we are able to get the information that we need when we need it.

The initial setup is not complex. It's pretty straightforward. A company that wants to implement it themselves shouldn't have any issues.

We sold Tenable.io Vulnerability Management, and the implementation has always gone smoothly. It's pretty seamless overall.

The entire deployment process takes anywhere from a week to ten days. It's not too long.

You only need two to three people to handle the implementation process.

The pricing is a bit high. It could be better.

It is my understanding that our clients did not evaluate other options before this product was suggested to them last year.

The two main competitors on the market are likely Qualys and Rapid7. I'm not familiar with the key differences of each solution, however.

We are a reseller. We work with a lot of different Tenable.io products.

My only recommendation to other companies would be to put up a plan and follow the plan, point by point. Keep tracking of the result and make adjustments, if necessary. It's important to go in with a bit of a roadmap to follow. It will help ensure results.

In general, I would rate the solution at an eight out of ten. We've been pretty happy with the solution overall.