Security Consultan at a security firm with 51-200 employees
Real User
Top 5
2023-11-01T16:01:00Z
Nov 1, 2023
I believe integration plays a crucial role for Tenable, particularly in terms of connecting with other products and various container solutions like Docker or Kubernetes. It seems that in future updates, enhanced integration is something I would appreciate. Currently, there is integration with Docker, but when it comes to Kubernetes or other container solutions, it appears to be a challenge, especially with on-prem scanners.
Tenable.io Container Security needs a lot of improvement since it runs on DaemonSet. Tenable.io Container Security's marketing areas and services are areas where improvement is required. The stability and setup phase of the product are areas with shortcomings where improvements are needed.
They need to work on auto-remediation so it's easier for the security team to act quickly when certain assets or resources are deployed. The latest version has a CIS benchmark that you need to meet for containers in the cloud, but more automation is needed. Asset visibility is also critical. While Tenable provides visibility into containers, it could be done much better. Compliance is one of the most crucial aspects of container security. It should be more customizable. For example, I would like a rating system where Tenable reports a risk score for each container based on user-defined metrics, such as severity, activity, or compliance.
The support is tricky to reach, so we would like better-oriented technical support enabled. The time it takes to get through the technical team could be improved. If we have an issue with the tool or something we don't understand, it takes a lot of time to reach the technical team. So they should include functionality that allows us directly connect to the technical team.
Container Security plays a significant role in safeguarding applications within containers, ensuring that the data and operations remain protected throughout the lifecycle.
As containers become integral to modern software development, securing these environments is critical. Container Security involves various practices and tools aimed at protecting containerized applications from potential threats. This includes monitoring, vulnerability management, and access control to ensure the integrity...
The solution’s pricing could be improved.
Tenable.io Container Security should improve integration modules. It should also improve stability.
I believe integration plays a crucial role for Tenable, particularly in terms of connecting with other products and various container solutions like Docker or Kubernetes. It seems that in future updates, enhanced integration is something I would appreciate. Currently, there is integration with Docker, but when it comes to Kubernetes or other container solutions, it appears to be a challenge, especially with on-prem scanners.
Tenable.io Container Security needs a lot of improvement since it runs on DaemonSet. Tenable.io Container Security's marketing areas and services are areas where improvement is required. The stability and setup phase of the product are areas with shortcomings where improvements are needed.
The initial setup is highly complex.
They need to work on auto-remediation so it's easier for the security team to act quickly when certain assets or resources are deployed. The latest version has a CIS benchmark that you need to meet for containers in the cloud, but more automation is needed. Asset visibility is also critical. While Tenable provides visibility into containers, it could be done much better. Compliance is one of the most crucial aspects of container security. It should be more customizable. For example, I would like a rating system where Tenable reports a risk score for each container based on user-defined metrics, such as severity, activity, or compliance.
The support is tricky to reach, so we would like better-oriented technical support enabled. The time it takes to get through the technical team could be improved. If we have an issue with the tool or something we don't understand, it takes a lot of time to reach the technical team. So they should include functionality that allows us directly connect to the technical team.