We performed a comparison between Tenable.io Vulnerability Management and Tenable SC based on our users’ reviews in four categories. Our conclusion is presented below.
Comparison Results: Tenable SC comes out ahead when it comes to the user interface and product support. However, it is an on-prem solution only, while Tenable.io Vulnerability Management is available for both cloud or on-prem deployment and is noted as integrating well with third-party solutions.
"The feature we've liked most recently was being able to take the YARA rules from FireEye and put them into Tenable's scan for the most recent SolarWinds exploit. That was really useful."
"This product has the best results in terms of the lowest number of false-positives and false-negatives."
"Tenable Security Center scans networks and gives reports."
"Tenable SC is good for reporting and alerting. The filtering feature is also very valuable. Its integration with multiple vendors is quite good. It can be integrated with SIEM solutions and PAM solutions such as Thycotic, which is very helpful."
"The usability is really good. It's very easy to use and a good platform. It is scalable and very stable. The technical support is fine and the setup is super easy."
"Tenable.sc is user-friendly."
"I find Tenable SC to be a very scalable product."
"Their overall cost of service is pretty good."
"Tenable.io, in particular, is quite a powerful product. It looks at your traditional environment, which is pretty much anything that is on-premises, and it also goes a step ahead and covers your modern assets, which is anything that is currently sitting in the cloud. You get complete visibility of your entire environment and tech operation. The ability to give you visibility across the entire tech surface is one of the biggest advantages that Tenable.io has."
"The tool has an easy-to-use interface."
"The interface is fine."
"The most valuable feature for me is container scanning because I am interested in CICD security."
"The initial setup is not complex."
"The initial setup is mostly straightforward."
"The solution is quite friendly."
"The solution is easy to use and configuration is smooth with no complexities."
"The user interface can be improved."
"The biggest issue I have with the solution is when I'm using the scanning it picks up the original DNS of that device. That means, before we image it and actually change the DNS to something within our company structure, it'll just be random numbers and letters and Tenable will stick to that DNS for a long time."
"The vulnerability scan does not work correctly until the access privileges are set by the system administrator."
"At times we have had the typical bugs."
"There is not much room for improvement. However, there should be a guide that describes the step-by-step procedures for doing tasks. Otherwise, training is required from a senior guy to a junior guy."
"There's a lot of information being streamed out of the reports. What would be nice, and maybe we just haven't found it, would be more of an executive-type view. We still expect it to collect all this information, but we would like a feature that would allow us to show it to an executive or a director or someone like that and give them some type of high-level overview but not get into the nitty-gritty."
"Tenable SC could be improved with additional connectivity to external company postures and the capability of managing and sustaining agents in the systems directly without additional platforms in the middle."
"Tenable's reporting engine needs improvement. It needs to be more efficient and add more features."
"The solution’s pricing could be improved."
"I don't recommend Tenable.io Vulnerability Management for web scanning"
"Tenable could improve visibility into assets, including automated asset tagging. You should be able to automatically tag assets based on location, function, ownership, etc. That would help us because we spend a lot of time identifying and tagging assets by hand."
"They've been able to think about everything in terms of where the world is going and the type of assets that you've got. They've everything sorted out in that aspect, but you have to pay for most of the other components that they've got to give you complete visibility across your tech surface. If it already had those capabilities in-built, without having to add them on to take advantage of them, it would be a very compelling value proposition."
"The solution seems to focus too much on enterprises, and they really need a product that works for SMBs."
"We'd like to see a bit more user-friendliness."
"It's not a user-friendly tool since it has a complicated interface."
"The price could be lower."
More Tenable Vulnerability Management Pricing and Cost Advice →
Tenable Security Center is ranked 1st in Vulnerability Management with 48 reviews while Tenable Vulnerability Management is ranked 2nd in Vulnerability Management with 39 reviews. Tenable Security Center is rated 8.2, while Tenable Vulnerability Management is rated 8.2. The top reviewer of Tenable Security Center writes "A security solution for vulnerability assessment with automated scans". On the other hand, the top reviewer of Tenable Vulnerability Management writes "Discovers vulnerabilities and integrates well with other solutions". Tenable Security Center is most compared with Qualys VMDR, Tenable Nessus, Rapid7 InsightVM, Horizon3.ai and Tanium, whereas Tenable Vulnerability Management is most compared with Tenable Nessus, Qualys VMDR, Amazon Inspector, Microsoft Defender Vulnerability Management and Rapid7 InsightVM. See our Tenable Security Center vs. Tenable Vulnerability Management report.
See our list of best Vulnerability Management vendors and best Risk-Based Vulnerability Management vendors.
We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.