BeyondTrust Password Safe Review

Data warehouse cubes on the backend gives us the ultimate visibility into our assets


What is our primary use case?

BeyondTrust replaced the leading password management solution, offered vulnerability management and gave me a third-party patch management that integrates with Microsoft. To me, that was a win-win. 

How has it helped my organization?

It improved our overall return on investment by at least two-fold and gave us more intelligence on our assets than we expected.  

What is most valuable?

The sharing of intelligence gathered by scanning, and data warehouse cubes on the backend that gives us the ultimate visibility into our assets. 

What needs improvement?

I would love if they integrated Bomgar's SSO with BeyondTrust for the session recording that we use for vendors. 

For how long have I used the solution?

Less than one year.

What do I think about the stability of the solution?

It has no problems. It's very flexible.

What do I think about the scalability of the solution?

It will scale and has a built-in capability to augment expansion via external databases. 

How are customer service and technical support?

Support has been very very good. 

Which solution did I use previously and why did I switch?

We used CyberArk, and we found for an SMB that the product required more FTEs than we could handle. CyberArk is really meant for 100K FTE enterprises and requires a serious.

How was the initial setup?

It is a complex product that has a lot of capabilities and does take some learning. They recommend taking their foundations class to understand and get the most out of the product. 

What about the implementation team?

Very good.  (A-, or B++).

What was our ROI?

Good

What's my experience with pricing, setup cost, and licensing?

Talk to references, look at Gartner and the positive and negative comments. BeyondTrust has the least negative comments of all the products and ties vulnerability management, scanning, password management, session recording, inventory management, intelligence gathering on attached assets. And when you look at all this together and price out separate options, the TCO is easy to justify. 

Which other solutions did I evaluate?

CyberArk's password safe.

What other advice do I have?

It is a steep learning curve, but once automated, it makes your life a lot easier. 

Which deployment model are you using for this solution?

Private Cloud
**Disclosure: I am a real user, and this review is based on my own experience and opinions.
Add a Comment
Guest
1 Comment

author avatarD4T
Top 20Real User

UPDATE: Since I posted this almost a year ago, BeyondTrust has decided to remove their scanning solution from their UVM (Unified Vulnerability Management ) appliance. At the end of 2019 BeyondTrust announced that they will EOL their integrated scanner (12/31/2020).

This single move has removed the benefit that BeyondTrust brought to the table, wiping out any economies of scales that justified the ROI and TCO benefit of an integrated Unified Vulnerability Management solution.

This now turns their UVM into just a Password management solution. Which is still better than CyberArk, but now lacks the additional benefit of intelligence gathering.

To make matters worse, BeyondTrust has decided to partner with Tenable to provide the replacement vulnerability scanning solution. When asked what other integrations they had besides Tenable, there was no answer. Clearly some deal was cut with no thought to their customers or their customers experience with Tenable.

Without a scanning solution, the visibility of the assets is now questionable. Where I once viewed them as a visionary and leader, it seems that the executives are reverting to their safe desks and not providing the vison necessary to stay ahead of the pack.

Unfortunately, due to BeyondTrust change in direction, their ROI is now questionable and now has to be re-thought.

The final straw was their overt push for their customers to use Tenable as a replacement for their EOL vulnerability scanner.

All I can say is that for me BeyondTrust's value has diminished tremendously due to their decision to remove themselves from the vulnerability market. I have also lost trust in BeyondTrust to listen to their customers' needs to address our challenges.