We mainly use it for scanning for vulnerability on our hosts, like network devices and servers; to find the vulnerabilities and do remediation. We monitor Windows and Linux workstations.
Tenable Nessus Review
Helps us limit our vulnerabilities and reduce exploitation
What is our primary use case?
How has it helped my organization?
It helps us limit our vulnerabilities and to reduce exploitations.
Tenable also helps us focus resources on the vulnerabilities that are most likely to be exploited.
What is most valuable?
Among the most valuable features are scanning for vulnerabilities and the reporting. The reporting templates are okay. I like that I can see all the hosts with different vulnerabilities. I can export reports to Excel to adjust them and it's a convenient way to send them to my manager. We actually use the report feature to identify all the vulnerabilities on all the hosts.
- The prioritization is done quickly and is good.
- Their VPR is good.
- I'm also able to find its features easily.
What needs improvement?
We use credentialed scans. They need more permissions and more changes or settings on Windows and Linux.
Also, Agent scanning is more efficient than credential scanning but Agent scanning is more expensive than credential scanning. I prefer, mainly, the Agent scan over the credential scan, it's better. But we will continue to use the credential scan. I would like to see Tenable make some improvements to the credential scanning; more vulnerabilities, because most of the problems have occurred on Windows Server. We have some scanning issues.
For how long have I used the solution?
We have been using Tenable for just over a year.
What do I think about the stability of the solution?
It's always working, no crashes.
What do I think about the scalability of the solution?
We can add more scanners to the scan zone. We can also create different organizations in terms of scanning, so I think the scalability is good.
We use Tenable on 300 servers. In our office we have two or three people using the solution who are network security engineers. Two or three people are enough to take care of deployment and maintenance of Tenable.
We have plans to increase our usage. We want to increase our licenses up to about 1,000.
How are customer service and technical support?
Technical support is good. I get responses quickly and they provide quick resolution. I can look at their community to find questions or the problem. The support is good.
Which solution did I use previously and why did I switch?
Before Tenable, our global team used Qualys, but I myself didn't use that. The switch to Tenable was decided on by our U.S. team. It was a global strategy to move to Tenable.
How was the initial setup?
The initial setup was good, not complex. We had the guides from Tenable to guide us through the setup. It took us two days, but one day should be good enough for the initial deployment.
Originally, we wanted to scan all our servers from multiple clouds and also on-premises, to scan the local network.
What other advice do I have?
Tenable mainly works on vulnerability scanning and prioritizing.
Which version of this solution are you currently using?
v5.12
**Disclosure: IT Central Station contacted the reviewer to collect the review and to validate authenticity. The reviewer was referred by the vendor, but the review is not subject to editing or approval by the vendor.
Last updated: Nov 26 2019
More Tenable Nessus reviews from users...who work at a Financial Services Firm
...at Small Businesses
...who compared it with IBM Guardium Vulnerability Assessment
Learn what your peers think about Tenable Nessus. Get advice and tips from experienced pros sharing their opinions. Updated: February 2021.
465,836 professionals have used our research since 2012.
Author
JianHuang
Network Security Engineer at a construction company with 1,001-5,000 employees
MSP
Highlights
Pros
Among the most valuable features are scanning for vulnerabilities and the reporting. The reporting templates are okay. I like that I can see all the hosts with different vulnerabilities.
Cons
We use credentialed scans. They need more permissions and more changes or settings on Windows and Linux.
Product Categories
Vulnerability ManagementPopular Comparisons
Tenable.io Vulnerability Management
Tenable SC
Qualys VM
Rapid7 InsightVM
Rapid7 Metasploit
Tripwire IP360
Microsoft Intune
Skybox Security Suite
SecurityScorecard
F-Secure Radar
IBM Guardium Vulnerability Assessment
Acunetix Vulnerability Scanner
Flexera Software Vulnerability Manager
Kenna.VM
Balbix BreachControl
Buyer's Guide
Download our free Tenable Nessus Report and get advice and tips from experienced pros
sharing their opinions.
Quick Links
Learn More: Questions:
- Qualys Vm vs Tenable Nessus: Comparison
- How inadvisable it is to use a single vulnerability analysis tool?
- When evaluating Vulnerability Management, what aspect do you think is the most important to look for?
- What is a more effective approach to cyber defense: risk-based vulnerability management or vulnerability assessment?
- What are the benefits of continuous scanning for vulnerability management?
- Qualys Vm vs Tenable Nessus: Comparison
- Vulnerability Management and Risk Management Integration