Most Helpful Review
It prevents scanning, malware spread, corporate asset misuse, and reconnaissance on our network by third-party devices.
Enables us to centralize and correlate all data and understand where the gaps are in our security posture
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
I have noticed that in the last year the license model has changed from licensing the whole appliance to licensing the number of devices. It's more simple for a large installation, or a user to have CounterACT as their peripheral site in the company. It's a good choice to have changed the license policy.
The most valuable features are remote access and administration scripts.
Emergency response, risk assessment information to get a view of the of the vulnerability.
The visibility is the main benefit. We now know how many devices are connected, what the use for each device is and what kind of devices we have in our environment.
Obtaining visibility into the network and connected devices is very simple with this tool. It takes me three minutes to do a base deployment when all the parameters are available.
The predictive prioritization features are pretty good. They do a lot of research and we trust the research that they do internally. They have knowledge of what's going on with many companies, where we only get a view into what's going on here. So the ability to get best practices out of them as part of this solution, is valuable to us.
Tenable also helps us to focus resources on the vulnerabilities that are most likely to be exploited. And since it is continuously updated, it allows us to reevaluate quickly if there are new vulnerabilities found...
This solution has a much lower rate of false positives compared to competing products.
One of the most valuable features is their distributed scan model for allotting engines to work together as a pool and handle multiple scans at once, across multiple environments. Automatic scanning distribution is a distinguishing feature of their toolset.
What is useful to me is being able to fulfill very customized scanning policies. In the clinical environment, because of vendor control, we can't perform credential-vulnerability scanning. And network scans, which I've done before, can cause a lot of impact. Being able to create very customized policies to be able to routinely scan and audit our clinical networks, while simultaneously not causing impact, is important to us.
I think that this is a good solution for evaluating vulnerability in the network.
We really love the Security Center dashboard. It basically performs vulnerability scanning and then outputs a vulnerability data.
The most valuable feature of the product is the Assurance Report Card, which gives us an overview of the security poster in just a simple glance.
For the user, the policy that they have implemented sometimes needs adjustments. Sometimes the features that the customer asks for aren't involved in the main installation, and I need to bolt an add-on in. However, I never know if this policy is the right one when I do this.
We experienced some detection issues when checking compliance for the Sophos agent.
Search - needs boolean functionality (or pseudo operand now working).
They should improve features related to IT security. ForeScout should analyze behavior to see if the behavior is malicious behavior and block this device. They should develop the ability to analyze the behavior of the device in my environment.
Multitenancy should be included in the next version so it could be used as a managed service provider.
There's a lot of information being streamed out of the reports. What would be nice, and maybe we just haven't found it, would be more of an executive-type view. We still expect it to collect all this information, but we would like a feature that would allow us to show it to an executive or a director or someone like that and give them some type of high-level overview but not get into the nitty-gritty.
The vulnerability scan does not work correctly until the access privileges are set by the system administrator.
It's good at creating information, it's good creating dashboards, it's good at creating reports, but if you want to take that reporting metadata and put it into another tool, that is a little bit lacking.
If I want to have a very low-managed scan policy, it's a lot of work to create something which is very basic. If I use a tool like Nmap, all I have to do is download it, install it, type in the command, and it's good to go. In Security Center, I have to go through a lot of work to create a policy that's very basic.
The web application scanning area can be improved.
A good plugin editor would be a good additional option for the Security Center.
In terms of configuration, there is some level of flexibility that we are not able to achieve.
At times we have had the typical bugs.
Pricing and Cost Advice
Devices with multiple IP's count multiple times against your license count.
We're a Fortune 500 company... our licensing costs [are] in the seven figures.
Costing is pretty reasonable compared to the competition.
The pricing is more than Nexpose.
The licensing costs for this solution are approximately $100,000 US, and I think that covers everything.
We're able to save because we don't have to employ more staff members to help wit ht he scheduling of the scans, running the reports or sending them out to the systems owners. That alone is a big ROI for us.
It is slightly more expensive than other solutions in the same sphere.
out of 22 in Network Access Control
Average Words per Review
out of 33 in Vulnerability Management
Average Words per Review
Compared 33% of the time.
Compared 28% of the time.
Compared 9% of the time.
Compared 22% of the time.
Compared 17% of the time.
Compared 14% of the time.
Also Known As
|CounterACT for Endpoint Compliance||Tenable Unified Security|
|ForeScout||Tenable Network Security|
ForeScout offers Global 2000 enterprises and government organizations the unique ability to see devices, including non-traditional devices, the instant they connect to the network. Equally important, ForeScout lets you control these devices and orchestrate information sharing and operation among disparate security tools to accelerate incident response. Unlike traditional security alternatives, ForeScout achieves this without requiring software agents or previous device knowledge. The company’s solutions integrate with leading network, security, mobility and IT management products to overcome security silos, automate workflows and enable significant cost savings.
SecurityCenter consolidates and evaluates vulnerability data across the enterprise, prioritizing security risks and providing a clear view of your security posture. With SecurityCenter, get the visibility and context you need to effectively prioritize and remediate vulnerabilities, ensure compliance with IT security frameworks, standards and regulations, and take decisive action to ensure the effectiveness of your IT security program and reduce business risk.
Learn more about ForeScout CounterACT
Learn more about Tenable SecurityCenter
|NHS Sussex, SAP, SEGA, Vistaprint, Miami Children's Hospital, Pioneer Investments, New York Law School, OmnicomGroup, Meritrust||IBM, Sempra Energy, Microsoft, Apple, Adidas, Union Pacific|
Financial Services Firm23%
Software R&D Company17%
Financial Services Firm16%
Comms Service Provider9%
Software R&D Company34%
Comms Service Provider15%
Financial Services Firm7%