Tenable SC Pros and Cons
Tenable SC Pros
The predictive prioritization features are pretty good. They do a lot of research and we trust the research that they do internally. They have knowledge of what's going on with many companies, where we only get a view into what's going on here. So the ability to get best practices out of them as part of this solution, is valuable to us.
Tenable also helps us to focus resources on the vulnerabilities that are most likely to be exploited. And since it is continuously updated, it allows us to reevaluate quickly if there are new vulnerabilities found...View full review »
What is useful to me is being able to fulfill very customized scanning policies. In the clinical environment, because of vendor control, we can't perform credential-vulnerability scanning. And network scans, which I've done before, can cause a lot of impact. Being able to create very customized policies to be able to routinely scan and audit our clinical networks, while simultaneously not causing impact, is important to us.View full review »
One of the most valuable features is their distributed scan model for allotting engines to work together as a pool and handle multiple scans at once, across multiple environments. Automatic scanning distribution is a distinguishing feature of their toolset.View full review »
We really love the Security Center dashboard. It basically performs vulnerability scanning and then outputs a vulnerability data.View full review »
The most valuable feature of the product is the Assurance Report Card, which gives us an overview of the security poster in just a simple glance.
Initial setup was pretty straightforward.
It basically reviews our threat landscape vulnerability.View full review »
I think that this is a good solution for evaluating vulnerability in the network.View full review »
This solution has a much lower rate of false positives compared to competing products.View full review »
The scans are the most valuable aspect of this solution.View full review »
Tenable SC Cons
There's a lot of information being streamed out of the reports. What would be nice, and maybe we just haven't found it, would be more of an executive-type view. We still expect it to collect all this information, but we would like a feature that would allow us to show it to an executive or a director or someone like that and give them some type of high-level overview but not get into the nitty-gritty.View full review »
If I want to have a very low-managed scan policy, it's a lot of work to create something which is very basic. If I use a tool like Nmap, all I have to do is download it, install it, type in the command, and it's good to go. In Security Center, I have to go through a lot of work to create a policy that's very basic.View full review »
It's good at creating information, it's good creating dashboards, it's good at creating reports, but if you want to take that reporting metadata and put it into another tool, that is a little bit lacking.View full review »
A good plugin editor would be a good additional option for the Security Center.View full review »
In terms of configuration, there is some level of flexibility that we are not able to achieve.
At times we have had the typical bugs.View full review »
The web application scanning area can be improved.View full review »
The vulnerability scan does not work correctly until the access privileges are set by the system administrator.View full review »
The reporting needs a lot of work on the template.View full review »