The initial setup was very straightforward. We actually had our MVP employed in four months. We defined MVP as feature-parity with our previous solution, which included enterprise coverage, full credentials, and baselines. Doing that in four months in a highly complex enterprise environment was actually a really big win. It took us quite a bit longer with other technologies.

When it came to an implementation strategy, first of all the implementation had to be quick because we had to have an enterprise deployment before our licensing with the other technologies expired. Timing was a key driver. The strategy was simple. We backed into the strategy. We knew what our high-level goals were: We wanted enterprise coverage with credentials, and we wanted baselines. That's where the strategy came from. We broke it down by milestones. We're an Agile shop so we had some sort of release every two or three weeks and we had good folks driving the project; good delivery management.

The initial setup was easy. 

I didn't do the initial deploy, but I was involved from the proof of concept and use the tool on a pretty regular basis. It was pretty easy to set up, from the discussions I've had with our team. A different team member handled the initial install and configuration, but it was pretty straightforward. The initial setup, getting certificate deployed, and rolling out the additional Nessus scan agents was all pretty straightforward and easy, as far as I understand.

Part of the time it took was internal to us, where we were waiting on the devices to host both environments. We did a QA and a production environment. We were waiting on internal servers to be stood up and things like that. But the initial install and deploying, once everything was in place, didn't take very long at all.

We were running a different product which did similar scans for a long time, so we already had the plan set up for the QA and production servers. I believe they had some failover to our other environments. We already knew where we were going to deploy agents within the DMZ and within the PCI networks so they could reach everything, including firewall rules. We already were aware of everything and mirrored it when we brought in SecurityCenter.

The initial setup is easy.

I think that it is very easy, very simple, not difficult. Everything is already best practice. Everything is already bundled on the Tenable appliance feature. We just set up on the VM, and we can run the Tenable Management Console easily.