Prisma Cloud by Palo Alto Networks vs Tenable Security Center comparison

Prisma Cloud by Palo Alto N...
Read 82 Prisma Cloud by Palo Alto Networks reviews
  • 19,848 Views
  • 11,177 Comparison Views
97% willing to recommend
Tenable Security Center
Read 48 Tenable Security Center reviews
  • 999 Views
  • 789 Comparison Views
95% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Jun 2, 2024

Tenable and Prisma Cloud offer strong security solutions with varying deployment times and pricing structures. Tenable focuses on customizable reporting and centralized management, while Prisma Cloud is praised for its multi-cloud visibility and threat detection capabilities.

  • Features: Tenable Security Center is lauded for its intuitive dashboard, accurate vulnerability scanning, customizable reporting, and centralized management. In contrast, Prisma Cloud stands out for its comprehensive multi-cloud visibility, ease of use, advanced threat detection, and automated compliance assessment capabilities.
  • Pricing and ROI: Tenable has varying opinions on pricing and setup cost, with some finding it reasonable while others find it expensive and complicated. In contrast, Prisma Cloud is perceived as competitive in pricing, with flexible licensing options. Tenable offers enhanced security posture and visibility, streamlined vulnerability management, and valuable risk assessment insights. Prisma Cloud provides significant cost savings, increased security measures, risk reduction, and compliance streamlining.
  • Room for Improvement: Tenable users have highlighted the need for a more intuitive UI, enhanced customization options for reports, and better integrations. In contrast, Prisma Cloud users have mentioned the desire improved documentation and training resources, and enhanced alerting and reporting capabilities.
  • Deployment and customer support: Overall, users seem to have experienced longer deployment times with Tenable Security Center (around three months), with an additional setup phase. Both solutions were praised for responsiveness, helpfulness, and expertise in their customer support.

The summary above is based on 140 interviews we conducted recently with Tenable Security Center and Prisma Cloud by Palo Alto Networks users. To access the review's full transcripts, download our report.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Prisma Cloud by Palo Alto Networks vs. Tenable Security Center Report (Updated: May 2024).
Buyer's Guide
Prisma Cloud by Palo Alto Networks vs. Tenable Security Center
May 2024
Download the complete report
Helped 787,817 peers since 2012
 

Categories and Ranking

Prisma Cloud by Palo Alto N...
Ranking in Cloud Security Posture Management (CSPM)
1st
Average Rating
8.4
Number of Reviews
82
Ranking in other categories
Web Application Firewall (WAF) (5th), Container Security (1st), Cloud Workload Protection Platforms (CWPP) (1st), Cloud-Native Application Protection Platforms (CNAPP) (1st), Data Security Posture Management (DSPM) (1st)
Tenable Security Center
Ranking in Cloud Security Posture Management (CSPM)
11th
Average Rating
8.2
Number of Reviews
48
Ranking in other categories
Vulnerability Management (1st), Risk-Based Vulnerability Management (1st)
 

Mindshare comparison

As of June 2024, in the Cloud Security Posture Management (CSPM) category, the mindshare of Prisma Cloud by Palo Alto Networks is 21.5%, up from 19.7% compared to the previous year. The mindshare of Tenable Security Center is 2.7%, up from 1.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Cloud Security Posture Management (CSPM)
Unique Categories:
Web Application Firewall (WAF)
3.1%
Container Security
24.3%
Vulnerability Management
14.7%
Risk-Based Vulnerability Management
27.3%
 

Featured Reviews

Abdelmeguid Hamdy - PeerSpot reviewer
Jan 23, 2024
Comprehensive with good security and helpful automation
The runtime defense and API security are very good. It offers very good application security. It's very comprehensive. It can cover the full cloud-native stack. There is a wide range of integrations, and the compatibility with various cloud providers is very useful. It's perfect in terms of the security automation. We can do everything from the portal and choose a variety of policies. It can cover medium to large customers. We can take a preventative approach to cloud security. It's helpful. They are constantly updating and adding new features and offering support for each of the updates. It is very comprehensive. It covers all aspects of the customer's cloud. It provides good visibility and control regardless of the complexity. We can integrate into CI/CD pipelines. It's very efficient. They can integrate with whatever CI tools the customer uses, including Windows, Linux, and so forth. Modules can be added to cover additional items from the customer's side. It reduced runtime alerts. We've saved more than 50% to 60% of our time. We've reduced alert investigation times. With any incident that happens, we can do an investigation and correlate and normalize the incident quickly. We've saved more than 70% of the time typically taken.
Read full review
JA
Aug 16, 2023
Provides valuable insights into vulnerabilities but the CV framework's limitations hinder effective analysis and export.
Certain aspects require effort. The solution's built-in reporting components are somewhat clumsy. So, this is an area of improvement. Therefore, we export data and integrate it with our other reporting tools - the Elastic Stack, also known as Elasticsearch. We find it more comfortable to generate reports from Elasticsearch because we're well-versed in creating those dashboards there. It's more convenient for us to extract and integrate information in the same manner. We've been in discussions with Tenable regarding a specific enhancement. It is a concept known as VPR, which stands for Vulnerability Priority Rating. This is related to the CVSS (Common Vulnerability Scoring System) value, which rates vulnerabilities on a scale from one to ten. However, the CVSS alone doesn't accurately determine the severity of a vulnerability; it doesn't indicate how exploitable it is. The VPR takes into account additional factors, such as how widely the vulnerability is being exploited in the wild and the volume of reports from affected sites. And if we want to have it on our dashboard, this is something that doesn't work well for us in that sense. We cannot extract it from the Tenable system; we're restricted to using Tenable's own dashboard and reports. However, there's certainly some logic or rationale behind it. It's not directly tied to the CVSS, but rather some other factors. So, it's not a one-to-one correlation with the CVSS, although CVSS is a metric commonly employed in various other systems for assessing vulnerabilities. Aligning these metrics and incorporating an additional feature indicating the early harmfulness of a vulnerability is lacking. We're hopeful that the CVSS framework is undergoing changes. I've heard that version four, while not specifically linked to Tenable, is likely to introduce more meaningful values. These values won't be solely focused on severity but also on the level of exploitability. For instance, if exploiting a vulnerability requires local access and specific conditions, it might not merit a higher score like ten; it could be lower due to limited feasibility. Thus, certain developments could be anticipated in this regard. Tenable is also working on its own approach, known as CPR (Cyber Exposure Priority), but this feature is not exportable, unfortunately. In future releases, I would like to see a feature that provides insight into the actual degree of harm associated with certain vulnerabilities. Ideally, I'd want this information to be exportable to align it with other vulnerabilities. It's possible that I might have the same CVSS value from another source, not necessarily Tenable. We're not using Tenable IO for container security, where we have a separate collection of CVs for containers. However, it's challenging to compare them directly due to the differing numbers and systems. If we could implement this VPR concept for other CVs as well, we could customize it to better suit our needs.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The solution's dashboard looks very user-friendly."
"One of the most valuable features is the compliance of RedLock, which we are using for any issues with security. It flags them and that's the primary objective of that feature."
"We found it to be easy and flexible. We could easily configure it for our needs, and we could spread the Prisma Cloud platform to 16 countries without encountering any kind of problem."
"I like Palo Alto's threat protection and Wi-Fi coverage. It has advanced features like DNS security and sandboxing. The automation capabilities are excellent."
"Most of the customers we are tackling have different tools and solutions, like Qualys, Nessus, and vulnerability management assessment solutions. There are plugins for them, and we can integrate Prisma Cloud with them. We can enrich our telemetry with their data and use the predefined correlation rules in Prisma Cloud. That means we have that work done in seconds."
"Its ease of integration is valuable because we need to get the solution out of the door quickly, so speed and ease matter."
"The policies that come prepackaged in the tool have been very valuable to us. They're accurate and they provide good guidance as to why the policy was created, as well as how to remediate anything that violates the policy."
"It scans our containers in real time. Also, as they're built, it's looking into the container repository where the images are built, telling us ahead of time, "You have vulnerabilities here, and you should update this code before you deploy." And once it's deployed, it's scanning for vulnerabilities that are in production as the container is running."
More Prisma Cloud by Palo Alto Networks pros
"Tenable is the leading product for vulnerability scanning."
"Their overall cost of service is pretty good."
"Tenable's most valuable features are the credential scan, vulnerability reports, and vulnerability ratings (VPR)."
"The Auto-Remediate feature is good."
"The solution is one of the most, if not the most, stable product available."
"Compared to other products, the most valuable features of the solution are its ease of use and ability to provide visibility over scan results while providing many templates to users, making it a helpful tool."
"It basically reviews our threat landscape vulnerability."
"The feature we've liked most recently was being able to take the YARA rules from FireEye and put them into Tenable's scan for the most recent SolarWinds exploit. That was really useful."
More Tenable Security Center pros
 

Cons

"The integration of the Compute function into the cloud monitoring function—because those are two different tools that are being combined together—could use some more work. It still feels a little bit disjointed."
"The dashboard can be created at the user level instead of the cloud account level, which will help save time."
"I would like Prisma Cloud to improve its mapping feature to increase usability."
"The user interface should be improved and made easier."
"The automation must continue to become much smoother."
"The challenge that Palo Alto and Prisma have is that, at times, the instructions in an event are a little bit dated and they're not usable. That doesn't apply to all the instructions, but there are times where, for example, the Microsoft or the Amazon side has made some changes and Palo Alto or Prisma was not aware of them. So as we try to remediate an alert in such a case, the instructions absolutely do not work. Then we open up a ticket and they'll reply, "Oh yeah, the API for so-and-so vendor changed and we'll have to work with them on that." That area could be done a little better."
"It would be ideal if they could somehow reduce the deployment time."
"The UI is the worst."
More Prisma Cloud by Palo Alto Networks cons
"Tenable.sc's user interface could be improved."
"The solution is expensive."
"Though the solution's technical support is responsive, they do take a lot of time, making it one of the solution's shortcomings that needs improvement."
"For downloading reports, we have to go to the scan and then we have to go to the reports and download the Excel or CSV or PDF. I think these menus and clicks can be minimized."
"The solution's user interface has some issues."
"If I want to have a very low-managed scan policy, it's a lot of work to create something which is very basic. If I use a tool like Nmap, all I have to do is download it, install it, type in the command, and it's good to go. In Security Center, I have to go through a lot of work to create a policy that's very basic."
"Current web page needs improvement, slows down processes."
"Additional costs are associated with using the solution, as additional scanners are required for different endpoints connected to the Tenable Security Center. If Tenable Security Center could extract information from these scanners automatically rather than manually, it would enhance user-friendliness for customers."
More Tenable Security Center cons
 

Pricing and Cost Advice

"The cost depends on the pricing model. Compared to other solutions, the cost isn't that bad."
"The pricing structure is easy to understand. Depending on the use case the pricing of the solution can be different. There are not any additional costs to the standard living fees."
"Prisma Cloud is quite scalable. In our current licensing model, we're able to heavily extend our cloud workload and onboard a lot of customers. It really helps, and it is on par with other solutions."
"Prisma Cloud is more expensive than Check Point CloudGuard."
"It is an expensive tool. It is not cheap technology. It is a serious investment for any customer. Customers typically buy it together with services. In my experience, customers buying Prisma Cloud are prepared to pay for the implementation and the tool itself."
"If you pay for three years of Palo Alto, it's better. If you're planning on doing this, it's obviously not going to be for one year, so it's better if you go with a three-year license... The only challenge we have is with the public cloud vendor pricing. The biggest lesson I have learned is around the issues related to pricing for public cloud. So when you are doing your segmentation and design, it is extremely important that you work with someone who knows and understands what kinds of needs you will have in the future and how what you are doing will affect you in terms of costs."
"The pricing and licensing are expensive compared to the other offerings that we considered."
"The pricing and the licensing are both very fair... The biggest advice I would give in terms of costs would be to try to understand what the growth is going to look like. That's really been our biggest struggle, that we don't have an idea of what our future growth is going to be on the platform. We go from X number of licenses to Y number of licenses without a plan on how we're going to get from A to B, and a lot of that comes as a bit of a surprise. It can make budgeting a real challenge for it."
More Prisma Cloud by Palo Alto Networks pricing and cost advice
"Tenable.sc is more expensive than its competitors."
"We're able to save because we don't have to employ more staff members to help wit ht he scheduling of the scans, running the reports or sending them out to the systems owners. That alone is a big ROI for us."
"This solution's price is quite high."
"The price can start at €10,000 ($13,000 USD) for between 500 and 1,000 assets, and the price can climb into the millions as more assets are added."
"Compared to other companies or other products it could maybe be a little bit less, but the price is okay. I would say it's not very expensive."
"We pay around 60,000 on a yearly basis."
"The tool costs around 15,000 Saudi riyals monthly."
"The licensing costs for this solution are approximately $100,000 US, and I think that covers everything."
More Tenable Security Center pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Cloud Security Posture Management (CSPM) solutions are best for your needs.
See recommendations
787,817 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Educational Organization
14%
Computer Software Company
14%
Financial Services Firm
13%
Manufacturing Company
8%
Educational Organization
17%
Computer Software Company
12%
Government
12%
Financial Services Firm
10%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What is your primary use case for Prisma Cloud by Palo Alto Networks ?
Prisma Cloud helps support DevSecOps methodologies, making those responsibilities easier to manage.
See all answers
What Cloud-Native Application Protection Platform do you recommend?
We like Prisma Cloud by Palo Alto Networks, since it offers us incredible visibility into our entire cloud system. We are able to easily see where our container vulnerabilities lie and and where cl...
See all answers
What do you think of Aqua Security vs Prisma Cloud?
Aqua Security is easy to use and very manageable. Its main focus is on Kubernetes and Docker. Security is a very valuable feature and their speed of integration is very good. The initial setup was ...
See all answers
What do you like most about Tenable SC?
The tool's dashboard and reporting capabilities match our company's needs since we are able to modify the basic view to create a new dashboard, and it works out very well for our needs.
See all answers
What is your experience regarding pricing and costs for Tenable SC?
I rate the solution's price as seven on a scale of one to ten, where one is cheap and ten is expensive. The tool is quite expensive.
See all answers
What needs improvement with Tenable SC?
The tool's initial configuration is not so easy. The hardware requirements related to the tool need to be better because we need a lot of memory to achieve speed in the solution. If our company nee...
See all answers
 

Comparisons

Wiz vs Prisma Cloud by Palo Alto Networks Logo
Wiz vs Prisma Cloud by Palo Alto Networks
Compared 18% of the time
Microsoft Defender for Cloud vs Prisma Cloud by Palo Alto Networks Logo
Microsoft Defender for Cloud vs Prisma Cloud by Palo Alto Networks
Compared 13% of the time
Aqua Cloud Security Platform vs Prisma Cloud by Palo Alto Networks Logo
Aqua Cloud Security Platform vs Prisma Cloud by Palo Alto Networks
Compared 6% of the time
AWS Security Hub vs Prisma Cloud by Palo Alto Networks Logo
AWS Security Hub vs Prisma Cloud by Palo Alto Networks
Compared 5% of the time
CrowdStrike Falcon Cloud Security vs Prisma Cloud by Palo Alto Networks Logo
CrowdStrike Falcon Cloud Security vs Prisma Cloud by Palo Alto Networks
Compared 5% of the time
More Prisma Cloud by Palo Alto Networks Competitors
Tenable Vulnerability Management vs Tenable Security Center Logo
Tenable Vulnerability Management vs Tenable Security Center
Compared 30% of the time
Qualys VMDR vs Tenable Security Center Logo
Qualys VMDR vs Tenable Security Center
Compared 16% of the time
Rapid7 InsightVM vs Tenable Security Center Logo
Rapid7 InsightVM vs Tenable Security Center
Compared 11% of the time
Tenable Nessus vs Tenable Security Center Logo
Tenable Nessus vs Tenable Security Center
Compared 10% of the time
XM Cyber vs Tenable Security Center Logo
XM Cyber vs Tenable Security Center
Compared 1% of the time
More Tenable Security Center Competitors
 

Product Reports

Buyer's Guide
Prisma Cloud by Palo Alto Networks
June 2024
Prisma Cloud by Palo Alto Networks reportDownload Prisma Cloud by Palo Alto Networks product report
Buyer's Guide
Tenable Security Center
May 2024
Tenable Security Center reportDownload Tenable Security Center product report
 

Also Known As

Palo Alto Networks Prisma Cloud, Prisma Public Cloud, RedLock Cloud 360, RedLock, Twistlock, Aporeto
Tenable.sc, Tenable Unified Security, Tenable SecurityCenter
 

Learn More

Palo Alto Networks
Tenable
 

Overview

Prisma Cloud by Palo Alto Networks is a cloud security solution used for cloud security posture management, cloud workload protection, container security, and code security. It provides visibility, monitoring, and alerting for security issues in multi-cloud environments. 

The solution is user-friendly, easy to set up, and integrates with SIEM for generating alerts and reports. Its most valuable features include security features, monitoring capabilities, reporting, compliance monitoring, vulnerability dashboard, data security features, and multi-cloud capabilities. Prisma Cloud has helped organizations by providing comprehensive protection, automating workflows, simplifying troubleshooting, and improving collaboration between SecOps and DevOps.

Prisma Cloud Features

Prisma Cloud offers comprehensive security coverage in all areas of the cloud development lifecycle:

  • Code security: Protect configurations, scan code before it enters production, and integrate with other tools.

  • Security posture management: Monitor posture, identify and remove threats, and provide compliance across public clouds.

  • Workload protection: Secure hosts and containers across the application lifecycle.

  • Network security: Gain network visibility and enforce micro segmentation.

  • Identity security: Enforce permissions and secure identities across clouds.

Benefits of Prisma Cloud

  • Unified management: All users use the same dashboards built via shared onboarding, allowing cloud security to be addressed from a single agent framework.

  • High-speed onboarding: Multiple cloud accounts and users are onboarded within seconds, rapidly activating integrated security capabilities.

  • Multiple integration options: Prisma Cloud can integrate with widely used IDE, SCM, and CI/CD workflows early in development, enabling users to identify and fix vulnerabilities and compliance issues before they enter production. Prisma Cloud supports all major workflows, automation frameworks, and third-party tools.

Reviews from Real Users

Prisma Cloud stands out among its competitors for a number of reasons. Two major ones are its integration capabilities, as well as its visibility, which makes it very easy for users to get a full picture of the cloud environment.

Alex J., an information security manager at Cobalt.io, writes, “Prisma Cloud has enabled us to take a very strong preventive approach to cloud security. One of the hardest things with cloud is getting visibility into workloads. With Prisma Cloud, you can go in and get that visibility, then set up policies to alert on risky behavior, e.g., if there are security groups or firewall ports open up. So, it is very helpful in preventing configuration errors in the cloud by having visibility. If there are issues, then you can find them and fix them.”

Luke L., a cloud security specialist for a financial services firm, writes, “You can also integrate with Amazon Managed Services. You can also get a snapshot in time, whether that's over a 24-hour period, seven days, or a month, to determine what the estate might look like at a certain point in time and generate reports from that for vulnerability management forums.”

Get a risk-based view of your IT, security and compliance posture so you can quickly identify, investigate and prioritize your most critical assets and vulnerabilities.

Managed on-premises and powered by Nessus technology, the Tenable Security Center (formerly Tenable.sc) suite of products provides the industry’s most comprehensive vulnerability coverage with real-time continuous assessment of your network. It’s your complete end-to-end vulnerability management solution.

 

Sample Customers

Amgen, Genpact, Western Asset, Zipongo, Proofpoint, NerdWallet, Axfood, 21st Century Fox, Veeva Systems, Reinsurance Group of America
IBM, Sempra Energy, Microsoft, Apple, Adidas, Union Pacific
Buyer's Guide
Prisma Cloud by Palo Alto Networks vs. Tenable Security Center
May 2024
Free Report: Prisma Cloud by Palo Alto Networks vs. Tenable Security Center
Find out what your peers are saying about Prisma Cloud by Palo Alto Networks vs. Tenable Security Center and other solutions. Updated: May 2024.
DOWNLOAD NOW
787,817 professionals have used our research since 2012.
See our Prisma Cloud by Palo Alto Networks vs. Tenable Security Center report.
See our list of best Cloud Security Posture Management (CSPM) vendors.

We monitor all Cloud Security Posture Management (CSPM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.