Try our new research platform with insights from 80,000+ expert users

Rapid7 InsightVM vs Tenable Security Center comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Nov 6, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Zafran Security
Sponsored
Average Rating
9.6
Reviews Sentiment
7.8
Number of Reviews
6
Ranking in other categories
Vulnerability Management (18th), Continuous Threat Exposure Management (CTEM) (2nd)
Rapid7 InsightVM
Average Rating
8.0
Reviews Sentiment
7.0
Number of Reviews
64
Ranking in other categories
Risk-Based Vulnerability Management (4th)
Tenable Security Center
Average Rating
8.2
Reviews Sentiment
7.3
Number of Reviews
54
Ranking in other categories
Vulnerability Management (4th), Cloud Security Posture Management (CSPM) (10th), Risk-Based Vulnerability Management (3rd)
 

Featured Reviews

Israel Cavazos Landini - PeerSpot reviewer
Weekly insights and risk analysis facilitate informed security decisions
I appreciate the weekly insights Zafran provides, which include critical topics for networks and IT security, allowing us to evaluate which insights apply to our environment. The organization score feature is valuable to keep the leadership team updated on how our infrastructure fares security-wise. The applicable risk level versus base risk level feature is beneficial because prior to Zafran, we only used the base risk level, but now understand that risk depends on the asset itself. Zafran is an excellent tool.
Anusha Sadasivani - PeerSpot reviewer
Rapid deployment and user-friendly architecture streamline vulnerability management but customer support response needs improvement
We are still using Rapid7 InsightVM I personally still use Rapid7 InsightVM. We use Rapid7 InsightVM for vulnerability scanning. It supports both agent-based and agentless scanning, which is part of our vulnerability management strategy. The agentless scan in Rapid7 InsightVM is effective and…
OndrejKOVAC - PeerSpot reviewer
Empower clients with risk-based vulnerability management through continuous workflow and valuable insights
Tenable Security Center could improve by implementing more dynamic data displays and translating reports into European languages. This is especially relevant in Central Eastern Europe, where clients often require reports in local languages. Additionally, the licensing model could be more flexible for managed security providers, similar to a pay-as-you-go model.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Overall, we have seen about eighty-seven percent reduction of the number of vulnerabilities that require urgency to remediate, specifically the number of criticals."
"Zafran has become an indispensable tool in our cybersecurity arsenal."
"We saw benefits from Zafran Security almost immediately after deploying it."
"Zafran is an excellent tool."
"We are able to see the real risk of a vulnerability on our environment with our security tools."
"There are many integrations with things like the VMware NSX that are great, the reporting is really solid."
"Has great reporting features."
"The remediation project is a pretty effective because it allows us, as clients or countries, to choose specific assets and set limitations on them for a certain period which allows us to track and follow up on those limitations. However, when it comes to real-time monitoring and live dashboards, InsightVM doesn't quite fit the bill. It's not a real-time solution and is not instant."
"It's very scalable."
"The product is scalable."
"The solution scales well."
"The most valuable feature for us is the different types of reporting it provides."
"InsightVM's best features are the vulnerability database and remediation steps."
"Very customizable with a lot of templates."
"Tenable is the leading product for vulnerability scanning."
"This product has the best results in terms of the lowest number of false-positives and false-negatives."
"The feature we've liked most recently was being able to take the YARA rules from FireEye and put them into Tenable's scan for the most recent SolarWinds exploit. That was really useful."
"It is a very good and user-friendly product."
"The scans are the most valuable aspect of this solution."
"The product is our second solution, and we are happy that it meets our requirements."
"The most valuable feature is the automatic and periodic management of security scans, along with the ability to consolidate all information into a single dashboard."
 

Cons

"Initially, we were somewhat concerned about the scalability of Zafran due to our large asset count and the substantial amount of information we needed to process."
"I think the ability to have some enhanced reporting capabilities is something they can improve on, as they have good reports but we have asked for some specific reporting enhancements."
"The dashboarding and reporting functionality of Zafran Security is an area that definitely could use some improvements."
"The solution could improve by being more secure."
"Rapid7 InsightVM, has impressive capabilities, especially when it comes to managing video equipment. However, we've noticed that Rapid7 also offers a cloud solution called CloudSec, and we don't have that. We think it would be better if InsightVM had all the features for both on-premise and cloud management."
"We found that after you passed an endpoint, it didn't always reflect it in the next scan. I'm not sure if it was a glitch or some issue with the product's software. That was never clear. That was always an issue and something that definitely needed improvement."
"It would be great to have a mobile application client. Currently, you have to use a mobile web browser on a device, but it is not similar to the desktop web browser in terms of user experience. It would be nice to have a mobile application to access the platform."
"The solution should include a tighter integration with third-party threat modeling and threat intelligence tools."
"A definite improvement would be to make it easier to run ad-hoc scans without needing to assign the asset to a site or group."
"It would be nice to have an additional feature that would provide reports on who has logged onto the console or who did what on the console."
"The reporting could be better."
"It could be more user-friendly for creating custom reports."
"The product should provide risk-based vulnerability management."
"Tenable SC could be improved with additional connectivity to external company postures and the capability of managing and sustaining agents in the systems directly without additional platforms in the middle."
"Its reporting can be improved. It is not easy to generate a scan report the way we want. The data is okay, but we can't easily change the template to make it look the way we want."
"The solution should provide better web application features and support."
"If I want to have a very low-managed scan policy, it's a lot of work to create something which is very basic. If I use a tool like Nmap, all I have to do is download it, install it, type in the command, and it's good to go. In Security Center, I have to go through a lot of work to create a policy that's very basic."
"We would like to see the inclusion of external IPs and simplified reporting that's easier to deal with"
"Additional costs are associated with using the solution, as additional scanners are required for different endpoints connected to the Tenable Security Center. If Tenable Security Center could extract information from these scanners automatically rather than manually, it would enhance user-friendliness for customers."
 

Pricing and Cost Advice

Information not available
"Its price is too high. My only concern or issue with Rapid7 is its pricing."
"The price of the solution is less than the competitors."
"The license is annual and this is the optimal approach when it comes to most software."
"The licensing is asset-based and very straightforward."
"Comparing the price with the value that we receive, I am not happy with it."
"The solution is a bit more reasonably priced than other products."
"It is pretty expensive. It depends on what you consider pricey, however, if you only look at vulnerability management solutions, such as within VM or VMDR, there are, I suppose the prices are almost the same. But I believe you will discover that for yourself."
"The solution's pricing is better than Nexus which charges a high amount for very little use."
"The licensing costs for this solution are approximately $100,000 US, and I think that covers everything."
"The tool costs around 15,000 Saudi riyals monthly."
"The price of Tenable SC is expensive, we pay approximately €70,000 for the license annually. We have to pay for each IP test. The cost of other solutions is far less, such as Nessus Professional, which is €3,000 annually."
"Costing is pretty reasonable compared to the competition."
"It is slightly more expensive than other solutions in the same sphere."
"For 500 users the licensing fee is roughly $100,000."
"Tenable is open-source."
"The tool provides competitive pricing."
report
Use our free recommendation engine to learn which Risk-Based Vulnerability Management solutions are best for your needs.
861,390 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
11%
Financial Services Firm
11%
Manufacturing Company
7%
Healthcare Company
6%
Educational Organization
15%
Financial Services Firm
12%
Computer Software Company
11%
Manufacturing Company
8%
Financial Services Firm
13%
Computer Software Company
12%
Government
11%
Manufacturing Company
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What is your experience regarding pricing and costs for Zafran Security?
The current pricing of Zafran Security is fair overall. They were good to work with to accommodate our organization w...
What needs improvement with Zafran Security?
The dashboarding and reporting functionality of Zafran Security is an area that definitely could use some improvement...
What is your primary use case for Zafran Security?
Zafran Security is helping reduce the amount of critical vulnerabilities in our environments that require prompt reme...
How would you choose between Rapid7 InsightVM and Tenable Nessus?
You have full visibility across cloud, network, virtual, and containerized infrastructures with Rapid7 Insight VM. Yo...
What do you like most about Rapid7 InsightVM?
The product's initial setup phase was very easy.
What is your experience regarding pricing and costs for Rapid7 InsightVM?
The customers are mostly SMBs, though some enterprise organizations have also deployed the solution. This is neither ...
What do you like most about Tenable SC?
The tool's dashboard and reporting capabilities match our company's needs since we are able to modify the basic view ...
What is your experience regarding pricing and costs for Tenable SC?
Tenable Security Center is quite expensive, particularly for the CEE region, causing us to lose cases due to its pric...
What needs improvement with Tenable SC?
Tenable Security Center could improve by implementing more dynamic data displays and translating reports into Europea...
 

Also Known As

No data available
InsightVM, NeXpose
Tenable.sc, Tenable Unified Security, Tenable SecurityCenter
 

Overview

 

Sample Customers

Information Not Available
ACS, Acosta, AllianceData, amazon.com, biogen idec, CBRE, CATERPILLAR, Deloitte, COACH, GameStop, IBM
IBM, Sempra Energy, Microsoft, Apple, Adidas, Union Pacific
Find out what your peers are saying about Rapid7 InsightVM vs. Tenable Security Center and other solutions. Updated: June 2025.
861,390 professionals have used our research since 2012.