We performed a comparison between OneTrust GRC and Tenable Lumin based on real PeerSpot user reviews.
Find out in this report how the two IT Vendor Risk Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."OneTrust GRC is stable."
"One of the valuable features of this solution is it has the ability to review fourth and fifth parties to the nth degree."
"It does help in the automation of our privacy impact assessments."
"As a solution for IT risks, it is a very good product."
"The product helps us streamline audit and incident management processes."
"We receive notifications or cases and prioritize them accordingly, which helps us address issues promptly."
"Vendors can be assessed and rated out of the tool, and assessments can be scheduled for updates at certain intervals."
"Tenable Lumin's dashboard helps me understand my vulnerabilities and which tasks I should prioritize for vulnerability remediation. Tenable creates a risk score that helps me develop a remediation plan, so the infrastructure team can move quickly to address risks. Real-time threat intelligence is also helpful. They get multiple sources of intelligence and correlate the data. Lumin discovers your assets through an agent or a network scan. That's an excellent feature that I'm leveraging now to better understand where all my assets are."
"Tenable Lumin is very good because it helps organizations look for solutions and profit. It also helps organizations save time because it displays market data well."
"The stability of this solution is appropriate. You can sleep well at night, if you have this solution implemented in your environment."
"There are limitations to customized workflow automation, and they need to increase both the available automation and the customized workflow."
"OneTrust GRC's workflows aren't automated and need to be manually driven."
"They could improve by offering free help. A solution, a lot of times, is not just the use of the solution. For example, it is the overall engagement, how well do they support the system, what is their SLA, and how long their response time is to an issue. It would be beneficial if they had some type of professional services where they offer the first five hours of professional services a year for free. That would be a substantial benefit rather than having to buy professional services or professional services packages."
"We encounter difficulties creating multiple platforms or interfaces and manual processes for changing certain settings."
"The Vendor Risk dashboard is quite basic today and not interactive, but improvements are in coming the next releases."
"The product is not that easy to set up."
"I haven't seen any return on investment using the solution. If I had the opportunity, I would use a different solution."
"Tenable Lumin isn't that old and still needs some time to mature."
"The price could be better."
"The solution's cloud operation has issues Lumin and Tenable are not one product. The integration needs to be worked out better. There is space for improvement there."
OneTrust GRC is ranked 4th in IT Vendor Risk Management with 7 reviews while Tenable Lumin is ranked 7th in IT Vendor Risk Management with 3 reviews. OneTrust GRC is rated 7.6, while Tenable Lumin is rated 8.6. The top reviewer of OneTrust GRC writes "Costly solution that may not guarantee ROI, but remains effective in IT risk management ". On the other hand, the top reviewer of Tenable Lumin writes "It creates a risk score that helps me develop a remediation plan, so the infrastructure team can move quickly to address risks". OneTrust GRC is most compared with RSA Archer, ProcessUnity, AuditBoard, Workiva Wdesk and LogicGate, whereas Tenable Lumin is most compared with Bitsight Third-Party Risk Management and Amazon Inspector. See our OneTrust GRC vs. Tenable Lumin report.
See our list of best IT Vendor Risk Management vendors.
We monitor all IT Vendor Risk Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.