Tenable Cloud Security Reviews

Tenable Cloud Security essentially falls under the umbrella of cloud security.

We're discussing vulnerability management here, and in this realm, it's considered one of the top vendors in the security field. The key benefit lies in having the largest and most up-to-date database. When it comes to using any Tenable product, it excels in finding vulnerabilities and providing analytics. Tenable possesses the biggest vulnerability database, sourcing data from various places including open sources, the dark net, and forums where hackers discuss vulnerabilities. This makes Tenable and its products highly regarded in the realm of vulnerability management.

The concept of a "black box" or a "closed box" in this context involves a solution that provides results and resolutions specifically tailored to your cloud environment's compliance and security needs. In essence, cloud security tools scan your cloud resources and evaluate them to ensure they adhere to policies, have correct configurations, and conduct an analysis to verify the proper functioning of your cloud infrastructure. This encapsulates the core advantages of Tenable Cloud Security.

Personally, I don't have any critical concerns about this product. As I mentioned earlier, it's a comprehensive and well-rounded solution that provides results effectively. However, I do think there might be room for more integrations. This could allow for further customization and flexibility, essentially offering different functionality options to accommodate various budgets. It's similar to customizing a wedding package to fit different preferences and budgets. This could be achieved through licensing, enabling users to choose specific functionalities based on their needs. For instance, if someone only requires container-related features and doesn't need in-depth analysis of their entire cloud environment, they could opt for a more tailored solution.

I have been using Tenable Cloud Security for the past seven years.

Our vendor is Broadview, and they offer various support levels. In a typical scenario, with the initial level of support, you might expect a relatively simple approach to problem-solving, with an SLA that allows several hours for issue resolution.

When you open a ticket for a problem, that ticket is overseen by a designated support technical specialist and their manager. If the ticket isn't resolved, you have the option to escalate it through another channel, such as your organization's Cabinet. This process works in a similar way to what we consider normal.

To increase the response speed, you simply need to invest more in advanced support. It doesn't work like it might in smaller vendors. In this context, when there are four tiers of support, each comes with different response times. If you require a one-hour response time, you can opt for premium support, and that's about it. Even before purchasing a solution, whether it's Scalable Security, Account Security, Scalable Security Center, or any other, you can review the support SLAs to gauge how long you might have to wait for assistance with various issues.

Positive

In general, when you want to make comparisons, you must consider various factors, and this applies to many other solutions as well. However, this implies that we don't encounter significant issues or problems with the product, whether it's related to its functionality or overall performance. Consequently, it can be rated as a solid ten.

The use cases attached to Tenable Cloud Security include compliance verifications for the cloud environment.

The product lacks automatic remediation features. From an improvement perspective, the tool should be able to offer automatic remediation features.

There is a need for the support team to improve their response time since it is one of the areas where the product's technical team has certain shortcomings.

I have been using Tenable Cloud Security for around ten years. My company sells solutions like Fortinet, Qualys, Tenable, and SentinelOne. My company has a partnership with Tenable.

Stability-wise, I rate the solution an eight out of ten.

Scalability-wise, I rate the solution an eight out of ten.

The solution's technical support is not good. I rate the technical support a three out of ten.

Negative

Products like Fortinet, Qualys, and Rapid7 offer the same set of services. The only common issue I found between all the products was that though the tools can be deployed on the cloud services offered by Microsoft, AWS, and Google, the products cannot be deployed on Oracle.

I am in the process of testing different solutions from vendors like Rapid7 and Qualys.

I rate the product's initial setup phase an eight on a scale of one to ten.

The solution can be deployed in a couple of minutes.

There is a need to opt for a subscription-based pricing model to use Tenable Cloud Security. I rate the product price an eight on a scale of one to ten, where one is low price and ten is high price.

Tenable Cloud Security is a basic tool for security engineers since most of the cloud solutions do not offer high standard compliance, like PCI DSS compliant. Most of the cloud solutions use CIS as a benchmark or reference. Microsoft has its own compliance tool.

Tenable Cloud Security is a new solution in the market and cannot be compared with the other vulnerability tools.

Speaking about how the product has improved the security posture, I would say that Tenable Cloud Security is usually installed on a person's computer, so one needs to be very careful not to make any mistakes during configuration. The cloud providers don't offer security, so it is important for a potential buyer to read the information on the way the services are provided to them by the cloud.

The product's visibility and remediation work fine for me.

Around two people are required for the maintenance of the product, considering that there are changes in cloud products and every customer is different. It is not a static solution.

I rate the overall tool an eight out of ten.