Tenable Nessus Reviews

I use Tenable Nessus to evaluate the security posture of multiples acquisitions before integrating them to our network.

Tenable Nessus has helped us visualize the security posture of acquisitions. It provides actionable recommendations to the implementation team towards security remedies.

I have found the remedy recommendation feature helpful, as it:

• Provides multiple recommendations towards the remedy of vulnerabilities.
• Allows me to prioritize efforts and utilize effective technical resources.

• They should improve the I/O reporting and the customized spreadsheet export feature.
• Multiple steps to create an actionable plan will be a great addition to Nessus.

I primarily use Nessus for vulnerability management, including scanning, identifying, and assessing risks.

Nessus' most valuable feature is vulnerability management because it helps to discover vulnerabilities proactively and integrates with patch management solutions so you can push patches.  

Nessus' reporting could be more user-friendly.

I've been using Nessus for more than three years.

I would rate Nessus' stable five out of five.

Nessus is scalable.

Tenable's technical support has a very good turnaround time.

The initial setup is straightforward, and deployment takes up to five days.

The ROI from Nessus is good - it allows us to proactively discover vulnerabilities and deploy patches before the worst-case scenario happens. I would rate the ROI five out of five.

Nessus is affordable, but its licensing model could be improved with more flexibility for adding assets.

I would advise anybody thinking of implementing Nessus that they should be competent with risk management language and do some training on the solution, otherwise, they won't understand anything. I would rate Nessus ten out of ten.

The reports should be improved in Tenable Nessus. For example, when you are auditing compliance with CIS standards. It provides very poor reports.

I have been using Tenable Nessus for approximately one year.

The stability is very good.

Tenable Nessus has been scalable.

My advice to others is for them to focus on the cloud solution, and do as much as possible in the cloud.

I rate Tenable Nessus an eight out of ten.

Tenable Nessus has a good performance, is very user-friendly, and is easy to use.

The solution should be able to support more devices.

I have been using Tenable Nessus for approximately one year.

I have one customer that is using this solution.

The installation of Tenable Nessus is straightforward, and it can take a couple of hours.

I am able to do the deployment myself.

There is an annual license required to use this solution.

I would recommend this solution to others.

I rate Tenable Nessus a nine out of ten.

Tenable Nessus can be deployed on the cloud and on-premise.

I use Tenable Nessus for an internal secured scale.

The most valuable feature of Tenable Nessus is the self-updating engine. 

Tenable Nessus could improve the reporting.

I have been using Tenable Nessus for approximately three years.

Tenable Nessus is highly stable.

The scalability of Tenable Nessus is good.

I am the only one in cybersecurity using this solution in my organization.

Tenable Nessus is very easy to support and manage and this is why I have not needed to contact support.

The initial setup of Tenable Nessus is easy.

The is a free version of Tenable Nessus available.

In Brazil, it is about $3,500 per year.

My advice to others is for them to start using the free version to get used to the solution.

I rate Tenable Nessus an eight out of ten.

We mainly use it for scanning for vulnerability on our hosts, like network devices and servers; to find the vulnerabilities and do remediation. We monitor Windows and Linux workstations.

It helps us limit our vulnerabilities and to reduce exploitations.

Tenable also helps us focus resources on the vulnerabilities that are most likely to be exploited.

Among the most valuable features are scanning for vulnerabilities and the reporting. The reporting templates are okay. I like that I can see all the hosts with different vulnerabilities. I can export reports to Excel to adjust them and it's a convenient way to send them to my manager. We actually use the report feature to identify all the vulnerabilities on all the hosts.

• The prioritization is done quickly and is good.
• Their VPR is good.
• I'm also able to find its features easily.

We use credentialed scans. They need more permissions and more changes or settings on Windows and Linux.

Also, Agent scanning is more efficient than credential scanning but Agent scanning is more expensive than credential scanning. I prefer, mainly, the Agent scan over the credential scan, it's better. But we will continue to use the credential scan. I would like to see Tenable make some improvements to the credential scanning; more vulnerabilities, because most of the problems have occurred on Windows Server. We have some scanning issues.

We have been using Tenable for just over a year.

It's always working, no crashes.

We can add more scanners to the scan zone. We can also create different organizations in terms of scanning, so I think the scalability is good.

We use Tenable on 300 servers. In our office we have two or three people using the solution who are network security engineers. Two or three people are enough to take care of deployment and maintenance of Tenable.

We have plans to increase our usage. We want to increase our licenses up to about 1,000.

Technical support is good. I get responses quickly and they provide quick resolution. I can look at their community to find questions or the problem. The support is good.

Before Tenable, our global team used Qualys, but I myself didn't use that. The switch to Tenable was decided on by our U.S. team. It was a global strategy to move to Tenable.

The initial setup was good, not complex. We had the guides from Tenable to guide us through the setup. It took us two days, but one day should be good enough for the initial deployment.

Originally, we wanted to scan all our servers from multiple clouds and also on-premises, to scan the local network.

Tenable mainly works on vulnerability scanning and prioritizing.

We primarily use the solution for vulnerability management.

When it comes to servers and scanners, or servers and endpoints, you can discover the vulnerabilities that might be on the other end. You can see, for example, if
you have a gap in vulnerabilities in specific servers or specific endpoints, and you if have to close the. You can really see the risks that might be encountered within your environment.

The solution is very good at vulnerability management. It gives you great visibility of visibilities.

The solution is stable. 

The initial setup is very straightforward.

We'd like to see more integration potential within the solution.

They tend to do a new release every quarter, and will ultimately continue to add more features.

We've been using the solution for two months. We've been looking into it over that time.

The solution is pretty stable. There are no bugs or glitches. It doesn't crash or freeze. Its performance is very reliable. 

I can't speak to the scalability. We have never tried to scale the solution.

I'm the only person in my organization that uses the solution. I don't have plans to increase usage at this time.

I can't speak of technical support's knowledgeability or helpfulness. I haven't used them before and therefore couldn't really evaluate them very well.

The solution is very straightforward and pretty simple. There isn't too much complexity or difficulty involved. A company shouldn't have any issues with the initial setup.

I handled the installation myself. I didn't need the assistance of a consultant or integrator.

We pay a yearly licensing fee.

I can't speak to the exact pricing. It's not an aspect of the solution I directly deal with.

We're using the latest version of the solution. I can't speak to the exact version number.

I'd rate the solution at a seven out of ten. It's pretty great at vulnerability management, however, there are always ways to improve it.

I'd recommend the solution to other users.

Our use cases are pretty straightforward. We primarily use it for conducting vulnerability scans.

Out of the box, the product works well for us, so it's not a tool that we need to customize very much.

The reporting interface is in need of improvement. The reports are okay, but the interface is a bit difficult to navigate in some cases.

Nessus is not very good at identifying web application vulnerabilities, which means that we need to buy another product like Acunetix or EMC Networker to handle that part. This is an area that could be enhanced because we would prefer to have these capabilities in one application.

I have been using Tenable Nessus for more than 10 years.

Tenable is a reliable solution.

We have not had any use cases that required scaling.

Our installation is a single tenant.

We haven't had the need to contact technical support.

Many years ago, we tried Nexpose by Rapid7.

The initial setup was easy and very straightforward.

It took about half an hour to deploy, including all of the updates. It is the updates that take time to complete.

We pay approximately $2,500 on a yearly basis. We do not pay any fees in addition to the standard licensing costs.

Ultimately, we plan to use this product less because it is something that we advise our customers to buy for themselves. They should not be using our solution.

My advice for anybody who is considering Tenable Nessus is that it is easy to install, easy and straightforward to use, and not expensive. These are the reasons that we advice our customers to use it.

I would rate this solution an eight out of ten.