Tenable Security Center Reviews

The coverage of our entire environment improved significantly because we implemented several scanners throughout our organization, which is how Tenable Security Center helped improve our vulnerability management process. In the beginning of the implementation, it took us some time to ensure that it covered all of our environment. One of the challenges we faced regarding this product was the number of licenses, because Tenable Security Center scans all devices, including printers. We needed to decrease this because some parts of our environment did not require patching status monitoring. Beyond the licensing challenge, Tenable Security Center helped us with its reporting capabilities and coordinating with other departments in technology to ensure the closing of all missing patches while giving us the criticality of each patch and how we need to address these patches. This became one of our successful stories that helped us and other departments to close any gaps in patching in a timely manner. Additionally, from a regulatory perspective, since we need to report to regulatory requirements and comply with patching standards, Tenable Security Center was a great help to us.

From my experience, I assess the product's analytics capabilities as successful. It helped us significantly with patching and managing the risk of the patching process across all our environments, including network devices with Windows and Unix systems. The product covered several environments and gave us exactly what we needed in our environment.

Tenable Security Center's centralized platform helped with risk assessment and management across our IT environments. It covered the patching process, and we previously faced many issues regarding how to patch different environments, how to monitor the patching process, and whether it was successful or not. We obtained good reports showing when patches were closed and the details of each patch, including who executed it and everything related to the patching process until it was closed. This gave us good details about the process which helped us significantly in our reporting and even in audits, whether internal or external. We learned how to close audit issues safely and successfully.

We used the dashboards for real-time threat insights and extracted several dashboards from Tenable Security Center. We use these dashboards in our cybersecurity dashboard and committees that we have. These dashboards are part of our committees, especially the cybersecurity committee and other committees that we attend.

We did conduct a long implementation which relates to what I think can be improved about Tenable Security Center. In some cases, we needed to refer back to Tenable itself, and in other cases, we needed to get support from Tenable rather than from the vendor. When we tried to do some development in certain areas of our environment, we required additional support.

Regarding the continuous visibility feature, I have not used it.

I rate Tenable technical support as an eight or nine out of ten. They are helpful and were very helpful to us, coordinating with us on several issues. When we could not resolve an issue with the vendor, we referred to them and raised a ticket, which usually resulted in good support from their team.

Positive

The initial setup and deployment took some time, and the vendor we worked with required a considerable amount of time to fully implement the product and customize it to run and extract reports from it. However, the vendor was of great help and provided us with good support. This was a significant project for us, especially when we increased our license and renewed it to cover our entire bank environment.

I think Tenable Security Center is the best option on the market at the moment for us. I know there are other solutions available, but when we compare them, Tenable Security Center fully covered all of our requirements. There is also a price comparison to consider, and I believe it offers a good price compared to others. While there are other products available, I consider Tenable Security Center reasonable to have in our environment.

I have not encountered any major issues regarding Tenable Security Center. I would rate this review a nine out of ten.

The primary use case for Tenable Security Center among my clients is risk-based vulnerability management. It involves not just a one-time scan but a continuous workflow that integrates with management and auditing processes.

The most valuable features of Tenable Security Center for my clients are Vulnerability Priority Rating (VPR) and Asset Criticality Scoring. The tool also excels in data correlation and reporting, providing crucial insights into security performance, and aiding in measuring service level agreements (SLA).

Tenable Security Center could improve by implementing more dynamic data displays and translating reports into European languages. This is especially relevant in Central Eastern Europe, where clients often require reports in local languages. Additionally, the licensing model could be more flexible for managed security providers, similar to a pay-as-you-go model.

I have ten years of experience working with Tenable Security Center.

The stability of the solution is outstanding. I have never encountered an issue, and in case of any problem, Tenable provides decent SLA support to manage recovery and license transfer effectively.

The scalability of Tenable Security Center is impressive. I can easily scale it on a platform level as a virtual appliance or adding additional scanners. Also extend with the use of agents, allowing scanning in restrictive environments and loosely connected devices.

Tenable's technical support has declined in quality over time. While they used to be excellent, achieving ratings of eight or nine, they now rate around six or seven due to longer response times and less thorough assistance.

Positive

The initial setup of Tenable Security Center is straightforward. Clients can use virtual appliances or the software, and the process is very Linux-friendly.

Through the use of Tenable Security Center, my clients achieve more efficient patching and gain visibility and understanding of security operations, leading to improved resilience and infrastructure insight.

Tenable Security Center is quite expensive, particularly for the CEE region, causing us to lose cases due to its pricing. The licensing requirements can be prohibitive for managed security service providers with smaller clients.

I recommend Tenable Security Center, particularly if the pricing can be adjusted to compete better in regions like Central Eastern Europe. I would rate it 9.6 or 9.8 out of 10, as it needs minor improvements, particularly in localization and report flexibility in the age of AI. Overall, I rate the solution 9.8 out of 10.

The typical use case for Tenable Security Center is that it is an on-premise solution, and it can use the agent and active scanning, which is needed by governmental organizations and manufacturers, so that is the benefit of the Security Center.

Tenable Security Center is a relatively very good solution, and I don't think it needs improvement; it's a perfect solution.

I haven't experienced any trouble with Tenable Security Center so far, and the support is very timely and adequate; we are satisfied with that.

The reason for rating it an eight out of ten is that the initial setup could be easier; the setup is rather difficult, and that's why we are focusing on the initial hearing.

I have worked with Tenable Security Center for almost three years.

It is a very stable solution.

The solution is very scalable.

The technical support from Tenable Security Center is very good; I'm satisfied with the support.

I would rate it an eight when one is the worst technical support and ten is the best.

I don't have experience with the CrowdStrike tool.

Regarding the initial setup of this solution, we have discussions with the customer about how to operate the solution, and it depends on the customer how they can use and operate it. We need to hear the customer's requirements, and it's a very flexible solution.

I have seen an ROI from this solution. It is quick if it fits the customer's operation, and it is very suitable for their operation. If we cannot adjust how to operate the solution, then it becomes very difficult, so hearing and initial tuning are very important.

The price of Tenable Security Center is not so high; it's relatively a cheaper solution.

Based on my experience, I would recommend Tenable Security Center to other people. I rate this solution eight out of ten.

I use Tenable Security Center mainly to detect vulnerabilities. One of its core functions is its capability for asset discovery, which aids in improving our security posture.

The most effective feature of Tenable Security Center for detecting vulnerabilities is its capability for critical mapping. 

Additionally, the asset discovery feature significantly aids in enhancing the security posture.

There are challenges with customization in Tenable Security Center. In the next release, it should provide advanced testing and more accurate results. 

It's important for Tenable to catch up on testing capabilities that are present in solutions like Qualys.

I have been using Tenable Security Center for one and a half years.

Tenable Security Center is relatively stable, and on a scale from one to ten, I would rate its stability a seven.

Scalability is a bit limited with Tenable Security Center. I rate it six out of ten in terms of ease of scaling.

I've had varied experiences with Tenable support. The support service should be faster or provide better quality support.

Positive

Setting up Tenable Security Center is moderately easy. If rated on a scale from one to ten, it would be around five or six.

The cost of Tenable Security Center is reasonable for our company.

Before selecting Tenable, we evaluated other options like Qualys.

My advice for those considering Tenable Security Center is to note the benefit of upgrading vulnerable devices. 

Overall, I would rate Tenable Security Center eight out of ten.

In my previous job, Tenable Security Center was used for a financial institution covering approximately eight thousand assets including servers, computers, network devices, and web applications. The scope was to scan every device within the IT environment. It is a robust solution with numerous plugins that streamline the scanning process, providing powerful results.

Tenable Security Center provides an overall score of vulnerabilities, comparing an organization with others in the same industry. For example, it allows financial institutions to compare their vulnerability management to others in the same sector. This provides a comprehensive view of the organization's vulnerability status.

While Tenable Security Center is highly effective, there is always room for continuous improvements. The reports and plugins for reports and scans could benefit from enhancements. Overall, it is a very effective solution.

I have had experience with Tenable Security Center for about a year.

Tenable Security Center is stable and runs smoothly when correctly configured.

The customer service and support team at Tenable were extremely helpful. They assisted us with any questions and provided support throughout the deployment process, making them a ten out of ten.

Positive

I have experience with ManageEngine Vulnerability Manager Plus, which focuses on endpoint vulnerabilities and includes patch management, unlike Tenable Security Center.

Although the setup requires preparation, it is manageable when everything necessary is set in advance, such as the firewall and user permissions.

The deployment involved about five to eight people, including a Tenable admin who coordinated with network, server, and PC teams. Tenable provided deployment assistance.

We were able to have a comprehensive view of all vulnerabilities across our assets, providing a single pane of glass to manage vulnerabilities.

The product is somewhat pricey, reflecting its valuable features and status as a high-quality solution in the vulnerability management market.

I rate Tenable Security Center ten out of ten. 

ManageEngine is also rated ten out of ten as it served different scopes and provided essential patch management features.

The primary use cases are vulnerability management and dashboard creation. I utilize it to exhibit the current security posture to higher management, prioritize which paths to fix first, and identify vulnerabilities. Additionally, I escalate issues to management based on their criticality and business rating.

Tenable Security Center has significantly contributed to cost savings by identifying numerous bugs and security issues. It assists in safeguarding customer data, which is crucial to avoid fines imposed by local governing authorities.

The most valuable feature is the automatic and periodic management of security scans, along with the ability to consolidate all information into a single dashboard. This feature enables me to quickly identify which areas require attention, updating patches, and fixing bugs to stay protected against the latest security attacks.

The dashboard templates are limited. More templates that align with our daily needs would be beneficial. Current dashboards are available for Linux, separate unit systems, and other systems, but there aren't dashboards for app-related issues or application patches, such as Apache Tomcat applications or Java applications. This would be helpful.

I have been using Tenable Security Center for more than five years.

The solution is very stable. Still, it's not perfect. I would rate its stability as nine out of ten.

The solution is very scalable. It integrates easily with the environment, allowing for IP range management and concurrent scanning capabilities. I rate its scalability as nine out of ten.

Customer service is good. That said, there are sometimes delays in response from international support. The support teams can take time to analyze logs. I rate it as eight out of ten.

Positive

I previously used Qualys in a different organization, which I found difficult to use and not user-friendly. I chose Tenable Security Center for its user-friendly interface and feature set.

The initial setup was considerably tough due to deploying on Linux, yet it was manageable. I would rate its difficulty as seven out of ten.

We engaged partners from Singapore who remotely assisted with the deployment, supported by local partners for configuration and integration with SIEM systems.

The ROI is substantial because it prevents data breaches that could lead to significant fines. By continuously updating patches as per Tenable Security Center's reports, we have avoided customer data leaks.

Tenable Security Center is considered pricey compared to other solutions, yet relatively cheaper than some like Qualys. However, when compared to Rapid7, it is more expensive. I rate the pricing six out of ten.

I evaluated Qualys and Rapid7 before choosing Tenable Security Center.

Proper configuration and automation are key to success with Tenable Security Center. Automating vulnerability scans and notifications can significantly reduce manual repetitive tasks, leading to better efficiency and time management.

I'd rate the solution nine out of ten.

We use Tenable Security Center for vulnerability assessment purposes within our security infrastructure. The solution helps identify management-related issues and automatically forwards the ticket to our stakeholders, as well as an auto-alert mechanism. Additionally, we have integrated it with our SI solution.

The primary use case involves automated scheduled scans. We have established an asset inventory, and there is a scheduled quarterly automated scan. This process sends the results, thereby reducing manual tasks. The more automation we implement, the fewer errors occur, resulting in a faster and more efficient process.

We also use it for continuous network monitoring. We scan network devices such as Cisco routers, load balancers, and WAN devices. If any suspicious network activity arises, the system saves the results.

Our organization also uses Power BI. There are a lot of scripts that are already integrated to check compliance within the organization. We aim for at least 75% of the benchmark. Tenable's solution assists in representing the level of compliance achieved, whether it be 70%, 80%, 90%, or 95%. We have installed agents on various server types, and adding them to the scan does not require manual credential entry each time. The solution provides comprehensive results on the dashboard for each service by simply clicking on the play button.

The most important features are the dashboard and reporting. The dashboard provides statistics with graphs and bar charts for our management. We can be amazed at how much compliance and patch management are followed; everything can be represented in a single interface.

The solution is connected to our network. We can easily track it with the Tenable Security Center. Without the solution, it's very difficult to track whether or not a new asset is added.

The solution’s configuration is vast. There are so many configurations leading to confusion. It varies from organization to organization based on the Center and new compliance. Suppose some organizations follow the ISO Center. If your organization is a financial organization, it may follow PCS standards. If your organization is healthy enough, it may follow HIPAA standards. You can configure it according to the organization’s compliance. Hence, it's very flexible.

Additional costs are associated with using the solution, as additional scanners are required for different endpoints connected to the Tenable Security Center. If Tenable Security Center could extract information from these scanners automatically rather than manually, it would enhance user-friendliness for customers.

For example, suppose I manually conducted CIS hardening or compliance scoring in a separate data centre. These scores should also be reflected in the Tenable Security Center dashboard. Since the scanner is connected to the Tenable Security Center, the dashboard should display the direct scan results from the general security centre and the connected scanners.

There could be unusual activities or attacks with the rising AI-related issues or threats that the Tenable Security Center could track in the future.

I have been using the Tenable Security Center for 4.5 years.

The product is very stable.

I rate the solution’s stability a ten out of ten.

The solution’s scalability is good. If you have a license, it's very scalable.

Only two users are good enough for the solution.

I rate the solution’s scalability a nine out of ten.

There were no delays from customer support. They usually give instant responses for both online and local support.

Positive

Tenable is the most user-friendly solution in the market among the other competitors. I also use Qualys and Rapid7 in separate organizations.

The initial setup took very little time to deploy and more time for asset management. The selection of the assets depends on your organization. Considering the installation and normal scan, it took less than a day to deploy.

I rate the initial setup a nine out of ten, where one is complex and ten is easy.

The solution’s pricing is reasonable but depends on the country's foreign reserves. You have to buy it at the price of USD. Hence, it depends on your country's currency rate.

It is very difficult to manage internal servers from the server team. You should go for the cloud if you want to manage any extra hardware or VM.

We were able to integrate with other security solutions, like SIEM, and activate monitoring. There were no challenges in integrating it. However, it doesn't support all types of SIEMs except major SIEMs like IBM QRadar and Splunk.

I recommend first configuring your alert monitoring system and doing the configuration with the advice of OEM support staff. It's very easy to use. If you want to compare it with other solutions, you can use the beta version or demo version, and you will be confident and strong and use it happily and without any pain.

Overall, I rate the solution a nine out of ten.

It's a management tool. We are more scalable with the Tenable.io product. They are a security vendor with more than one cloud level. Now there are multiple products in my area.

It adheres to advanced security standards. It's mostly geared towards on-premise solutions rather than cloud-based ones. Many enterprises create views solely for internal units and prefer using internal tools without relying on external ones. It is chosen for its comprehensive system-wide solution. It continuously updates its sources to maintain current solutions. Security and confidentiality are top priorities; they avoid external leaks of information. Despite the misconception that such tools are primarily for cloud environments, Tenable manages its systems internally. This makes it a highly valuable asset in the field of data centers and database security, leveraging its own data centers effectively.

They have their own servers and prioritize trust. They address every compliance concern and offer options for automated and manual assessments. Tenable Security Center supports a wide range of applications and servers, capable of comprehensive scanning and handling of vulnerabilities. It can scan against the CI benchmark and provides standard dashboards for general product monitoring and scanning.

They are not currently handling call flows properly. Some call flows are being deleted from the registry but still show as active. Support is also lacking in onboarding properly in this area. This issue causes confusion and reflects poorly on their service. 

I have been using Tenable Security Center since 2014.

The solution is stable.

It is scalable for management in the market, compared to other products.

The initial setup is not easy because everything is on-premise. We need to enable specific ports for the engineering product, which are critical for internal purposes and cannot be easily changed. This complexity remains confined to the client side, where applications may require reboots.

Another issue arises with scanning and agent communication. While some agents communicate effectively with the Security Center, delays occur when numerous users access the service simultaneously, impacting real-time updates.

Managing involves two scanners and one dedicated server, requiring a week for proper setup and two personnel to maintain the system effectively.

While some clients focus solely on developing large-scale software solutions, the industrial sector is vast. Industries such as manufacturing and green technologies prioritize systematic design, maintenance of accounts, blueprints, and business identities—all of which necessitate robust data security. The investment in securing their data is crucial, ensuring that sensitive information remains protected from potential threats. Monitoring and documenting activities through systems like gateway or dedicated servers help management stay informed about ongoing operations and potential risks.

For enterprise customers, it's acceptable. However, for smaller enterprises or businesses, the budget may be too restrictive to consider such extensive solutions. When proposing to small-scale industries, they often show disinterest even when we offer a POC or trial. This reluctance is primarily due to cost considerations, which larger enterprises can manage more easily.

Tenable supports integrations with tools like Jira and Symantec, which are relatively easy to implement. However, when it comes to other cloud services beyond AWS and Azure, such as Oracle, support is less robust. Personal or niche cloud platforms may not receive adequate support.

There's a significant distinction between agent-based and non-agent-based approaches in Tenable's solutions. Agent-based scanning requires installation akin to antivirus software on servers, whereas non-agent-based methods operate differently. This difference impacts reporting and usability, particularly evident in Google Cloud environments where agent-based scanning is mandated.

Accessing and managing Tenable is straightforward for administrators, but specialist knowledge may be necessary for certain configurations or troubleshooting. Small-scale businesses implementing Tenable Security Center may find it cost-prohibitive compared to Tenable.io for cloud solutions, which offers more affordable options and promotions.

Overall, I rate the solution a nine out of ten.

I use the solution in my company for vulnerability risk assessment, and we are quite happy with it.

The tool's initial configuration is not so easy. The hardware requirements related to the tool need to be better because we need a lot of memory to achieve speed in the solution. If our company needs to react at times, we need to upgrade more memory in the hardware. In general, Tenable Security Center is a very good solution according to me.

I have been using Tenable Security Center for six months. My company works in partnership with Tenable Security Center.

Stability-wise, I rate the solution an eight out of ten.

Scalability-wise, I rate the solution an eight out of ten.

I use the solution for quite a huge amount of computers in my company, and I see that its scalability is quite nice since it offers an unlimited number of scanners, so I think it's ready for big enterprises.

In the Czech Republic, the tool is mostly used by medium and enterprise-sized businesses consisting of 1,000 to 15,000 users.

I rate the technical support a nine out of ten.

Positive

I have previous experience with Tenable Security Center's competitive solutions, and now I see why Tenable is okay.

I rate the setup phase a six on a scale of one to ten, where one is difficult and ten is easy.

The solution is deployed on the cloud and on an on-premises model, but our company mainly relies on the latter.

The solution can be deployed in a few hours since you need to download the tool's initial package, which is quite big, but once it is done, the deployment process becomes really fast and can be done in 20 to 30 minutes.

I rate the solution's price as seven on a scale of one to ten, where one is cheap and ten is expensive. The tool is quite expensive.

I don't use the product for compliance support.

In terms of the product's valuable feature for threat detection, I would say that the solution's reporting overview in the dashboard is nice. The prioritization of vulnerabilities in the tool is very nice.

The real-time monitoring capabilities of the product are very useful for our company, as they help us to be more in control and interact more actively.

The tool's dashboard and reporting capabilities match our company's needs since we are able to modify the basic view to create a new dashboard, and it works out very well for our needs.

Speaking about how Tenable Security Center's integration capabilities with other tools have affected our company's security operations, I would say that I have very little experience with the integration part, but from what I can see in the product's documentation and description, it can be really well-integrated with a lot of systems, like service desk in ServiceNow and other security vendors, which is good for our company. I can say that the integration capabilities of the product are good.

I would definitely recommend the product to those who plan to use it.

I rate the tool a nine out of ten.

We work as System Integrators and my team has experience in using Tenable Security Center. We provide solutions to work for various customers in BFSI, Telcos, and the Government sector. 

We use this solution mainly for vulnerability assessment and management. With the scanning feature set, we do the reporting and provide easy operation and implementation for our customers. 

The initial product price is quite high, and in our country, this market is very price sensitive, and we have multiple segments of customers. If I invest ten dollars on behalf of my customers and profit just five percent; in such a market, how does the solution provider ensure expansion from our side? This should be taken care of by the channel or legal system. Due to this, we need to work in a very tight situation. 

The solution is completely stable and operation is user-friendly. 

We are facing some challenges related to our channel. We are not having partner channel engagement if it's changed. Most probably due to the addressable market size, the solution providers are not putting that much purpose into the partners. 

I have been using the solution for one year. 

I would rate the stability a ten out of ten. The solution is completely stable. 

I would rate the scalability an eight out of ten.

For the first-time implementation, in a few cases, we needed to call technical support to help with license activation. Tech support was good. 

The initial setup of the solution is quite easy and the operation is user-friendly. The deployment time of this solution is not very lengthy. It depends upon the customers and how frequently they are providing us with the time slot to deploy. On-premise deployment doesn't take more than two to three days. Cloud deployment is also quite easy. 

This solution's price is quite high compared to other competitive solutions. 

I would rate the product a nine out of ten. I would advise to focus on partner relationship development and enablement. If your partner is not confident enough or they are not getting training or direct channel attachments, then it becomes difficult for System Integrator professionals.