2021-02-02T18:29:00Z
Jairo Willian Pereira - PeerSpot reviewer
Information Security Manager at a financial services firm with 5,001-10,000 employees
  • 3
  • 65

Vulnerability Management and Risk Management Integration

Does anyone have recommendations about methodologies (e.g. use of FAIR framework), plug-ins (ETL schemas, FOSS add-ons) or commercial/free solutions (like Kenna) that can help us during "integration, transformation and consolidation" of vulnerability into risks (from Tenable.IO to Archer)?

2
PeerSpot user
2 Answers
JD
Chief Executive Officer at a tech vendor with 1-10 employees
User
2021-02-05T01:41:05Z
Feb 5, 2021

Yes, take a look at DeepSurface. It’s designed to automate the process. 

Jairo Willian Pereira - PeerSpot reviewer
Information Security Manager at a financial services firm with 5,001-10,000 employees
Real User
Top 5Leaderboard
Feb 8, 2021

@James Dirksen thanks, i'll check it.

PeerSpot user
Product comparison that may be of interest to you
User
2021-11-06T13:24:15Z
Nov 6, 2021

Clear use with the NIST compliance framework, Archer IRM 6.9.sp3.p2, use of pre-processing out of Archer and now integration with agnostic tools. 


FOSS or premium brands - all depends on your supply chain risk. 


Support for qualitative nice to get a bow-tie on when quantitative data works for you. Add your methods, AWARE, FAIR, COBIT, ATT&CK; all visuals.

Find out what your peers are saying about Tenable Network Security, Qualys, Morphisec and others in Vulnerability Management. Updated: November 2022.
656,862 professionals have used our research since 2012.
Related Questions
Secure By Design - PeerSpot reviewer
Director at Secure By Design llc.
Nov 16, 2022
Hello peers,  I am currently researching Tenable.sc and Tenable.io. What are the differences between the two? I need to put a briefing together for a client.  Thank you for your help.
Miriam Tover - PeerSpot reviewer
Service Delivery Manager at PeerSpot (formerly IT Central Station)
Oct 4, 2022
Hi, We all know it's really hard to get good pricing and cost information. Please share what you can so you can help your peers.
2 out of 8 answers
HK
Archer developer
Oct 13, 2021
The price of RSA Archer is good. The price isn't too high considering it is a leading tool in the market. However, some Level Three companies cannot afford this license because they're charging too much. For example, the price might be reasonable for Level Five companies doing a four-month project, but they have to lower prices to make the product more competitive in the market for companies below Level Three.
Nov 6, 2021
Hi Miriam,  A problem statement only fits with the scope of work. Most resellers provide deals and available. See many underestimate delivery timeline to their environment, some bypass key areas to return later, so use-case considerations with the base product and add-on as buildout, which may delay procurement and costs will change. Over purchase license use cases or find readiness teams, tiger team, not complete for integrations.  Nice to have executive by in, they're not doing this work, budget your wave delivery and phase approach - reseller contracts may be easier to consume. A lot to do with big applications, results, and many corporate silos to onboard.  Try other products, perhaps a project that doesn't need an ultimate product start-up, and plenty of migration use-cases with Archer IRM being the end result.  Stewart.
Related Articles
Netanya Carmi - PeerSpot reviewer
Content Manager at PeerSpot (formerly IT Central Station)
Apr 7, 2022
PeerSpot’s crowdsourced user review platform helps technology decision-makers around the world to better connect with peers and other independent experts who provide advice without vendor bias. Our users have ranked these solutions according to their valuable features, and discuss which features they like most and why. You can read user reviews for the Top 5 Vulnerability Management Tools to ...
Evgeny Belenky - PeerSpot reviewer
Director of Community at PeerSpot (formerly IT Central Station)
Aug 2, 2022
Dear professionals, Welcome back to PeerSpot's Community Spotlight! Below you can find the latest hot topics posted by your fellow PeerSpot Community members. Read articles, answer questions, and contribute to discussions that are relevant to you and your expertise. Or ask your peers for insight on topics that interest you! Trending Here are some topics that your peers are discussi...
See 1 comment
Evgeny Belenky - PeerSpot reviewer
Director of Community at PeerSpot (formerly IT Central Station)
Aug 2, 2022
@Chris Childerhose, @PraveenKambhampati, @Deena Nouril, @Shibu Babuchandran and @reviewer1925439, Thank you for contributing your articles and sharing your professional knowledge with 618K PeerSpot community members around the globe as well as with a much bigger readers audience!
Evgeny Belenky - PeerSpot reviewer
Director of Community at PeerSpot (formerly IT Central Station)
May 2, 2022
Hi peers, We're happy to share our new bi-weekly Community Spotlight with you. Here you'll find recent contributions by PeerSpot community members: questions, articles and trending discussions. Trending See what your peers are discussing at the moment! What to choose: an endpoint antivirus, an EDR solution, or both? What is your recommended IT Service Management (ITSM) tool in 2022? W...
Product Comparisons
Related Articles
Netanya Carmi - PeerSpot reviewer
Content Manager at PeerSpot (formerly IT Central Station)
Apr 7, 2022
Top 5 Vulnerability Management Tools in 2022
PeerSpot’s crowdsourced user review platform helps technology decision-makers around the world to...
Evgeny Belenky - PeerSpot reviewer
Director of Community at PeerSpot (formerly IT Central Station)
Aug 2, 2022
Community Spotlight #19
Dear professionals, Welcome back to PeerSpot's Community Spotlight! Below you can find the lates...
Download Free Report
Download our free Vulnerability Management Report and find out what your peers are saying about Tenable Network Security, Qualys, Rapid7, and more! Updated: November 2022.
DOWNLOAD NOW
656,862 professionals have used our research since 2012.