Tenable One Exposure Management Platform facilitates the identification of software on external devices, providing live CVEs with compliance information essential for risk management and governance.
| Product | Mindshare (%) |
|---|---|
| Tenable One Exposure Management Platform | 5.8% |
| Pentera | 10.6% |
| XM Cyber | 10.2% |
| Other | 73.4% |
Designed for advanced risk and vulnerability management, Tenable One enhances cloud security, endpoint safety, and identity management systems. Supporting compliance standards like HIPAA and ISO, it seamlessly integrates with other tools and offers machine learning, vulnerability management, and effective visualization capabilities. Organizations appreciate its ease of setup and responsive support. However, improvements can be made in cloud functionality, reporting, and sensor updates to better meet expectations.
What are the key features of Tenable One?In the healthcare and finance industries, organizations utilize Tenable One to ensure compliance while managing vulnerabilities in cloud infrastructure, web applications, and endpoints. Its application dynamic testing is particularly valuable for securing internet-facing applications, maintaining a strong defense against potential risks.
Tenable One Exposure Management Platform was previously known as Tenable.ep.
| Author info | Rating | Review Summary |
|---|---|---|
| IT Security Manager at a insurance company with 1,001-5,000 employees | 4.0 | I've used Tenable One for nearly three years to manage vulnerabilities across internal, external, and cloud apps; it's stable, scalable, and effective, though the licensing model could be improved, especially for cloud-based vulnerability management. |
| Chief Information Security Officer at Jubil | 4.5 | I use the Tenable One Exposure Management Platform for managing vulnerabilities, cloud security, and application testing. While I find its features valuable and experience good ROI, sensor updates can be problematic, occasionally requiring sensor reinstallation on endpoints. |
| Information Technology Security Specialist at Digitaltrack | 4.0 | Tenable One Exposure Management Platform combines various vulnerability management tools, allowing comprehensive risk scoring and reporting. It's user-friendly and cost-effective, though it needs better support for Google Cloud and private cloud environments. Overall, it's a valuable solution. |
| Security Operation Coordinator at a financial services firm with 10,001+ employees | 5.0 | I use the Tenable One Exposure Management Platform for monitoring user activities and identifying data vulnerabilities. Its integration capabilities and machine learning features provide valuable insights, though improvements in access management and policy enforcement are needed. The product delivers a good ROI. |
| Network Security Engineer at np secure | 4.5 | I find Tenable EP excellent for risk management, offering easy setup, great stability, and responsive support. However, its reporting capabilities are limited and lack customization, which is a significant drawback for clients. |
We use Tenable One Exposure Management Platform for vulnerability management in our internal application and external application, and also for cloud security.
We are using the web application feature of Tenable One Exposure Management Platform.
We use the web application from Tenable One Exposure Management Platform for scanning our internet-facing apps.
We are satisfied with the risk assessment tools in this product because we also compare the vulnerability management with our exposure management in CrowdStrike.
We compare the benefits of Tenable One Exposure Management Platform with CrowdStrike to make sure if the vulnerabilities shown in Tenable One Exposure Management Platform are also caught by CrowdStrike, allowing us to analyze which ones we want to prioritize first.
We are quite satisfied with the platform's visualization options in Tenable One Exposure Management Platform.
We find Tenable One Exposure Management Platform vulnerability prioritization effective overall because, with the scheduled scan running on our set schedule, we can remediate any findings and check on the next schedule if issues are closed, making it much easier for us to monitor vulnerabilities.
We don't have any issues with Tenable One Exposure Management Platform.
It works well for us, but the only problem is the licensing aspect.
In the license, it becomes problematic because when we go to cloud security for vulnerability management, it will take five licenses instead of the one-on-one license that vulnerability exposure management requires.
The license needs to be reviewed.
I have been working with Tenable One Exposure Management Platform for almost three years.
It's stable; we did not face any issues.
The solution is scalable and easy to scale.
I never contacted Tenable One Exposure Management Platform support for any issues on the platform.
Negative
We decided to migrate because it's easier on the cloud.
We don't need to build our own infrastructure for that.
The initial setup for Tenable One Exposure Management Platform is straightforward.
We have seen a return on investment because it helps us find vulnerabilities before they happen.
I think the price of Tenable One Exposure Management Platform is reasonable for us.
I advise those considering Tenable One Exposure Management Platform to use it because it makes it easier for us to automate the vulnerability management process. On a scale of one to ten, I rate this solution an eight out of ten.
I use this solution for vulnerability management for the infrastructure, one cloud security, CSPM, and application dynamic testing.
The feature of vulnerability management and discovery is what I use. While no specific improvements were mentioned, I have not experienced any difficulties or challenges.
There is not much room for improvement. However, the sensor update is a challenge that Tenable needs to address. Sometimes they behave abruptly, requiring me to rework reinstalling the sensors on the endpoints.
I have used the solution for the last two plus years.
The customer service team is pretty supportive. They have supported me multiple times, and I would rate them eight out of ten.
Positive
The initial setup is pretty easy, taking around four to six weeks. I have one main console. Deployment of the agent takes a bit more time and depends on the organization.
I believe there is a significant return on investment.
The setup cost is reasonable.
I think it's a good product for risk-based or exposure-based vulnerability management. It gives me the ability to identify potential weaknesses in my environment quickly. Once those vulnerabilities get identified on the console, it is only a matter of performing those actions.
I would rate it nine out of ten.
It's a product that combines Tenable.io vulnerability management, endpoint security, and cloud security, covering cloud application vulnerabilities, web application vulnerabilities, and identity management systems.
With Tenable.one, we can manage vulnerabilities and view our entire risk scoring. We can see information about our cloud infrastructure, web applications, endpoints, and even external logins from outside the corporate network.
We can easily identify the approach being used or the software running on those external devices. Organizations can also view live CVEs (Common Vulnerabilities and Exposures) with compliance information, which helps with risk and governance reporting. It covers other compliance data as well, like HIPAA and ISO standards. The scoring provides live data, whether it's from the cloud or application APIs.
It covers the entire IT environment. There's also tagging and grouping, so we can group and tag critical assets. We can also set up project alerts and send them via email.
The Tenable reporting part is very user-friendly. We can generate reports or customize them within the tool. I would rate it a nine out of ten.
Tenable has to improve its cloud solution. They're only supporting AWS and Azure.
Tenable partially supports Google Cloud but not fully. Tenable needs to give private cloud also.
So, Tenable needs to provide a better way to manage private clouds. They have to cover all cloud environments.
I've been using it for the last two years. I'm a partner and I also support customers.
It is a 100% stable product.
It's very scalable. We can monitor each and every person and asset. We have performance metrics, and we can focus on specific areas.
The customer service and support are good.
Positive
For me, the setup has been an easy process. It takes three days per segment. Per segment means I mainly get cloud security's individual part, Tenable.io's individual part and the web application scanning (WAS) is also an individual part.
One guy is enough if he has an awareness of the cloud, the application, and its infrastructure. For Tenable, we need support from three domains.
Once we install Tenable in the studio, all the scanning is taken care of. No need to maintain anything, and one network person is enough for that. And SOC.
It's saving many things. If you go for each individual solution, for example, each cloud platform, web application, server, or endpoint has a different solution. Many products provide different solutions for each platform. But Tenable consolidates four into a single solution. From that point of view, it's cheaper than some other third-party vendors.
It's very expensive. I would give it an eight out of ten.
Overall, I would rate it an eight out of ten.
I use the product for control and visibility of all the user activities. I check if we have any vulnerabilities in the data. Mostly, I check if a privileged user is doing something wrong.
The product gives me visibility into user activities. They provided me with enough information to create a use case for privileged escalation. I also find some vulnerabilities which could be exploited to damage our company.
The solution enables integration with other solutions. It also provides machine learning features. The product gives us a lot of insight. It would be very difficult for us to do this manually.
Access management must be improved. The access manager, security tool, and access control need very big improvements. It would be nice if the product provided an agent for enforcing policies. For now, we can detect the violations but not respond. If we could enforce policies, it would be a quicker way to block something.
I have been using the solution for two months.
I rate the solution’s stability a ten out of ten.
I rate the tool’s scalability a ten out of ten.
The official language in Brazil is Portuguese, and the support team has difficulty speaking it. Not all my technical employees speak English, so I have some difficulty with the language.
Positive
The initial setup was very simple. The product is deployed on the cloud.
I got very good returns from the product.
The pricing is fair.
I recommend the solution to others. Overall, I rate the product a ten out of ten.
I primarily propose the solution to clients to help their companies manage risk. It's used mostly for risk management. It's great for endpoints, servers - basically everything. If a company wants to manage, analyze, or investigate rich, they can use this product.
If a business is at risk or has something compromised by the hacker, it will impact all of the business. It's great at helping manage risk to protect a company.
Tenable EP is a great overall product for our customers.
It's great at helping customers to identify current risks.
It helps customer manage their risk.
Users can effectively analyze risk and can assign team members to take a look at items as well.
The solution is very easy to set up.
Technical support is very helpful and responsive. They have been excellent.
The pricing is pretty good.
The product has limited reporting capabilities and it isn't great at allowing for customization in reports. It's one of the downsides. We get a lot of feedback from customers expressing their concerns in this particular area. They should be able to offer full-scale reports that are completely customizable to clients.
I've been dealing with this solution for a while. I have had experience selling it for about six months or so.
The stability is good, whether a client is on-premises or on the cloud. There are no bugs or glitches. It doesn't crash or freeze. the solution is very good. It's reliable.
Technical support has been great. We've been quite pleased with their level of attention. We're satisfied with the assistance they provide. Their response times in particular are very fast.
The initial implementation is easy. It's not hard or complex. A customer should be able to handle it quite easily. They can set it up either on a cloud or on-premises, depending on what they need, and it's just as simple either way.
We find the pricing to be reasonable. It's not too expensive.
I'm a reseller. I sell Tenable to customers in the Cambodian market.
I'd rate the solution at a nine out of ten. Clients have rarely been quite pleased with its capabilities, aside from the reporting. That said, it's one of the top products on the market, and companies, in general, will likely be happy with it.
