Tanium Reviews

We primarily use the solution for inventory and incident response for the most part.

The inventory aspect of the solution has been the product's most valuable aspect for us so far.

The scalability is very good overall.

It's a really good tool. 

For inventory purposes, it's from one of the best things on the scene, as you can get live inventory. 

I like the architecture for a vulnerability scan, for example, as it doesn't put a whole lot of load on the asset. It basically queries. This is not a hub-and-spoke. It's more like a circling of the wagons that all the other assets in the circle or in that particular chain can report on things, that have not logged into Tanium, can report on each other, can grab near real-time data. For incident response tasks, all these tasks can get done in minutes with minimal disruption to the end-user.

The solution can give a lot of false positives. It's an aspect of the solution that could be looked at and worked on.

If you deploy all the threat intelligence rules that come with it, you may spend a lot of time suppressing some of the false positives as some of them are very vague. You'll have the indicators due to the fact that you can suppress by hash or by pass or by command and parents process. However, that information is often very limited. You may get an alert for common language image load which can be a hacker technique, however, it's also a normal process between valid Microsoft processes, between the Msiexec, or some sort of system process. 

It's frustrating that there's not enough data - at least that I've found - to be able to determine whether something is a false positive or true positive. Whether it should be suppressed or whether you should let it go, the number of false positives you may have to deal with, if you enable all of these sources, could be over a hundred thousand.

The scalability can be challenging, depending on a company's setup.

The ability to calculate risk with one query would be useful. In other words, to be able to combine known vulnerabilities on an asset with known threats that are targeting that vulnerability from Intel. 

Being able to determine some way or another, which processes you prefer would be ideal. There should be more access to automated processes. Somehow you should be able to determine the business value of that asset and be able to have a true risk meaning and a true way to bubble up these high-value, high-risk assets. They need to get more attention. The solution needs some sort of risk engine that takes into account threat vulnerability and business value.

I've been using the solution for less than a year. It hasn't been that long.

The stability is actually quite good. There are no bugs or glitches. It doesn't crash or freeze. Its performance is reliable.

The scalability isn't as straightforward as it seems in that adding more assets. Sometimes it depends on where those assets are - such as remote offices that have different controls. If it's a large organization that has bought other businesses, then there are different architectures and different protections and protocols. In that sense, Tanium may have difficulty with some of those different architectures due to the fact that you may have to go and troubleshoot one type also another. Of course, the most painful part is having to put RDP into assets and try and restart the services. 

The technical support on offer is below average.

For some of our other systems, I have a phone number I can call. I wait a few minutes, I get a ticket, I get a live agent. Then we troubleshoot live. Tanium doesn't have that. Instead, you can send in an email and when the technical support person has time, your cam will contact you. It's painful, that part, they get a C-rating on their level of support. We aren't quite satisfied.

I can't speak to the implementation process. I can't comment on if it was a difficult or straightforward process or how long the deployment actually took.

I can't speak to if the solution was delivered by a consultant or integrator or if it was handled in-house.

I'm a customer and end-user.

We are using the most current version of the solution in our organization at this time.

I'm not sure how the solution is typically deployed.

It's great for inventory and even incident response. It's right up there with some other top-notch products. However, in terms of the implementation, getting everything on board, all that sort of thing, a company initially setting it up is going to need help troubleshooting. I would advise a company takes the time to definitely engage with some sort of professional services. It's going to be required.

I'd rate the solution nine out of ten.

We also use BigFix. Our primary use case for Tanium is for tool consolidation. Tanium is already equipped with multiple capabilities that BigFix has. These are almost parallel tools, running with similar kinds of capabilities. We are planning to flip to Tanium, which might primarily be used as a management solution. Overall, we use Tanium to interact and discover related queries. It is also used as our system information and event management tool. 

I'm not so familiar with the tool but I like the interaction of the console to the picture. Patching is the primary model I have been focusing on for the last couple of weeks. So I have created a proof of concept environment and have been checking the available features.

Tanium comes with multiple models, so definitely the threat protection is the primary opportunity area my organization is looking for. It is going to be primarily used for event collection, which is being fed into our centralized tools for tracing any kind of vulnerability or any kind of uneven situation. 

I have been using Tanium for six months. 

In my area environment, we are using this for event collection. We are trying to explore the virtual environment and the compliance evaluation of overall tools. At the first stage, it captures very lightly from servers. It scans the event. They are pretty basic, so from a performance aspect, we have not seen any issues so far.

When we try to use it for patch deployment, we're going to deploy a bigger package and we'll see. We'll put more load on the environment then we'll see how efficient it is. But at this stage, we have not used it. 

I have never interacted with technical support. At this stage, my subordinate group is handling it. But they are pretty satisfied with the experience.

Tanium has certain privileged features compared to BigFix.

It has offline patching. 

It's definitely not complex. It is pretty user-friendly and it's a solid tool enterprise to use. It is equipped with whatever generic solutions are available within marketing a parallel kind of tool. There are a couple of other tool environments that give it a cutting edge. It is flexible. 

The best part about it is that it is very fast in terms of deployment. It is fast in terms of gathering information but it works with a peer mechanism. 

From a licensing perspective, it is a bit expensive if I do compare them with basic settings. It is nearly two or two and a half times more expensive. 

From a tool perspective, it is capable. I do not want to comment on how efficient it is because ultimately, I'm not aware of its capability. My opinion is that it is definitely a capable tool and it all depends on planning. It's about how to plan your implementation and leverage its available features. It is very fast. Asset discovery is also very fast.

I would rate Tanium a nine out of ten. 

Most of the time, agent-relative issues have to be more equipped with self-healing features. At times, the agent is there, but for some reason, it doesn't report a status. It gives certain problems that are obviously agent-based.

Tanium can be deployed on the cloud and on-premise.

Tanium's most valuable features are patch management, inventory, and distribution software.

The upgrades in Tanium are easy because it is in the cloud. The upgrades are embedded in the solution, they do the upgrades. When the customer does not use the application and it's no problem. When using other solutions you need to do the upgrades through a technical team, that can apply the upgrades when agreed with the customer.

The main issues are the network connection because different customers have issues with their networks. It's difficult implementing this type of solution because the network is the main feature in the architecture for these types of solutions. Tanium could improve by creating some network optimization.

I have been using Tanium for approximately one year.

The support Tanium provides could improve by reducing the delay times for issue responses.

Tanium is a more expensive solution in Latin America than some of the competitors, such as BigFix.

I rate Tanium an eight out of ten.

Our primary use case of this solution is for endpoint protection and, more particularly, the patching. We are integrators and customers of Tanium and I'm a channel director.

The security features are very valuable to us as is the fact that the solution is easy to use with a quick implementation time. 

Our biggest issue with the solution is its lack of mobility. Also, when it comes to deploying the SaaS, it's more difficult to deploy on-prem.

I've been using this solution for five years. 

The stability of the solution is good. 

The solution is scalable. We currently have 1,500 mainly end users using this product. There are approximately 15 additional people working in the IT department that also use this solution. 

I have never used the technical support so can't comment. The community is pretty good although there's not enough technical information available. The community's helpful for the day-to-day business.

We previously used SCCM and we moved to Tanium because of the number of platforms we can manage with Tanium which is much greater than SCCM offers. SCCM is only Microsoft and we needed to cover all the platforms such as Linux as well as others.

The initial setup was relatively easy. Installation and deployment took less than a week. 

I would recommend the solution for what it is, but not for what it is not. It's actually lacking one major feature and that is mobility which is very important. The lack of this software is why I wouldn't recommend Tanium but in terms of security, deployment and installation, the solution is fine. 

I would rate this solution a seven out of 10. 

It's used at an enterprise level to monitor natural behavior and point behavior across the organization.

Tanium has made the process of detecting threats more proactive with its detection. So, the process is easier and more efficient.

The solution has helped to increase staff productivity. It has made the process a lot quicker.

Being able to go as granular while looking at our network and users. Also, getting as much detailed information on analytics, which is good.

• I would like to have more integrations and custom plugins to input. Integration is always a big deal in a lot of different environments.
• Custom modules would be nice.
• Visualization of data could be added to it. 
• Making the initial process easier always helps.

It is pretty stable and regularly maintained. Its updates are good.

It is pretty scalable. We use it on a pretty broad scale, so we have grown as the company's grown.

I don't deal with technical support directly.

It was pretty straightforward. I don't think it took that long to get it integrated.

From an efficiency and team perspective, we have seen a decrease in mean time to detect and respond to threats.

We look at what holes that we have in our system. The landscape is changing, and we look at what we could add to help improve detection and improve the visibility into our network more. So, based off of that, the team evaluates new products constantly. We try them out, then test them, and decide if they want to keep them.

We tested three or four solutions, going through one or two month trials. We chose this solution based on our testing, the scalability of our organization, and product cost.

We use it pretty regularly on quite a large scale. I don't think I've heard anyone have any major complaints so far, just the little things.

We have been growing quite a bit, so we have been trying out bigger solutions. From a maturity standpoint, we have been bringing in new environments relatively quickly and adding to our existing ones. So, scalability has been a big deal for us.

Try it out. The best way to test any of these technologies is implement them with real data. See how your environment works with each network and compare them.

I use Tanium for patching operating systems, upgrading applications, and watching and maintaining Windows endpoints.

Our patch rates have never been better. With Tanium, we see a big difference in patching efficacy.

The ability to run real-time queries is highly valuable. This allows us to get data back about our endpoints as soon as we need it instead of waiting for inventory check-ins.

I would love to see more new user training available on their site.

I have used the solution for 10 years.

It is worth the cost, so go for it.

I love it. The insights we gain from our endpoints and the management capabilities that Tanium provides have been a boon to our operations and security. We feel much better since running Tanium and supporting other Tanium customers.