Vulcan Cyber Reviews

My main use case for Vulcan Cyber involves vulnerability prioritization and tracking remediation, including exposure visibility and risk-based vulnerability management. We mainly use it to centralize findings from different tools to prioritize remediation, reduce noise, and focus on vulnerabilities with higher business impact.

One specific scenario where Vulcan Cyber helped prioritize a vulnerability involved managing large volumes of vulnerabilities from different sources through Qualys. Rather than manually reviewing findings tool by tool, Vulcan Cyber helped with centralized visibility and prioritized remediation based on severity, exploitability, asset context, and business risk. This focus enabled our team to concentrate on what truly mattered first, thanks to Vulcan Cyber's own risk evaluation.

One strong use case I can add is remediation coordination, where our team can identify issues, prioritize them, and improve communication with the remediation owner instead of just forwarding the vulnerability list. This simplification enhances the remediation process for the teams involved.

One of the strongest features Vulcan Cyber offers is risk-based prioritization, and another important capability is the aggregation of findings from multiple tools into a single view. It also provides exposure visibility, remediation workflow, and contextual prioritization, which are very helpful to our day-to-day work.

Out of those features, I find myself relying on risk-based prioritization the most in our day-to-day operations because security teams usually deal with thousands of vulnerabilities, and not everything can be fixed immediately. Vulcan Cyber helps us prioritize based on context such as exploitability, exposure, severity, asset importance, and business impact. This prioritization reduces our manual effort and allows our team to focus on high-risk findings.

Vulcan Cyber also helps improve visibility and reporting for remediation tracking, enabling teams to get a more structured view of remediation progress and exposure management instead of isolated findings.

Vulcan Cyber has had the biggest positive impact on my organization through the improvement in prioritization and remediation efficiency. Our security team spends less time manually reviewing findings and more time focusing on important risks.

In terms of specific numbers, we have seen a 30% reduction in time spent by prioritizing vulnerabilities, which has improved our vulnerability management maturity as teams move from vulnerability overload to risk-focused prioritization. This change allows them to dedicate more time to the prioritization part, improving decision-making for remediation and reducing unnecessary workload.

Vulcan Cyber's automation capabilities significantly reduce our manual work as it consolidates and correlates the top remediation actions. When vulnerabilities are mitigated, it informs us of how many will be remediated within our environment and prioritizes the top five remediations.

Vulcan Cyber helps us handle compliance requirements by ingesting logs from multiple platforms. For audit purposes or compliance issues, we share Vulcan Cyber reports with auditors when they require logs, such as for PCI.

Vulcan Cyber supports collaboration among different teams and departments in our organization effectively. We have integrated Jira and ServiceNow with Vulcan Cyber, making it easy to create incidents directly via Vulcan Cyber for remediation tracking. We have created a campaign within Vulcan Cyber to track remediation progress, allowing us to monitor whether the team is working on vulnerabilities and whether any have increased.

One important area for improvement could be reporting flexibility and dashboard customization, as this would need to align with specific organizational requirements. I believe it could be better.

Additionally, UI simplification and more customization around workflows and reporting would further enhance the analyst experience.

Improvements in executive reporting, more customizable dashboards, and deeper workflow flexibility would enhance operational usability further.

Vulcan Cyber handles scalability well in our organization. It maintains stability for visibility and remediation tracking, avoiding the need for additional storage, as it is cloud-based. It scales well in our environment, even as vulnerability data and assets grow significantly.

I have been using Vulcan Cyber for two years now.

Vulcan Cyber has remained stable for vulnerability visibility and remediation tracking, with no outages or reliability issues experienced.

Vulcan Cyber scales effectively in our environment, managing increasing data and user numbers. We have scheduled data ingestion for nighttime when no one is working, allowing it to ingest and normalize data within Vulcan Cyber.

My experience with customer support for Vulcan Cyber has been positive. When we needed assistance, we created an incident for the support team, which responded in a timely manner. The integration support was also good, and the onboarding guidance was especially helpful.

Previously, we used Kenna Security before switching to Vulcan Cyber. Kenna often worked with a fragmented vulnerability management approach, which prompted our move to the centralized, prioritized platform that Vulcan Cyber offers.

We have not purchased Vulcan Cyber through the AWS Marketplace but rather directly from Vulcan Cyber itself.

Integrating Vulcan Cyber with our existing security tools and processes is very easy because it has connectors that allow us to integrate multiple vulnerability management or ticketing tools. It serves as a single platform where we can automatically ingest and prioritize risks based on set rules. We have integrated ServiceNow into our tool, allowing us to create tickets directly and track our remediation efforts.

The biggest return on investment with Vulcan Cyber is in time savings and prioritization efficiency, as teams can focus quickly on high-risk vulnerabilities instead of manually reviewing thousands of findings.

My experience with pricing, setup cost, and licensing for Vulcan Cyber indicates that pricing typically depends on the scale of integrated assets. Organization values are usually evaluated based on their remediation efficiencies, and I do not have much experience regarding the pricing aspect since the decision was made by leadership.

We did not evaluate multiple options before choosing Vulcan Cyber. The security team compared it with other exposure management and vulnerability prioritization platforms. Based on integration and prioritization logic, we conducted a POC with Vulcan Cyber, which met our needs, eliminating the need to evaluate any other products.

My advice for others looking into using Vulcan Cyber is to first understand their vulnerability management challenges. If your organization struggles with vulnerability overload, prioritization, or remediation visibility, then Vulcan Cyber provides strong operational value.

I would describe Vulcan Cyber's user interface as adequate, but there are gaps that need addressing. It does not currently provide a customizable dashboard, and deeper workflow flexibility would enhance our operational efficiency.

One specific scenario where Vulcan Cyber helped prioritize a vulnerability involved managing large volumes of vulnerabilities from different sources through Qualys. Rather than manually reviewing findings tool by tool, Vulcan Cyber helped with centralized visibility and prioritized remediation based on severity, exploitability, asset context, and business risk. This focus enabled our team to concentrate on what truly mattered first, thanks to Vulcan Cyber's own risk evaluation.

I receive updates or new features from Vulcan Cyber frequently. The upgrades are made wisely, so initially, there were fewer connectors available, but now they have evolved to include multiple connectors and reports that support our day-to-day operations.

My overall rating for Vulcan Cyber is 8.5 out of 10.

The customer previously used Cisco Kenna but discontinued it after two years of implementation, leaving them without a threat exposure management tool. Our company provides managed services to the customer. We wanted to provide them with enhanced service, specifically focusing on threat exposure management capabilities. We wanted to proactively monitor vulnerabilities and promptly manage stakeholder communications even with limited resources. Prioritization was crucial due to the multiple security tools in use, such as Qualys, SentinelOne, and others. We wanted a unified view of all vulnerabilities and threats.

Vulcan Cyber gives the remediation team the focus points. We have multiple tools, each one with its own prioritization. It helps us in doing the prioritization irrespective of where the data feeds come from. We are able to prioritize everything in one pane of glass based on the customer's business context, which is key for the business. In addition to prioritization, it also tells us which attack vector we need to focus on, where we are lagging, and which area of business has more vulnerabilities.

It provides a single pane of glass. Everything is in one place. For example, we previously did pen tests in silo. The team did the pen test and shared the reports with respective stakeholders. There was no prioritization. With Vulcan Cyber, we are ingesting the pen test report as well. It has the prioritization capabilities. It also depends on how you configure it, but once you configure it, it does the prioritization irrespective of where the source feeds are coming from. You know that out of 1,000 vulnerabilities or assets, you only need to focus on 200. This is the benefit that we get from it. It also gives the leadership team visibility into the risk posture, threat posture, and threat exposure.

A significant benefit is that manual notifications to support teams are not necessary. Once uploaded, automatic playbooks can trigger actions when new vulnerabilities or critical issues arise, ensuring no delays. This approach achieves KPIs with our customers by triggering actions immediately when critical issues are detected. There is still untapped potential in Vulcan Cyber. There are capabilities that we are not using due to customer KPIs, and I hope that in the upcoming financial year, we will be able to fully utilize its capabilities. It is not a limitation of Vulcan Cyber. It is because of the customer's way of working. The culture change needs to be there. At this point, we are following the TruRisk score provided by Qualys and would like to come out of it.

Being able to ingest pen test reports is valuable. We have also integrated Snyk, which also gives prioritization. They have also reworked the SentinelOne connector. This way, we are able to only pull server-related information. That is good.

The most notable aspects include having prioritization capabilities and custom scripts. The flexibility to upload custom CSV files for host inventories or vulnerabilities is pivotal. 

Being able to inject pen test reports, which is rarely supported by other products, is another key strength. The product's integration capabilities, especially in terms of uploading CSV files for inventories and pen test reports, along with email triggering and automation playbooks to notify people via email or Jira cards, are noteworthy. 

There are several areas needing improvement. The product helps, but the reporting relies heavily on Power BI. It is limited to graphical views and requires additional filtering, posing operational challenges. The inability to download specific asset details directly from the Power BI portal is a drawback, particularly for non-technical users, though it provides high-level executive summaries. The reporting model should be enhanced so that we have the flexibility to download.

We have requested a few features, and they are open to accepting those requests. It needs ITSM improvements. It has out-of-the-box integration with ServiceNow, but the customer is using BMC Helix ITSM. We would like an integration with BMC Helix ITSM.

When uploading CSV files without an out-of-the-box connector, duplicate entries for assets occur. We have already reported this to them, but we are not sure when they will fix it. It will significantly benefit if we can directly upload business context information from CMDB without manual merging efforts.

It can also have automatic remediation capabilities through SCCM or something else.

We began the licensing on May 1, 2024.

We reported a few bugs, and they were addressed promptly, which is common with many products. I reported some minor operational bugs to the customer success manager, who stated that critical issues are prioritized due to limited resources.

It has not exhibited any portal issues since I started using it. The product's stability is commendable, with no noticeable lags or slowness. 

Scalability has not presented any issues from my perspective because it operates as a SaaS model. I would rate it ten out of ten for scalability, as integration with multiple connectors is possible without exceeding licensing limits. I am confident that license consumption is managed effectively, preventing any negative impact on the product's performance.

We have around 49 users from the security and the infra teams.

I would rate their customer support an eight out of ten because we have to use separate credentials for the help portal. We cannot use Vulcan credentials. 

Overall, their responsiveness and ability to provide insights are commendable, despite occasional delays in feature requests. The ITSM integration with BMC Helix has been pending for over a year.

Positive

I did not previously work in threat exposure management and have not seen or used Kenna. This product provides a unified view and offers more benefits than other vulnerability management products. The acquisition by Tenable is expected to add value, as Tenable is a leading industry product. Collaboration between two industry leaders promises positive outcomes and the opportunity to pass those benefits on to our customers.

It is SaaS-based. The setup is relatively straightforward, involving tenant configuration and integrations. The customer environment required accommodating various internal processes, but there were no issues on the product's side. Adapting to the customer's ways of working is necessary on a case-by-case basis.

The implementation was smooth and benefited from their technical support throughout, including training and knowledge sharing.

The project plan initially aimed for a six-week setup though internal processes extended this to six months. Adaptation to the customer's agile methodology and MVPs was vital. Despite internal delays, this comprehensive approach was successful. Overall, it took six months.

It does not require any maintenance from our side. We just pull the information. No downtime is required for any of the integrations.

It saves a lot of time. Our security team probably spends 15 minutes instead of two hours daily notifying the teams.

For organizations with limited resources managing multiple security tools, a solution like Vulcan Cyber can be beneficial. Automatic remediation capabilities would positively impact deployment teams by reducing manual report generation and aligning with maintenance schedules. Automatic remediation remains an opportunity for further enhancement, with my customers' interest noted during recent discussions.

I would rate it a seven out of ten. There are areas to improve, such as ITSM integration is only limited to ServiceNow, and there is Jira integration for project management. It needs integration with more products and automatic remediation. Reporting needs enhancement, as downloading from Power BI is limited. Improvement in these areas could lead to ratings of eight or nine. Automatic remediation can potentially bring it to a ten.

We use centralized vulnerability management, consolidating all of our security tools to provide a comprehensive view for reporting and threat analysis. It is also utilized for threat intel. 

The EPSS scoring is a significant feature. By utilizing EPSS, we can effectively pinpoint the vulnerabilities in our large network, allowing us to focus on the top vulnerability issues.

Vulcan Cyber's single pane of glass for centralizing our security data is very important. Right now we've been doing a POC for a very long time. We haven't actually put it into production as of yet. One thing we're doing is actually generating accounts, and we are trialing it on a test-case basis right now.

It has been able to reduce risk noise on the network to help our team focus more on some of the threats that we have.

It's good for centralizing everything into one data lake. 

The ability to deduplicate vulnerability and asset data at scale is pretty good. Usually, when we validate the access and the vulnerabilities, for the most part, it's pretty accurate. However, if there's a problem with the connector if the connectors are still processing that data, the data is kind of skewed if the connector is still processing the data.

We wish we had more insights into how they weigh the risks associated with the threat intel. 

It's pretty good at triaging risks. However, it's been touch and go. Some of the recent data has been off. Some of the dates have been incorrect. In terms of the the way Vulcan Cyberseparates the CVEs from the QIDs, some of those CVEs are actually no longer active on the network, yet from time to time, it will state that it has detected those vulnerabilities.

More training resources are necessary. Better training, documentation, and videos would be beneficial. While the features aren't entirely new, not many companies offer them, so many people aren't aware of their capabilities. When using the tool, there isn't sufficient training available. 

The main support is based in Vulcan Cyber, and their work schedule doesn't align with ours, as they are off on Fridays and Saturdays. We've faced situations where we required support on a Friday, and support wasn't available.

In total, I've used the solution for about a year and a half.

We do have stability issues from time to time. The solution can occasionally be problematic due to our large network size. The ingestion times from the connectors can be lengthy. We've requested multiple times to either speed up the connectors or allocate more resources so that they can process data faster. That's the main issue we encounter.

Scalability is adequate for our environment, though challenging. It's doing okay. Considering our large network size, scaling has been difficult.

Support's response is fast during their working hours. 

We are experiencing a latency issue with some data that is taking a while to rectify. They haven't provided an estimated time frame for resolving these issues. 

Positive

I have used other solutions and I was involved in the POC. Out of the three solutions I've used, Vulcan Cyber is the superior option. Compared to other tools, the effectiveness, however, there is a huge learning curve for some people. Once you learn to utilize the tool and queries, it's very effective.

I was part of the initial deployment. It was pretty easy. To fully deploy, it took about three or four weeks.

There is a little bit of maintenance required. The accounts for the collectors are still active, if the certificates expire, you need to check them. That, and validating the data is necessary. It can be time-consuming. It is what it is. 

At the time, it was just me handling the implementation. 

I don't deal with the pricing of the solution. I'm not a part of that department. 

The solution is effective yet entails a significant learning curve for some users. It is quite effective once you learn to use the tool and queries. 

To a colleague, I would recommend giving the product a chance, as it is good. While the product does have issues scaling to our requirements, it is suitable for small to medium-sized businesses. 

We've noticed some discrepancies in recent data, such as incorrect dates and inactive CVEs being detected. This might be a result of Vulcan Cyber's acquisition by Tenable.  

The product provides good services and receives an eight out of ten rating overall. 

Maintenance-wise, validating data is time-consuming. Vulcan Cyber's role in making data-driven decisions still needs further investigation.

We mainly use it for vulnerability management and processes. We use it to retrieve reports and data for all the vulnerabilities across our firms. It is integrated with our vulnerability management tool.

By implementing Vulcan Cyber, we wanted to solve the reporting problem in our organization. Fetching and generating reports for a particular vulnerability through our vulnerability management tool takes a lot of time. Vulcan Cyber does it easily. With a couple of filters, we are able to download the report.

Vulcan Cyber offers a single pane of glass for centralizing our security data. This is essential because we are handling the entire organization's vulnerability management process. It is very important that all the data is in one place, and it is easily available whenever we need it.

I am about 80% satisfied with Vulcan Cyber’s capabilities for collecting our organization’s risk signals from multiple tools and attack surfaces into a single data lake. Vulcan Cyber has a 24-hour delay with the integrated platforms, so if we need any urgent real-time data, we will not be able to do that. I recommend having a 4-hour refresh window instead of a 24-hour refresh window to give us more accurate data.

Initially, when Vulcan Cyber was onboarded in our firm, we only had basic user interfaces to view vulnerabilities. Performance was also slower. However, we have seen significant performance improvements. Now, exporting reports is quicker, and there is a clear distinction between vulnerability instances and vulnerability data, which gives a comprehensive look at our vulnerability management platform. This has made reporting easier, although further improvements can still be achieved.

Vulcan Cyber has helped us to prioritize cyber risk. Instead of going with the CVSS code, we go with Vulcan's risk-based approach. The prioritization provided by Vulcan Cyber helps in mitigating the vulnerabilities as well as securing our firm. We are able to integrate this information into our presentations and present it to the stakeholders. It has a nice and clean look and it helped us a lot in collaborating with them.

Vulcan Cyber has helped our organization about 50% in making data-driven decisions. Whenever we need information about any end-of-life or end-of-support vulnerabilities, we can use Vulcan Cyber for that.

Previously, we took almost a week to remediate vulnerabilities after taking the data from our vulnerability management tool. Now, because we are getting them on a daily basis, it has been reduced from a week to three days. There is about a 60% to 70% reduction in time.

The best features include its holistic approach. It provides a comprehensive vulnerability management platform. 

The automation capabilities using the Vulcan API platform or the API feature allow me to easily automate scripts and reports and schedule them. 

Additionally, it adopts a risk-based approach. It helps me easily identify major vulnerabilities, a feature our vulnerability management tool does not offer.

There are areas for improvement. Initially, when onboarding Vulcan Cyber, the setup and configuration was more complex than expected with a user-friendly approach. This aspect can be enhanced.

An important area is performance and speed, as Vulcan Cyber often lacks speed when exporting reports. The team might have to work on scaling up servers.

When we click on a vulnerability, it takes ten seconds to pop up a window and show the entire content. Instead of that, they can put a down arrow, and all the details should be shown on clicking the arrow. This will prevent that ten-second delay.

Another area for improvement is providing support and documentation for their tool. Users should have access to easy-to-understand trial documentation for reference.

I have been using Vulcan Cyber for more than a year.

I would rate it a seven out of ten for stability.

The scalability is five out of ten. They need to scale up to improve their performance.

We have multiple domains integrated into the tool. We have 500 to 600 users currently, and it is still increasing.

I would rate their support an eight out of ten.

Positive

We have not used any other vendors apart from Vulcan Cyber.

It is a bit complex. It is not easy. Any user who is non-technical would find it a bit difficult.  A more user-friendly platform is needed for a non-technical person.

It takes roughly two weeks for deployment.

As an analyst, it has saved a lot of time for me. As mentioned, with our vulnerability management platform, I used to get reports weekly, but with Vulcan Cyber, I get them daily. This allows me to perform my tasks daily compared to weekly before, saving a significant amount of time.

To someone who needs a vulnerability risk management solution but is considering a DIY approach, I would recommend taking help from a platform like Vulcan Cyber or any other vulnerability management tool. Do not go to Vulcan Cyber directly. First, gain exposure to a vulnerability management tool. Once knowledgeable, then opt for a reporting tool like Vulcan Cyber. Utilizing this combined knowledge will make Vulcan Cyber more understandable. Directly using Vulcan Cyber might not be clear for some people. 

I would recommend Vulcan Cyber to other users, provided they improve the performance speed. I would definitely recommend it to those in need of a reporting tool. 

Overall, I would rate Vulcan Cyber an eight out of ten.

We use it to manage vulnerabilities, remediate them, and also place tickets. Additionally, we manage business groups and other aspects. Basically, I am part of the attack surface management team, and I use Vulcan Cyber as one of the main tools for streamlining the data.

Our organization has specific requirements for which we use Vulcan Cyber. For example, we have vulnerabilities that need to be remediated, but we cannot directly perform remediations on devices with these vulnerabilities because of various reasons. If we perform vulnerability remediation directly, it might impact the devices, so we send notifications using Vulcan Cyber. It notifies the devices and the device owners on a timely basis based on the complexity or severity.

Another requirement is to create ServiceNow incidents. For example, if we want to reimage a device, we need a ServiceNow incident, which will go directly to Vulcan Cyber, and the engineers will resolve those issues. For all these aspects, the main tool that we use is Vulcan Cyber.

Vulcan Cyber collects our organization’s risk signals from multiple tools and attack surfaces into a single data lake. If we have an asset in ServiceNow as well as Qualys, they use a technique to combine the data. We have a view of data from different sources.

We have not yet reached a stage where we can rely completely on Vulcan Cyber. There is a plan for us to completely migrate or have all the data shown in a single pane of glass so that the organization can use this tool as a single source of truth. We are currently working toward it. We have not utilized the full potential of the tool because currently, there are a lot of customization requirements. We are achieving them one by one, and we will definitely come to know its full potential once we reach there. Based on our experience with Vulcan Cyber for about two years, it seems it will be able to meet our requirements and expectations. It will help us reduce the mean time to remediate. A task currently achievable in one hour can be achieved in 15 minutes.

They recently upgraded their UI, which is great. It is user-friendly. I used to have some UI issues in the past, but they have been rectified. 

They also have a good support system. When we raise any issues with their support team, they resolve them. They might take some time, but the response is very good. They respond frequently and quickly. We have had a lot of customization requirements, and we were able to engage with their support team, raise tickets, and get feature requests deployed.

We have been closely working with their engineers and support team to make sure we get what we want. As an organization, we have our own requirements, and we need to meet our timelines. It has been improving a lot, and I would like to work with them even more closely and get this done by March.

Their support is good, but there are some flaws as well. We often encounter some issues that are not applicable to Vulcan Cyber as a whole; they apply only to us because we have customized requirements. In such cases, when we reach out with specific data and issues to their support team, they sometimes come back and say that the issues have been resolved. However, when we test to see if they have been remediated, they are still there. Although this is not frequent, it does happen at times. Because I am closely monitoring them and getting things done, it is not a big issue for us, but it is important to mention. Other than that, I do not have any input.

I have been using it for close to two years.

It is hosted in the US, and I am part of the India team. I did not have many issues while accessing Vulcan Cyber. Occasionally, I used to face some issues, but after creating a support ticket, they resolved it.

It is scalable because we have many options to include data. Based on our customized requirements, I would rate it a seven out of ten for scalability.

Currently, we have 500 users.

Their support is cooperative and good, but there is scope for improvement.

Neutral

Based on my knowledge, we have been using Vulcan Cyber from the start.

It is very easy. Their support team helped us with it. It was not long; we were able to set up the instance within a week.

It would definitely save time and resources by 30%. 

Our leadership knows better about the pricing. As per my knowledge, which might not be accurate, its price can come down.

The team that purchased the license for Vulcan Cyber might have tested others before choosing Vulcan Cyber. 

Vulcan Cyber is a very good tool. The support team is very cooperative. I would recommend it, but you should evaluate it for your needs.

Overall, I would rate Vulcan Cyber an eight out of ten.

We use this product to help manage our vulnerability management program. 

Part of my use case for Vulcan Cyber is to help me do better reporting for our governance processes, and I can't use it for that due to the way it's adding additional assets.

I find the ability to consolidate information from multiple vulnerability scanners into a single source valuable. It's a single pane of glass.

Vulcan Cyber enables us to bring together multiple sources of information from different signal sources into a single point. This capability enables us to consistently prioritize and categorize our assets, helping us identify the most critical vulnerabilities that need to be addressed.

It's very good at triaging risks. 

Vulcan Cyber helps us make data-driven decisions. It's allowed us to bring multiple sources together from different signal sources. We can broadly prioritize and categorize those in order to identify the most critical vulnerabilities. 

It does a reasonable job with deduplication, aside from the fact it duplicates assets.

It would be extremely helpful to have a community group for the product. I have mentioned this to our account manager. We have community support with several other products, and it allows us to learn best practices or examples from other organizations using the same product. 

Additionally, while most of the documentation around the product is quite good, it would be beneficial to have examples of possible scenarios, such as creating an integration with a ticketing system. Providing real-world examples of how to construct a ticket format for Jira, Azure DevOps, or ServiceNow with specific examples would help us understand how it might work in our environment.

Part of the reasons we selected Vulcan was to bring data sources and duplicate the information; however, we've had issues where it doesn't do that. For example, if there is a vulnerability, if it finds that in three different locations on the same device, it doesn't duplicate them effectively and increases the account instead of consolidating it into a single vulnerability that has three different actions. So it skews the counts that we have when we're looking at the volume of vulnerabilities. It misrepresents the number of assets that are affected. For example, if we've got a vulnerability that affects assets, and if one of the assets has three different folders where that vulnerability or the piece of software is, the solution counts that as three different assets. It gets confusing. It's telling us we have more assets than we actually have. 

When we raise a vulnerability campaign that gets created into an Azure DevOps ticket, one of our requirements is to allow updates to flow back into Vulcan to help us understand the status of a campaign. That is a piece of information that is currently missing, and we've requested this capability pretty much from day one. Right now, it means when we're working through those vulnerabilities with our infrastructure team (who are responsible for fixing them), we're revisiting the same vulnerabilities to find out what's going on with that vulnerability. We don't see any information about that campaign since what we actually wanted as part of the solution is the ability for them to send that and document the updates in DevOps tickets and for that information to flow back into Vulcan so that we can see that information, and we don't have to kind of visibility.

I have used the solution for about six to seven months.

In general, the solution is fine. I have noticed a couple of issues recently, and I am going to raise a ticket for one issue today once I repeat it. I have found a way to reproduce the issue where the UI just hangs. This is the only issue I have found with the UI so far. It seems to be a bit quicker now, possibly due to a back-end migration of the platform to Snowflake.

Scalability hasn't been a problem for us. 

The initial response from support is quick, however, most open tickets we have almost always end up as a feature request. We do not necessarily have visibility of when those feature requests are going into the development pipeline.

Neutral

Vulcan Cyber was our first solution in this area, in terms of doing vulnerability management.

The initial setup was pretty straightforward. We were doing the setup part-time and it took us a couple of months. We had two part-time people working on the implementation. 

There is no maintenance needed on our end. 

The implementation was handled by two part-time individuals. We had a few back-and-forth questions with Vulcan in order to understand certain aspects, like how to create connectors. 

For our use case, the solution is lacking some features, and the cost savings don't make it worth it.

We considered using Nucleus Security as an alternate solution and another company based in the UK. We decided on Vulcan based on the pricing. 

Knowing what we know now, we've come to realize we do not have the same features. Based on what I know right now, based on our RFP, I would have chosen Nucleus.

We're waiting to see the benefits from Vulcan. We're still working through that. We have challenges in terms of automation. It doesn't quite do something the way we want in terms of our RFP.

This is better than doing a DIY solution, however, it's not better than other products on the market right now. 

We haven't been able to reduce mean time to remediation due to issues with integration and duplication of issues, which creates confusion. 

Given that we are still experiencing duplicated assets, we do not have bidirectional information on actions going back and forth between our ticketing system and Vulcan. The fact that we cannot use it for our reporting leads me to rate it three out of ten. It is relatively straightforward to implement. 

I recommend thinking about how you are going to structure your business groups, whether on a business unit approach or an operational remediation approach since they are quite different. This can create some confusion when trying to drill down and create specific reports for specific teams. We are fortunate that the business groups allow us to tag or customize assets within Vulcan, which is quite useful. 

We struggled a bit initially with getting feedback on best practices from Vulcan, and some real-world examples would have really helped. If you are an organization with many thousand endpoints, it would be beneficial to understand how others have structured it by business units, operational units, or teams to get the best value out of the business grouping and the automation you can achieve from that.

Vulcan Cyber offers a risk-based vulnerability management software product, a web-based SaaS solution. 

Essentially, I use it to ingest vulnerabilities from different systems that perform scanning. The findings are then dispatched to the team and other stakeholders.

This product is mandatory for companies that take security seriously. Once a company reaches a certain level of maturity, cybersecurity infrastructure is needed in order to give your findings to the right people and have more efficient communications.

We have we built out the process with the stakeholders. The stakeholders are more aware about what is happening. They have better visibility. The relationship has become better. We have received good feedback. As we are becoming proactive and catching vulnerabilities, we're fixing them pretty quickly. A rough estimate on the improvement has been about 20%. 

What I like most about the solution is the support I have received. When we started working with them, they were a small company. Whenever I provided feedback about any bug, small issue, or anything I wanted to work on differently, the team was truly open to listening and making the necessary changes to remediate a bug or improve the tool. 

The UI is very good. It's working as it should. 

The tool has good features. I have built the process with the stakeholders, who are now more aware of what is happening and have better visibility. Our relationship has improved, and although I do not have reports yet showing a decrease in incidents caused by exposed vulnerabilities, becoming proactive prevents vulnerabilities from turning into incidents by fixing them quickly.

There's a single pane of glass for analyzing security data. It makes the process more efficient. It's nice to have. It makes a lot of people's lives easier. When you are reaching a certain maturity level, and you have a big company with a lot of infrastructure, it's something that you might feel the need to have instead of having maybe another three or five people that will do this work manually.

Vulcan Cyber's capabilities for managing cyber risk noise have been helpful. They are doing a very good job with this. They are ingesting a lot of threat intelligence, and they are providing good insights about how to prioritize the findings.

The solution's capability for collecting your organization's risk signals from multiple tools and attack surfaces into a single data lake is medium to good. There were, in the past, some issues with some connectors that were not fetching everything or not fetching what we needed, and that would introduce noise. There are a few connectors that we are still waiting for them to complete. On a scale from one to ten, I'd rate this aspect at a six or seven.

Vulcan Cyber helps us prioritize the vulnerabilities that are really exploitable and our point of interest for the industry based on the threat intelligence that we get. It's making the life of the stakeholder easier. They know how to prioritize and assign resources to fix that vulnerability. So, instead of having 100 vulnerabilities and not knowing how to prioritize and assign all your FTEs there, you now have only ten that you know you need to fix, and you're assigning the right number of FTEs. 

It has reduced our mean time to remediate. 

Now that the solution is onboarded, we are saving a lot of time. We're saving roughly four to ten hours a week.

Monitoring of the evolution of campaigns and perhaps having more customized options for monitoring them would be great. They have an option called Campaigns when creating a campaign for a specific stakeholder. Having it more customized or providing more customization options for me would be beneficial.

I have used the solution for one year now.

I would go with a rating of nine out of ten. There were no glitches or issues like images not displaying. 

It is very scalable. I find it as scalable as it can be and keeping pace with all the other cloud environments. I use different cloud vendors, and whenever something changes in those cloud accounts, it can be seen in Vulcan Cyver in a few hours. 

I have access from the security side and then the other organizations, which are medium-sized. 

I'd rate the scalability ten out of ten.

Support deserves a nine out of ten for customer service.

Positive

Previously, I used Hackuaty, which is also a very small company. I would say Vulcan has the Vulcan connectors and fetches more vulnerabilities faster. They have better data processing and everything that happens in the back end.

It was a rough year in terms of setup. I had to set it up and onboard it. It was a significant effort from my side at least. Now that it is onboarded, it is saving a lot of time. However, that time was already consumed in the onboarding phase because it was essential to ensure everything was collected accordingly and dispatched to the right people. This effort is internal and will remain so for anyone who acquires Vulcan. It's an easy but time-consuming process. It took six months for the full deployment. 

Vulcan Cyber does upgrades regularly. We do maintenance a few months based on anything happening in our organizations. We need to make those changes in Vulcan Cyber on our end in terms of access, et cetera. 

From my side, it was only me doing the implementation. It was only me working on the implementation with the Vulcan Cyber team.

I'm not involved with the pricing. 

Vulcan, as it stands, is in the process of being acquired by Tenable. I am unsure of the plans beyond that. Nonetheless, it is a very good standalone product. 

It is easy to work with. The team is great. The product is very good based on other things I have seen so far. I would recommend it. It is a very good solution to centralize and dispatch everything regarding security vulnerabilities. 

I would rate Vulcan Cyber around eight out of ten.

Our primary use case for Vulcan Cyber is for asset management and vulnerability management. We use it to assess vulnerabilities and assets, especially after a merger, to ensure that all assets are being assessed for vulnerabilities.

It is an asset management and vulnerability management tool. We have the agent on different assets that are being assessed. All the assets that we have on our systems are being checked for vulnerabilities.

There are significant improvements as we previously did not have a comprehensive view of the exact vulnerabilities on our assets. Now we have an overview of what needs to be addressed and how it can be resolved, which allows us to manage the assets and mitigate vulnerabilities effectively.

The single pane of glass that it offers for centralizing our security data is very important. We have a lot of assets in our portfolio. The interface helps to see all the vulnerabilities that our assets have, but it would be good if there was a centralized way to perform the remedies for the particular vulnerabilities.

We have a lot of detailed information about all the assets, attack surfaces, and vulnerabilities that the assets have. There is a lot of threat intelligence and a lot of analysis on threats present on our devices or assets. We have a realistic view of the vulnerabilities that are there for particular assets.

We classify each asset and particular groups, and that helps us get a clear overview of what assets we have and in which groups they reside. We have a good vulnerability management tool to assess particular problems we have with the assets. It provides a good threat analysis and good classification of vulnerabilities. It is a good tool overall as we can see all the threats and assets that we have.

We have quite a lot of assets under management, and we need to address each one of them individually, so it helps us provide a detailed overview of the assets and threats on particular assets. In a way, it does provide quite a substantial amount of data to us. We can create tickets with it very easily and address the vulnerabilities with the information we have from those tickets. That is a good way of providing data.

We have not yet seen a substantial reduction in the meantime to remediate because it is still a new tool for us. There is probably a 20% reduction so far.

The interface of Vulcan Cyber is intuitive with a lot of information about vulnerabilities, which helps in classifying and analyzing threats. We have a good view of assets and vulnerabilities. It helps to do good threat analysis because we can see exactly what the threat is and assess it accordingly. 

It offers a comprehensive view of the assets and their associated vulnerabilities, which aids in assessing and mitigating threats. I can see all the vulnerabilities that our assets have. I can check up on them and take action to mitigate the vulnerabilities or postpone them at a later time.

Improvements are needed in providing more concise details on how to apply remedies for particular vulnerabilities. I would like to have more information about the remedies for particular vulnerabilities so that we do not have to go through the CVE numbers and relevant pages to check for a particular vulnerability and its remedy. A more detailed view of how the remedy should be applied to a particular asset would be good. Overall, it is pretty simple to check the vulnerabilities and view the remedies, but we need to do some additional research online to review exactly what to do to mitigate those issues.

It would be beneficial if the platform allowed remote access to devices for immediate remedies. Rather than logging in manually on the device, we should be able to remote in through the Vulcan Cyber application.

They could also include features for backups and disaster recovery.

We have been using Vulcan Cyber for about three months, following a merger within our company. It was being used by our parent company.

I have not experienced any issues with the stability of the solution. I would rate it a nine out of ten in terms of stability.

The solution is highly scalable. We have a lot of assets under management, and it effectively scales up to accommodate hundreds or even thousands of assets.

It is being used in multiple departments and at multiple locations around the world. We have multiple headquarters, so it is deployed worldwide.

In our IT team, we have about 10 to 15 people, but overall, there might be about 70 users working with this solution.

Before Vulcan Cyber, we did not use another solution at our workplace to assess vulnerabilities and resolve them. However, personally, I have used Acronis Cyber Protect. 

Vulcan Cyber does provide a lot of benefits such as assisting vulnerabilities in a proper manner, providing which assets are affected. Acronis Cyber Protect platform is used along with agents installed on devices. It helps assess vulnerabilities and also mitigate them. It helps apply remedies directly through the web interface. We can apply remedies instantly with the click of a button, although that can be a security risk because it uses some utilities. Acronis Cyber Protect offers a lot of other solutions that Vulcan Cyber does not, such as accessing the device remotely via SSH through the web interface or performing backups of the devices. It also has other disaster recovery capabilities. There is still room for improvement for Vulcan Cyber. Being able to remediate vulnerability instantly through the web interface, perform backups, or remote into the device could help improve the product.

I was not involved in its deployment. From what I am aware of, it is an on-prem model.

In terms of maintenance, for the solution itself, we do not get involved in patching the solution itself. That is the duty of our cybersecurity team, but it helps us address different vulnerabilities and identify applications that need updating.

Personally, I have used Acronis Cyber Protect, which offers vulnerability management and other features like remote access and backups directly through its interface.

It is a new tool for us. We have to go through a bit of training. It took some time to get used to the tool and understand exactly what its capabilities are and what information it provides. It took a bit of time to assess how we could utilize the tool better. There is still much more to learn, but in the short time that we have spent with it, it gives us a good overview of what our assets are and how we can assess the vulnerabilities and manage threats.

I would recommend Vulcan Cyber for its ability to provide a good overview of assets and their vulnerabilities. It is overall a good product.

A DIY approach is feasible if one has strong technical skills for vulnerability risk management, but if you are looking for a more scalable solution, Vulcan Cyber is a good one. It helps quite a lot to have a good overview of the assets and the vulnerability of the particular assets.

I would rate Vulcan Cyber an eight out of ten.

We were searching for a tool in the market that would allow us to automate our vulnerability management processes. We found Vulcan Cyber to be the best one, at least for our company, for automating different tasks involved in vulnerability management. We not only have a centralized place where we can find all the vulnerabilities and assets. We also have an easy way to automate the creation of tickets for different owners of the assets and other things.

It is very important for us that Vulcan Cyber offers a single pane of glass for centralizing our security data. It was one of the most important topics for us when we were searching for this kind of tool. We wanted a single pane of glass to see all our assets in the company as well as all the vulnerabilities, not only from a single scanner but from different security scanners that we use in the company.

Vulcan Cyber is very good for collecting our organization’s risk signals from multiple tools and attack surfaces into a single data lake. It is able to ingest information from different sources. They also have some capabilities to deduplicate data that is already in different sources. When you see it in their platform, in their data lake as they call it, you see it as a single entry instead of having duplicates all over the place.

Vulcan Cyber has had a great impact because previously, we had to review the vulnerabilities manually before going ahead and communicating them to the different owners. Now, with the automation that Vulcan Cyber provides, it is very easy for us to see exactly what is the risk of a vulnerability, not only by the CVSS score, but also depending on if the vulnerability is currently exploited in the wild, or if there are exploits that are publicly available that can be used by anyone. All of those tasks are automated by Vulcan in the backend. We see a summary of the vulnerability, so we know whether it is very critical for us because it is affecting some of our assets. It could also be floating in the wild, so we need to take care of it immediately, or it might not be as critical as we thought initially. It might be classified as a high-risk vulnerability, but there is no expert available, so we have to wait a little bit longer to patch everything.

The combination of all the data that we get in the platform helps with the automation of a task. There were some decisions that we had to manually review previously. Now, with all the information provided by Vulcan in a single place for each vulnerability, it is easier for us to understand if something is really critical and needs to be patched immediately or it can wait a little bit longer until we have some spare time to patch different systems in the company.

Vulcan Cyber has helped reduce our organization’s mean time to remediation. We have the capability to open some tickets automatically for different vulnerabilities we have in the platform without having to go to different ticketing tools or business owners individually. In the company, we use different ticketing tools depending on the department, so having them all integrated inside of Vulcan is helpful. Having a single button to create tickets automatically, providing all the information already gathered by Vulcan in this ticket, and then just passing the ticket to different teams impacts the remediation.

Vulcan Cyber has, for sure, helped save costs for our organization when it comes to human hours spent to fix vulnerabilities. We do not have to manually review each vulnerability and go to the different threat intelligence sources to identify if there are any exploits or if they are being exploited in the wild by malicious threat actors. When we have all that information in the platform, we can make decisions based on the data that we already have. That saves a lot of human hours.

It is very good when it comes to ingesting information from different sources and then displaying this information in an easy-to-use platform.

We have already requested Vulcan several features. Mainly, what I would like from them is more maintenance of the different connectors they have in the platform. You can connect different sources and different security scanners to the platform, so you get all the data ingested into Vulcan, but some of these connectors are not maintained to the latest updates by different vendors. For example, if you have a new update on the Azure connector, sometimes, it does not work correctly or as expected just because Vulcan has not updated the connector from their side.

It has already been about five months. We have been using it since April of this year.

So far, we have not had any crashes or loss of availability to the platform.

We have around 100K assets from different sources being ingested into Vulcan every day. So far, the platform is quite smooth. I do not see any slowness or any problems with the search or the queries with the platform.

One of the best parts that we have found so far about Vulcan is the ability to ingest data from multiple sources, even if there are duplicate entries for assets and vulnerabilities. They are able to duplicate this data, so when you go to the Vulcan platform, you only see one entry for every asset and every vulnerability.

We have contacted their technical support. They reply quite fast to the support tickets that you open, at least for the initial triage of the issues that you have. For some of the support requests, it takes them some time to fix the issues, but they communicate correctly with you all the way.

Positive

We have used other solutions. One of the most common ones is the Microsoft Defender Vulnerability Management tool, but it is only for Windows machines. It is very similar to Vulcan because you can get different vulnerabilities for Windows endpoints and Windows servers. It provides information about the risks and affected assets, but it does not have the capability, for example, to automatically create tickets for different owners.

We use the cloud deployment model. I am not sure if they have an on-premise one. They most probably only have cloud deployments, but it is nice that you can at least choose the region in which you want Vulcan to be deployed. For example, we care about data protection, so we want everything to stay in Europe, and Vulcan was able to provide that kind of cloud in the Europe area.

For most connectors or sources that we integrated with Vulcan, the integration was quite easy. It was also easy to create different users in the platform and set up different vulnerabilities and automation, but there were some connectors that were not well maintained at the time. We had some problems where we were configuring different API tokens and different credentials for those connectors.

It took about five months because we were going to go live with everyone in the company and all the departments in August. From April when we started the POV until now, it has been approximately five months.

It does not require much maintenance from our side. The connector should be updated from the Vulcan side. If there are no errors and no tokens that have expired in the integration, or there is nothing similar that requires attention, there is not much maintenance.

We used our technical account manager and our customer success engineer from the Vulcan side but not from a third party.

Its pricing is quite fair compared to what is out there in the market, especially compared to the tool from Microsoft. It is a SaaS platform that has an annual cost, so it is something that is already used by many companies. It is quite affordable.

Vulcan was the only one that we were looking at when we did the POV with them. That was because we already had different scanners in the company. What we were looking for was a platform that would ingest all different scanners' data instead of having a new scanning platform in place.

Vulcan Cyber has been quite good so far for mitigating cyber risks. It provides a lot of insightful data about our environment. We have a single place to go when we want to look for our assets. It is like an asset inventory. We can also see different vulnerabilities that we have in the company. It is very useful to see what our security posture rating is, for example, to understand the level of security we have in the company. It is also very easy to see which vulnerabilities or patches we need to apply to be able to increase the security posture rating quite easily.

To a colleague who needs a vulnerability risk management solution but is considering a DIY approach, I would say that the effort needed to implement something similar to Vulcan is not worth it when you have this kind of tool in the market, especially when you know that they offer a lot of different innovations for automation. They can help reduce the cost of person-hours that you spend with your team working on solving or patching different assets. You can use those hours or that effort to increase the patching talents in your company or create better policies for patching.

I would rate Vulcan Cyber a nine out of ten.

I have been using the solution for more than six months. Essentially, any reporting I do for our internal Internet assets involves using Vulcan. The primary use of Vulcan is extracting the reports, checking the assets, and then formatting them into a format we use, which is Pack for Process, and delivering it to the end customer.

One of the features that I find valuable is the ability to bifurcate the report according to the many options available. For instance, if I want to filter out a vulnerability by name and severity and ensure it is against specific platforms like Windows, Linux, or Mac, that's one of the features I appreciate. Additionally, the tool integrates with the CMDB, enabling me to create different features or filters within the same group, making it a subgroup where I can define which machines or assets belong to which groups. Another feature is the dashboard, where I can see the severity of vulnerabilities, such as how many are high, critical, medium, and low, and how many have been closed versus how many are still open. The dashboard, which was not initially part of the feature set, helped us tremendously. I requested changes to the dashboard or analytics view, which provided better visibility into new vulnerabilities and those that were resolved. 

This tool, being a reporting tool, allows for patching and sending notifications. I haven't used the notification feature extensively, and its absence is still felt. Initially, when I started with the tool, I did not have much visibility, but as I continued using it, I became more familiar. After integrating with the tool, using it became easier.

One area for improvement is clarity in the results column of vulnerability reports. Currently, the path where the vulnerability lies is not clear, so Vulcan needs to work on specifying the correct path or vulnerability result. Another improvement needed is in sending notifications directly from the tool. Even though the option exists, the process is tedious because I must manually input a lot of information. These are the two areas that should be improved.

I would rate the tool between six and seven because there have been instances when the tool was down, and I couldn't access Cyber reports. Additionally, the Vulcan Cyber team made changes to the tool and did not notify us. The following day, after logging in, I noticed changes to the home page and other control panels. It would be better if Vulcan notified me, the customer, about upcoming maintenance or changes, indicating when the website might be down.

I would rate scalability seven. Seven. I will give seven.

I would rate customer service between six and seven because there were instances where the tool was down, preventing access to Cyber reports. Furthermore, changes were made to the tool without notifying me. Only upon logging in the next day did I notice changes to the home page and control panels. It would enhance my experience if Vulcan informed customers of forthcoming maintenance or changes that might cause website downtime.

Neutral

Previously, I used tools like Resolve, the Nest, and Nexpose. While some features are present in Vulcan, the scheduling part is missing. The ability to schedule reports and automate tasks is absent. Despite this, everything else is satisfactory. However, there are areas for improvement, even though the tool suffices with features available in the market and other tools.

The initial setup was straightforward because Vulcan's POCs assisted me in integrating the tool with others, like Qualys and the CMDB. Vulcan's engineers helped deploy the tool into our environment, making it an easy process.

I think maybe approximately twenty percent.

If it's a small environment, a DIY solution might be good, but for larger setups, I would recommend Vulcan. In our environment, Vulcan engineers, known as Huddles, assist. There are also training sessions to understand the tool, its features, and usage.

The overall product rating is six. I recommend considering it for a couple of weeks. As an IT consultant, I am familiar with the tool and its functionalities. You can keep my name anonymous in your records. However, as an employee, I am not positioned to serve as a reference to others. Vulcan can contact me if they have questions or comments about this review.