Sold by: Nucleus Security
Deployed on AWS
Nucleus accelerates enterprise vuln management with risk-based decisions and automated workflows.
3.5
Overview
Risk Based Vulnerability Management Nucleus is redefining the vulnerability management software category as the single source of record for all assets, vulnerabilities, and associated data. We unlock value from your existing tools and place you squarely on the path to program maturity by unifying the people, processes, and technology involved in vulnerability management. With Nucleus, you receive unmatched visibility into your program and a suite of tools with functionality that simply cant be replicated in any other way.
Remediate What Matters Most
Nucleus sits at the nexus of your vulnerability data, asset information, and embedded threat intelligence. Providing contextually relevant data at your fingertips, allowing for automated response at scale. Nucleus combines all the asset information, vulnerability data from scanning tools, and threat intelligence from Mandiant into one single platform for vulnerability teams to eliminate laborious manual data analysis and accelerate decision making and prioritization.
Highlights
- Here are the features supported by this Product Native connectors: Yes FlexConnect integrations: Yes Role-based access control: Yes Asset group access control: Yes Trends page: Yes In-platform reports: Yes Bulk data export: Yes Manual and automated ticket integrations: Yes Publicly available threat intelligence (NVD, CISA KEV) integration: Yes Mandiant threat intelligence integration: Yes Recorded Future integration (sold separately): Yes
Details
Sold by
Categories
Delivery method
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on the duration and terms of your contract with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Description | Cost/12 months |
|---|---|---|
Platform | Platform License | $100,000.00 |
Vendor refund policy
All sales are final, non-refundable, and non-returnable except with respect to Products that do not meet applicable specifications in the relevant Documentation.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Support
Vendor support
Standard Support provides access to our global support team via our support portal, access to online resources and knowledge base. Support First Response SLA (Business Hours) Unlimited Email Support Customer Portal Knowledge Base Nucademy (Nucleus online training) Premium Support is our highest level of support for Enterprise customers, providing virtual support sessions, access to an Executive Sponsor, and chat support via Slack integration.
Support First Response SLA (Business Hours) Unlimited Email Support Customer Portal Knowledge Base Nucademy (Nucleus online training) Virtual Support Sessions Enhanced Support Ticket Priority 24x7x365 Critical Support Response (P1 Only) Proactive Monitoring + Support Named Executive Sponsor Slack Communication
For more information visit
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By Nucleus Security
By VulnCheck
By Qualys
Top
100
In Analytic Platforms
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Native Data Connectors
Supports native connectors for integrating vulnerability data from multiple sources and scanning tools
Threat Intelligence Integration
Integrates Mandiant threat intelligence, publicly available threat intelligence from NVD and CISA KEV, and Recorded Future intelligence for contextual vulnerability analysis
Role-Based Access Control
Implements role-based access control and asset group access control for managing user permissions and data visibility
Automated Workflow and Ticketing
Supports manual and automated ticket integrations for streamlined remediation workflows and response automation at scale
Reporting and Data Export
Provides in-platform reporting capabilities, trends analysis, and bulk data export functionality for vulnerability program visibility and analysis
Exploit Intelligence Integration
Couples exploit intelligence with vulnerability intelligence to provide insights into vulnerability prioritization and remediation strategies.
Multi-Domain Vulnerability Coverage
Includes vulnerability data across open source packages, dependencies, ICS/OT, IoMT, IoT, and mobile devices.
Integrated Vulnerability Data Aggregation
Consolidates data from NIST National Vulnerability Database (NVD) and CISA KEV catalog into a single platform.
Autonomous Intelligence System
Built on a fully autonomous system in software for vulnerability and exploit intelligence generation.
Initial Access Intelligence
Provides intelligence for detection of initial access vectors used by adversaries.
Risk-Based Vulnerability Management
Automated vulnerability assessment and prioritization based on risk scoring across cloud and on-premises infrastructure
Automated Patch Management
Automated patching capabilities for operating systems and over 100 third-party applications across cloud and on-premises environments
Multi-Vector Endpoint Detection and Response
Multi-vector EDR technology with integrated antimalware capabilities for endpoint protection
Ransomware Protection
Ransomware detection and protection mechanisms integrated within the vulnerability management framework
Consolidated Security Operations
Unified platform consolidating vulnerability assessment, remediation, and endpoint protection tools into a single solution
Standard contract
No
No
Customer reviews
reviewer2808414
Improved radiation safety and compliance has supported patient care but daily workflows still need refinement
Reviewed on Mar 11, 2026
Review from a verified AWS customer
What is our primary use case?
I have been using Nucleus Security for the past few years in my company, particularly in the healthcare field.
I use Nucleus Security especially for understanding radiation safety, nuclear medicine, and risk management in clinical settings. For healthcare, I use it most often to support safe handling practices including patient and staff protection, regulatory awareness, and broader health-related preparedness planning.
A specific example is reviewing work related to nuclear medicine exams. I use it to identify procedures such as PET scans or bone scans to ensure that radiation safety protocols, patient identification, documentation, and handling procedures are being followed correctly. On a day-to-day basis, I use that knowledge to support safe care, reduce risks, and help ensure compliance with healthcare standards.
What is most valuable?
The best features are strong risk prevention with clear safety protocols and incident preparedness. For us, the good regulatory support is very important.
These features help strengthen safety culture, improve protocol adherence, and reduce operational risks, especially in healthcare settings involving radiation and nuclear medicine use. They also support better staff awareness regarding clear handling procedures. Strong compliance practice is something we worry about considerably, and this really helps us a great deal. We also feel more confidence that patient teams and all actors involved are protected.
We have seen clear compliance and risk control outcomes more than other operational metrics. A specific positive result is fewer process gaps during documentation and safety checks, as well as strong consistency in following protocols for handling, traceability, and staff awareness. In practice, this means better audit readiness, a lower chance of procedure errors, and faster escalation when something appears out of standard, which is very important for us in the healthcare sector. The main improvements I have noticed are related to better compliance with safety procedures, more consistent documentation, and quick identification of potential risks.
What needs improvement?
I think it can be improved by making it more practical, integrated, and easier for teams to apply in real-world workflow from a healthcare perspective. The main improvements I can see right now are better user training with real-case scenarios rather than only theory, and clear and simple protocols for day-to-day operations. Strong integration between safety compliance and documentation systems would help significantly in practice for the healthcare field, which is a niche field. The biggest gain would come from making security processes easier to follow consistently, especially in busy environments where teams need to be aware of clarity and really need to rely on the documentation they are using.
I chose a rating of seven because it offers strong value in safety, risk reduction, and compliance, especially in healthcare. However, there is still room for improvement in usability and day-to-day integration. Protocols can be too complex in practice sometimes, and some processes can feel heavy and disconnected from our daily workflow.
For how long have I used the solution?
I have used the solution for the past few years.
What do I think about the stability of the solution?
The solution is stable.
What do I think about the scalability of the solution?
It has good potential for scalability.
How are customer service and support?
The support is very good. I have addressed a few questions, and I have no problem receiving answers in a good way.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
I think we used a different solution, but I was not aware of it when we used it. I am not quite sure which it was and why it was changed.
What was our ROI?
I have been seeing some returns on investment related to time saved and fewer employee needs. However, I don't have these numbers formally tracked. It is more of a feeling I have, along with the improvements in workflows.
What's my experience with pricing, setup cost, and licensing?
I have a good experience with that, so we don't have much problem dealing with pricing, setup, and licensing.
Which other solutions did I evaluate?
I evaluated four other solutions.
What other advice do I have?
My advice would be to focus first on a practical fit, not only on technical capability. Make sure it supports your real operational workflows, compliance needs, and incident response processes. In healthcare, which is such a high-risk environment, the best approach is to choose a solution that is clear for teams to use in daily life and easy to integrate. I would recommend involving both operational and safety teams early, because adoption works much better when the system is not seen as separate from the daily work. I gave this solution a rating of seven out of ten.
Which deployment model are you using for this solution?
Hybrid Cloud