Listing Thumbnail

    Tenable Vulnerability Management

     Info
    Free Trial
    Managed in the cloud and powered by Nessus technology, Tenable Vulnerability Management (formerly Tenable.io) is the go-to vulnerability management solution for securing AWS environments. It provides the industry's most comprehensive vulnerability coverage with the ability to predict which security issues to remediate first. As part of the free trial, you can also access Tenable Cloud Security and other components of the Tenable portfolio.
    Listing Thumbnail

    Tenable Vulnerability Management

     Info

    Overview

    Tenable Vulnerability Management provides the most comprehensive vulnerability coverage in the industry, detection accuracy, and zero-day vulnerability disclosures with the ability to predict which security issues to remediate first. Tenable has built-in compliance profiles, reporting and remediations, and risk-based scoring you can use to prioritize the risk that poses the greatest threat to your business. Quickly detect and respond to security issues as new vulnerabilities are disclosed and as your AWS environment changes.

    The Tenable portfolio includes pillars of an exposure management program - vulnerability management, cloud security, and more. To best support your hybrid environment, consider including Tenable Cloud Security, which provides unified vulnerability and cloud security posture management for hybrid environments. In addition, agentless assessment enables you to continuously discover and assess EC2 instances for vulnerabilities in AWS without ever having to configure a scan, manage credentials or install agents.

    For Tenable Vulnerability Management orders greater than 250 assets or orders for other products, contact us for an AWS Private Offer at: aws-tackle@tenable.com 

    Highlights

    • See Everything - With coverage for more than 76K vulnerabilities and 186k plugins, Tenable has the industry's most extensive CVE and security configuration support to help you understand all of your vulnerabilities.
    • Maximize ROI - Eliminate double or triple counting of assets that have multiple IP addresses with the industry's first asset-based elastic licensing model.
    • Gain continuous visibility - Continuously assess the cloud as new assets are discovered or as new vulnerabilities are disclosed. No need to update plugin feeds.

    Details

    Delivery method

    Features and programs

    Financing for AWS Marketplace purchases

    AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
    Financing for AWS Marketplace purchases

    Pricing

    Free trial

    Try this product free according to the free trial terms set by the vendor.

    Tenable Vulnerability Management

     Info
    Pricing is based on contract duration. You pay upfront or in installments according to your contract terms with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.

    12-month contract (3)

     Info
    Dimension
    Description
    Cost/12 months
    100 Assets
    100 Asset Bundle, 5 bundle maximum purchase
    $3,500.00
    Onboard Bundle
    100 assets + Quickstart (Use "50 Assets" for add'l seats)
    $6,500.00
    Deploy Bundle
    100 Assets + Training/Quickstart (Use "50 Assets" for add'l seats)
    $8,500.00

    Vendor refund policy

    All fees are non-cancellable and non-refundable except as required by law.

    Custom pricing options

    Find a fit for enterprise or unique needs with a private offer.

    Legal

    Vendor terms and conditions

    Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .

    Content disclaimer

    Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.

    Usage information

     Info

    Delivery details

    Software as a Service (SaaS)

    SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.

    Support

    Vendor support

    Tenable.io Activation: https://static.tenable.com/documentation/Tenable.io_Activation_Help.pdf  Tenable.io Getting Started: https://docs.tenable.com/cloud/Content/GettingStarted/GettingStarted.htm  Tenable.io Documentation: https://docs.tenable.com/TenableIO.htm  Tenable Knowledge base: https://community.tenable.com/s/topiccatalog  Tenable offers 24x7x365 support for its customers via chat, email, and phone. Customers can login to community.tenable.com with their Support account to create cases and chat with us, or call 1-855-267-7044 with their customer ID number. Documentation can be found at both our community portal and

    AWS infrastructure support

    AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.

    Product comparison

     Info
    Updated weekly

    Accolades

     Info
    Top
    10
    In Industrial IoT, Application Servers
    Top
    25
    In Monitoring, Application Development
    Top
    10
    In Continuous Integration and Continuous Delivery, Application Development, Security

    Customer reviews

     Info
    AI generated sentiment from actual customer reviews on AWS and G2
    Positive reviews
    Mixed reviews
    Negative reviews

    Overview

     Info
    AI generated from product descriptions
    Vulnerability Coverage
    Provides coverage for more than 76K vulnerabilities and 186k plugins, offering the industry's most extensive CVE and security configuration support
    Asset-based Licensing
    Eliminates double or triple counting of assets that have multiple IP addresses with the industry's first asset-based elastic licensing model
    Continuous Visibility
    Continuously assesses the cloud as new assets are discovered or as new vulnerabilities are disclosed, without the need to update plugin feeds
    Agentless Assessment
    Enables continuous discovery and assessment of EC2 instances for vulnerabilities in AWS without configuring scans, managing credentials, or installing agents
    Risk-based Prioritization
    Provides risk-based scoring to help prioritize the remediation of security issues that pose the greatest threat to the business
    Agentless Cloud Security
    Provides deep and wide visibility into the cloud environment without requiring agents using patented SideScanning™ technology
    Risk Prioritization
    Applies a granular risk score to each alert and recognizes when seemingly unrelated issues can be combined to create dangerous attack paths
    Full SDLC Security
    Seamlessly integrates into the CI/CD process to secure applications from code to cloud and back
    AI-Powered
    Leverages Generative AI for simplified investigations and accelerated remediation, reducing required skill levels and saving time and effort
    Unified CNAPP Platform
    Unifies various security solutions including CSPM, CWPP, CIEM, DSPM, Container security, API security, AI-SPM in a single platform
    Cloud Infrastructure Visibility
    Covers every resource across the full cloud stack and multi-cloud environment using a 100% API approach that deploys in minutes.
    Cloud Risk Modeling
    Models overlapping cloud policies, configurations, and compensating controls that interact in ways that are often unpredictable to calculate their end result.
    Cloud Risk Correlation
    Maps all of the issues in the cloud together in a single graph database, revealing which of them combined pose the greatest risk.
    Cloud Security Automation
    Provides tools to bring DevOps and development teams into the process to fix security risks, creating a culture of security in cloud operations.
    Cloud Security Assessment
    Performs a deep assessment of the entire cloud and then correlates a vast number of security signals to trace the real infiltration vectors that attackers can use to break in.

    Security credentials

     Info
    Validated by AWS Marketplace
    FedRAMP
    GDPR
    HIPAA
    ISO/IEC 27001
    PCI DSS
    SOC 2 Type 2
    No security profile
    -
    -
    -
    -

    Contract

     Info
    Standard contract
    No
    No
    No

    Customer reviews

    Ratings and reviews

     Info
    0 ratings
    5 star
    4 star
    3 star
    2 star
    1 star
    0%
    0%
    0%
    0%
    0%
    0 AWS reviews
    |
    210 external reviews
    External reviews are sourced from G2  and are not included in the star rating for this product.
    Financial Services

    Good vulnerability management

    Reviewed on Oct 31, 2024
    Review provided by G2
    What do you like best about the product?
    Fast plugin updates for detecting new vulnerabilities in the environment. You can scan devices through an agent, with credentials or without. Useful for printers, and network equipment to see your full exposure.
    What do you dislike about the product?
    At times agents fail their agent update, lose their connection, then dropped from the system. Some times the remediation information is lacking leaving you unsure how to correct non-standard vulnerabilities.

    Support has not been good from our account manager to those higher up. I had issues with our VAR not receiving the renewal notification and services were shut off. It took them nearly 3 weeks to figure out their backend to restore services.
    What problems is the product solving and how is that benefiting you?
    Tenable Vulnerability Management provides a complete platform to identify vulnerabilities with guidance on remediation. Reporting is highly customizable to receive the data you are looking for at a scheduled frequency.
    Financial Services

    Good vulnerability management

    Reviewed on Oct 31, 2024
    Review provided by G2
    What do you like best about the product?
    Fast plugin updates for detecting new vulnerabilities in the environment. You can scan devices through an agent, with credentials or without. Useful for printers, and network equipment to see your full exposure.
    What do you dislike about the product?
    At times agents fail their agent update, lose their connection, then dropped from the system. Some times the remediation information is lacking leaving you unsure how to correct non-standard vulnerabilities.

    Support has not been good from our account manager to those higher up. I had issues with our VAR not receiving the renewal notification and services were shut off. It took them nearly 3 weeks to figure out their backend to restore services.
    What problems is the product solving and how is that benefiting you?
    Tenable Vulnerability Management provides a complete platform to identify vulnerabilities with guidance on remediation. Reporting is highly customizable to receive the data you are looking for at a scheduled frequency.
    David H.

    Tenable Vulnerability Management Review

    Reviewed on Oct 30, 2024
    Review provided by G2
    What do you like best about the product?
    Pros:

    Intuitive, user-friendly interface
    Accurate and comprehensive asset discovery
    Strong risk-based prioritization
    Automated, continuous scanning
    Flexible reporting and robust integration capabilities
    What do you dislike about the product?
    Cons:

    Can be costly for smaller businesses
    May require a learning curve for new users
    Some users report longer scan times for larger environments
    What problems is the product solving and how is that benefiting you?
    Tenable Vulnerability Management (formerly Tenable.io) offers an effective solution for identifying, managing, and mitigating security vulnerabilities across various assets within an organization. Its user-friendly interface and comprehensive dashboard allow IT teams to monitor vulnerabilities with clear visual insights, making it ideal for organizations looking to improve their cybersecurity posture proactively.
    David H.

    Tenable Vulnerability Management Review

    Reviewed on Oct 30, 2024
    Review provided by G2
    What do you like best about the product?
    Pros:

    Intuitive, user-friendly interface
    Accurate and comprehensive asset discovery
    Strong risk-based prioritization
    Automated, continuous scanning
    Flexible reporting and robust integration capabilities
    What do you dislike about the product?
    Cons:

    Can be costly for smaller businesses
    May require a learning curve for new users
    Some users report longer scan times for larger environments
    What problems is the product solving and how is that benefiting you?
    Tenable Vulnerability Management (formerly Tenable.io) offers an effective solution for identifying, managing, and mitigating security vulnerabilities across various assets within an organization. Its user-friendly interface and comprehensive dashboard allow IT teams to monitor vulnerabilities with clear visual insights, making it ideal for organizations looking to improve their cybersecurity posture proactively.
    Steve B.

    Great interface and plugins w/ only minor issues

    Reviewed on Oct 29, 2024
    Review provided by G2
    What do you like best about the product?
    The easy to use interface makes exploring known and discovered vulnerabilities fairly painless. The fact that the solution to exploits is listed right next to the vulnerability overview, it makes remediation a lot easier.
    The number of plugins covers a wide variety of systems and possible exploits.
    SAML / SCIM integration is another plus and was fairly easy to setup.
    Implementation of scanning via its Nessus agents was a breeze.
    What do you dislike about the product?
    The plugin manager could use some work. There are often several plugins that do the same thing or just plugins that do not provide the functionality that they claim.
    Additionally, some of the exploits that are not exploitable and can cause false positives. For example if I have a HTTPS exploit on a version of a router / switches firmware, but HTTPS management is turned off and only SSH management is used, then that exploit does not need to be listed as high.
    What problems is the product solving and how is that benefiting you?
    Provides vulnerability insights for servers and user endpoints with a fairly lightweight agent.

    The ability to do very targeted scans of specific vulnerabilities throughout an organizaiton or on just one specific machine is very helpful.
    View all reviews