We had other solutions that we used. One solution was that we did not have something exactly similar to what Element is doing. For example, we were using Bitsight, Evelin, and also Tenable Cloud Security. However, those products are different. Element was exactly the product we needed to cover close to real-time external surface monitoring. We also used Microsoft Defender for Endpoint, but the Defender product requires substantial manual labor. We were interested in having a tool that would not require too much manual labor and would be more proactive.

The Element team is easy to discuss with. They created modules for integrations, such as with DNS. They collect records automatically and add assets to the platform, which is very useful because we do not have to check each day for new records or remove old ones. Their integration with Azure and AWS makes it great for us. It streamlines the process and gives us assurance that all new assets will be automatically added to the platform.

I am not entirely sure about monitoring cloud applications as I have not used it extensively for that purpose. That is why we implemented Element and have other tools, as we are not using it exactly for that scope.

Element is precisely what we needed for close to real-time external surface monitoring. The automatic integration capabilities, particularly with DNS, Azure, and AWS, are extremely valuable. The platform automatically collects records and adds assets, eliminating the need for daily manual checking and updating.

The streamlined process ensures that all new assets are automatically added to the platform, reducing manual labor and making the system more proactive. The ease of communication with the Element team and their responsiveness to integration needs has been particularly beneficial.

Making the system smarter would be beneficial. Adding modules for integration with AWS and Azure would be helpful. Adding capabilities for the scanner to automatically pick up changes and add assets automatically would be valuable.

When discussing a big company, it is mandatory to have tools that will assist us rather than waiting for manual input to add hosts. Adding assets manually is prone to mistakes. Humans might forget to add an asset or make errors when adding multiple assets.

Taking the human element out of the context and making it more streamlined is the future for security. The human should be involved where expertise is needed, such as analysis and decision-making. Currently, with resource constraints, we need tools to collect and aggregate data, eliminate false positives as much as possible, and present relevant information to employees for action.

I first tested the product in November last year, and we implemented it starting in February.

I would rate it as 10 for experience. As with any other solution in the market, they may have small bugs or false positives. However, whenever I encountered an issue, I sent an email to them and they managed to fix it. They investigated and provided full details for further investigation. In situations where there was a platform issue, they fixed it immediately and provided a complete explanation for the occurrence.

Working with Element is straightforward and efficient. For comparison, while working with Bitsight is not difficult, it takes considerably longer. Bitsight is a larger company, and while they will provide the answers needed, the process is more time-consuming. With Bitsight, requesting integrations or new features involves submission and approval processes with uncertain timelines.

With Element, if you need a feature, you can discuss it with them, and if implementation is possible, you will have that feature within a month or two, depending on complexity. Simple integrations, such as DNS integration, can be completed in approximately a week.

Tenable Cloud Security is a mature and trustworthy product. I have been using it since it was available on laptops approximately 10 years ago or more. I initially used it for penetration testing, though currently I perform more manual penetration testing and use the scanner primarily to validate subnets or findings.

I started with Nessus installed on my computer, then moved to server deployment, and finally to Tenable Cloud Security. We still maintain Tenable Cloud Security but have reduced the number of licenses. We now use it occasionally to validate specific items rather than monitoring the entire surface, for which we use Element.

Tenable Cloud Security offers various features including discovery, web scanning, and primarily vulnerability scanning. It increases awareness of system vulnerabilities. In today's environment, information comes from multiple sources including Defender, Nessus, and various other tools within an organization. Using multiple tools is necessary to cover as much of the attack surface as possible, both internal and external.

My review rating for the solution is 10 out of 10.

Right now, I use Tenable as CNAPP, and it is good for the product as it offers enhanced security to users. We did use the tool on the cloud. I am not sure if some models, like CIEM, are available as a feature for users. When it comes to a module in CNAPP, I think it is fairly good for using and monitoring on the cloud while also being easy to deploy.

I am not sure how the tool is used in my company because I got transferred to another team that is involved only in monitoring. I use the reporting part on CNAPP. I only use the tool for customized reports. The tool had a fairly easy way to get customized reports.

Another team uses the tool. Tenable acquired Ermetic. I think Tenable has features, stays up to date, and upgrades every few months. I am not sure of the tool's use case, as another team uses it. I think another team in my company wants to use the tool for use cases associated with patching and testing. For use cases, Tenable needs to offer a patch-based solution since it is an area where the tool lacks a bit.

I have experience with Tenable Cloud Security.

There are no stability or bug-related issues in the tool.

The product's deployment phase is easy.

The tool is cost-effective.

The tool's price is good compared to other brands. The tool's subscription is for a year.

The tool can be used in the area of vulnerability management to improve our company's security.

I saw some impacts on our finances, especially on the banking side. In our company, we forecast the point for maturity and performance through assessments and security vulnerabilities in the cloud. Before I bought Tenable, I compared it with another band. The tool has been a really good point for the price.

One of the teams in my company would like to use the tool and integrate it with other products used for patching and vulnerability assessment tools.

The tool is a good product that is flexible and on the cloud.

I rate the tool an eight out of ten.

The solution is good. We integrated our AWS account with Tenable Cloud Security for security and compliance. The IAM features are valuable. We can analyze the permissions of the users in all the aspects of AWS. The solution’s vulnerability management feature has helped us identify and mitigate risks well. I can do the scans from the on-premise and cloud solutions. The tool integrates well with our existing products. We have integrated it with ServiceNow. It works well.

The product must provide more features. It must integrate with AI. The reporting features are bad. The reports do not have detailed information. We cannot do CI/CD with the tool.

I have been using the solution for one and a half years.

I rate the product’s stability seven and a half out of ten. It must be improved.

I rate the product’s scalability seven and a half out of ten. It must be improved.

The setup has a few steps. I rate the ease of setup a nine out of ten.

We compared the solution with other tools but chose Tenable Cloud Security because it fit our requirements.

We haven’t used the workload features yet. I will recommend the solution to others based on their organization’s requirements. Overall, I rate the tool an eight out of ten.

The use cases attached to Tenable Cloud Security include compliance verifications for the cloud environment.

The product lacks automatic remediation features. From an improvement perspective, the tool should be able to offer automatic remediation features.

There is a need for the support team to improve their response time since it is one of the areas where the product's technical team has certain shortcomings.

I have been using Tenable Cloud Security for around ten years. My company sells solutions like Fortinet, Qualys, Tenable, and SentinelOne. My company has a partnership with Tenable.

Stability-wise, I rate the solution an eight out of ten.

Scalability-wise, I rate the solution an eight out of ten.

The solution's technical support is not good. I rate the technical support a three out of ten.

Products like Fortinet, Qualys, and Rapid7 offer the same set of services. The only common issue I found between all the products was that though the tools can be deployed on the cloud services offered by Microsoft, AWS, and Google, the products cannot be deployed on Oracle.

I am in the process of testing different solutions from vendors like Rapid7 and Qualys.

I rate the product's initial setup phase an eight on a scale of one to ten.

The solution can be deployed in a couple of minutes.

There is a need to opt for a subscription-based pricing model to use Tenable Cloud Security. I rate the product price an eight on a scale of one to ten, where one is low price and ten is high price.

Tenable Cloud Security is a basic tool for security engineers since most of the cloud solutions do not offer high standard compliance, like PCI DSS compliant. Most of the cloud solutions use CIS as a benchmark or reference. Microsoft has its own compliance tool.

Tenable Cloud Security is a new solution in the market and cannot be compared with the other vulnerability tools.

Speaking about how the product has improved the security posture, I would say that Tenable Cloud Security is usually installed on a person's computer, so one needs to be very careful not to make any mistakes during configuration. The cloud providers don't offer security, so it is important for a potential buyer to read the information on the way the services are provided to them by the cloud.

The product's visibility and remediation work fine for me.

Around two people are required for the maintenance of the product, considering that there are changes in cloud products and every customer is different. It is not a static solution.

I rate the overall tool an eight out of ten.