3rd Party Data Ingestion
Default 3rd Party Data Ingestion
- 3rd party data ingestion from Qualys, Rapid7, CrowdStrike, SentinelOne ingestion Breach & Attack Simulation is included in Base license
Benefits
Unified view of exposure from code to cloud, Lower licensing cost and complexity Additional and Higher licensing cost
- 3rd Party data from Qualys, Rapid7 can’t be ingested
- Needs a separate product TenableOne
Drawback
High licensing cost, added complexity and risk of vendor lock-inAgent
Frictionless and Scalable Deployment
- Completely agentless solution
- One network scanner reaches multiple systems
Benefits
Highy scalable and no performance degradation on systems Resource intensive and heavy agent
- Agent deployment and management is time and efforts intensive
- Agent size goes upto 4 GB, local resource consumption leads to system slowness
Drawback
Higher TCO and performance degradationRisk Score and Threat Exposure
Real Risk Score (1-100)
- Considers vulnerability severity, age, access, attack complexity, threat intel, asset criticality, business impact, security controls and attack feasibility Global, Industry and Regional Threat Intel
- Provide IOCs to detect Vulnerability Exploitation
- Vulnerability to Threat Actor Mapping
Benefits
Practical Risk Score, Targetted exposure reduction and remediation, high ROI Inaccurate Risk Score (1-1000)
- Multiple scores (VPR, ACR, AES, CES, etc)- more confusion rather than clarity
- Scores Ignore security controls in place and doesnt evaluate attack feasibility
- Generic Threat Intelligence
- No IOCs to detect vulnerability exploitation
- No Threat Actor Attribution
Drawback
Misleading and inactionable risk score. High efforts and uncertain exposure reduction
