Ivanti Patch for Endpoint Manager vs. Tenable Nessus vs. Wiz

Ivanti Patch is easy to deploy and use for any windows patch management and auto scan. Configuration management is very great with Ivanti Patch. They have a great support community and provide you with the best help and technical support from the Ivanti Patch support team. Ivanti Patch and system center configuration manager give you the best tools and features to their users for security and configuration management.

It is an excellent tool for scanning servers, workstations, and network devices to identify missing patches and misconfiguration; we regularly use it to confirm patch effectiveness after the update; it also helps us for preparing audits such as iso 27001, and regulatory requirements, it also helps us to identify open ports and services that violate security.

Wiz is well-suited if you want to run real-time scans against resources that were recently patched or configured. It is good to keep track of vulnerabilities found and what can be done to resolve the issues without having to open up multiple tabs. Overall, it is good to keep an eye on how well cloud teams or cloud security teams are doing.

Incentivized

• Scheduling patching
• Inventory management
• Reporting
• Patch management

• Nessus is best at performing vulnerability scans, in fact, it gives findings and moreover accurate findings of the assessments. It does not do penetration testing or exploit the vulnerabilities because it is concerned about scanning the systems/applications.
• In fact, Nessus has multiple profiles/policies to perform different types of scans such as, scans oriented for PCI-DSS, malware scans, web application scans, bad shell shock detection scan to name a few.
• Nessus has the ability to classify the vulnerabilities into risk-based categories from critical to even informational which I think is one of the things that separates Nessus from other vulnerability scanners.

Incentivized

• Multi-cloud: Ability of Wiz to integrate with all of our cloud platforms makes it easy to deploy and centralizes our insights into all environments
• UI/UX: Wiz's UI is one of, if not -- the best UI I have ever used in a security application. Wiz is able to make it easy to follow and use the application to simplify the normally overcomplicated process of parsing through security information and tools.
• Marketing: Hosting meetups such as Wizdom has demonstrated Wiz's investment into its customers by providing us with more encouragement to use the app. The merch, ads, and presentation are above and beyond many companies in the tech industry.
• Threat Intel: We rely on Wiz for the latest finds in vulnerabilities across all platforms, and since it is incorporated into the application, it makes this easy and fast to push out necessary steps without going through multiple layers of communication between vendors, cyber governance, security analysts, and developers.

Incentivized

• Ivanti Patch needs more enhancement for application connectors.
• Its user interface is not so easy to use for someone new.
• They can do some more improvement with auto scan and inventory management.

• The tool has lots of options for setting up before scanning any device, this methodology could be simplified further with default configuration for various devices predefined, anyhow we can use this technique by making use of policies.
• For advanced users we cannot disable the plugins inside the plugin groups, we can enable the whole set of plugins at a time, for few hundreds its ok, but thousands of plugins are of waste of resource and time.

Incentivized

• I would like to see the modification of the issue status to be wrapped in some form of a permission
• I would like to be able to show filtered queries on the Identity Entitlements screen also on the security graph.
• I wish I didn't have to create an automation rule (when the rule does just about the same thing in each) for each project (in Wiz).

Incentivized

Nessus is best and easy to use application for Vulnerabilities finding and reporting, it has multiple platforms and wide scope covering almost all devices for security improvement so far, thus we are very likely to continue its services.

Incentivized

Tenable Nessus is a great product and provides a lot of value, but it is difficult to set up and use and the amount of data it generates can be overwhelming. It does help us prioritize based on the severity of the detection, however there are sometimes mitigating factors that we have implemented that Nessus does not account for, which causes lots of noise in the reports.

Incentivized

The UI is very user-friendly, with documentation available on every page of the application. New users can learn about the product features as they navigate through several different pages, using the instructions at the top of each page, making it quite easy to use.

Incentivized

Never experience issue yet

Incentivized

No issues

Incentivized

I haven't needed to contact support yet. But issues are easily solved with a quick internet search which means support and by extension, the larger community are involved and knowledgeable.

Incentivized

it great support very responsive up to the point

Incentivized

Multiple option with automation features as well

Incentivized

Ivanti Patch is more reliable and easy to use than any system center configuration management software in the market. This is value for money and provides you the best tools for patching and configuration. Its user interface is easy to understand and has a great support community online and Ivanti Patch's technical support team helps you in every step when they find any issues.

Sometimes when we identify a vulnerability with Nessus that has an exploit, we made a proof of concept with Metasploit in order to show to the IT managers the importance of the software/hardware hardening.

Incentivized

We previously used Lacework but transitioned to Wiz as part of our effort to improve cloud security visibility and streamline risk management. While Lacework provided useful insights, we found that Wiz offered a clearer, more intuitive interface and better collaboration features, making it easier for both Security and Engineering teams to work together.
The Security Graph and automated risk analysis in Wiz have been especially valuable, helping us quickly understand exposures and prioritise fixes. Overall, the transition to Wiz has improved how we manage security risks across our cloud environment.

Incentivized

flexible on over utilization and have fair prices

Incentivized

Robots front end API and ment for developer to use

Incentivized

base on our experience

Incentivized

• Has saved me probably days of patching at this point
• Has kept our devices up to date, saved us from zero day attacks

• Nessus certainly has a positive impact while me while performing my job, either as security research, or performing vulnerability assessments for clients. It gives a lot of information about the system/application after performing scans. The number of false positives is also less compared to other vulnerability scanners.
• The professional edition is very useful as policy templates available in this edition are very handy and useful even to perform compliance scan like PCI DSS scan.
• Also, the ability to export the scan results into reports in formats like HTML, PDF is very useful which could be for performing system/application reviews.

Incentivized

• Wiz has saved us a lot of money and headaches. It finds problems we didn't even know we had, like weak passwords and open ports. This helps us fix things before hackers can find them. It's like having a team of security experts working 24/7.
• Plus, Wiz can fix some problems itself, saving us time and money. It's a great investment for our business.
• Wiz has made our cloud much safer. It helps us find and fix problems quickly, which means we can focus on our core business. It's like having an extra layer of protection for our data and systems.