Tenable Nessus Review
August 04, 2025

Tenable Nessus Review

Anonymous | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User

Overall Satisfaction with Tenable Nessus

We use Tenable Nessus to scan for vulnerabilities and insecure misconfigurations to improve our security posture. Nessus identifies missing patches and firmware updates and provides basic information on the CVEs to help with remediation. I sleep better at night knowing we are proactively preventing breaches and unauthorized access. It is also valuable tool to achieve compliance and provides evidence for our auditors.

Pros

  • Identifies vulnerabilities and misconfigurations across many platforms.
  • Helps us achieve compliance with our auditors
  • Helps us prioritize remediation based on severity of the CVE/misconfiguration

Cons

  • There are some legacy systems that we are unfortunately not able to patch. There is no way to flag these so they are not in all our reports. We still need to track these but they don't need to be included in the weekly scan every time.
  • The Service Now integration is very complex.
  • We get quite a few false positives, especially when scanning network infrastructure such as siwtches and firewalls.
  • Tenable Nessus has saved our security team countless hours of manually identifying security weaknesses in our infrastructure.
  • I would like to think that the remediations we have performed based on Tenable Nessus reports has prevented at least one breach of our network. If that is the case, the ROI is basically incalculable but could easily be in the tens of millions of dollars.
  • Tenable Nessus has helped our organization formalize many security practices and processes that keep our business running smoothly.
Tenable Nessus is a great product and provides a lot of value, but it is difficult to set up and use and the amount of data it generates can be overwhelming. It does help us prioritize based on the severity of the detection, however there are sometimes mitigating factors that we have implemented that Nessus does not account for, which causes lots of noise in the reports.
  • Microsoft Defender for Endpoint
  • CrowdStrike Falcon
Defender provides lots of insight into missing patches and vulnerabilities on Windows devices but doesn't provide much help for other platforms.

Do you think Tenable Nessus delivers good value for the price?

Yes

Are you happy with Tenable Nessus's feature set?

Yes

Did Tenable Nessus live up to sales and marketing promises?

Yes

Did implementation of Tenable Nessus go as expected?

Yes

Would you buy Tenable Nessus again?

Yes

Tenable Nessus is good for any organization that is concerned with tier on-prem IT security, especially those with any kind of regulatory compliance requirements. It does have a learning curve and takes quite a bit of time to set up and monitor, so having a dedicated security staff would be necessary to get its full value. I don't think I would recommend it for organizations that are cloud-native or don't have much in the way of on-prem infrastructure.

Tenable Nessus Feature Ratings

Vulnerability Management Tools
8.3
IT Asset Realization
7
Authentication
Not Rated
Configuration Monitoring
9
Web Scanning
8
Vulnerability Intelligence
9
Threat Intelligence
8.0
Network Analytics
Not Rated
Vulnerability Classification
Not Rated
Automated Alerts and Reporting
Not Rated
Threat Analysis
Not Rated
Threat Intelligence Reporting
7
Automated Threat Identification
8
Threat Recognition
9

Comments

More Reviews of Tenable Nessus

  1. Home
  2. Vulnerability Management Tools
  3. Tenable Nessus Reviews
  4. User Review of Tenable Nessus