Looking at options for vulnerability scanners — which ones would be a good fit for a midsize software startup?

Threat & Vulnerability ManagementVendor/Product RecommendationSecurity Strategy & Roadmap
2.1k views23 Comments
Sort By:
Oldest
IT Strategist in Government2 years ago
We use Nessus, but we are a large organization. For a smaller organization on a limited budget, I would recommend to use an online scanner tool like Intruder.io or likes. Once you have you product developed/matured, you can invest in a better tool, which will be more suited for your target industry.   
Chief Technology Officer in Software2 years ago
We use Nuclie as its open source. https://nuclei.projectdiscovery.io/
Still in Nascent stages, but so far good for our use cases

CIO in Services (non-Government)2 years ago
We use Tenable asit is number 1 in a lot of categories.
lock icon

Please join or sign in to view more content.

By joining the Peer Community, you'll get:

  • Peer Discussions and Polls
  • One-Minute Insights
  • Connect with like-minded individuals
Director of Tech and Cyber Strategy in Finance (non-banking)2 years ago
We looked at Nessus but when with Qualys (our parent allowed us favorable commercial terms).

OWASP has a number of open source tools. My advice is to look at a tool that not only provides the scanner but to also look at integration costs (particularly if you use a CMDB) and determine where the best marginal dollar spent is. In many cases the easy of operationalizing the tool can be more important than the tool. Ultimately cyber security is about redundancy and layering and IMO what best supports that strategy is more important than how well one tool might perform on its own,

https://owasp.org/www-community/Vulnerability_Scanning_Tools
Vice President & Chief Information Security Officer (CISO) in Software2 years ago
Nessus, Qualys, wazuh, OpenVAS are good options 

Content you might like

We are a large manufacturing company with over 17,000 associates, about half of whom have company-provided cell phones. We average two lost devices per week, which seems low, but executive management is concerned and wants to know if our numbers are typical compared to other companies. My questions are: 1. Do other companies also struggle with lost or stolen devices? 2. What is the average number of lost devices per week? 3. Are there repercussions for associates who lose devices due to carelessness or negligence?

Mobile Device Management (MDM)Mobile DevicesSecurity+2 more
VP of IT in Retail3 days ago
My previous organization implemented a strict one-strike policy for lost or damaged devices. While the first incident was considered an accident, repeat offenders were required to reimburse the company for the lost or damaged ...read more
82 views1 Comment

What is your primary deciding factor in adopting enterprise search?

Strategy & ArchitectureCloudEnd-User Services & Collaboration+26 more

TCO19%

Pricing26%

Integrations21%

Alignment with Cloud Provider7%

Security10%

Alignment with Existing IT Skills4%

Product / Feature Set7%

Vendor Relationship / Reputation

Other (comment)

View Results
5.7k views3 Upvotes1 Comment

Any recommendations for a comprehensive GenAI learning platform?

EngineeringData & AnalyticsSecurity Strategy & Roadmap+4 more
IT Manager in Constructiona month ago
Hello,
the topic is so broad, what are you focused on?
Read More Comments
4.8k views2 Upvotes5 Comments

What cybersecurity topics do you think are critical for CIOs to be more involved in, even in orgs that have a CISO?

Relationship ManagementSecurity & GRCSecurity Strategy & Roadmap+1 more
Director of IT in Healthcare and Biotech9 days ago
Cybersecurity governance and risk management (setting up monitoring of emerging threats), data protection and privacy compliance (standardize on data protection across all channels), incident response and recovery planning ...read more
Read More Comments
1.3k views3 Comments

In the past 6 months, have you seen an uptick in targeted cyberattacks on telehealth devices and networks?

Security & GRCNetworkThreat & Vulnerability Management+2 more

No Increase16%

1-5% increase47%

6-25% increase24%

26-50% increase6%

51-75% increase1%

76%+1%

Other2%

View Results
1.7k views1 Upvote