TechValidate Customer Research Library /

TechValidate Research on Cisco Vulnerability Management

98 Case Studies – Page 1 of 4


Kenna.VM Case Study

Large Enterprise Financial Services Company

Introduction

This case study of a large enterprise financial services company is based on an October 2021 survey of Kenna.VM customers by TechValidate, a 3rd-party research service. The profiled company asked to have their name blinded to protect their confidentiality.

Share

Embed

Download

“By scoring the vulnerabilities correctly using risk, it has given our remediation teams enough time to actually get the job done.”

“Our CX team goes above and beyond everytime.”

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Kenna.VM:

  • The vulnerability management challenges they were experiencing that led them to implement the Kenna.VM:
    • Too many vulnerabilities with no way to effectively prioritize
    • High volume of security data lacking context for decision making
    • Not having a way to quantify or measure risk from vulnerabilities

Use Case

The key features and functionalities of Kenna.VM that the surveyed company uses:

  • The approach they used to prioritize vulnerabilities prior to Kenna:
    • A rating system from scanner
    • A homegrown prioritization tool
  • They best describe their current engagement model between the Security and IT team as Security investigates and prioritizes vulnerabilities; IT remediates.
  • The criteria they use to evaluate the success of your Kenna.VM implementation:
    • Reduction in Mean Time To Remediate (MTTR)
    • Kenna risk score reduction
    • Reduction in vulnerability investigation time
    • Reduction in IT remediation time

Results

The surveyed company achieved the following results with Kenna.VM:

  • Before Kenna vs. After Kenna: Have you seen a reduction in time spent on the following activities? (Security and IT team time combined)
    • time spent on Vulnerability Investigation: 25 – 50%
    • time spent on remediation: 25 – 50%
    • time spent on reporting: 10 – 25%
  • Kenna’s primary advantage(s) over other vulnerability management platforms:
    • Kenna goes beyond basic risk scoring and tells me what I need to fix first
    • Kenna provides meaningful and actionable data for remediation (remediation intelligence)
    • Kenna is updated continuously with real-time information
    • Kenna aggregates data and reporting from multiple tools (vuln scanners, CMDB, discovery)
    • Kenna includes multiple threat intel feeds (eliminating the need for subscription)
  • Rates the following for Kenna.VM compared to other vulnerability management solutions:
    • remediation Intelligence (guidance on “what to fix first”): superior
    • integrated real-time global exploit intelligence: superior
    • data science-based risk scoring methodology: superior
    • “Off the shelf” integrations with a wide range of security data sources: highly superior
    • predictive vulnerability modeling: highly superior

Company Profile

The company featured in this case study asked to have its name publicly blinded because publicly endorsing vendors is against their policies.

TechValidate stands behind the authenticity of this data.

Company Size:
Large Enterprise

Industry:
Financial Services

About Kenna.VM

Cisco Vulnerability Management (formerly Kenna.VM) offers an effective, efficient way to reduce your risk profile using risk-based prioritization powered by data science. Rely on it to ID the vulnerabilities that put you at the greatest risk, create a self-service environment for remediation teams, set intelligent SLAs based on your risk tolerance, compare your risk posture against industry peers, deliver clear reports with intuitive metrics, and more.

Learn More:

Cisco Vulnerability Management

Source: TechValidate survey of a Large Enterprise Financial Services Company
Validated
  Published: Feb. 14, 2022   TVID: ECE-304-82C

Kenna.VM Case Study

Fortune 500 Healthcare Company

Introduction

This case study of a Fortune 500 healthcare company is based on an October 2021 survey of Kenna.VM customers by TechValidate, a 3rd-party research service. The profiled company asked to have their name blinded to protect their confidentiality.

Share

Embed

Download

“Kenna is used by our IT user base to work their priority vulnerabilities and for reporting metrics.”

“Kenna has been a great tool for our user base to navigate and prioritize their patching of vulnerabilities. "

“Our Customer Success Manager and Customer Success Engineer are VERY good. "

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Kenna.VM:

  • The vulnerability management challenges they were experiencing that led them to implement the Kenna.VM:
    • Too many vulnerabilities with no way to effectively prioritize
    • High volume of security data lacking context for decision making
    • Not having a way to quantify or measure risk from vulnerabilities
    • Inefficiencies in vulnerability remediation

Use Case

The key features and functionalities of Kenna.VM that the surveyed company uses:

  • The approach they used to prioritize vulnerabilities prior to Kenna:
    • CVSS 7+
  • They best describe their current engagement model between the Security and IT team as Security investigates; Security and IT work together to prioritize; IT remediates.
  • The criteria they use to evaluate the success of your Kenna.VM implementation:
    • Reduction in Mean Time To Remediate (MTTR)
    • Kenna risk score reduction
    • Reduction in vulnerability investigation time
    • Reduction in IT remediation time
    • SLA adherence
    • Reduction in reporting time

Results

The surveyed company achieved the following results with Kenna.VM:

  • Before Kenna vs. After Kenna: Have you seen a reduction in time spent on the following activities? (Security and IT team time combined)
    • time spent on Vulnerability Investigation: 25 – 50%
    • time spent on remediation: 25 – 50%
    • time spent on reporting: 25 – 50%
  • Kenna’s primary advantage(s) over other vulnerability management platforms:
    • Kenna goes beyond basic risk scoring and tells me what I need to fix first
    • Kenna provides meaningful and actionable data for remediation (remediation intelligence)
    • Kenna provides awareness of how much risk is in our environment
    • Kenna is updated continuously with real-time information
    • Kenna aggregates data and reporting from multiple tools (vuln scanners, CMDB, discovery)
    • Kenna includes multiple threat intel feeds (eliminating the need for subscription)
    • Kenna’s cloud platform scales elastically to virtually any organization size
  • Rates the following for Kenna.VM compared to other vulnerability management solutions:
    • remediation Intelligence (guidance on “what to fix first”): superior
    • integrated real-time global exploit intelligence: superior
    • data science-based risk scoring methodology: superior
    • “Off the shelf” integrations with a wide range of security data sources: superior
    • predictive vulnerability modeling: superior

Company Profile

The company featured in this case study asked to have its name publicly blinded because publicly endorsing vendors is against their policies.

TechValidate stands behind the authenticity of this data.

Company Size:
Fortune 500

Industry:
Healthcare

About Kenna.VM

Cisco Vulnerability Management (formerly Kenna.VM) offers an effective, efficient way to reduce your risk profile using risk-based prioritization powered by data science. Rely on it to ID the vulnerabilities that put you at the greatest risk, create a self-service environment for remediation teams, set intelligent SLAs based on your risk tolerance, compare your risk posture against industry peers, deliver clear reports with intuitive metrics, and more.

Learn More:

Cisco Vulnerability Management

Source: TechValidate survey of a Fortune 500 Healthcare Company
Validated
  Published: Feb. 14, 2022   TVID: 28D-999-289

Kenna.VM Case Study

Medium Enterprise Financial Services Company

Introduction

This case study of a medium enterprise financial services company is based on an October 2021 survey of Kenna.VM customers by TechValidate, a 3rd-party research service. The profiled company asked to have their name blinded to protect their confidentiality.

Share

Embed

Download

“Kenna.VM allows us to search on any CVE and get Kenna’s analysis on it. This can be valuable when a new CVE has not been discovered in our environment yet and we want to see the risk score before it is discovered in our environment.”
“Our CSM has been very helpful with our ongoing implementation and maintenance of Kenna.”

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Kenna.VM:

  • The vulnerability management challenges they were experiencing that led them to implement the Kenna.VM:
    • Too many vulnerabilities with no way to effectively prioritize
    • Not having a way to quantify or measure risk from vulnerabilities
    • Inefficiencies in vulnerability remediation

Use Case

The key features and functionalities of Kenna.VM that the surveyed company uses:

  • The approach they used to prioritize vulnerabilities prior to Kenna:
    • CVSS 10+
    • A rating system from scanner
  • They best describe their current engagement model between the Security and IT team as Security investigates and prioritizes vulnerabilities; IT remediates.
  • The criteria they use to evaluate the success of your Kenna.VM implementation:
    • Reduction in Mean Time To Remediate (MTTR)
    • Kenna risk score reduction
    • Reduction in vulnerability investigation time

Results

The surveyed company achieved the following results with Kenna.VM:

  • Before Kenna vs. After Kenna: Have you seen a reduction in time spent on the following activities? (Security and IT team time combined)
    • time spent on Vulnerability Investigation: 10 – 25%
    • time spent on remediation: 1 – 10%
    • time spent on reporting: 0%
  • Kenna’s primary advantage(s) over other vulnerability management platforms:
    • Kenna goes beyond basic risk scoring and tells me what I need to fix first
    • Kenna provides awareness of how much risk is in our environment
    • Kenna is updated continuously with real-time information
    • Kenna aggregates data and reporting from multiple tools (vuln scanners, CMDB, discovery)
  • Rates the following for Kenna.VM compared to other vulnerability management solutions:
    • remediation Intelligence (guidance on “what to fix first”): highly superior
    • integrated real-time global exploit intelligence: superior
    • data science-based risk scoring methodology: superior
    • “Off the shelf” integrations with a wide range of security data sources: superior
    • predictive vulnerability modeling: highly superior

Company Profile

The company featured in this case study asked to have its name publicly blinded because publicly endorsing vendors is against their policies.

TechValidate stands behind the authenticity of this data.

Company Size:
Medium Enterprise

Industry:
Financial Services

About Kenna.VM

Cisco Vulnerability Management (formerly Kenna.VM) offers an effective, efficient way to reduce your risk profile using risk-based prioritization powered by data science. Rely on it to ID the vulnerabilities that put you at the greatest risk, create a self-service environment for remediation teams, set intelligent SLAs based on your risk tolerance, compare your risk posture against industry peers, deliver clear reports with intuitive metrics, and more.

Learn More:

Cisco Vulnerability Management

Source: TechValidate survey of a Medium Enterprise Financial Services Company
Validated
  Published: Feb. 14, 2022   TVID: 23F-6BF-AD8

Kenna.VM Case Study

Icao (The International Civil Aviation Organization)

Introduction

This case study of ICAO is based on an October 2021 survey of Kenna.VM customers by TechValidate, a 3rd-party research service.

Share

Embed

Download

“Kenna Security offers an independent view of the usual vulnerability scanning platforms and an intelligence-based view on the gathered vulnerability data. The intelligence information as obtained allows us to prioritize items to remediate, as well as reporting to different stakeholders.”

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Kenna.VM:

  • The vulnerability management challenges they were experiencing that led them to implement the Kenna.VM:
    • Too many vulnerabilities with no way to effectively prioritize
    • High volume of security data lacking context for decision making

Use Case

The key features and functionalities of Kenna.VM that the surveyed company uses:

  • The approach they used to prioritize vulnerabilities prior to Kenna:
    • A rating system from scanner
  • They best describe their current engagement model between the Security and IT team as Security investigates and prioritizes vulnerabilities; IT remediates.
  • The criteria they use to evaluate the success of your Kenna.VM implementation:
    • Kenna risk score reduction
    • Reduction in vulnerability investigation time
    • Reduction in IT remediation time
    • Reduction in reporting time

Results

The surveyed company achieved the following results with Kenna.VM:

  • Before Kenna vs. After Kenna: Have you seen a reduction in time spent on the following activities? (Security and IT team time combined)
    • time spent on Vulnerability Investigation: 50 – 75%
    • time spent on remediation: 10 – 25%
    • time spent on reporting: over 75%
  • Kenna’s primary advantage(s) over other vulnerability management platforms:
    • Kenna goes beyond basic risk scoring and tells me what I need to fix first
    • Kenna provides meaningful and actionable data for remediation (remediation intelligence)
    • Kenna provides awareness of how much risk is in our environment
    • Kenna aggregates data and reporting from multiple tools (vuln scanners, CMDB, discovery)
  • Rates the following for Kenna.VM compared to other vulnerability management solutions:
    • remediation Intelligence (guidance on “what to fix first”): highly superior
    • integrated real-time global exploit intelligence: superior
    • data science-based risk scoring methodology: superior
    • “Off the shelf” integrations with a wide range of security data sources: superior
    • predictive vulnerability modeling: superior

Company Profile

Company:
ICAO

Company Size:
Medium Enterprise

Industry:
Professional Services

About Kenna.VM

Cisco Vulnerability Management (formerly Kenna.VM) offers an effective, efficient way to reduce your risk profile using risk-based prioritization powered by data science. Rely on it to ID the vulnerabilities that put you at the greatest risk, create a self-service environment for remediation teams, set intelligent SLAs based on your risk tolerance, compare your risk posture against industry peers, deliver clear reports with intuitive metrics, and more.

Learn More:

Cisco Vulnerability Management

Source: SiNguyen Vo, Chief Information Security Officer, ICAO
Validated
  Published: Feb. 14, 2022   TVID: E16-74A-9BC

Kenna.VM Case Study

Large Enterprise Financial Services Company

Introduction

This case study of a large enterprise financial services company is based on an October 2021 survey of Kenna.VM customers by TechValidate, a 3rd-party research service. The profiled company asked to have their name blinded to protect their confidentiality.

Share

Embed

Download

“Changing the conversation from the boardroom to the organizational business units and ensuring mission success by continuously reducing the attack surface. "

“Our CX team is Outstanding, truly collaborative.”

“Have been working with the Kenna team for the last four years, and truly believe Kenna is a market leader for quantifying vulnerability risk for subsequent prioritized remediation.”

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Kenna.VM:

  • The vulnerability management challenges they were experiencing that led them to implement the Kenna.VM:
    • Too many vulnerabilities with no way to effectively prioritize
    • High volume of security data lacking context for decision making
    • Not having a way to quantify or measure risk from vulnerabilities
    • Inefficiencies in vulnerability remediation

Use Case

The key features and functionalities of Kenna.VM that the surveyed company uses:

  • The approach they used to prioritize vulnerabilities prior to Kenna:
    • A rating system from scanner
  • They best describe their current engagement model between the Security and IT team as Security investigates and prioritizes vulnerabilities; IT remediates.
  • The criteria they use to evaluate the success of your Kenna.VM implementation:
    • Kenna risk score reduction
    • Reduction in vulnerability investigation time
    • Reduction in IT remediation time
    • SLA adherence

Results

The surveyed company achieved the following results with Kenna.VM:

  • Before Kenna vs. After Kenna: Have you seen a reduction in time spent on the following activities? (Security and IT team time combined)
    • time spent on Vulnerability Investigation: 10 – 25%
    • time spent on remediation: 1 – 10%
    • time spent on reporting: 10 – 25%
  • Kenna’s primary advantage(s) over other vulnerability management platforms:
    • Kenna goes beyond basic risk scoring and tells me what I need to fix first
    • Kenna provides meaningful and actionable data for remediation (remediation intelligence)
    • Kenna provides awareness of how much risk is in our environment
    • Kenna is updated continuously with real-time information
    • Kenna aggregates data and reporting from multiple tools (vuln scanners, CMDB, discovery)
    • Kenna includes multiple threat intel feeds (eliminating the need for subscription)
    • Kenna’s cloud platform scales elastically to virtually any organization size
  • Rates the following for Kenna.VM compared to other vulnerability management solutions:
    • remediation Intelligence (guidance on “what to fix first”): superior
    • integrated real-time global exploit intelligence: superior
    • data science-based risk scoring methodology: superior
    • “Off the shelf” integrations with a wide range of security data sources: superior
    • predictive vulnerability modeling: superior

Company Profile

The company featured in this case study asked to have its name publicly blinded because publicly endorsing vendors is against their policies.

TechValidate stands behind the authenticity of this data.

Company Size:
Large Enterprise

Industry:
Financial Services

About Kenna.VM

Cisco Vulnerability Management (formerly Kenna.VM) offers an effective, efficient way to reduce your risk profile using risk-based prioritization powered by data science. Rely on it to ID the vulnerabilities that put you at the greatest risk, create a self-service environment for remediation teams, set intelligent SLAs based on your risk tolerance, compare your risk posture against industry peers, deliver clear reports with intuitive metrics, and more.

Learn More:

Cisco Vulnerability Management

Source: TechValidate survey of a Large Enterprise Financial Services Company
Validated
  Published: Feb. 14, 2022   TVID: E61-3AE-18F

Kenna.VM Case Study

Global 500 Insurance Company

Introduction

This case study of a Global 500 insurance company is based on an October 2021 survey of Kenna.VM customers by TechValidate, a 3rd-party research service. The profiled company asked to have their name blinded to protect their confidentiality.

Share

Embed

Download

“We are at the beginning of our Kenna journey. It was the superior product. "

“Kenna does a tremendous job in prioritizing risk and providing direction for the patching teams to remediate.”

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Kenna.VM:

  • The vulnerability management challenges they were experiencing that led them to implement the Kenna.VM:
    • Too many vulnerabilities with no way to effectively prioritize
    • Not having a way to quantify or measure risk from vulnerabilities
    • Inefficiencies in vulnerability remediation

Use Case

The key features and functionalities of Kenna.VM that the surveyed company uses:

  • The approach they used to prioritize vulnerabilities prior to Kenna:
    • CVSS 9+
  • They best describe their current engagement model between the Security and IT team as Security investigates; IT prioritizes and remediates.
  • The criteria they use to evaluate the success of your Kenna.VM implementation:
    • Kenna risk score reduction
    • SLA adherence

Results

The surveyed company achieved the following results with Kenna.VM:

  • Before Kenna vs. After Kenna: Have you seen a reduction in time spent on the following activities? (Security and IT team time combined)
    • time spent on Vulnerability Investigation: 10 – 25%
    • time spent on remediation: 50 – 75%
    • time spent on reporting: 50 – 75%
  • Kenna’s primary advantage(s) over other vulnerability management platforms:
    • Kenna goes beyond basic risk scoring and tells me what I need to fix first
    • Kenna provides meaningful and actionable data for remediation (remediation intelligence)
    • Kenna provides awareness of how much risk is in our environment
    • Kenna is updated continuously with real-time information
    • Kenna aggregates data and reporting from multiple tools (vuln scanners, CMDB, discovery)
    • Kenna includes multiple threat intel feeds (eliminating the need for subscription)
  • Rates the following for Kenna.VM compared to other vulnerability management solutions:
    • remediation Intelligence (guidance on “what to fix first”): highly superior
    • integrated real-time global exploit intelligence: superior
    • data science-based risk scoring methodology: superior
    • “Off the shelf” integrations with a wide range of security data sources: superior
    • predictive vulnerability modeling: superior

Company Profile

The company featured in this case study asked to have its name publicly blinded because publicly endorsing vendors is against their policies.

TechValidate stands behind the authenticity of this data.

Company Size:
Global 500

Industry:
Insurance

About Kenna.VM

Cisco Vulnerability Management (formerly Kenna.VM) offers an effective, efficient way to reduce your risk profile using risk-based prioritization powered by data science. Rely on it to ID the vulnerabilities that put you at the greatest risk, create a self-service environment for remediation teams, set intelligent SLAs based on your risk tolerance, compare your risk posture against industry peers, deliver clear reports with intuitive metrics, and more.

Learn More:

Cisco Vulnerability Management

Source: TechValidate survey of a Global 500 Insurance Company
Validated
  Published: Feb. 14, 2022   TVID: 3A5-6CD-E2E

Kenna.VM Case Study

Medium Enterprise Pharmaceuticals Company

Introduction

This case study of a medium enterprise pharmaceuticals company is based on an October 2021 survey of Kenna.VM customers by TechValidate, a 3rd-party research service. The profiled company asked to have their name blinded to protect their confidentiality.

Share

Embed

Download

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Kenna.VM:

  • The vulnerability management challenges they were experiencing that led them to implement the Kenna.VM:
    • Too many vulnerabilities with no way to effectively prioritize
    • High volume of security data lacking context for decision making
    • Not having a way to quantify or measure risk from vulnerabilities

Use Case

The key features and functionalities of Kenna.VM that the surveyed company uses:

  • The approach they used to prioritize vulnerabilities prior to Kenna:
    • CVSS 10+
  • The criteria they use to evaluate the success of your Kenna.VM implementation:
    • Reduction in vulnerability investigation time
    • Reduction in reporting time

Results

The surveyed company achieved the following results with Kenna.VM:

  • Before Kenna vs. After Kenna: Have you seen a reduction in time spent on the following activities? (Security and IT team time combined)
    • time spent on Vulnerability Investigation: 50 – 75%
    • time spent on remediation: 50 – 75%
    • time spent on reporting: 50 – 75%
  • Kenna’s primary advantage(s) over other vulnerability management platforms:
    • Kenna goes beyond basic risk scoring and tells me what I need to fix first
    • Kenna provides awareness of how much risk is in our environment

Company Profile

The company featured in this case study asked to have its name publicly blinded because publicly endorsing vendors is against their policies.

TechValidate stands behind the authenticity of this data.

Company Size:
Medium Enterprise

Industry:
Pharmaceuticals

About Kenna.VM

Cisco Vulnerability Management (formerly Kenna.VM) offers an effective, efficient way to reduce your risk profile using risk-based prioritization powered by data science. Rely on it to ID the vulnerabilities that put you at the greatest risk, create a self-service environment for remediation teams, set intelligent SLAs based on your risk tolerance, compare your risk posture against industry peers, deliver clear reports with intuitive metrics, and more.

Learn More:

Cisco Vulnerability Management

Source: TechValidate survey of a Medium Enterprise Pharmaceuticals Company
Validated
  Published: Feb. 14, 2022   TVID: 9B6-E14-C24

Kenna.VM Case Study

Enterprise Insurance Company

Introduction

This case study of an Enterprise insurance company is based on an October 2021 survey of Kenna.VM customers by TechValidate, a 3rd-party research service. The profiled company asked to have their name blinded to protect their confidentiality.

Share

Embed

Download

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Kenna.VM:

  • The vulnerability management challenges they were experiencing that led them to implement the Kenna.VM:
    • Too many vulnerabilities with no way to effectively prioritize
    • High volume of security data lacking context for decision making
    • Not having a way to quantify or measure risk from vulnerabilities

Use Case

The key features and functionalities of Kenna.VM that the surveyed company uses:

  • The approach they used to prioritize vulnerabilities prior to Kenna:
    • CVSS 7+
    • CVSS 8+
    • CVSS 9+
    • CVSS 10+
  • They best describe their current engagement model between the Security and IT team as Security investigates and prioritizes vulnerabilities; IT remediates.
  • The criteria they use to evaluate the success of your Kenna.VM implementation:
    • Reduction in Mean Time To Remediate (MTTR)
    • Kenna risk score reduction

Results

The surveyed company achieved the following results with Kenna.VM:

  • Before Kenna vs. After Kenna: Have you seen a reduction in time spent on the following activities? (Security and IT team time combined)
    • time spent on Vulnerability Investigation: 10 – 25%
    • time spent on remediation: 25 – 50%
    • time spent on reporting: 50 – 75%
  • Kenna’s primary advantage(s) over other vulnerability management platforms:
    • Kenna goes beyond basic risk scoring and tells me what I need to fix first
    • Kenna provides meaningful and actionable data for remediation (remediation intelligence)
    • Kenna is updated continuously with real-time information
    • Kenna aggregates data and reporting from multiple tools (vuln scanners, CMDB, discovery)
    • Kenna includes multiple threat intel feeds (eliminating the need for subscription)
  • Rates the following for Kenna.VM compared to other vulnerability management solutions:
    • remediation Intelligence (guidance on “what to fix first”): superior
    • integrated real-time global exploit intelligence: superior
    • data science-based risk scoring methodology: superior
    • “Off the shelf” integrations with a wide range of security data sources: on par
    • predictive vulnerability modeling: superior

Company Profile

The company featured in this case study asked to have its name publicly blinded because publicly endorsing vendors is against their policies.

TechValidate stands behind the authenticity of this data.

Company Size:
Enterprise

Industry:
Insurance

About Kenna.VM

Cisco Vulnerability Management (formerly Kenna.VM) offers an effective, efficient way to reduce your risk profile using risk-based prioritization powered by data science. Rely on it to ID the vulnerabilities that put you at the greatest risk, create a self-service environment for remediation teams, set intelligent SLAs based on your risk tolerance, compare your risk posture against industry peers, deliver clear reports with intuitive metrics, and more.

Learn More:

Cisco Vulnerability Management

Source: TechValidate survey of an Enterprise Insurance Company
Validated
  Published: Feb. 17, 2022   TVID: 5B9-1BD-C43

Kenna.VM Case Study

Global 500 Banking Company

Introduction

This case study of a Global 500 banking company is based on an October 2021 survey of Kenna.VM customers by TechValidate, a 3rd-party research service. The profiled company asked to have their name blinded to protect their confidentiality.

Share

Embed

Download

“we had nothing to address risk and vulnerability management within the applications. Kenna provided us a way to aggregate various scanner results and apply a risk analysis that wasn’t there before”

“We have a fantastic and supportive customer success team.”

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Kenna.VM:

  • The vulnerability management challenges they were experiencing that led them to implement the Kenna.VM:
    • Not having a way to quantify or measure risk from vulnerabilities

Use Case

The key features and functionalities of Kenna.VM that the surveyed company uses:

  • The approach they used to prioritize vulnerabilities prior to Kenna:
    • A rating system from scanner
    • A homegrown prioritization tool
  • They best describe their current engagement model between the Security and IT team as Security investigates; Security and IT work together to prioritize; IT remediates.
  • The criteria they use to evaluate the success of your Kenna.VM implementation:
    • Reduction in Mean Time To Remediate (MTTR)
    • Reduction in vulnerability investigation time

Results

The surveyed company achieved the following results with Kenna.VM:

  • Before Kenna vs. After Kenna: Have you seen a reduction in time spent on the following activities? (Security and IT team time combined)
    • time spent on Vulnerability Investigation: 10 – 25%
    • time spent on remediation: 1 – 10%
    • time spent on reporting: 25 – 50%
  • Kenna’s primary advantage(s) over other vulnerability management platforms:
    • Kenna goes beyond basic risk scoring and tells me what I need to fix first
    • Kenna provides meaningful and actionable data for remediation (remediation intelligence)
    • Kenna provides awareness of how much risk is in our environment
    • Kenna aggregates data and reporting from multiple tools (vuln scanners, CMDB, discovery)
  • Rates the following for Kenna.VM compared to other vulnerability management solutions:
    • remediation Intelligence (guidance on “what to fix first”): superior
    • integrated real-time global exploit intelligence: superior
    • data science-based risk scoring methodology: superior
    • “Off the shelf” integrations with a wide range of security data sources: on par
    • predictive vulnerability modeling: superior

Company Profile

The company featured in this case study asked to have its name publicly blinded because publicly endorsing vendors is against their policies.

TechValidate stands behind the authenticity of this data.

Company Size:
Global 500

Industry:
Banking

About Kenna.VM

Cisco Vulnerability Management (formerly Kenna.VM) offers an effective, efficient way to reduce your risk profile using risk-based prioritization powered by data science. Rely on it to ID the vulnerabilities that put you at the greatest risk, create a self-service environment for remediation teams, set intelligent SLAs based on your risk tolerance, compare your risk posture against industry peers, deliver clear reports with intuitive metrics, and more.

Learn More:

Cisco Vulnerability Management

Source: TechValidate survey of a Global 500 Banking Company
Validated
  Published: Feb. 14, 2022   TVID: D03-31F-07A

Kenna.VM Case Study

Medium Enterprise Banking Company

Introduction

This case study of a medium enterprise banking company is based on an October 2021 survey of Kenna.VM customers by TechValidate, a 3rd-party research service. The profiled company asked to have their name blinded to protect their confidentiality.

Share

Embed

Download

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Kenna.VM:

  • The vulnerability management challenges they were experiencing that led them to implement the Kenna.VM:
    • Too many vulnerabilities with no way to effectively prioritize
    • High volume of security data lacking context for decision making
    • Not having a way to quantify or measure risk from vulnerabilities
    • Inefficiencies in vulnerability remediation

Use Case

The key features and functionalities of Kenna.VM that the surveyed company uses:

  • The approach they used to prioritize vulnerabilities prior to Kenna:
    • CVSS 7+
    • A rating system from scanner
  • They best describe their current engagement model between the Security and IT team as Security and IT work together to investigate and prioritize.
  • The criteria they use to evaluate the success of your Kenna.VM implementation:
    • Kenna risk score reduction

Results

The surveyed company achieved the following results with Kenna.VM:

  • Before Kenna vs. After Kenna: Have you seen a reduction in time spent on the following activities? (Security and IT team time combined)
    • time spent on Vulnerability Investigation: 10 – 25%
    • time spent on remediation: over 75%
    • time spent on reporting: 1 – 10%

Company Profile

The company featured in this case study asked to have its name publicly blinded because publicly endorsing vendors is against their policies.

TechValidate stands behind the authenticity of this data.

Company Size:
Medium Enterprise

Industry:
Banking

About Kenna.VM

Cisco Vulnerability Management (formerly Kenna.VM) offers an effective, efficient way to reduce your risk profile using risk-based prioritization powered by data science. Rely on it to ID the vulnerabilities that put you at the greatest risk, create a self-service environment for remediation teams, set intelligent SLAs based on your risk tolerance, compare your risk posture against industry peers, deliver clear reports with intuitive metrics, and more.

Learn More:

Cisco Vulnerability Management

Source: TechValidate survey of a Medium Enterprise Banking Company
Validated
  Published: Feb. 14, 2022   TVID: A6E-4CA-791

Kenna.VM Case Study

Charter Communications, Inc.

Introduction

This case study of Charter Communications, Inc. is based on an October 2021 survey of Kenna.VM customers by TechValidate, a 3rd-party research service.

Share

Embed

Download

“Kenna has helped in triaging and remediation tracking which is effective for metrics and getting buy in from top down.”

“Both Customer support manager and engineers are fantastic and always on the top of the ball to help us with process improvements.”

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Kenna.VM:

  • The vulnerability management challenges they were experiencing that led them to implement the Kenna.VM:
    • Too many vulnerabilities with no way to effectively prioritize
    • High volume of security data lacking context for decision making
    • Inefficiencies in vulnerability remediation

Use Case

The key features and functionalities of Kenna.VM that the surveyed company uses:

  • The approach they used to prioritize vulnerabilities prior to Kenna:
    • A rating system from scanner
  • They best describe their current engagement model between the Security and IT team as Security investigates and prioritizes vulnerabilities; IT remediates.
  • The criteria they use to evaluate the success of your Kenna.VM implementation:
    • Reduction in Mean Time To Remediate (MTTR)
    • Kenna risk score reduction
    • SLA adherence

Results

The surveyed company achieved the following results with Kenna.VM:

  • Before Kenna vs. After Kenna: Have you seen a reduction in time spent on the following activities? (Security and IT team time combined)
    • time spent on Vulnerability Investigation: 50 – 75%
    • time spent on remediation: 25 – 50%
    • time spent on reporting: over 75%
  • Kenna’s primary advantage(s) over other vulnerability management platforms:
    • Kenna provides meaningful and actionable data for remediation (remediation intelligence)
    • Kenna is updated continuously with real-time information
    • Kenna includes multiple threat intel feeds (eliminating the need for subscription)
  • Rates the following for Kenna.VM compared to other vulnerability management solutions:
    • remediation Intelligence (guidance on “what to fix first”): superior
    • integrated real-time global exploit intelligence: superior
    • data science-based risk scoring methodology: on par
    • “Off the shelf” integrations with a wide range of security data sources: inferior
    • predictive vulnerability modeling: on par

Company Profile

Company:
Charter Communications, Inc.

Company Size:
Fortune 500

Industry:
Telecommunications Services

About Kenna.VM

Cisco Vulnerability Management (formerly Kenna.VM) offers an effective, efficient way to reduce your risk profile using risk-based prioritization powered by data science. Rely on it to ID the vulnerabilities that put you at the greatest risk, create a self-service environment for remediation teams, set intelligent SLAs based on your risk tolerance, compare your risk posture against industry peers, deliver clear reports with intuitive metrics, and more.

Learn More:

Cisco Vulnerability Management

Source: Sumalya Guha, Engineer, Charter Communications, Inc.
Validated
  Published: Feb. 14, 2022   TVID: D78-6D0-BF2

Kenna.VM Case Study

Large Enterprise Retail Company

Introduction

This case study of a large enterprise retail company is based on an October 2021 survey of Kenna.VM customers by TechValidate, a 3rd-party research service. The profiled company asked to have their name blinded to protect their confidentiality.

Share

Embed

Download

“Kenna has enabled a focus on risk helping to drive improved remediation resources”

“Kenna has performed well above average in customer success”

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Kenna.VM:

  • The vulnerability management challenges they were experiencing that led them to implement the Kenna.VM:
    • Too many vulnerabilities with no way to effectively prioritize
    • High volume of security data lacking context for decision making
    • Not having a way to quantify or measure risk from vulnerabilities
    • Inefficiencies in vulnerability remediation

Use Case

The key features and functionalities of Kenna.VM that the surveyed company uses:

  • The approach they used to prioritize vulnerabilities prior to Kenna:
    • A rating system from scanner
    • A homegrown prioritization tool
  • They best describe their current engagement model between the Security and IT team as Security and IT work together to investigate and prioritize.
  • The criteria they use to evaluate the success of your Kenna.VM implementation:
    • Reduction in Mean Time To Remediate (MTTR)
    • Kenna risk score reduction

Results

The surveyed company achieved the following results with Kenna.VM:

  • Before Kenna vs. After Kenna: Have you seen a reduction in time spent on the following activities? (Security and IT team time combined)
    • time spent on Vulnerability Investigation: 10 – 25%
    • time spent on remediation: 10 – 25%
    • time spent on reporting: 10 – 25%
  • Kenna’s primary advantage(s) over other vulnerability management platforms:
    • Kenna goes beyond basic risk scoring and tells me what I need to fix first
    • Kenna provides meaningful and actionable data for remediation (remediation intelligence)
    • Kenna provides awareness of how much risk is in our environment
    • Kenna is updated continuously with real-time information
    • Kenna aggregates data and reporting from multiple tools (vuln scanners, CMDB, discovery)
    • Kenna includes multiple threat intel feeds (eliminating the need for subscription)
  • Rates the following for Kenna.VM compared to other vulnerability management solutions:
    • remediation Intelligence (guidance on “what to fix first”): superior
    • integrated real-time global exploit intelligence: superior
    • data science-based risk scoring methodology: superior
    • “Off the shelf” integrations with a wide range of security data sources: on par
    • predictive vulnerability modeling: on par

Company Profile

The company featured in this case study asked to have its name publicly blinded because publicly endorsing vendors is against their policies.

TechValidate stands behind the authenticity of this data.

Company Size:
Large Enterprise

Industry:
Retail

About Kenna.VM

Cisco Vulnerability Management (formerly Kenna.VM) offers an effective, efficient way to reduce your risk profile using risk-based prioritization powered by data science. Rely on it to ID the vulnerabilities that put you at the greatest risk, create a self-service environment for remediation teams, set intelligent SLAs based on your risk tolerance, compare your risk posture against industry peers, deliver clear reports with intuitive metrics, and more.

Learn More:

Cisco Vulnerability Management

Source: TechValidate survey of a Large Enterprise Retail Company
Validated
  Published: Feb. 14, 2022   TVID: A9E-5D7-C75

Kenna.VM Case Study

Global 500 Hospitality Company

Introduction

This case study of a Global 500 hospitality company is based on a November 2021 survey of Kenna.VM customers by TechValidate, a 3rd-party research service. The profiled company asked to have their name blinded to protect their confidentiality.

Share

Embed

Download

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Kenna.VM:

  • The vulnerability management challenges they were experiencing that led them to implement the Kenna.VM:
    • Too many vulnerabilities with no way to effectively prioritize
    • High volume of security data lacking context for decision making
    • Not having a way to quantify or measure risk from vulnerabilities

Use Case

The key features and functionalities of Kenna.VM that the surveyed company uses:

  • The approach they used to prioritize vulnerabilities prior to Kenna:
    • CVSS 7+
    • CVSS 8+
    • CVSS 9+
    • CVSS 10+
    • A rating system from scanner
    • A homegrown prioritization tool
  • They best describe their current engagement model between the Security and IT team as IT investigates, prioritizes and remediates; Security handles reporting.
  • The criteria they use to evaluate the success of your Kenna.VM implementation:
    • Reduction in Mean Time To Remediate (MTTR)
    • Kenna risk score reduction
    • Reduction in vulnerability investigation time
    • Reduction in IT remediation time
    • SLA adherence
    • Reduction in reporting time

Results

The surveyed company achieved the following results with Kenna.VM:

  • Before Kenna vs. After Kenna: Have you seen a reduction in time spent on the following activities? (Security and IT team time combined)
    • time spent on Vulnerability Investigation: over 75%
    • time spent on remediation: over 75%
    • time spent on reporting: over 75%
  • Kenna’s primary advantage(s) over other vulnerability management platforms:
    • Kenna goes beyond basic risk scoring and tells me what I need to fix first
    • Kenna provides meaningful and actionable data for remediation (remediation intelligence)
    • Kenna provides awareness of how much risk is in our environment
    • Kenna is updated continuously with real-time information
    • Kenna aggregates data and reporting from multiple tools (vuln scanners, CMDB, discovery)
    • Kenna includes multiple threat intel feeds (eliminating the need for subscription)
    • Kenna’s cloud platform scales elastically to virtually any organization size
  • Rates the following for Kenna.VM compared to other vulnerability management solutions:
    • remediation Intelligence (guidance on “what to fix first”): highly superior
    • integrated real-time global exploit intelligence: highly superior
    • data science-based risk scoring methodology: highly superior
    • “Off the shelf” integrations with a wide range of security data sources: highly superior
    • predictive vulnerability modeling: highly superior

Company Profile

The company featured in this case study asked to have its name publicly blinded because publicly endorsing vendors is against their policies.

TechValidate stands behind the authenticity of this data.

Company Size:
Global 500

Industry:
Hospitality

About Kenna.VM

Cisco Vulnerability Management (formerly Kenna.VM) offers an effective, efficient way to reduce your risk profile using risk-based prioritization powered by data science. Rely on it to ID the vulnerabilities that put you at the greatest risk, create a self-service environment for remediation teams, set intelligent SLAs based on your risk tolerance, compare your risk posture against industry peers, deliver clear reports with intuitive metrics, and more.

Learn More:

Cisco Vulnerability Management

Source: TechValidate survey of a Global 500 Hospitality Company
Validated
  Published: Feb. 14, 2022   TVID: 199-A9C-646

Kenna.VM Case Study

Medium Enterprise Financial Services Company

Introduction

This case study of a medium enterprise financial services company is based on a September 2020 survey of Kenna.VM customers by TechValidate, a 3rd-party research service. The profiled company asked to have their name blinded to protect their confidentiality.

Share

Embed

Download

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Kenna.VM:

  • The vulnerability management challenges they were experiencing that led them to implement the Kenna.VM:
    • Too many vulnerabilities with no way to effectively prioritize
    • Not having a way to quantify or measure risk from vulnerabilities

Use Case

The key features and functionalities of Kenna.VM that the surveyed company uses:

  • The approach they used to prioritize vulnerabilities prior to Kenna:
    • CVSS 7+
    • CVSS 8+
    • CVSS 9+
    • CVSS 10+
  • They best describe their current engagement model between the Security and IT team as Security investigates and prioritizes vulnerabilities; IT remediates.
  • The criteria they use to evaluate the success of your Kenna.VM implementation:
    • Reduction in Mean Time To Remediate (MTTR)
    • Kenna risk score reduction

Results

The surveyed company achieved the following results with Kenna.VM:

  • Before Kenna vs. After Kenna: Have you seen a reduction in time spent on the following activities? (Security and IT team time combined)
    • time spent on Vulnerability Investigation: over 75%
    • time spent on remediation: over 75%
    • time spent on reporting: over 75%
  • Kenna’s primary advantage(s) over other vulnerability management platforms:
    • Kenna goes beyond basic risk scoring and tells me what I need to fix first
    • Kenna provides meaningful and actionable data for remediation (remediation intelligence)
    • Kenna provides awareness of how much risk is in our environment
  • Rates the following for Kenna.VM compared to other vulnerability management solutions:
    • remediation Intelligence (guidance on “what to fix first”): superior
    • integrated real-time global exploit intelligence: superior
    • data science-based risk scoring methodology: superior
    • “Off the shelf” integrations with a wide range of security data sources: superior
    • predictive vulnerability modeling: superior

Company Profile

The company featured in this case study asked to have its name publicly blinded because publicly endorsing vendors is against their policies.

TechValidate stands behind the authenticity of this data.

Company Size:
Medium Enterprise

Industry:
Financial Services

About Cisco Vulnerability Management

Cisco Vulnerability Management (formerly Kenna.VM) offers an effective, efficient way to reduce your risk profile using risk-based prioritization powered by data science. Rely on it to ID the vulnerabilities that put you at the greatest risk, create a self-service environment for remediation teams, set intelligent SLAs based on your risk tolerance, compare your risk posture against industry peers, deliver clear reports with intuitive metrics, and more.

Learn More:

Cisco Vulnerability Management

Source: TechValidate survey of a Medium Enterprise Financial Services Company
Validated
  Published: Feb. 1, 2021   TVID: 6C0-A2F-CC2

Kenna.VM Case Study

State & Local Government

Introduction

This case study of a state & local government is based on an October 2020 survey of Kenna.VM customers by TechValidate, a 3rd-party research service. The profiled organization asked to have their name blinded to protect their confidentiality.

Share

Embed

Download

“Kenna is the market leader in vulnerability management.”

Challenges

The business challenges that led the profiled organization to evaluate and ultimately select Kenna.VM:

  • The vulnerability management challenges they were experiencing that led them to implement the Kenna.VM:
    • N/A

Use Case

The key features and functionalities of Kenna.VM that the surveyed organization uses:

  • The approach they used to prioritize vulnerabilities prior to Kenna:
    • CVSS 10+
  • They best describe their current engagement model between the Security and IT team as Security and IT work together to investigate and prioritize.
  • The criteria they use to evaluate the success of your Kenna.VM implementation:
    • N/A

Results

The surveyed organization achieved the following results with Kenna.VM:

  • Before Kenna vs. After Kenna: Have you seen a reduction in time spent on the following activities? (Security and IT team time combined)
    • time spent on Vulnerability Investigation: 1 – 10%
    • time spent on remediation: 10 – 25%
    • time spent on reporting: 10 – 25%
  • Kenna’s primary advantage(s) over other vulnerability management platforms:
    • Kenna is updated continuously with real-time information
  • Rates the following for Kenna.VM compared to other vulnerability management solutions:
    • remediation Intelligence (guidance on “what to fix first”): superior
    • integrated real-time global exploit intelligence: inferior
    • data science-based risk scoring methodology: superior
    • “Off the shelf” integrations with a wide range of security data sources: on par
    • predictive vulnerability modeling: superior

Organization Profile

The organization featured in this case study asked to have its name publicly blinded because publicly endorsing vendors is against their policies.

TechValidate stands behind the authenticity of this data.

Organization Size:
State & Local

Industry:
Financial Services

About Cisco Vulnerability Management

Cisco Vulnerability Management (formerly Kenna.VM) offers an effective, efficient way to reduce your risk profile using risk-based prioritization powered by data science. Rely on it to ID the vulnerabilities that put you at the greatest risk, create a self-service environment for remediation teams, set intelligent SLAs based on your risk tolerance, compare your risk posture against industry peers, deliver clear reports with intuitive metrics, and more.

Learn More:

Cisco Vulnerability Management

Source: TechValidate survey of a State & Local Government
Validated
  Published: Feb. 1, 2021   TVID: D92-BD6-8A6

Kenna.VM Case Study

Royal Bank of Canada (RBC)

Introduction

This case study of the Royal Bank of Canada (RBC) is based on a September 2020 survey of Kenna.VM customers by TechValidate, a 3rd-party research service.

Share

Embed

Download

“We chose Kenna Security based on the performance and customer commitment.”

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Kenna.VM:

  • The vulnerability management challenges they were experiencing that led them to implement the Kenna.VM:
    • High volume of security data lacking context for decision making

Use Case

The key features and functionalities of Kenna.VM that the surveyed company uses:

  • The approach they used to prioritize vulnerabilities prior to Kenna:
    • CVSS 8+
  • They best describe their current engagement model between the Security and IT team as Security and IT work together to investigate and prioritize.
  • The criteria they use to evaluate the success of your Kenna.VM implementation:
    • Reduction in reporting time

Results

The surveyed company achieved the following results with Kenna.VM:

  • Before Kenna vs. After Kenna: Have you seen a reduction in time spent on the following activities? (Security and IT team time combined)
    • time spent on Vulnerability Investigation: 10 – 25%
    • time spent on remediation: 1 – 10%
    • time spent on reporting: 25 – 50%
  • Kenna’s primary advantage(s) over other vulnerability management platforms:
    • Kenna aggregates data and reporting from multiple tools (vuln scanners, CMDB, discovery)
  • Rates the following for Kenna.VM compared to other vulnerability management solutions:
    • remediation Intelligence (guidance on “what to fix first”): on par
    • integrated real-time global exploit intelligence: superior
    • data science-based risk scoring methodology: on par
    • “Off the shelf” integrations with a wide range of security data sources: superior
    • predictive vulnerability modeling: on par

Company Profile

Company:
Royal Bank of Canada (RBC)

Company Size:
Global 500

Industry:
Banking

About Cisco Vulnerability Management

Cisco Vulnerability Management (formerly Kenna.VM) offers an effective, efficient way to reduce your risk profile using risk-based prioritization powered by data science. Rely on it to ID the vulnerabilities that put you at the greatest risk, create a self-service environment for remediation teams, set intelligent SLAs based on your risk tolerance, compare your risk posture against industry peers, deliver clear reports with intuitive metrics, and more.

Learn More:

Cisco Vulnerability Management

Source: Deb Mukherjee, IT Manager, Royal Bank of Canada (RBC)
Validated
  Published: Feb. 1, 2021   TVID: E88-CB5-792

Kenna.VM Case Study

Quest Diagnostics Incorporated

Introduction

This case study of Quest Diagnostics Incorporated is based on a September 2020 survey of Kenna.VM customers by TechValidate, a 3rd-party research service.

Share

Embed

Download

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Kenna.VM:

  • The vulnerability management challenges they were experiencing that led them to implement the Kenna.VM:
    • Too many vulnerabilities with no way to effectively prioritize

Use Case

The key features and functionalities of Kenna.VM that the surveyed company uses:

  • The approach they used to prioritize vulnerabilities prior to Kenna:
    • A homegrown prioritization tool
  • They best describe their current engagement model between the Security and IT team as Security investigates and prioritizes vulnerabilities; IT remediates.
  • The criteria they use to evaluate the success of your Kenna.VM implementation:
    • Kenna risk score reduction
    • Reduction in IT remediation time

Results

The surveyed company achieved the following results with Kenna.VM:

  • Before Kenna vs. After Kenna: Have you seen a reduction in time spent on the following activities? (Security and IT team time combined)
    • time spent on Vulnerability Investigation: 25 – 50%
    • time spent on remediation: 25 – 50%
    • time spent on reporting: over 75%
  • Kenna’s primary advantage(s) over other vulnerability management platforms:
    • Kenna provides meaningful and actionable data for remediation (remediation intelligence)
  • Rates the following for Kenna.VM compared to other vulnerability management solutions:
    • remediation Intelligence (guidance on “what to fix first”): superior
    • integrated real-time global exploit intelligence: on par
    • data science-based risk scoring methodology: on par
    • “Off the shelf” integrations with a wide range of security data sources: on par
    • predictive vulnerability modeling: superior

Company Profile

Company:
Quest Diagnostics Incorporated

Company Size:
Fortune 500

Industry:
Healthcare

About Cisco Vulnerability Management

Cisco Vulnerability Management (formerly Kenna.VM) offers an effective, efficient way to reduce your risk profile using risk-based prioritization powered by data science. Rely on it to ID the vulnerabilities that put you at the greatest risk, create a self-service environment for remediation teams, set intelligent SLAs based on your risk tolerance, compare your risk posture against industry peers, deliver clear reports with intuitive metrics, and more.

Learn More:

Cisco Vulnerability Management

Source: Praveen Chandra Kumar Chandupatla, IT Professional, Quest Diagnostics Incorporated
Validated
  Published: Jan. 26, 2021   TVID: 9F0-282-A67

Kenna.VM Case Study

Deloitte & Touche LLP

Introduction

This case study of Deloitte & Touche LLP is based on a January 2021 survey of Kenna.VM customers by TechValidate, a 3rd-party research service.

Share

Embed

Download

“Kenna risk meters and risk scores have completely changed the way we manage vulnerabilities and attack surface risk. Tracking risk scores over time are the core of leadership metrics. Top fixes and reducing risk scores over time drives our prioritized remediation strategy.”

“Our customer success manger has been excellent coordinating resolution to issues as well as keeping us informed of upcoming roadmap features that may affect us.”

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Kenna.VM:

  • The vulnerability management challenges they were experiencing that led them to implement the Kenna.VM:
    • Too many vulnerabilities with no way to effectively prioritize
    • Not having a way to quantify or measure risk from vulnerabilities
    • Inefficiencies in vulnerability remediation

Use Case

The key features and functionalities of Kenna.VM that the surveyed company uses:

  • The approach they used to prioritize vulnerabilities prior to Kenna:
    • CVSS 9+
    • CVSS 10+
    • A rating system from scanner
  • They best describe their current engagement model between the Security and IT team as Security investigates and prioritizes vulnerabilities; IT remediates.
  • The criteria they use to evaluate the success of your Kenna.VM implementation:
    • Kenna risk score reduction
    • Reduction in IT remediation time
    • Reduction in reporting time

Results

The surveyed company achieved the following results with Kenna.VM:

  • Before Kenna vs. After Kenna: Have you seen a reduction in time spent on the following activities? (Security and IT team time combined)
    • time spent on Vulnerability Investigation: 25 – 50%
    • time spent on remediation: 50 – 75%
    • time spent on reporting: 25 – 50%
  • Kenna’s primary advantage(s) over other vulnerability management platforms:
    • Kenna goes beyond basic risk scoring and tells me what I need to fix first
    • Kenna provides meaningful and actionable data for remediation (remediation intelligence)
    • Kenna provides awareness of how much risk is in our environment
    • Kenna is updated continuously with real-time information
    • Kenna aggregates data and reporting from multiple tools (vuln scanners, CMDB, discovery)
  • Rates the following for Kenna.VM compared to other vulnerability management solutions:
    • remediation Intelligence (guidance on “what to fix first”): highly superior
    • integrated real-time global exploit intelligence: superior
    • data science-based risk scoring methodology: superior
    • “Off the shelf” integrations with a wide range of security data sources: superior
    • predictive vulnerability modeling: superior

Company Profile

Company:
Deloitte & Touche LLP

Company Size:
Large Enterprise

Industry:
Financial Services

About Cisco Vulnerability Management

Cisco Vulnerability Management (formerly Kenna.VM) offers an effective, efficient way to reduce your risk profile using risk-based prioritization powered by data science. Rely on it to ID the vulnerabilities that put you at the greatest risk, create a self-service environment for remediation teams, set intelligent SLAs based on your risk tolerance, compare your risk posture against industry peers, deliver clear reports with intuitive metrics, and more.

Learn More:

Cisco Vulnerability Management

Source: Gregston Chu, Vulnerability, Deloitte & Touche LLP
Validated
  Published: Jan. 21, 2021   TVID: 7CA-52D-491

Kenna.VM Case Study

Global 500 Retail Company

Introduction

This case study of a Global 500 retail company is based on a September 2020 survey of Kenna.VM customers by TechValidate, a 3rd-party research service. The profiled company asked to have their name blinded to protect their confidentiality.

Share

Embed

Download

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Kenna.VM:

  • The vulnerability management challenges they were experiencing that led them to implement the Kenna.VM:
    • Too many vulnerabilities with no way to effectively prioritize
    • Not having a way to quantify or measure risk from vulnerabilities
    • Inefficiencies in vulnerability remediation

Use Case

The key features and functionalities of Kenna.VM that the surveyed company uses:

  • The approach they used to prioritize vulnerabilities prior to Kenna:
    • A rating system from scanner
  • They best describe their current engagement model between the Security and IT team as Security investigates and prioritizes vulnerabilities; IT remediates.
  • The criteria they use to evaluate the success of your Kenna.VM implementation:
    • Reduction in Mean Time To Remediate (MTTR)
    • Reduction in IT remediation time

Results

The surveyed company achieved the following results with Kenna.VM:

  • Before Kenna vs. After Kenna: Have you seen a reduction in time spent on the following activities? (Security and IT team time combined)
    • time spent on Vulnerability Investigation: 25 – 50%
    • time spent on reporting: 25 – 50%
  • Kenna’s primary advantage(s) over other vulnerability management platforms:
    • Kenna goes beyond basic risk scoring and tells me what I need to fix first
    • Kenna provides meaningful and actionable data for remediation (remediation intelligence)
    • Kenna provides awareness of how much risk is in our environment
    • Kenna is updated continuously with real-time information
    • Kenna includes multiple threat intel feeds (eliminating the need for subscription)
  • Rates the following for Kenna.VM compared to other vulnerability management solutions:
    • remediation Intelligence (guidance on “what to fix first”): superior
    • integrated real-time global exploit intelligence: superior
    • data science-based risk scoring methodology: superior
    • “Off the shelf” integrations with a wide range of security data sources: highly superior
    • predictive vulnerability modeling: superior

Company Profile

The company featured in this case study asked to have its name publicly blinded because publicly endorsing vendors is against their policies.

TechValidate stands behind the authenticity of this data.

Company Size:
Global 500

Industry:
Retail

About Cisco Vulnerability Management

Cisco Vulnerability Management (formerly Kenna.VM) offers an effective, efficient way to reduce your risk profile using risk-based prioritization powered by data science. Rely on it to ID the vulnerabilities that put you at the greatest risk, create a self-service environment for remediation teams, set intelligent SLAs based on your risk tolerance, compare your risk posture against industry peers, deliver clear reports with intuitive metrics, and more.

Learn More:

Cisco Vulnerability Management

Source: TechValidate survey of a Global 500 Retail Company
Validated
  Published: Feb. 1, 2021   TVID: 1CE-FF6-6FC

Kenna.VM Case Study

Medium Enterprise Automotive & Transport Company

Introduction

This case study of a medium enterprise automotive & transport company is based on a September 2020 survey of Kenna.VM customers by TechValidate, a 3rd-party research service. The profiled company asked to have their name blinded to protect their confidentiality.

Share

Embed

Download

“Kenna.VM offers excellent results through ease of use and our experience with the Kenna CX team has been great”

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Kenna.VM:

  • The vulnerability management challenges they were experiencing that led them to implement the Kenna.VM:
    • Too many vulnerabilities with no way to effectively prioritize

Use Case

The key features and functionalities of Kenna.VM that the surveyed company uses:

  • The approach they used to prioritize vulnerabilities prior to Kenna:
    • A homegrown prioritization tool
  • They best describe their current engagement model between the Security and IT team as Security and IT work together to investigate and prioritize.
  • The criteria they use to evaluate the success of your Kenna.VM implementation:
    • Reduction in Mean Time To Remediate (MTTR)
    • Reduction in vulnerability investigation time

Results

The surveyed company achieved the following results with Kenna.VM:

  • Before Kenna vs. After Kenna: Have you seen a reduction in time spent on the following activities? (Security and IT team time combined)
    • time spent on Vulnerability Investigation: 10 – 25%
    • time spent on remediation: 10 – 25%
    • time spent on reporting: 1 – 10%
  • Kenna’s primary advantage(s) over other vulnerability management platforms:
    • Kenna goes beyond basic risk scoring and tells me what I need to fix first
    • Kenna provides meaningful and actionable data for remediation (remediation intelligence)
  • Rates the following for Kenna.VM compared to other vulnerability management solutions:
    • remediation Intelligence (guidance on “what to fix first”): superior
    • integrated real-time global exploit intelligence: superior
    • data science-based risk scoring methodology: on par
    • “Off the shelf” integrations with a wide range of security data sources: on par

Company Profile

The company featured in this case study asked to have its name publicly blinded because publicly endorsing vendors is against their policies.

TechValidate stands behind the authenticity of this data.

Company Size:
Medium Enterprise

Industry:
Automotive & Transport

About Cisco Vulnerability Management

Cisco Vulnerability Management (formerly Kenna.VM) offers an effective, efficient way to reduce your risk profile using risk-based prioritization powered by data science. Rely on it to ID the vulnerabilities that put you at the greatest risk, create a self-service environment for remediation teams, set intelligent SLAs based on your risk tolerance, compare your risk posture against industry peers, deliver clear reports with intuitive metrics, and more.

Learn More:

Cisco Vulnerability Management

Source: TechValidate survey of a Medium Enterprise Automotive & Transport Company
Validated
  Published: Jan. 5, 2021   TVID: E56-39F-A6F

Kenna.VM Case Study

Global 500 Hospitality Company

Introduction

This case study of a Global 500 hospitality company is based on a September 2020 survey of Kenna.VM customers by TechValidate, a 3rd-party research service. The profiled company asked to have their name blinded to protect their confidentiality.

Share

Embed

Download

On Kenna.VM: “Kenna has provided a reporting solution that is easier to use for IT staff than our existing vulnerability assessment solution and can combine asset and vulnerability data.”

On Kenna Customer Success Team: “Our CSM and CSE have been very helpful in deployment, configuration, and troubleshooting issues.”

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Kenna.VM:

  • The vulnerability management challenges they were experiencing that led them to implement the Kenna.VM:
    • High volume of security data lacking context for decision making
    • Inefficiencies in vulnerability remediation

Use Case

The key features and functionalities of Kenna.VM that the surveyed company uses:

  • The approach they used to prioritize vulnerabilities prior to Kenna:
    • A rating system from scanner
    • A homegrown prioritization tool
  • They best describe their current engagement model between the Security and IT team as Security investigates; Security and IT work together to prioritize; IT remediates.
  • The criteria they use to evaluate the success of your Kenna.VM implementation:
    • Kenna risk score reduction
    • Reduction in IT remediation time
    • SLA adherence
    • Reduction in reporting time

Results

The surveyed company achieved the following results with Kenna.VM:

  • Before Kenna vs. After Kenna: Have you seen a reduction in time spent on the following activities? (Security and IT team time combined)
    • time spent on Vulnerability Investigation: 1 – 10%
    • time spent on remediation: 25 – 50%
    • time spent on reporting: over 75%
  • Kenna’s primary advantage(s) over other vulnerability management platforms:
    • Kenna goes beyond basic risk scoring and tells me what I need to fix first
    • Kenna provides awareness of how much risk is in our environment
    • Kenna aggregates data and reporting from multiple tools (vuln scanners, CMDB, discovery)
  • Rates the following for Kenna.VM compared to other vulnerability management solutions:
    • remediation Intelligence (guidance on “what to fix first”): superior
    • integrated real-time global exploit intelligence: on par
    • data science-based risk scoring methodology: on par
    • “Off the shelf” integrations with a wide range of security data sources: inferior
    • predictive vulnerability modeling: on par

Company Profile

The company featured in this case study asked to have its name publicly blinded because publicly endorsing vendors is against their policies.

TechValidate stands behind the authenticity of this data.

Company Size:
Global 500

Industry:
Hospitality

About Cisco Vulnerability Management

Cisco Vulnerability Management (formerly Kenna.VM) offers an effective, efficient way to reduce your risk profile using risk-based prioritization powered by data science. Rely on it to ID the vulnerabilities that put you at the greatest risk, create a self-service environment for remediation teams, set intelligent SLAs based on your risk tolerance, compare your risk posture against industry peers, deliver clear reports with intuitive metrics, and more.

Learn More:

Cisco Vulnerability Management

Source: TechValidate survey of a Global 500 Hospitality Company
Validated
  Published: Jan. 5, 2021   TVID: DB2-0F9-BFA

Kenna.VM Case Study

Large Enterprise Retail Company

Introduction

This case study of a large enterprise retail company is based on a September 2020 survey of Kenna.VM customers by TechValidate, a 3rd-party research service. The profiled company asked to have their name blinded to protect their confidentiality.

Share

Embed

Download

On Kenna.VM: “Ease of use, clear risk scoring and prioritization.”

On Kenna Customer Success Team: "Excellent – Knowledgeable, easy to contact. "

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Kenna.VM:

  • The vulnerability management challenges they were experiencing that led them to implement the Kenna.VM:
    • Too many vulnerabilities with no way to effectively prioritize
    • Not having a way to quantify or measure risk from vulnerabilities

Use Case

The key features and functionalities of Kenna.VM that the surveyed company uses:

  • The approach they used to prioritize vulnerabilities prior to Kenna:
    • A rating system from scanner
  • They best describe their current engagement model between the Security and IT team as Security investigates and prioritizes vulnerabilities; IT remediates.
  • The criteria they use to evaluate the success of your Kenna.VM implementation:
    • Kenna risk score reduction

Results

The surveyed company achieved the following results with Kenna.VM:

  • Before Kenna vs. After Kenna: Have you seen a reduction in time spent on the following activities? (Security and IT team time combined)
    • time spent on Vulnerability Investigation: 25 – 50%
    • time spent on remediation: 10 – 25%
    • time spent on reporting: 50 – 75%
  • Kenna’s primary advantage(s) over other vulnerability management platforms:
    • Kenna goes beyond basic risk scoring and tells me what I need to fix first
    • Kenna provides meaningful and actionable data for remediation (remediation intelligence)
  • Rates the following for Kenna.VM compared to other vulnerability management solutions:
    • remediation Intelligence (guidance on “what to fix first”): superior
    • integrated real-time global exploit intelligence: superior
    • data science-based risk scoring methodology: superior
    • “Off the shelf” integrations with a wide range of security data sources: superior
    • predictive vulnerability modeling: superior

Company Profile

The company featured in this case study asked to have its name publicly blinded because publicly endorsing vendors is against their policies.

TechValidate stands behind the authenticity of this data.

Company Size:
Large Enterprise

Industry:
Retail

About Cisco Vulnerability Management

Cisco Vulnerability Management (formerly Kenna.VM) offers an effective, efficient way to reduce your risk profile using risk-based prioritization powered by data science. Rely on it to ID the vulnerabilities that put you at the greatest risk, create a self-service environment for remediation teams, set intelligent SLAs based on your risk tolerance, compare your risk posture against industry peers, deliver clear reports with intuitive metrics, and more.

Learn More:

Cisco Vulnerability Management

Source: TechValidate survey of a Large Enterprise Retail Company
Validated
  Published: Jan. 12, 2021   TVID: C1C-387-C9B

Kenna.VM Case Study

Medium Enterprise Financial Services Company

Introduction

This case study of a medium enterprise financial services company is based on a September 2020 survey of Kenna.VM customers by TechValidate, a 3rd-party research service. The profiled company asked to have their name blinded to protect their confidentiality.

Share

Embed

Download

“Kenna allowed us to tackle a large backlog of vulnerabilities and provide teams with real-time data. It eliminated outdated methods such as working off of and sending out spreadsheets.”

“Our (Kenna) Customer Success Engineer is extremely knowledgeable and if she doesn’t know the answer always works quickly to get the correct solution. "

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Kenna.VM:

  • The vulnerability management challenges they were experiencing that led them to implement the Kenna.VM:
    • High volume of security data lacking context for decision making
    • Inefficiencies in vulnerability remediation

Use Case

The key features and functionalities of Kenna.VM that the surveyed company uses:

  • The approach they used to prioritize vulnerabilities prior to Kenna:
    • A rating system from scanner
  • They best describe their current engagement model between the Security and IT team as Security investigates; Security and IT work together to prioritize; IT remediates.
  • The criteria they use to evaluate the success of your Kenna.VM implementation:
    • SLA adherence

Results

The surveyed company achieved the following results with Kenna.VM:

  • Before Kenna vs. After Kenna: Have you seen a reduction in time spent on the following activities? (Security and IT team time combined)
    • time spent on Vulnerability Investigation: 25 – 50%
    • time spent on remediation: 10 – 25%
    • time spent on reporting: 25 – 50%
  • Kenna’s primary advantage(s) over other vulnerability management platforms:
    • Kenna is updated continuously with real-time information
    • Kenna aggregates data and reporting from multiple tools (vuln scanners, CMDB, discovery)
  • Rates the following for Kenna.VM compared to other vulnerability management solutions:
    • remediation Intelligence (guidance on “what to fix first”): superior
    • integrated real-time global exploit intelligence: superior
    • data science-based risk scoring methodology: superior
    • “Off the shelf” integrations with a wide range of security data sources: superior
    • predictive vulnerability modeling: superior

Company Profile

The company featured in this case study asked to have its name publicly blinded because publicly endorsing vendors is against their policies.

TechValidate stands behind the authenticity of this data.

Company Size:
Medium Enterprise

Industry:
Financial Services

About Cisco Vulnerability Management

Cisco Vulnerability Management (formerly Kenna.VM) offers an effective, efficient way to reduce your risk profile using risk-based prioritization powered by data science. Rely on it to ID the vulnerabilities that put you at the greatest risk, create a self-service environment for remediation teams, set intelligent SLAs based on your risk tolerance, compare your risk posture against industry peers, deliver clear reports with intuitive metrics, and more.

Learn More:

Cisco Vulnerability Management

Source: TechValidate survey of a Medium Enterprise Financial Services Company
Validated
  Published: Jan. 5, 2021   TVID: DE0-B95-925

Kenna.VM Case Study

HSBC, USA

Introduction

This case study of HSBC USA Inc. is based on a September 2020 survey of Kenna.VM customers by TechValidate, a 3rd-party research service.

Share

Embed

Download

On working with CX Team:“knowledgeable and very helpful. Working with their engineers is always a productive experience”

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Kenna.VM:

  • The vulnerability management challenges they were experiencing that led them to implement the Kenna.VM:
    • Too many vulnerabilities with no way to effectively prioritize
    • High volume of security data lacking context for decision making

Use Case

The key features and functionalities of Kenna.VM that the surveyed company uses:

  • The approach they used to prioritize vulnerabilities prior to Kenna:
    • A homegrown prioritization tool
  • They best describe their current engagement model between the Security and IT team as Security and IT work together to investigate and prioritize.
  • The criteria they use to evaluate the success of your Kenna.VM implementation:
    • Reduction in Mean Time To Remediate (MTTR)
    • Kenna risk score reduction
    • Reduction in reporting time

Results

The surveyed company achieved the following results with Kenna.VM:

  • Before Kenna vs. After Kenna: Have you seen a reduction in time spent on the following activities? (Security and IT team time combined)
    • time spent on Vulnerability Investigation: 25 – 50%
    • time spent on remediation: 25 – 50%
    • time spent on reporting: 25 – 50%
  • Kenna’s primary advantage(s) over other vulnerability management platforms:
    • Kenna provides awareness of how much risk is in our environment
    • Kenna aggregates data and reporting from multiple tools (vuln scanners, CMDB, discovery)
    • Kenna’s cloud platform scales elastically to virtually any organization size
  • Rates the following for Kenna.VM compared to other vulnerability management solutions:
    • remediation Intelligence (guidance on “what to fix first”): on par
    • integrated real-time global exploit intelligence: on par
    • data science-based risk scoring methodology: on par
    • “Off the shelf” integrations with a wide range of security data sources: superior
    • predictive vulnerability modeling: superior

Company Profile

Company:
HSBC USA Inc.

Company Size:
Global 500

Industry:
Banking

About Cisco Vulnerability Management

Cisco Vulnerability Management (formerly Kenna.VM) offers an effective, efficient way to reduce your risk profile using risk-based prioritization powered by data science. Rely on it to ID the vulnerabilities that put you at the greatest risk, create a self-service environment for remediation teams, set intelligent SLAs based on your risk tolerance, compare your risk posture against industry peers, deliver clear reports with intuitive metrics, and more.

Learn More:

Cisco Vulnerability Management

Source: Marc Gurreri, Engineer, HSBC USA Inc.
Validated
  Published: Jan. 5, 2021   TVID: 04B-400-869

Kenna.VM Case Study

Bank Of Hawaii Corporation

Introduction

This case study of Bank of Hawaii Corporation is based on a September 2020 survey of Kenna.VM customers by TechValidate, a 3rd-party research service.

Share

Embed

Download

“Kenna allows us to concentrate on vulnerabilities that pose a real risk to our environment and helps us prioritize remediation of this risk. This has enabled both the security and IT teams to reduce our organization’s risk score.”

“The customer success manager and customer success engineer have been very supportive in fixing any issues and helping with escalation if needed. (and) They have periodic check-ins to see how we are doing with the product.”

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Kenna.VM:

  • The vulnerability management challenges they were experiencing that led them to implement the Kenna.VM:
    • Too many vulnerabilities with no way to effectively prioritize
    • Not having a way to quantify or measure risk from vulnerabilities

Use Case

The key features and functionalities of Kenna.VM that the surveyed company uses:

  • The approach they used to prioritize vulnerabilities prior to Kenna:
    • A homegrown prioritization tool
  • They best describe their current engagement model between the Security and IT team as Security investigates; Security and IT work together to prioritize; IT remediates.
  • The criteria they use to evaluate the success of your Kenna.VM implementation:
    • Kenna risk score reduction
    • Reduction in vulnerability investigation time
    • Reduction in reporting time

Results

The surveyed company achieved the following results with Kenna.VM:

  • Before Kenna vs. After Kenna: Have you seen a reduction in time spent on the following activities? (Security and IT team time combined)
    • time spent on Vulnerability Investigation: 1 – 10%
    • time spent on remediation: 10 – 25%
    • time spent on reporting: 10 – 25%
  • Kenna’s primary advantage(s) over other vulnerability management platforms:
    • Kenna goes beyond basic risk scoring and tells me what I need to fix first
    • Kenna provides meaningful and actionable data for remediation (remediation intelligence)
    • Kenna provides awareness of how much risk is in our environment
  • Rates the following for Kenna.VM compared to other vulnerability management solutions:
    • remediation Intelligence (guidance on “what to fix first”): superior
    • integrated real-time global exploit intelligence: on par
    • data science-based risk scoring methodology: superior
    • “Off the shelf” integrations with a wide range of security data sources: on par
    • predictive vulnerability modeling: superior

Company Profile

Company:
Bank of Hawaii Corporation

Company Size:
S&P 500

Industry:
Banking

About Cisco Vulnerability Management

Cisco Vulnerability Management (formerly Kenna.VM) offers an effective, efficient way to reduce your risk profile using risk-based prioritization powered by data science. Rely on it to ID the vulnerabilities that put you at the greatest risk, create a self-service environment for remediation teams, set intelligent SLAs based on your risk tolerance, compare your risk posture against industry peers, deliver clear reports with intuitive metrics, and more.

Learn More:

Cisco Vulnerability Management

Source: Brandon Tanaka, IT Director, Bank of Hawaii Corporation
Validated
  Published: Jan. 4, 2021   TVID: 2AA-0F8-344

Kenna.VM Case Study

Deloitte & Touche

Introduction

This case study of Deloitte & Touche is based on a September 2020 survey of Kenna.VM customers by TechValidate, a 3rd-party research service.

Share

Embed

Download

“With Kenna .VM, we are now able to prioritize vulnerabilities on the basis of the risk score.”

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Kenna.VM:

  • The vulnerability management challenges they were experiencing that led them to implement the Kenna.VM:
    • High volume of security data lacking context for decision making

Use Case

The key features and functionalities of Kenna.VM that the surveyed company uses:

  • The approach they used to prioritize vulnerabilities prior to Kenna:
    • A rating system from scanner
  • They best describe their current engagement model between the Security and IT team as Security investigates and prioritizes vulnerabilities; IT remediates.
  • The criteria they use to evaluate the success of your Kenna.VM implementation:
    • Kenna risk score reduction
    • Reduction in reporting time

Results

The surveyed company achieved the following results with Kenna.VM:

  • Before Kenna vs. After Kenna: Have you seen a reduction in time spent on the following activities? (Security and IT team time combined)
    • Time spent on Vulnerability Investigation: 10 – 25%
    • Time spent on remediation: 50 – 75%
    • Time spent on reporting: 10 – 25%
  • Kenna’s primary advantage(s) over other vulnerability management platforms:
    • Kenna goes beyond basic risk scoring and tells me what I need to fix first
    • Kenna is updated continuously with real-time information
    • Kenna aggregates data and reporting from multiple tools (vuln scanners, CMDB, discovery)
  • Rates the following for Kenna.VM compared to other vulnerability management solutions:
    • Remediation Intelligence (guidance on “what to fix first”): superior
    • Integrated real-time global exploit intelligence: on par
    • Data science-based risk scoring methodology: superior
    • “Off the shelf” integrations with a wide range of security data sources: highly superior

Company Profile

Company:
Deloitte & Touche

Company Size:
Large Enterprise

Industry:
Financial Services

About Cisco Vulnerability Management

Cisco Vulnerability Management (formerly Kenna.VM) offers an effective, efficient way to reduce your risk profile using risk-based prioritization powered by data science. Rely on it to ID the vulnerabilities that put you at the greatest risk, create a self-service environment for remediation teams, set intelligent SLAs based on your risk tolerance, compare your risk posture against industry peers, deliver clear reports with intuitive metrics, and more.

Learn More:

Cisco Vulnerability Management

Source: Utkarsh Choudhary, Security Officer, Deloitte & Touche
Validated
  Published: Jan. 12, 2021   TVID: B60-0AF-5DD

Kenna.VM Case Study

Global 500 Insurance Company

Introduction

This case study of a Global 500 insurance company is based on a September 2020 survey of Kenna.VM customers by TechValidate, a 3rd-party research service. The profiled company asked to have their name blinded to protect their confidentiality.

Share

Embed

Download

“The required scans provide valuable information regarding security risks to our organization.”

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Kenna.VM:

  • The vulnerability management challenges they were experiencing that led them to implement the Kenna.VM:
    • IT risk and security required scan

Use Case

The key features and functionalities of Kenna.VM that the surveyed company uses:

  • The approach they used to prioritize vulnerabilities prior to Kenna:
    • none
  • They best describe their current engagement model between the Security and IT team as IT investigates, prioritizes and remediates; Security handles reporting.
  • The criteria they use to evaluate the success of your Kenna.VM implementation:
    • Kenna risk score reduction

Results

The surveyed company achieved the following results with Kenna.VM:

  • Before Kenna vs. After Kenna: Have you seen a reduction in time spent on the following activities? (Security and IT team time combined)
    • Time spent on Vulnerability Investigation: 10 – 25%
    • Time spent on remediation: 10 – 25%
    • Time spent on reporting: 25 – 50%
  • Kenna’s primary advantage(s) over other vulnerability management platforms:
    • Kenna is updated continuously with real-time information
  • Rates the following for Kenna.VM compared to other vulnerability management solutions:
    • Remediation Intelligence (guidance on “what to fix first”): superior
    • Integrated real-time global exploit intelligence: superior
    • Data science-based risk scoring methodology: superior
    • “Off the shelf” integrations with a wide range of security data sources: superior
    • Predictive vulnerability modeling: superior

Company Profile

The company featured in this case study asked to have its name publicly blinded because publicly endorsing vendors is against their policies.

TechValidate stands behind the authenticity of this data.

Company Size:
Global 500

Industry:
Insurance

About Cisco Vulnerability Management

Cisco Vulnerability Management (formerly Kenna.VM) offers an effective, efficient way to reduce your risk profile using risk-based prioritization powered by data science. Rely on it to ID the vulnerabilities that put you at the greatest risk, create a self-service environment for remediation teams, set intelligent SLAs based on your risk tolerance, compare your risk posture against industry peers, deliver clear reports with intuitive metrics, and more.

Learn More:

Cisco Vulnerability Management

Source: TechValidate survey of a Global 500 Insurance Company
Validated
  Published: Jan. 7, 2021   TVID: 9B1-CC2-8CE

Kenna.VM Case Study

Medium Enterprise Professional Services Company

Introduction

This case study of a medium enterprise professional services company is based on a September 2020 survey of Kenna.VM customers by TechValidate, a 3rd-party research service. The profiled company asked to have their name blinded to protect their confidentiality.

Share

Embed

Download

“Kenna was recommended to us as a great low-cost, high-value approach for a brand new EVM program. It enables rapid maturity at reasonable costs.”

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Kenna.VM:

  • The vulnerability management challenges they were experiencing that led them to implement the Kenna.VM:
    • High volume of security data lacking context for decision making
    • Not having a way to quantify or measure risk from vulnerabilities

Use Case

The key features and functionalities of Kenna.VM that the surveyed company uses:

  • The approach they used to prioritize vulnerabilities prior to Kenna:
    • A rating system from scanner
  • They best describe their current engagement model between the Security and IT team as Security investigates and prioritizes vulnerabilities; IT remediates.
  • The criteria they use to evaluate the success of your Kenna.VM implementation:
    • Reduction in Mean Time To Remediate (MTTR)
    • Kenna risk score reduction
    • Reduction in IT remediation time
    • Reduction in reporting time

Results

The surveyed company achieved the following results with Kenna.VM:

  • Before Kenna vs. After Kenna: Have you seen a reduction in time spent on the following activities? (Security and IT team time combined)
    • Time spent on Vulnerability Investigation: 25 – 50%
    • Time spent on remediation: 1 – 10%
    • Time spent on reporting: 25 – 50%
  • Kenna’s primary advantage(s) over other vulnerability management platforms:
    • Kenna goes beyond basic risk scoring and tells me what I need to fix first
    • Kenna provides meaningful and actionable data for remediation (remediation intelligence)
    • Kenna provides awareness of how much risk is in our environment
  • Rates the following for Kenna.VM compared to other vulnerability management solutions:
    • Remediation Intelligence (guidance on “what to fix first”): highly superior
    • Integrated real-time global exploit intelligence: on par
    • Data science-based risk scoring methodology: superior
    • “Off the shelf” integrations with a wide range of security data sources: superior
    • Predictive vulnerability modeling: on par

Company Profile

The company featured in this case study asked to have its name publicly blinded because publicly endorsing vendors is against their policies.

TechValidate stands behind the authenticity of this data.

Company Size:
Medium Enterprise

Industry:
Professional Services

About Cisco Vulnerability Management

Cisco Vulnerability Management (formerly Kenna.VM) offers an effective, efficient way to reduce your risk profile using risk-based prioritization powered by data science. Rely on it to ID the vulnerabilities that put you at the greatest risk, create a self-service environment for remediation teams, set intelligent SLAs based on your risk tolerance, compare your risk posture against industry peers, deliver clear reports with intuitive metrics, and more.

Learn More:

Cisco Vulnerability Management

Source: TechValidate survey of a Medium Enterprise Professional Services Company
Validated
  Published: Jan. 7, 2021   TVID: 00E-150-206

Kenna.VM Case Study

Large Enterprise Retail Company

Introduction

This case study of a large enterprise retail company is based on a September 2020 survey of Kenna.VM customers by TechValidate, a 3rd-party research service. The profiled company asked to have their name blinded to protect their confidentiality.

Share

Embed

Download

“Even though we’re quite early in our vulnerability management program, Kenna is already adding context to the vulnerability count that we have, which makes it’s easier to have conversations with exec level individuals to gain momentum and buy-in from IT teams. "

“We’ve had a great experience with CX team: CSE has been knowledgeable for any questions, and CSM has been happy to assist with any queries we have.”

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Kenna.VM:

  • The vulnerability management challenges they were experiencing that led them to implement the Kenna.VM:
    • Too many vulnerabilities with no way to effectively prioritize
    • High volume of security data lacking context for decision making
    • Not having a way to quantify or measure risk from vulnerabilities

Use Case

The key features and functionalities of Kenna.VM that the surveyed company uses:

  • The approach they used to prioritize vulnerabilities prior to Kenna:
    • CVSS 10+
  • They best describe their current engagement model between the Security and IT team as Security investigates and prioritizes vulnerabilities; IT remediates.
  • The criteria they use to evaluate the success of your Kenna.VM implementation:
    • Kenna risk score reduction

Results

The surveyed company achieved the following results with Kenna.VM:

  • Before Kenna vs. After Kenna: Have you seen a reduction in time spent on the following activities? (Security and IT team time combined)
    • time spent on Vulnerability Investigation: 10 – 25%
    • time spent on remediation: 25 – 50%
    • time spent on reporting: 50 – 75%
  • Kenna’s primary advantage(s) over other vulnerability management platforms:
    • Kenna goes beyond basic risk scoring and tells me what I need to fix first
    • Kenna provides awareness of how much risk is in our environment
  • Rates the following for Kenna.VM compared to other vulnerability management solutions:
    • remediation Intelligence (guidance on “what to fix first”): superior
    • integrated real-time global exploit intelligence: on par
    • data science-based risk scoring methodology: superior
    • “Off the shelf” integrations with a wide range of security data sources: superior
    • predictive vulnerability modeling: superior

Company Profile

The company featured in this case study asked to have its name publicly blinded because publicly endorsing vendors is against their policies.

TechValidate stands behind the authenticity of this data.

Company Size:
Large Enterprise

Industry:
Retail

About Cisco Vulnerability Management

Cisco Vulnerability Management (formerly Kenna.VM) offers an effective, efficient way to reduce your risk profile using risk-based prioritization powered by data science. Rely on it to ID the vulnerabilities that put you at the greatest risk, create a self-service environment for remediation teams, set intelligent SLAs based on your risk tolerance, compare your risk posture against industry peers, deliver clear reports with intuitive metrics, and more.

Learn More:

Cisco Vulnerability Management

Source: TechValidate survey of a Large Enterprise Retail Company
Validated
  Published: Jan. 4, 2021   TVID: F9A-2DC-9C9

Kenna.VM Case Study

Large Enterprise Telecommunications Services Company

Introduction

This case study of a large enterprise telecommunications services company is based on a September 2020 survey of Kenna.VM customers by TechValidate, a 3rd-party research service. The profiled company asked to have their name blinded to protect their confidentiality.

Share

Embed

Download

“Good tool and easy to use and configure.”

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Kenna.VM:

  • The vulnerability management challenges they were experiencing that led them to implement the Kenna.VM:
    • Too many vulnerabilities with no way to effectively prioritize

Use Case

The key features and functionalities of Kenna.VM that the surveyed company uses:

  • The approach they used to prioritize vulnerabilities prior to Kenna:
    • Take input from Nexpose
  • They best describe their current engagement model between the Security and IT team as Security investigates and prioritizes vulnerabilities; IT remediates.
  • The criteria they use to evaluate the success of your Kenna.VM implementation:
    • Reduction in vulnerability investigation time

Results

The surveyed company achieved the following results with Kenna.VM:

  • Before Kenna vs. After Kenna: Have you seen a reduction in time spent on the following activities? (Security and IT team time combined)
    • Time spent on Vulnerability Investigation: 10 – 25%
    • Time spent on remediation: 10 – 25%
    • Time spent on reporting: 10 – 25%
  • Kenna’s primary advantage(s) over other vulnerability management platforms:
    • Kenna provides meaningful and actionable data for remediation (remediation intelligence)
  • Rates the following for Kenna.VM compared to other vulnerability management solutions:
    • Remediation Intelligence (guidance on “what to fix first”): superior
    • Integrated real-time global exploit intelligence: on par
    • Data science-based risk scoring methodology: superior
    • Predictive vulnerability modeling: superior

Company Profile

The company featured in this case study asked to have its name publicly blinded because publicly endorsing vendors is against their policies.

TechValidate stands behind the authenticity of this data.

Company Size:
Large Enterprise

Industry:
Telecommunications Services

About Cisco Vulnerability Management

Cisco Vulnerability Management (formerly Kenna.VM) offers an effective, efficient way to reduce your risk profile using risk-based prioritization powered by data science. Rely on it to ID the vulnerabilities that put you at the greatest risk, create a self-service environment for remediation teams, set intelligent SLAs based on your risk tolerance, compare your risk posture against industry peers, deliver clear reports with intuitive metrics, and more.

Learn More:

Cisco Vulnerability Management

Source: TechValidate survey of a Large Enterprise Telecommunications Services Company
Validated
  Published: Dec. 31, 2020   TVID: C42-87A-D19



More Research on Cisco Vulnerability Management



© Copyright 2024 SurveyMonkey. All marks used on this site are the property of their respective owners. Privacy Policy Terms of Use