TechValidate Research on Cisco Vulnerability Management


Kenna.VM Case Study

Medium Enterprise Financial Services Company

Introduction

This case study of a medium enterprise financial services company is based on a September 2020 survey of Kenna.VM customers by TechValidate, a 3rd-party research service. The profiled company asked to have their name blinded to protect their confidentiality.

“Kenna allowed us to tackle a large backlog of vulnerabilities and provide teams with real-time data. It eliminated outdated methods such as working off of and sending out spreadsheets.”

“Our (Kenna) Customer Success Engineer is extremely knowledgeable and if she doesn’t know the answer always works quickly to get the correct solution. "

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Kenna.VM:

  • The vulnerability management challenges they were experiencing that led them to implement the Kenna.VM:
    • High volume of security data lacking context for decision making
    • Inefficiencies in vulnerability remediation

Use Case

The key features and functionalities of Kenna.VM that the surveyed company uses:

  • The approach they used to prioritize vulnerabilities prior to Kenna:
    • A rating system from scanner
  • They best describe their current engagement model between the Security and IT team as Security investigates; Security and IT work together to prioritize; IT remediates.
  • The criteria they use to evaluate the success of your Kenna.VM implementation:
    • SLA adherence

Results

The surveyed company achieved the following results with Kenna.VM:

  • Before Kenna vs. After Kenna: Have you seen a reduction in time spent on the following activities? (Security and IT team time combined)
    • time spent on Vulnerability Investigation: 25 – 50%
    • time spent on remediation: 10 – 25%
    • time spent on reporting: 25 – 50%
  • Kenna’s primary advantage(s) over other vulnerability management platforms:
    • Kenna is updated continuously with real-time information
    • Kenna aggregates data and reporting from multiple tools (vuln scanners, CMDB, discovery)
  • Rates the following for Kenna.VM compared to other vulnerability management solutions:
    • remediation Intelligence (guidance on “what to fix first”): superior
    • integrated real-time global exploit intelligence: superior
    • data science-based risk scoring methodology: superior
    • “Off the shelf” integrations with a wide range of security data sources: superior
    • predictive vulnerability modeling: superior




About This Data

This data was sourced directly from verified users of Cisco Vulnerability Management by TechValidate.

TechValidate verifies the identity and organizational affiliation of all participants that contribute to published research data. When research participants so desire, we also guarantee their anonymity so that they may share information honestly and freely.


More Research on Cisco Vulnerability Management