The End of Kenna Is Your Chance to Rethink Vulnerability Management, Not Just Tools

As Kenna sunsets, security teams have a narrow window to modernize vulnerability management without disrupting what already works.

Vulnerability management on the SAFE One platform

By Nicola (Nick) Sanna

If you’re a customer of Cisco vulnerability management  (formerly Kenna), you know you have an urgent issue: The announcement from Cisco of end of life for its VM tools comes just when budgets for the new year need to be prioritized and finalized – so you need to act now. 

For teams planning what comes after Kenna, SAFE offers a practical modernization path. We’re already helping Cisco VM customers transition quickly and cost-effectively.

Vulnerability Management: The New Era

The Kenna acquisition was in 2021, several lifetimes ago for VM and cyber risk management as a whole. Five years ago, VM was a narrow, technical, manual discipline driven by CVSS scores. 

Today, VM as practiced at SAFE, moves at the speed of agentic AI, and is driven by continuous threat exposure monitoring (CTEM). VM is part of an all-encompassing view of assets, threats and risk, a program run with strict attention to ROI and the demands of the business, leveraged through FAIR-based cyber risk quantification (CRQ). 

Modern VM Means Knowing What to Fix—and Why

“Vulnerability management should not end with a prioritized list,” says SAFE CEO Saket Modi. “It should lead to clear decisions about where teams spend time to reduce risk.”

SAFE CTEM builds on existing VM investments by continuously ingesting scanner data and correlating it with asset criticality, threat signals, and control effectiveness.

The result is not another score, but a repeatable way to decide what work actually reduces risk.

The Balbix Acquisition Solidifies SAFE’s Leadership Position 

The acquisition by SAFE joined:

—Balbix, named a Visionary in the 2025 Gartner® Magic Quadrant™ for Exposure Assessment Platforms (CTEM) and 

—SAFE, named the category leader in Cyber Risk Quantification (CRQ) by Forrester Research

SAFE has now emerged as a leader in risk-based vulnerability management and CTEM.

Most tools stop at prioritization. SAFE goes further by connecting prioritized exposures to measurable business risk, unifying CTEM and cyber risk quantification across the full risk lifecycle:

• Attack surface
• Exposure
• Control effectiveness
• Risk quantification
• Prioritization
• Remediation

Moving Up from Kenna VM: 3 Big Advantages of the SAFE Solution

1.  Faster, more accurate risk prioritization
—Continuously ingests data from your scanners, CMDB, EDR, cloud, and identity tools

–Uses AI and FAIR-aligned risk modeling to prioritize issues by actual business risk, not CVSS noise.

—Surfaces the small set of projects that will reduce the most cyber risk the fastest.

2.  Real-time, executive-ready risk clarity

—Translates technical findings into dollar‑based risk for applications, business units, and assets

—Provides out‑of‑the‑box dashboards for CISOs, security leaders, and the board — with actionable insights

—Makes it easy to show how remediation work is reducing risk over time

3.  Smooth, no-reset migration and better operational outcomes

—Rapid onboarding using your existing Cisco/Kenna data source. Move forward without starting over.

—Clear “before and after” view of risk reduction and SLA adherence

—Tight alignment between Security and IT Ops with shared, prioritized work queues

Trusted Process: Prioritizing Vulnerabilities with SAFE

Our approach to prioritizing vulnerabilities (or findings) is centered around the FAIR-CAM framework. FAIR-CAM, an extension of the open-industry-standard FAIR model for cyber risk analysis, allows us to go beyond traditional vulnerability management by linking controls directly to risk. We apply a rigorous six-step process to account for business criticality, exploitability, aging and more factors to derive a final findings score.  It’s a transparent process built on trusted standards.

Get the details: Understanding the Risk-based Scoring of SAFE’s Findings Prioritization

Make the Transition to SAFE. We Make It Easy

SAFE is working with Cisco customers right now to make that transition as low‑friction as possible. We can quickly:

• Review your current Kenna use cases
• Map them directly to SAFE’s capabilities
• Share a migration plan tailored to your environment

To make the transition easier, SAFE is offering preferred commercial terms for Cisco VM customers, recognizing your existing investment in Kenna/Cisco VM.  Explore your options before yearly budgeting closes!

Request a no-cost Kenna replacement assessment. Contact SAFE today!