Tenable announced the release of Tenable One, a revolutionary Exposure Management platform that unifies discovery and visibility into all assets and assesses their exposures and vulnerabilities across the entire attack surface for proactive risk management.
Tenable One delivers context-driven risk analytics so security teams can move from reactive fire-fighting to prevention. Cybersecurity teams can anticipate and block threats before they can cause damage. The cloud-based platform identifies and assesses assets across the enterprise attack surface to gain a unified view of cyber risk.
The average large organization uses more than 130 cybersecurity point solutions, each with its own analytics and reporting. Discrete tools can lead to duplicate efforts and unintended gaps in security programs. This leaves security practitioners no clear path forward to tangibly reduce risk or succinctly communicate an organization’s security posture.
With Tenable One, organizations can easily translate technical asset, vulnerability and threat data into business insights and actionable intelligence vital for business decision makers and practitioners. This real-time translation of cyber risk answers stakeholders’ hard-hitting cybersecurity questions – such as “how secure are we?” and “how has our security posture improved over time?” – by providing clear metrics to measure, compare and easily communicate cyber risk.
“One of the biggest challenges enterprises face is the lack of actionable visibility to effectively quantify and respond to real exposure and cybersecurity risk,” said Dr. Michael Mylrea, Sr. Distinguished Engineer, Head of ICS Cybersecurity & Digital Innovation, National Resilience Inc. “The Tenable One Exposure Management Platform could be the game changer the industry needs. Now organizations can pinpoint additional weak spots that could be targeted by attackers and utilize contextual, prioritized reporting to remediate vulnerabilities.”
The Tenable One Platform eliminates noise by bringing an organization’s entire attack surface – on-premises and cloud-based – into a single view. It aggregates vulnerability data across IT infrastructure, web apps, public cloud and identity systems. This helps security leaders anticipate the consequences of a cyberattack. Tenable One draws upon the industry’s largest vulnerability management data set from Nessus® while understanding relationships between assets, exposures, privileges and threats across attack paths.
“Our customers put their trust in us to understand their unique attack surfaces, help them predict attacks and prioritize remediation,” said Rob Watson, SVP of Security Services, eSentire, Inc. “As a leading global Managed Detection and Response provider, the Tenable One Exposure Management Platform gives us a clear advantage in being able to offer customers a new way to visualize and then limit their cyber risk, as well as analytics that measure improvement over time. Together with Tenable, we bring peace of mind and help put businesses globally ahead of disruption.”
At launch, Tenable One introduces three new capabilities that are foundational to exposure management programs:
-
Lumin Exposure View – provides clear and concise insights into an organization’s cyber exposure, giving security teams the ability to surface and accurately answer critical questions about security posture
-
Attack Path Analysis (APA) – enables security teams to view attack paths from externally identified points through to critical internal assets to focus mitigation on areas of highest risk
-
Asset Inventory – provides users with a centralized view of all assets, including IT, cloud, Active Directory and Web applications, with the ability to create specific asset tags from a variety of sources and use cases
“Bad actors don’t take a siloed approach to exploiting organizations’ attack surfaces, so why are cybersecurity teams operating in vacuums?” said Glen Pendley, Chief Technology Officer, Tenable. “A platform approach to exposure management is the real game changer, surpassing the ineffective and expensive point solution approach that the industry has taken for decades. Tenable One delivers holistic insight into exposures that can serve as a true north for security teams.”
Tenable One combines vulnerability management, external attack surface management (EASM), identity management and cloud security data to discover weaknesses before attackers can exploit them. It continuously monitors environments – from traditional IT assets to cloud resources and identity systems – delivering the broadest vulnerability coverage available.
Tenable One enables organizations to:
-
Visualize Assets and Vulnerabilities – eliminates areas of known and unknown security risk and builds a baseline for effective risk management. It combines the power of a unified view of all assets and associated software vulnerabilities, poor configurations and excessive entitlements with continuous vulnerability assessment.
-
Predict and Prioritize – applies context to anticipate the consequences of a cyberattack faster and significantly improves remediation prioritization. It enables security teams to continuously identify and focus on the exploitable attack pathways that create the most risk.
-
Effectively Communicate Risk – provides a centralized and business-aligned view of cyber risk and actionable insights. It enables organizations to accurately and effectively communicate to different stakeholders about cyber risk and which actions can most efficiently reduce it.
Tenable One is built for dynamic environments, with a single license that gives customers the ability to easily adjust their asset allocations across Vulnerability Management, Cloud Security, AD Security, Web App Scanning as business needs change. The platform is available today in both Standard and Enterprise versions.