At GITEX Global 2022, Tenable, the exposure management company, has announced the launch of Tenable One in the Middle East. Tenable One is a ground-breaking exposure management platform that unifies asset discovery and visibility while evaluating all assets’ exposures and vulnerabilities across the entire attack surface for proactive risk management.
Tenable One delivers context-driven risk analytics so security teams can move from reactive firefighting to prevention. Cybersecurity teams can anticipate and block threats before they can cause damage. The cloud-based platform identifies and assesses assets across the enterprise attack surface to gain a unified view of cyber risk.
The average large organisation uses more than 130 cybersecurity point solutions, each with its own analytics and reporting. Discrete tools can lead to duplicate efforts and unintended gaps in security programs. This leaves security practitioners no clear path forward to tangibly reduce risk or succinctly communicate an organization’s security posture.
With Tenable One, organisations can easily translate technical asset, vulnerability and threat data into business insights and actionable intelligence vital for business decision makers and practitioners. This real-time translation of cyber risk answers stakeholders’ hard-hitting cybersecurity questions – such as “how secure are we?” and “how has our security posture improved over time?” – by providing clear metrics to measure, compare and easily communicate cyber risk.
“One of the biggest challenges enterprises face is the lack of actionable visibility to effectively quantify and respond to real exposure and cybersecurity risk”, said Dr. Michael Mylrea, Sr. Distinguished Engineer, Head of ICS Cybersecurity & Digital Innovation, National Resilience Inc. “The Tenable One Exposure Management Platform could be the game changer the industry needs. Now organisations can pinpoint additional weak spots that could be targeted by attackers and utilise contextual, prioritised reporting to remediate vulnerabilities”.
The Tenable One Platform eliminates noise by bringing an organisation’s entire attack surface – on-premises and cloud-based – into a single view. It aggregates vulnerability data across IT infrastructure, web apps, public cloud and identity systems. This helps security leaders anticipate the consequences of a cyberattack. Tenable One draws upon the industry’s largest vulnerability management data set from Nessus while understanding relationships between assets, exposures, privileges and threats across attack paths.
“Our customers put their trust in us to understand their unique attack surfaces, help them predict attacks and prioritise remediation”, said Rob Watson, SVP of Security Services, eSentire, Inc. “As a leading global Managed Detection and Response provider, the Tenable One Exposure Management Platform gives us a clear advantage in being able to offer customers a new way to visualise and then limit their cyber risk, as well as analytics that measure improvement over time. Together with Tenable, we bring peace of mind and help put businesses globally ahead of disruption”.
At launch, Tenable One introduces three new capabilities that are foundational to exposure management programs:
- Lumin Exposure View – provides clear and concise insights into an organisation’s cyber exposure, giving security teams the ability to surface and accurately answer critical questions about security posture
- Attack Path Analysis (APA) – enables security teams to view attack paths from externally identified points through to critical internal assets to focus mitigation on areas of highest risk
- Asset Inventory – provides users with a centralised view of all assets, including IT, cloud, Active Directory and Web applications, with the ability to create specific asset tags from a variety of sources and use cases
“Bad actors don’t take a siloed approach to exploiting organisations’ attack surfaces, so why are cybersecurity teams operating in vacuums?” said Glen Pendley, Chief Technology Officer, Tenable. “A platform approach to exposure management is the real game changer, surpassing the ineffective and expensive point solution approach that the industry has taken for decades. Tenable One delivers holistic insight into exposures that can serve as a true north for security teams”.
“It’s an exciting time in Dubai as the region recovers post Covid, with the UAE economy expanding strongly. Organisations are looking to invest in technology that will help them capitalise on opportunities and deliver increased functionality. However, against this backdrop we’ve also seen a dramatic uptick in ransomware attacks, nation state-sponsored threats and a flood of new vulnerabilities that leave organisations exposed”, said Maher Jadallah, Senior Director Middle East & North Africa, Tenable. “When we think of traditional network security, the goal is to fortify the perimeter to prevent threats outside of the network from getting in. However, the way we work today means this approach is no longer feasible. We need to stop simply treating the symptoms of cyber risk and actually look for a cure”.
Tenable One combines vulnerability management, external attack surface management (EASM), identity management and cloud security data to discover weaknesses before attackers can exploit them. It continuously monitors environments – from traditional IT assets to cloud resources and identity systems – delivering the broadest vulnerability coverage available.
Tenable One enables organisations to:
- Visualise Assets and Vulnerabilities – eliminates areas of known and unknown security risk and builds a baseline for effective risk management. It combines the power of a unified view of all assets and associated software vulnerabilities, poor configurations and excessive entitlements with continuous vulnerability assessment.
- Predict and Prioritise – applies context to anticipate the consequences of a cyberattack faster and significantly improves remediation prioritisation. It enables security teams to continuously identify and focus on the exploitable attack pathways that create the most risk.
- Effectively Communicate Risk – provides a centralised and business-aligned view of cyber risk and actionable insights. It enables organisations to accurately and effectively communicate to different stakeholders about cyber risk and which actions can most efficiently reduce it.