Take control of cyber exposure, before attackers do

Tenable One is an Exposure Management Platform to help organizations gain visibility across the modern attack surface, focus efforts to prevent likely attacks and accurately communicate cyber risk to support optimal business performance.

The platform combines the broadest vulnerability coverage spanning IT assets, cloud resources, containers, web apps and identity systems, builds on the speed and breadth of vulnerability coverage from Tenable Research and adds comprehensive analytics to prioritize actions and communicate cyber risk.

Tenable One allows organizations to:

• Gain comprehensive visibility across the modern attack surface
• Anticipate threats and prioritize efforts to prevent attacks
• Communicate cyber risk to make better decisions

ExposureAI is how Tenable uses AI (generative artificial intelligence, deep learning, AI and machine learning) to fuel our exposure management capabilities. Tenable has been using artificial intelligence and machine learning for years, with capabilities such as Vulnerability Priority Rating (VPR), Predictive Scoring and other research-driven tools. ExposureAI is the next step using generative AI for preventive security with the following use cases:

• Explain: Derive succinct guidance to better understand product findings.
• Search: Simplify search across your asset inventory for complete visibility.
• Action: Proactively deliver insights for actions with the most impact.

Tenable Exposure Graph is the unified data platform in Tenable One that aggregates, normalizes and stores asset, exposure and threat data across IT assets, cloud resources, web applications and identity systems. Exposure Graph contains the largest repository of contextual exposure data in the world, which powers ExposureAI insights and our exposure management products.

Tenable has been using artificial intelligence in our products for many years. Recent examples include:

• Vulnerability Priority Rating (VPR): Released in 2019, VPR incorporates machine learning-based algorithms to identify vulnerabilities most likely to be exploited in the short term, analyzing each vulnerability daily to predict the likelihood of an exploit actually being used against it.

• Operating System (OS) Prediction: Released in 2020, OS Prediction leverages machine learning-based algorithms to predict an unauthenticated asset’s operating system via host response to TCP packet data in order to increase assessment and inventory accuracy.

• Predictive Scoring: Released in 2020, Predictive Scoring incorporates machine learning-based algorithms to predict an asset's risk from limited, unauthenticated scan data using data derived from authenticated scans and exposure characteristics of similar assets.

• Generative AI Research Tools: Tenable Research developed and released four generative AI-based research tools to help improve efficiency and effectiveness in processes, such as reverse engineering, code debugging, web app security and visibility into cloud-based tools.

• Tenable Identity Exposure: Released in 2023, Tenable Identity Exposure incorporates AI-based methods to provide a unified view of all user identities and entitlement risks across on-prem and cloud environments.

Tenable One includes the following Tenable products. The full functionality of each of these products is included in Tenable One.

• Tenable Vulnerability Management
• Tenable Web App Scanning
• Tenable Cloud Security
• Tenable Identity Exposure
• Tenable OT Security
• Tenable Lumin

Capabilities include:

• Exposure View: Enables focused security efforts through clear, concise insight into your organization’s security exposure answering such critical questions as “how secure are we” and “where do we stand in our preventative and mitigation efforts?” “how are we doing over time?” and “what are the key events?”
• Tag Performance: Addresses which tags make up an exposure card and how much that group of assets contributes to a given exposure score.
• Attack Path Analysis: With more than 150 supported attack techniques, Attack Path Analysis gives security practitioners a glimpse into the attacker mindset. It continuously monitors gaps across endpoint, identity and cloud to proactively visualize attack paths and mitigate high-risk exposures. It performs this function by mapping critical risks to the MITRE ATT&CK framework to visualize all viable attack paths continuously — both on-prem and in the cloud.
• Asset Inventory: Centralized view of all assets, including IT, OT, IoT, cloud, identities and web apps, with the ability to create specific asset tags from a variety of sources.
• External Attack Surface Management (EASM): Provides insight into the external attack surface, empowering your organization to identify and reduce risks from the attacker’s perspective.
• Custom Exposure Cards: Enables concise, flexible communication of specific security insights.
• News: Integration with Tenable Research blogs allow for creation of custom exposure cards that reflect cyber security developments.

Lumin’s Cyber Exposure Score (CES) is derived from vulnerability prioritization and asset criticality scores. The Exposure View score in Tenable One is derived from the CES score along with inputs from data derived from the other products contained within Tenable One - including cloud, identity, web application security and attack surface management.

Yes, add-on SKUs are available for additional cloud scanners for WAS, Tenable Just in Time (JIT) and Identity Exposure On-Prem.

Yes, Tenable One is mainly a cloud-based solution. However, customers can deploy their vulnerability management assets in the cloud with Tenable Vulnerability Management and/or on-premises with Tenable Security Center Plus.