Know the exposure of every asset on any platform.

Tenable.ep is a comprehensive risk-based vulnerability management solution that comprises Tenable.io Vulnerability Management, Tenable.io Web Application Scanning, Tenable.cs, Tenable.ad and Tenable Lumin to help your organization understand your cyber risks for every asset, everywhere, on every platform, at all times. Tenable.ep enables you to see and assess all assets and vulnerabilities from across your attack surface — all in a unified view, thereby making it easy to assess and accurately prioritize vulnerabilities and assets that matter most to your organization.

No. In general, bundles are a collection of loosely-coupled products (if at all) and each has its own license, management interface, etc. While Tenable.ep comprises a comprehensive set of existing Tenable products, it is a unified platform with a single licensing model that covers all assets across your attack surface. Furthermore, Tenable.ep delivers a single platform management interface and enables you to view all assets and vulnerabilities through a single, unified dashboard.

Tenable.ep includes the following Tenable products:

• Tenable.io Vulnerability Management
• Tenable.io Web Application Scanning
• Tenable.cs (Please note that Tenable.io Container Security is now part of Tenable.cs)
• Tenable.ad
• Tenable Lumin

The most important differences between Tenable.ep and purchasing multiple products in an a la carte manner are simplicity and cost efficiency. Tenable.ep employs a single license for all assets across your organization instead of a patchwork of licensing models for each a la carte product. In addition, the complete set of Tenable risk-based vulnerability management capabilities is always-on and continuously available with Tenable.ep. You can begin using them at any time, without the need to create a separate procurement plan. Best of all, Tenable.ep is a far more favorable price offering than purchasing its parts individually.

Until now, gaining visibility into all of your exposures required you to purchase multiple, single-purpose products, each with different licensing and pricing models. This created challenges for security leaders who had to manually parse through massive amounts of security data—from all these disparate solutions — to stitch together a story to try to understand vulnerabilities in context. Tenable.ep’s comprehensive solution removes all of this complexity and enables you to see every asset and vulnerability across your entire attack surface — including traditional IT, cloud, web applications, container assets and Active Directory environments — all in a unified view.

In addition, historically, each evolution of your risk-based VM program has typically required painful, time-consuming procurement and deployment processes — if you can find budget at all. But with Tenable.ep, you can simply start assessing different asset types at any time — including web application scans, cloud assessments and Docker image assessments — without the painful procurement or deployment processes.

Yes, in addition to being core components of Tenable.ep, each will continue to be sold as separate, stand-alone products. This way, we can continue to serve the needs of customers who don’t purchase the full solution.

Tenable.ep is priced per asset you manage across your attack surface. Each IT and cloud resource, fully-qualified domain name (FQDN), container image and Active Directory user will count exactly the same against a product license. As with other Tenable products, it includes progressive discounting through volume tiers related to the number of assessed assets.

This dramatic change simplifies and streamlines pricing by delivering a more simplified and cost-effective approach to assess all assets across your entire attack surface.

Tenable.ep counts assets the same way Tenable.io Vulnerability Management, Tenable.io Web Application Scanning and Tenable.cs and Tenable.ad collectively count assets today. This includes traditional IT assets (desktops, laptops, servers, storage devices, network devices, etc.), cloud resources, web applications (fully-qualified domain names) and Active Directory users.

Yes. In fact, the flexible licensing model is one of the primary benefits of Tenable.ep. With Tenable.ep, you can reallocate assets as often as you like, based on your specific needs (e.g., when your attack surface changes). For example, you may choose to reallocate decommissioned IT assets toward web applications or cloud resources (or vice versa). All assets count equally against a product license in Tenable.ep.

As long as you remain within your licensed amount, you are free to allocate your asset licenses in any way you wish. For example, you may choose to allocate 100% of your license to one asset type, or you may allocate them in any combination across your entire attack surface. The only exception is if you scan your web apps using the Tenable cloud scanner, your concurrent scans of these assets are capped according to your license tier. However, unlimited local scanning is still available for all assets, including web applications, up to the licensed amount. For more information, please contact your Tenable sales representative.

External Attack Surface Management (EASM) is a capability Tenable offers that provides visibility into blind spots outside of your network perimeter. This allows you to scan your domain to find previously unknown internet-connected assets that can pose high risk to your organization.

Yes. Tenable.ep offers External Attack Surface Management (EASM) capabilities. If you require additional domains, frequency and/or metadata in your results, you can purchase our Tenable.asm add-ons.

No. Tenable.ep does not include Tenable.sc or Tenable.ot at this time. You can purchase both separately.

Tenable.ep is only available as a cloud-based, Software-as-a-Service (SaaS) solution. However, Tenable.ep helps you secure all assets across your attack surface, including cloud-based and physical on-premises assets.