Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070
tenable-cs

Tenable.cs is a Cloud-Native Application Protection Platform (CNAPP) that enables your security team to extend vulnerability management to cloud workloads by defining policies as code that your team can apply at build-time and runtime.

Tenable.cs closes the divide between traditional security operations and cloud development teams by building upon Terrascan, one of the most popular open-source infrastructure as code (IaC) cloud security testing tools in the market.

With Tenable.cs, you can reduce the number of runtime threats for remediation by shifting-left and addressing security weaknesses as part of the dev process.

Try for Free Watch Demo

CLOUD SECURITY AS CODE

Tenable helps you establish and strengthen your DevSecOps practices with these five key components of Cloud Security as Code:

Policy as Code

Continuous Assessment

Capture security policy as code, (e.g. CIS benchmark), continuously detect violations across IaC at build-time and enforce security policies early, before deployment (CI/CD)

GOVERNANCE as Code

Automated Governance

Capture security governance decisions (e.g. exception) within IaC and leverage code repositories for governance workflow and audit

DRIFT as Code

Continuous Detection

Continuously detect infrastructure changes in runtime, and report policy violations as IaC

SECURITY as Code

Advanced Security

Understand application vulnerabilities and prioritize risk resolution by identifying potential breach paths and assessing blast radius

REMEDIATION as Code

Automated Remediation

Automatically generate the IaC code to fix vulnerabilities and exposures. Push security fixes as IaC directly to developers through pull-requests (GitOps)

Complete Cloud Visibility: Continuously discover and assess cloud assets without the need to install agents, configure a scan or manage credentials. Gain visibility into the secure posture of your container images. Detect security issues quickly as new vulnerabilities are disclosed and as your cloud environment changes with instances spinning up and down.

“As organizations embrace immutable infrastructure, manual changes to production cloud deployments will become untenable. The approach of governing infrastructure as code, and subsequently reconciling any posture drift between cloud deployments and code, will enable immutable security for immutable infrastructure”

Krishna Bhagavathula, CTO, NBA

Security from build-time to run-time

BUILD-TIME
DEVELOPERS: Design, Build, Deploy
RUN-TIME
SECURITY AND OPS: CLOUD RUNTIME AND REPORTING
Enforcing Standard & Custom Policies Through DevSecOps
BUILD-TIME

Identify flaws in Infrastructure as Code by integrating into the IDE and pipeline.

Assess Infrastructure as Code on commit or merge requests.

Integrate into the CI/CD pipeline to identify flaws in containers and third-party libraries before deployment.

RUN-TIME

Continuously scan and assess Kubernetes and your cloud infrastructure to identify drift.

Identify flaws in running containers and compute instances without the need to deploy scanners or install agents.

Merge critical ad hoc changes and required remediation steps back into build.

DEVELOPER-FOCUSED FEATURES

  • Integrate Tenable.cs into your IDE for a continuous security syntax check of your Infrastructure as Code.
  • Automatically create Infrastructure as Code snippets from running cloud configurations.
  • Save effort by always being on the right side of defined security policies with every commit.
  • Integrate the assessment and findings into tools you know and trust, including Github, Gitlab, Jenkins, Slack, Bitbucket and many more.
  • Tenable.cs is built upon Terrascan, an open-source IaC security testing tool that is freely available to developers.

INTEGRATE SECURITY INTO EVERY STEP

Full stack cloud-native security, defined through code and deployed in the cloud.

Apps
WWW
API
Container
Docker
Kubernetes
Compute
AWS EC2
Azure VM
Google Compute Engine
Cloud
AWS
Google Cloud
Azure
Infra as Code
Azure ARM
AWS Cloud Formation
Kubernetes
TerraForm
Helm
Development
GitHub
Slack
GitLab
Jira
BitBucket
Jenkins

Related Resources

7 Habits of Highly Effective DevSecOps Teams

7 Habits of Highly Effective DevSecOps Teams

Vulnerability Management from Code to Cloud: Your Guide to Modern CSPMs

Vulnerability Management from Code to Cloud: Your Guide to Modern CSPMs

Enterprise Guide to Policy as Code: Design, Build, and Runtime

Enterprise Guide to Policy as Code: Design, Build, and Runtime

LEARN MORE ABOUT TENABLE.CS

“Organizations need to fundamentally change their approach to cloud infrastructure security. Tenable.cs offers exactly that opportunity”

VISHAL GUPTA, SVP AND GLOBAL CTO, UNISYS

tenable.io

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy.

tenable.io BUY

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Purchase your annual subscription today.

65 assets

Choose Your Subscription Option:

Buy Now

Try Nessus Professional Free

FREE FOR 7 DAYS

Nessus® is the most comprehensive vulnerability scanner on the market today. Nessus Professional will help automate the vulnerability scanning process, save time in your compliance cycles and allow you to engage your IT team.

Buy Nessus Professional

Nessus® is the most comprehensive vulnerability scanner on the market today. Nessus Professional will help automate the vulnerability scanning process, save time in your compliance cycles and allow you to engage your IT team.

Buy a multi-year license and save. Add Advanced Support for access to phone, community and chat support 24 hours a day, 365 days a year.

Select Your License

Buy a multi-year license and save.

Add Support and Training

Tenable.io

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy.

Tenable.io BUY

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Purchase your annual subscription today.

65 assets

Choose Your Subscription Option:

Buy Now

Try Tenable.io Web Application Scanning

Enjoy full access to our latest web application scanning offering designed for modern applications as part of the Tenable.io platform. Safely scan your entire online portfolio for vulnerabilities with a high degree of accuracy without heavy manual effort or disruption to critical web applications. Sign up now.

Buy Tenable.io Web Application Scanning

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Purchase your annual subscription today.

5 FQDNs

$3,578

Buy Now

Try Tenable.io Container Security

Enjoy full access to the only container security offering integrated into a vulnerability management platform. Monitor container images for vulnerabilities, malware and policy violations. Integrate with continuous integration and continuous deployment (CI/CD) systems to support DevOps practices, strengthen security and support enterprise policy compliance.

Buy Tenable.io Container Security

Tenable.io Container Security seamlessly and securely enables DevOps processes by providing visibility into the security of container images – including vulnerabilities, malware and policy violations – through integration with the build process.

Try Tenable Lumin

Visualize and explore your Cyber Exposure, track risk reduction over time and benchmark against your peers with Tenable Lumin.

Buy Tenable Lumin

Contact a Sales Representative to see how Lumin can help you gain insight across your entire organization and manage cyber risk.

Try Tenable.cs

Enjoy full access to detect and fix cloud infrastructure misconfigurations in the design, build and runtime phases of your software development lifecycle.

Buy Tenable.cs

Contact a Sales Representative to learn more about Cloud Security and how you can secure every step from code to cloud.

Try Nessus Expert Free

FREE FOR 7 DAYS

Built for the modern attack surface, Nessus Expert enables you to see more and protect your organization from vulnerabilities from IT to the cloud.

Already have Nessus Professional?
Upgrade to Nessus Expert free for 7 days.

Buy Nessus Expert

Built for the modern attack surface, Nessus Expert enables you to see more and protect your organization from vulnerabilities from IT to the cloud.

Select Your License

Buy a multi-year license and save.

Add Support