Tenable is the Exposure Management company where nearly 44,000 organizations around the globe rely on Tenable to understand and reduce cyber risk. As the creator of Nessus, Tenable extended its expertise in vulnerabilities to deliver the world’s first platform to see and secure any digital asset on any computing platform. Tenable customers include approximately 65% of the Fortune 500, approximately 50 percent of the Global 2000, and large government agencies. In an interaction with NCN, Mr. Kartik Shahani, Country Manager, Tenable India, shares about their companies operations, plans, and future outlook.
Please share with us how Tenable did in FY 2023-24 and brief us on your current product line.
We delivered a strong Q4, including better-than-expected results on the top- and bottom-line. Underpinning our results was strength in Tenable One, driven by strong adoption of cloud and identity, as well as continued traction in OT. We are optimizing the business as we leverage the investments we have made to broaden our offerings and bring greater value to our customers.
We are heavily focused on helping our customers navigate cloud environments. This is because efforts to secure cloud infrastructure are hampered by myriad issues: fast cloud adoption, multiple cloud providers, a shortage of cloud and security expertise, a new perimeter that replaces the network with identities and the cloud’s dynamic nature.
Tenable Cloud Security is a unified identity-driven cloud-native application protection (CNAPP) solution that continuously analyses all cloud resources — across infrastructure, workloads, data, identities and applications — to single out the most important risks, spot unknown threats and deliver actionable insights within hours. Best-of-breed cloud entitlements (CIEM) and cloud vulnerability management (CWP) combined with robust security posture management for cloud (CSPM), Kubernetes (KSPM) and Infrastructure as Code (IaC), reduce the cloud attack surface, automate reporting and facilitate zero trust including least privilege at scale.
What are your main target segments for your solutions?
Today, more than 44,000 organizations around the world rely on Tenable to help them comprehend and reduce cyber risk across their attack surface — in the cloud or on-premises, from IT to OT and beyond. We want to arm every organization, with the visibility and insight to identify where the organization is exposed, what to prioritize and how to reduce cyber exposure over time. Tenable’s customers include 65% of Fortune 500 companies and 50% of Global 2000. Tenable caters to businesses operating in key industries like the financial sector, large government agencies, big-box retailers, telcos and manufacturing organizations. Our exposure management platform helps organizations gain comprehensive visibility into the attack surface and stay one step ahead of attackers.
What are the most common vulnerabilities that are present in organizations’ IT environments?
Cybercriminals tend to set their sights on low-hanging fruits because all they need is one unpatched vulnerability or misconfiguration to breach networks. Whether it is a nation-state or financially-driven threat actor, cybercriminals often look for known vulnerabilities. Zero-day vulnerabilities garner a lot of attention but in reality, it’s the publicly known unpatched vulnerabilities that provide bad actors the best ammunition to attack. Although this is well-known among large organizations, many struggle to keep up with the sheer volume of newly discovered vulnerabilities, which present numerous opportunities for cybercriminals to gain a foothold by exploiting known flaws.
Despite having multiple-point solutions in the defender’s arsenal, siloed data prevents security teams from gaining full visibility into the attack surface and the much-needed context to determine business-critical assets that need to be patched immediately.
Why do organizations not patch even when they know these vulnerabilities exist? Why should they take vulnerability remediation seriously?
The biggest challenge is prioritizing which vulnerabilities to patch first. Traditional vulnerability management focuses on giving customers a list of vulnerabilities to remediate, without context of which vulnerabilities impact the business most. Exposure management solves this problem of prioritization, helping security teams understand where they’re exposed, what that means from a risk perspective and how they can effectively manage and reduce that risk.
Data growth and tool proliferation are leading to operational silos, heightening cyber risks. This is because teams are juggling different solutions for managing vulnerabilities, web apps, identities, and cloud assets. Analyzing diverse data sets to prioritize cyber risks, is time-consuming and significantly challenging — an approach that is counterproductive because threat actors aren’t thinking in terms of data silos, but the right blend of vulnerabilities, misconfigurations and identity privileges that provide entry and access to the network.
What are the preventive approaches organizations can take to remediating the vulnerabilities in their environments?
A more comprehensive and preventive approach to cybersecurity is exposure management. It sheds light on blindspots and silos created by multiple-point tools in use. Cybersecurity teams use different tools for vulnerability management, on-prem, cloud security, identity and access management, web application security and more. Security teams are left with the time-consuming task of tabulating data on spreadsheets. They are reactive, continuously chasing threats and responding to potential incidents. Point tools make it hard to unify different risk metrics and effectively communicate the true security status.
Exposure management combines vulnerability management with the contextual understanding of the threads connecting vulnerabilities, misconfigurations and identities across the entire attack surface so organizations can effectively minimise cyber risk.
What are Tenable’s USPs over its competitors?
Tenable is the industry’s foremost organization in the exposure management space. Tenable One, our exposure management platform combines broad exposure coverage spanning IT, OT and IoT assets, cloud resources, containers, web apps and identity platforms, with threat intelligence and data science from Tenable Research. It also measures the maturity of an organization’s foundational security processes, including how effective the security team is, speeding up the process of identifying critical flaws and remediating them. Tenable’s solutions help organizations prevent likely attacks and accurately communicate cyber risk to ensure optimal business performance.
Covered By: NCN MAGAZINE / Tenable
If you have an interesting Article / Report/case study to share, please get in touch with us at editors@roymediative.com , roy@roymediative.com, 9811346846/9625243429
