Tenable launches Tenable.cs to provide security from code to cloud

Tenable®, Inc. has released Tenable.cs, which expands its platform’s cloud-native security features. Tenable.cs helps enterprises to accelerate innovation by aligning development, operational, and security teams with security and resiliency goals, following the acquisition of Accurics.

Tenable.cs will assist enterprises in securing the whole cloud-native stack throughout the DevOps lifecycle, from the moment applications and infrastructure are developed in code to production use. Before provisioning to the cloud infrastructure, Tenable.cs checks Infrastructure as Code (IaC) for faults, policy violations, and probable breach paths.

Implementing a safe and compliant IaC is a key component of integrating DevOps, security, and compliance, as it reduces cloud security risk, boosts developer productivity, and strengthens security and compliance. Today’s DevOps and security teams must “remain in their lanes” while seeking to work efficiently without inhibiting innovation. Cloud-native settings, which are always developing and becoming more sophisticated, make this endeavor much more difficult.

Tenable.cs integrates the Accurics platform into Tenable’s ecosystem, providing teams with practical, real-world solutions from development to deployment. The solution also includes a best practice architecture that unifies DevOps and Security teams, allowing businesses to innovate confidently in the cloud.

“Tenable.cs expands our capabilities further into the cloud stack,” said Nico Popp, chief product officer, Tenable.

He added, “Our aim is to enable organizations to embrace both the technical and cultural change that is DevSecOps. This is a natural evolution as services increasingly leverage the cloud and IaC. By analyzing this codified state of cloud environments, we enable users to shift security left and address misconfigurations and vulnerabilities before they are deployed.”

Tenable.cs’ first release improves on Accurics’ existing features by improving the user experience, strengthening runtime capabilities and reporting, and allowing for tighter integration with development workflows.

• Enhanced user experience:
  • Multiple control planes, such as code repositories, cloud accounts, Kubernetes clusters, and CI/CD or GitOps pipelines, are managed through a single management console.
  • Configuring complex AWS, Azure, and GCP infrastructures and projects has never been easier.
  • A new low-code security policy editor that simplifies policy logic administration while removing the need to learn a new policy language.

• Enhanced reporting and runtime capabilities:
  • Continuous monitoring of AWS configuration changes, allowing for real-time cloud posture management
  • Kubernetes application posture management, including detecting configuration drifts in Kubernetes runtime infrastructure.

• Tighter integration with development workflows:
  • Improved integration with development pipelines, including new policies for application vulnerabilities and the ability to enforce policies during build time based on recent NSA and CISA
  • Kubernetes Hardening Guidance Kubernetes policy guardrails