Tenable launched Identity 360 and Exposure Center, two new capabilities designed to enhance its Identity Exposure solutions. These tools aim to address the growing challenges of identity sprawl by providing comprehensive visibility into identity risks and enabling swift, targeted actions to prevent identity-based attacks.
Identity management has become increasingly fragmented, leading to what is known as identity sprawl—a tangled web of accounts, permissions, and misconfigurations across disparate platforms. This fragmentation severely limits visibility and risk detection, weakens access controls, and increases the threat of privilege escalation and lateral movement. The combined power of Identity 360 and Exposure Center simplifies this complexity, delivering unified visibility across identity providers to serve as a single source of truth.
“Compromised identities are at the root of nearly every successful cyberattack.”
– Shai Morag, Chief Product Officer, Tenable
Shai Morag, Chief Product Officer at Tenable, emphasized the importance of addressing identity risks: “Compromised identities are at the root of nearly every successful cyberattack. Today, 75% of organizations manage two or more identity solutions, leading to increased complexity around identity security. Tenable Identity Exposure ensures that organizations have full visibility into their identity risks and provides actionable remediation guidance so organizations can swiftly and confidently prevent attacks before they occur.”
The key functionalities available in this release include:
- 360-Degree Identity Visibility and Risk Prioritisation: This feature provides a unified view of accounts, weaknesses, entitlements, roles, groups, and relationships across Active Directory and Entra ID. Tenable Identity Exposure consolidates this information into comprehensive identity profiles for streamlined risk management.
- Centralised Weakness Management and Streamlined Remediation: This capability consolidates identity-related weaknesses—including privilege misconfigurations, excessive permissions, stale accounts, default settings, risky trust relationships, and unmonitored service accounts—into a single interface. It also offers detailed remediation steps and one-click PowerShell scripts for swift action.
- AI-Driven Identity Asset Exposure Score (AES): This feature uses AI-driven risk scoring to identify the most critical identity weaknesses, allowing organizations to focus their remediation efforts on the highest-priority threats.
Tenable Identity Exposure continuously monitors for misconfigurations, attack paths, and security weaknesses, empowering organizations to proactively reduce risk and strengthen their security posture. These new capabilities are designed to simplify identity security management and provide a robust defense against identity-based attacks.
