Tenable Cloud Security
統一的雲端原生應用程式保護平台 (CNAPP)
In less than 2 minutes, learn how a cloud native application protection platform (CNAPP) enables full asset discovery to reduce complexities of cloud security.
With Tenable Cloud Security you can easily ramp up security across all your AWS, Azure and Google Cloud environments. 從完整的資產搜尋、深度風險分析、到執行階段威脅偵測與合規性,您可以降低複雜度、將雲端曝險減至最少、並大規模強制執行最低權限。
查看方法In less than 2 minutes, learn how a cloud native application protection platform (CNAPP) enables full asset discovery to reduce complexities of cloud security.
"Using [Tenable Cloud Security] automation allowed us to eliminate exhaustive manual processes and perform in minutes what would have taken two or three security people months to accomplish."- Larry Viviano, Director of Information Security, IntelyCare
全球領導者選用 Tenable Cloud Security
Tenable Cloud Security delivers immediate value as an exceptionally user-friendly Cloud-Native Application Protection Platform (CNAPP) solution to secure your multi-cloud environment. Tenable simplifies cloud complexity through precise contextual analysis, which enables teams to quickly identify and address accurately prioritized security gaps. As a leader in securing cloud identities, Tenable also helps you achieve least-privilege access to your workloads and advance your zero trust initiative. Tenable Cloud Security accelerates the adoption of DevSecOps through accurate security findings and detailed remediation steps that developers trust.
Secure Your Cloud and Cloud Identities With a Comprehensive CNAPP
Tenable Cloud Security secures your cloud infrastructure from development to runtime, continuously analyzing all your cloud resources — infrastructure, workloads, data, identities and applications — to single out the most important risks, spot unknown threats and deliver actionable insights within hours. Prevent threats that exploit cloud identities and access by detecting, prioritizing and remediating risky entitlements, excess privilege and misconfigurations at scale.
Identify Misconfigurations and Ensure Compliance With Cloud Security Posture Management (CSPM)
Monitor threat exposure risk by continuously reviewing and assessing cloud environment settings and configurations. Assess discovered risks against security standards and policies to attain and maintain compliance with regulation across multi-cloud environments.
深入瞭解:CSPM 持續性雲端安全
Get Visibility Into Toxic Combinations With Cloud Infrastructure Entitlement Management (CIEM)
Gain granular visibility into all identities and entitlements along with complete risk context that reveals and prioritizes hidden dangers such as toxic combinations and privilege escalation issues. Tenable CIEM enables you to control access entitlements with auto-remediation of excessive permissions and unused entitlements. Eliminate the exposure risk caused by human and service identities in your cloud and achieve least privilege at scale with our industry-leading CIEM.
Safeguard Critical Operations With Cloud Workload Protection (CWPP)
持續掃描、偵測及視覺化您最重要的工作負載風險,包括所有虛擬機器、容器和無伺服器功能中的弱點、敏感資料、惡意軟體和錯誤設定。Stay ahead of cloud threats with the latest insights from Tenable Research, the leader in vulnerability and exposure intelligence.
“This is one of the few platforms I’ve brought into the cloud that has had actionable efforts in under 30 days. From a return on investment perspective, it was one of the best decisions we made.”- David Christensen, Sr. Information Security Executive, FinTech Enterprise
Simplify Kubernetes Security Posture Management (KSPM)
Reveal, prioritize and remediate security gaps and automate compliance for Kubernetes clusters in your cloud. With Tenable Cloud Security unify visibility into Kubernetes container configurations and empower stakeholders with steps to fix misconfigurations.
Shift Left With Infrastructure as Code Security (IaC)
Scan, detect and fix misconfigurations and other risks in infrastructure as code (IaC) to harden your cloud infrastructure as part of your CI/CD pipeline. Use Tenable Cloud Security to embed security into workflows in DevOps tooling including HashiCorp Terraform and AWS CloudFormation, and remediate prioritized findings automatically in your native IaC environment.
深入瞭解:IaC 安全性
Detect and Respond To Cloud Threats Faster
Automate threat detection with continuous behavioral analysis and anomaly detection using out-of-the-box and custom policies. Detect reconnaissance, unusual data access, privilege escalation, and more. Tenable Cloud Security examines enriched cloud provider logs to give you context around each risk, enabling your SecOps teams to rapidly investigate and remediate cloud risks. Query data using intuitive tools and easily integrate with SIEMs (Splunk, IBM QRadar, etc.) and ITSMs (ServiceNow, Jira, etc.) to accelerate response time.
深入瞭解:異常狀況偵測與回應
Save Time with Just-In-Time (JIT) Access To Your Cloud
Grant developers access to your cloud resources on an as-needed and time-limited basis. The self-service request portal and approval workflows are easy-to-use and integrate with your existing messaging tools such as Slack. Avoid long-standing privileges to reduce your cloud attack surface. Tenable Just-In-Time offers temporarily elevated access while enforcing fine-grained least privilege policies — to ensure your business runs without interruptions while minimizing the risk of identity-based attacks on your cloud.
透過 Tenable One 曝險管理平台取得
Gain visibility across your modern attack surface, focus efforts to prevent likely attacks and accurately communicate cyber risk to support optimal business performance. The Tenable One Exposure Management Platform enables broad vulnerability coverage spanning IT assets, cloud resources, containers, web apps and identity systems.
深入瞭解Tenable Cloud Security FAQ
Tenable Cloud Security 是一套完全整合的雲端基礎架構安全解決方案,結合了功能強大的雲端安全態勢管理 (CSPM) 和安全工作負載保護 (CWP) 功能,以及業界最佳的雲端基礎架構權限管理 (CIEM)、雲端偵測與應變 (CDR) 技術、和高度創新的基礎架構即程式碼 (IaC) 安全性與 Kubernetes 安全態勢管理 (KSPM) 解決方案。雲端原生應用程式保護平台 (CNAPP) 能管理您的多重雲端資產庫、在整個架構中強制執行預防性的安全原則 (解決身分、網路、資料和運算風險)、偵測與應變發生中的威脅、提早執行安全作業、並且透過 IaC、CI/CD 或執行階段環境自動修復風險。這些功能可讓企業對比安全標準進行指標分析,並推動整個企業的合規工作強制執行。
Tenable Cloud Security 包括所有的 CNAPP 元件,能夠以獨立產品購買或作為 Tenable One 產品的一部分取得。獨立產品的定價方式是根據可計費資源的數量來計算。大量購買折扣則會根據預估的每月使用總量計算。同樣地,在作為 Tenable One 產品一部分的定價方式上,基本定價方式是根據所有可計費資源的數量來計算。然後在 Tenable One 中資源會以 3:1 的比例定價,而大量購買折扣則依現有 Tenable One 授權下訂閱的資產總數來計算。Just-in-time (JIT) 存取會分開授權,並且可以新增至獨立產品或作為 Tenable One 的一部分的產品定價中。針對特供的定價方式資訊與問題,歡迎洽詢 Tenable 業務代表。
有關 Tenable 產品技術說明文件,請造訪:https://docs.tenable.com。您必須登入您的 Tenable Cloud Security 帳戶,才能查看版本資訊與說明文件。請洽詢 Tenable 業務代表,取得技術說明文件和版本資訊的存取權。
Tenable Cloud Security 可以以獨立產品或作為 Tenable One 曝險管理平台的一部分購買。在與 Tenable One 結合時,Tenable Cloud Security 可提供您整個 IT 環境 (包含傳統網路、內部部署伺服器、操作技術和公用雲端) 的全方位檢視方式。透過購買作為 Tenable One 一部分的 Tenable Cloud Security,企業就能將他們所購買的 Tenable 產品合併在單一合約當中,並取得更多功能,例如曝險觀點 (exposure views)。
Tenable Cloud Security 能整合所有主要的雲端供應商 (包括 AWS、Azure、GCP),此外還有許多雲端供應商服務,像是:AWS Control Tower 與 Azure Active Directory。將 Tenable Cloud Security 與您的工單、通知及 SIEM 工具整合後,就能在您的企業中支援工單的建立並傳送推播通知及運用標準通訊工具 (如:Jira、Slack、Microsoft Teams 和電子郵件整合工具),以擴充該工具。
Tenable Cloud Security 能夠與各種 IdP 整合,包括:Azure Active Directory、Google Workspace、Okta、OneLogin 和 Ping Identity。這些 IdP 整合功能可顯示與您雲端帳戶相關聯的同盟使用者和群組的完整資產庫,並提供權限分析與身分情報。
Tenable 能確保您工作負載的安全性,採用可靠的嘉義及存取控制機制,以保護敏感資料。它能控管過高的特權,以及許可長時間存在的存取權。Tenable 能在發生資料外洩事件時,透過減少影響範圍來保護您的敏感資料。如需有關 Tenable Cloud Security 如何確保您獨特的雲端環境之資料保護及隱私的更多資訊,請洽詢您的 Tenable 業務代表。
可以的。 Tenable Cloud Security 使用者可以購買帳戶內的掃描功能,做為其環境的附加元件。該功能支援企業現場掃描工作負載,不受狹隘的資料隱私權標準和法規拘束。帳戶內掃描會在您的雲端帳戶內執行,因此資料不會離開該環境。
如需購買 Tenable Cloud Security,您可以與您當地的認證合作夥伴配合,或洽詢您的 Tenable 業務代表。點擊此處申請 Tenable Cloud Security 產品示範。
深入瞭解 Tenable Cloud Security
「使用 [Tenable Cloud Security] 的自動化功能,讓我們免除了讓人筋疲力竭的手動流程,並且在幾分鐘內執行過去可能需要 2 或 3 位安全人員好幾個月時間才能完成的工作。」
IntelyCare 資訊安全總監 Larry Viviano
- Tenable Cloud Security