STOCK TITAN

Tenable Continues to Shift Left: Enhances Open Source Capabilities and Expands Cloud Native Support

Rhea-AI Impact
(Low)
Rhea-AI Sentiment
(Neutral)
Tags
Rhea-AI Summary

Tenable has announced new features for Terrascan, its open-source cloud-native security analyzer, aimed at enhancing security for Infrastructure as Code (IaC). The updates allow organizations to integrate security checks into DevOps workflows, mitigating risks before infrastructure deployment. Key features include expanded IaC vulnerability identification, major container registry integration, flexible workflows for policy enforcement, and an improved user interface. These advancements are designed to help organizations adhere to security best practices and eliminate risks effectively.

Positive
  • New features enhance the security capabilities of Terrascan, improving IaC security.
  • Integration with major container registries to identify vulnerabilities in images.
  • Flexible workflows allow for early security checks in the development process.
  • User-friendly interface simplifies policy creation and testing.
Negative
  • None.

Built for developers by developers, Terrascan embeds security into native DevOps tooling, pipelines and the supply chain

COLUMBIA, Md., Nov. 30, 2021 (GLOBE NEWSWIRE) -- Tenable®, the Cyber Exposure company, today announced new features for Terrascan, the leading open source cloud native security analyzer that helps developers secure Infrastructure as Code (IaC). The new capabilities enable organizations to embed security into their DevOps tooling, pipelines and supply chains, mitigating risks before infrastructure is provisioned.

“It’s now more critical than ever for developers to have tools that can detect compliance and security violations across their entire cloud systems, including IaC,” said Nico Popp chief product officer, Tenable. “Just as IaC opens the door to programmatically embed policy checks earlier in the development lifecycle, Terrascan detects compliance and security violations across IaC to mitigate risk before provisioning. We are committed to ensuring Terrascan remains open and available to all development teams and are excited to contribute to its growth.”

Among other advances, Terrascan now features:

  • The ability to identify security risks in more IaC and container definition formats
  • Integration with all major container registries, including to identify vulnerabilities in container images referenced by IaC
  • More flexible developer workflows, including the programmatic enforcement of security policies before changes are committed into the code repository and before they are applied to the runtime environment
  • Improved ability to filter and prioritize findings according to user needs
  • Deeper integration with external dashboards and reporting frameworks
  • A new graphical user interface to simplify creation and testing of new policies

Terrascan delivers a scalable way to ensure that cloud infrastructure configuration adheres to evolving security best practices. It helps identify issues such as missing or misconfigured encryption on resources and communication, and inadvertent exposure of cloud services. Terrascan fundamentally enhances the value of IaC used by organizations to define and manage cloud infrastructure, and improves security by enabling teams to eliminate risk before infrastructure is deployed.

For more information about Terrascan, click here or learn more in the GitHub repo.

In addition to Terrascan, Tenable offers Accurics by Tenable, so enterprise customers can protect the full cloud-native stack throughout the DevOps lifecycle, from the time it is defined in code through production usage.

About Tenable
Tenable® is the Cyber Exposure company. Over 30,000 organizations around the globe rely on Tenable to understand and reduce cyber risk. As the creator of Nessus®, Tenable extended its expertise in vulnerabilities to deliver the world’s first platform to see and secure any digital asset on any computing platform. Tenable customers include more than 50 percent of the Fortune 500, more than 30 percent of the Global 2000, and large government agencies. Learn more at www.tenable.com.

Media Contact:
Tenable
tenablepr@tenable.com


FAQ

What are the new features announced for Tenable's Terrascan on November 30, 2021?

The new features include enhanced IaC vulnerability detection, integration with major container registries, flexible workflows for policy enforcement, a new user interface, and improved reporting capabilities.

How does Terrascan improve security for developers?

Terrascan enables developers to detect compliance and security violations early in the development lifecycle, mitigating risks before provisioning infrastructure.

What is the primary function of Terrascan?

Terrascan is designed to analyze cloud-native security, specifically Infrastructure as Code (IaC), to ensure adherence to security best practices.

How does Tenable support cloud-native security beyond Terrascan?

Tenable also offers Accurics, which protects the full cloud-native stack throughout the DevOps lifecycle.

Tenable Holdings, Inc.

NASDAQ:TENB

TENB Rankings

TENB Latest News

TENB Stock Data

4.92B
118.04M
1.74%
93.13%
3.14%
Software - Infrastructure
Services-prepackaged Software
Link
United States of America
COLUMBIA