Overview

Tenable Cloud Security is an award-winning, holistic cloud-native application protection (CNAPP) and infrastructure security solution that reveals and accurately prioritizes security gaps, and enables immediate remediation.

Tenable Cloud Security uses an identity-first approach to automate cloud security posture management (CSPM), cloud infrastructure entitlement management (CIEM), cloud workload protection (CWP), Kubernetes security posture management (KSPM) and infrastructure as code (IaC) security. It unifies full asset discovery, deep risk analysis, runtime threat detection and compliance reporting, combined with pinpoint visualization and step-by-step guidance. It is a full, multi-cloud, cloud-native application protection solution.

Tenable Cloud Security uses advanced analytics to assess, prioritize and automatically remediate risk in your AWS environment. It offers automated least-privilege policies integrated in standard workflows. With Tenable Cloud Security, enterprises can harden the cloud applications in their AWS environments and address the top risk in IaaS environments: misconfigured identities, access and privileges.

By using Tenable Cloud Security, you can secure the complete lifecycle from development to deployment, boost your team's AWS expertise and accelerate security collaboration with development, DevOps and others.

For custom pricing, EULA, or a private contract, please contact awsMPsales@tenable.com

Highlights

Cloud Security Posture Management (CSPM) - Manage multi-cloud inventory. Enforce security policies and remediate misconfigurations across workloads, vulnerabilities, network, and data exposure. Drive compliance and alignment with best practices (e.g., AWS Well-Architected).
Cloud Infrastructure Entitlement Management (CIEM) and Cloud Detection and Response (CDR) - Govern human and machine identities. Detect access risks, e.g. overprivileged entitlements, toxic combinations, and privilege escalations. Enforce least-privilege and Just-in-Time (JIT) access. Detect anomalous access activities and support investigation and forensics.
Cloud Workload Protection and Kubernetes Security Posture Management (CWP & KSPM) - Continuously scan your Virtual Machines, Containers, Serverless workloads, and Kubernetes clusters for critical risks including vulnerabilities, sensitive data, malware secrets, and compliance misconfigurations.

Details

Sold by

Tenable, Inc.

Features and programs

Vendor Insights

Info

Skip the manual risk assessment. Get verified and regularly updated security info on this product with Vendor Insights.

View security profile

Pricing

Tenable Cloud Security [Private Offer Only]

Info

View purchase options

Pricing is based on contract duration. You pay upfront or in installments according to your contract terms with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.

12-month contract (1)

Info

Dimension	Description	Cost/12 months
1 Asset	Tenable Cloud Security [Private Offer Only] 1 Asset	$250,000.00

Vendor refund policy

No refunds except as required by law.

Legal

Vendor terms and conditions

Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .

Content disclaimer

Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.

Usage information

Info

Delivery details

Software as a Service (SaaS)

SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.

Resources

Vendor resources

Support

Vendor support

Ermetic (the "Supplier") will provide email support ("Technical Support") eight (8) hours per day, five (5) days per week. Technical Support will include any research and resolution activity performed by Supplier. Technical Support requests are made by calling or emailing Supplier's Technical Support staff. The Technical Support staff shall assign to the request the Problem Severity Level (as defined herein) indicated by the requestor. support@ermetic.com support@ermetic.com

AWS infrastructure support

AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.

Get support

Similar products

Palo Alto Networks Cortex XSIAM

By Palo Alto Networks, Inc.

Cortex XSIAM is the automation-first platform for the modern SOC, harnessing the power of machine intelligence to radically improve security outcomes and transform security operations. XSIAM customers can consolidate multiple products into a single, coherent platform, cutting costs, improving analyst experience and productivity.

View product

Teradata VantageCloud Lake on AWS

By Teradata

Teradata offers the complete cloud analytics and data platform, VantageCloud, which includes the new next-generation, cloud-native architecture of VantageCloud Lake and the expanded capabilities of ClearScape Analytics. Leveraging the same industry-leading analytic capabilities as Teradata Vantage along with the fast and flexible data access provided by cloud-native deployment, the new VanageCloud Lake on AWS brings the power of Vantage to more diverse use cases throughout your organization so you can drive innovation at scale.

View product

BMC Helix

By BMC Software, Inc.

BMC offers a full suite of enterprise service management, observability/AIOps and application workflow orchestration solutions running on AWS to help you migrate to and maximize your investment in AWS. For BMC Helix custom pricing, configuration and terms please contact cloud_sales@bmc.com for private offers.

View product

CodeScan by AutoRABIT

By AutoRABIT

CodeScan by AutoRABIT is a comprehensive Static Code Analysis solution built for Salesforce. It provides real-time visibility into code quality from the moment it's written through to production, ensuring that all customizations and code within Salesforce environments consistently meet high standards of quality and compliance.

View product

Customer reviews

Write a review

Ratings and reviews

Info

0 ratings

5 star

4 star

3 star

2 star

1 star

0 AWS reviews

28 external reviews

External reviews are sourced from G2 and are not included in the star rating for this product.

Computer Software

Making DevOps & Security Teams Easier

Reviewed on Jul 21, 2024

Review provided by G2

What do you like best about the product?

As a DevOps engineer, it makes my life easier when I use Tenable Cloud Security.
It's helping me navigate and jump between resources in all the accounts, to find which resource is connected to which and to easily monitor the cloud events. In addition, the provided links to each resource are reducing the searching time significantly.

What do you dislike about the product?

The only disadvantage is that it's quite expensive.

What problems is the product solving and how is that benefiting you?

Tenable Cloud Security gives me efficient and easy navigation between the AWS resources and the IAM roles. It helps us to track what is connected to what and gives us the best visibility for the accounts state.

Leave a comment 0 comments

Pharmaceuticals

Great visibility of cloud misconfigurations and vulnerabilities

Reviewed on Jul 18, 2024

Review provided by G2

What do you like best about the product?

Tenable Cloud Security excels in providing real-time visibility and continuous monitoring of cloud environments. Its automated compliance checks and risk assessments help ensure security and regulatory adherence. The platform's intuitive interface and integration with existing cloud services make managing cloud security straightforward and efficient.

What do you dislike about the product?

Tenable Cloud Security can be challenging to set up initially, requiring in-depth configuration and expertise. Its pricing may be a concern for smaller organizations with limited budgets. Additionally, the platform occasionally faces performance issues with large-scale environments, which can hinder real-time monitoring and responsiveness.

What problems is the product solving and how is that benefiting you?

Tenable Cloud Security solves the challenge of securing complex cloud environments by providing real-time visibility, automated compliance checks, and risk assessments. This enhances cloud security posture, ensures regulatory compliance, and simplifies management, benefiting organizations with streamlined, effective cloud security operations.

Leave a comment 0 comments

Information Technology and Services

Doesn't really integrate well into Cloud

Reviewed on Oct 17, 2023

Review provided by G2

What do you like best about the product?

There are plenty of rules/findings
The findings integrate into the Tenable findings board

What do you dislike about the product?

It is hard to configure to get working across all of cloud
Does not cover all CSP's

What problems is the product solving and how is that benefiting you?

It attempted to solve the problem of cloud config vulnerabilities
We stopped using it because it was not as good as some of the other market leaders in this space
When we first turned it on it rinsed through all of our licence count instantly, so beware

Leave a comment 0 comments

Bruno C.

Intuitive and easy to use, awesome capabilities

Reviewed on Jun 27, 2023

Review provided by G2

What do you like best about the product?

Ermetic is an awesome tool that helps a lot in making the cloud environments secure. It's very intuitive, easy to use, easy to integrate with could environments, ticketing tools and also with IAM tools in order to control user's lyfecicle. It's possible to remediate issues in the clould using Ermetic only, once it has the capability to identify the security risks and also to fix them, if desirible, based in the suggestions that the tool provides to mitigagte the found issues. The interface is very intuitive and provides us vairous ways to identify risks based in standards and regulations like PCI, HIPAA, NIST and others.

What do you dislike about the product?

Few ways to extract data, like user's for example.

What problems is the product solving and how is that benefiting you?

Issues related to IAM security, like overprivileged accesses, roles, inactive users, public resources. This is helping in keep our cloud resources secure and understanding the gaps we have.

Leave a comment 0 comments

Financial Services

Excellent org to work with!

Reviewed on Jun 20, 2023

Review provided by G2

What do you like best about the product?

Ermetic is genuinely concerned with the success of not just our product usage, but that of our organization. They're engaged at the highest levels of their company, actively soliciting feedback and implementing those changes into their product. They listen intently to needs, concerns, and desires to output features and functions that provide the best value to their customers. They proactively review and monitor our account, providing guidance and best practices.

What do you dislike about the product?

There are no downsides that I have to note about doing business with Ermetic.

What problems is the product solving and how is that benefiting you?

Ermetic provides CIEM functionality for all of the major CSP's that we utilize, through a single plane of glass.

Leave a comment 0 comments

View all reviews