Tenable One
Onboarding Portal

Tenable Vulnerability Management

Tenable Vulnerability Management sets the foundation for Tenable One. You get:

• Continuous discovery and assessment with always-on sensors
• Built in threat intelligence
• Automated vulnerability prioritization
• Fully documented API and pre-build integrations

For full onboarding steps visit the Tenable Vulnerability Management onboarding page.

• Review your assets in Asset Inventory once a Tenable Vulnerability Management scan has run. Here you will see a comprehensive inventory of your assets, including assets you may have otherwise overlooked.
• In Lumin Exposure View review your Exposure Cards. You can then create a custom exposure card based on business context. Each card allows you to customize your CES Target, Trending view, SLA timeframe and SLA efficiency.
• If an identity scan has successfully run, review Attack Path Analysis. This allows you to review findings and select a critical asset and query Blast Radius or Asset Exposure Graph. Note, the Attack Path Analysis feature is only available with Tenable One Enterprise Edition & will be covered in more depth later in this document.

Tenable Security Center

Tenable Security Center provides deployment flexibility for vulnerability management data within Tenable One (hybrid, on-prem or in the cloud). You get:

• Continuous discovery and assessment with always-on sensors
• Built in threat intelligence
• Automated vulnerability prioritization
• Fully documented API and pre-build integrations

For full onboarding steps visit the Tenable Security Center onboarding page.

Tenable Web App Scanning

Tenable Web App Scanning incorporates critical web application data and vulnerabilities into your vulnerability management program so you can:

• Identify and address gaps in coverage that may go unnoticed in a siloed, multi-product environment
• Find vulnerabilities in all web applications, whether they get a full penetration test or not
• Scan a running application in any stage, whether in production or an earlier environment
• Take advantage of a fully documented API and pre-built integrations

For full onboarding steps visit the Tenable Web App Scanning onboarding page.

Tenable OT Security

Tenable OT Security with Tenable One offers a unified platform that enhances visibility and accelerates threat response across IT, IoT, and OT environments. This powerful combination supports real-time monitoring, leverages advanced threat intelligence for quicker responses and helps you prioritize and manage vulnerabilities effectively. Extensive API integrations ensure seamless operations, optimizing your security posture and operational resilience.

For full onboarding steps, visit the Tenable OT Security onboarding page.

Tenable suggests you complete the following milestones to ensure your success before proceeding with your Tenable One deployment process:

• Unified Cyber Exposure Strategy:
  • Integrate Tenable OT Security with Tenable One to view Cyber Exposure risks comprehensively. This unified approach enhances cross-platform vulnerability identification and security management across IT, OT, and IoT environments.
• Real-Time Data Synchronization:
  • Synchronize OT data in real-time into Tenable One to maintain an up-to-date security posture. Continuous data flow provides immediate insights into OT threats and vulnerabilities, enabling prompt risk management
• Targeted Remediation Strategies:
  • Utilize Tenable One's exposure analytics to prioritize remediation based on critical asset risk levels. This strategic focus ensures effective resource allocation to address the most significant threats to OT/IT networks.
• Custom Exposure Dashboards:
  • Create customized exposure dashboards in Tenable One that display tailored security metrics for OT, IT, and IoT. These dashboards offer strategic insights that help optimize security operations and compliance.
• Enhanced Asset Visibility and Control:
  • Gain detailed insights into the security posture of assets through Tenable One's Asset Inventory. Initiate strategic asset protection planning across OT infrastructures, enhancing visibility and control over complex OT environments.
• Proactive Security Planning with Attack Path Analysis (APA):
  • Tenable One’s Attack Path Analysis for OT enterprise environments preemptively identifies and mitigates vulnerabilities. This proactive approach allows for the simulation of attack scenarios relevant to OT, pinpointing potential exploits and enabling targeted defense strategies to protect critical OT assets and maintain operational continuity.

Tenable Cloud Security

After completing Tenable Attack Surface Management onboarding, we suggest setting up Tenable Cloud Security.

Get started by visiting the Tenable Cloud Security onboarding page and following the onboarding steps and best practices.

Tenable Cloud Security enables you to:

• Quickly connect cloud accounts and discover every cloud resource from Kubernetes clusters to virtual machines across multi-cloud environments
• Maintain an accurate, up to date inventory of your cloud assets
• Use agentless scanning to assess cloud security posture across infrastructure, workloads, data, identities and applications
• Enforce and report on regulatory compliance and best practice frameworks
• Govern privileged identities and effectively minimize the risk they impose on your organization by revealing unused identities, and identities with excessive or risky privileges
• Prioritize and remediate misconfigurations, risky entitlements and vulnerabilities by taking proactive mitigation steps facilitated through integration with ticketing, CI/CD pipelines, and infrastructure as code (IaC) workflows

Tenable Identity Exposure

Once you’ve completed Tenable Vulnerability Management onboarding, we recommend setting up Tenable Identity Exposure.

Get started by visiting the Tenable Identity Exposure onboarding page and following the onboarding steps and best practices.

Tenable Identity Exposure enables you to:

• Collapse enterprise siloes and unify all identities across Active Directory, hybrid and Entra ID to reveal your identity reality.
• Catch every change in Active Directory and gain control of identities dispersed between directory services, domains, and forests in one place.
• Evaluate all your identities and use identity risk scoring to discover where your riskiest identities reside.
• Continuously strengthen your security posture by assessing Active Directory and Entra ID against with hundreds of indicators of exposure
• Surface the longstanding configuration and permission issues that make identities a central part of most attacks.

Asset Inventory

Once you’ve completed onboarding point products, we recommend setting up Asset Inventory.

Asset Inventory is a critical aspect of Tenable One. In Asset Inventory you’re able to:

• View and manage all your assets in one location, regardless of their source.
• Get insight into assets you might otherwise have been unaware of, and identify your most critical assets.
• Quickly see which assets are new or updated in the last week.

• Use the Tag Overview page to quickly identify the total number of tags within Tenable One.
• Make sure you have properly tagged your assets. This will be particularly helpful in identifying assets that are subject to regulatory requirements such as PCI, GDPR, HIPAA etc.
• Review the assets that you were not aware of. They may be more likely to require remediation since they probably did not show up on previous scans.
• Make note of new assets within the last 7 days, and assets that have been recently updated. Use this information to ensure new assets are properly protected and have received necessary updates.
• Make note of the Asset Exposure Scores on your most critical assets and take appropriate action to remediate.

Lumin Exposure View

Once you’re up to speed on Asset Inventory it’s time to take a look at Lumin Exposure View.

Lumin Exposure View helps you understand your overall security posture as defined by your business context, asset criticality, and the effectiveness of your remediation efforts. Lumin Exposure View allows you to:

• Quickly quantify your overall enterprise risk exposure and identify which areas need further investigation.
• Measure and prioritize risk exposure progress or regression.
• Easily communicate important risk information to teams.

• Understand your Cyber Exposure Score to assess your overall risk. View changes over time and identify which categories to prioritize.
• Create custom exposure cards to track and report exposure metrics based on specific business contexts. Setting up extensive tags in Asset Inventory based on important criteria (ex. geographies, business units, asset types) will speed up the process.
• Configure Exposure Card settings to set your sparkline time span, benchmark industry, card targets, and more.
• Understand how effective your program is via the Remediation Maturity metric.
• Customize SLAs for each tag in your Exposure Cards as SLAs can vary depending on the environment, regulations, etc.

Tenable Attack Surface Management

*Tenable Attack Surface Management is only available within Tenable One Enterprise.

After your analytics check, we recommend onboarding Tenable Attack Surface Management.

Get started by visiting the Tenable Attack Surface Management onboarding page and following the onboarding steps and best practices.

Tenable.asm continuously maps the entire internet and discovers connections to your internet-facing assets (from web servers and name servers to IoT devices and network printers) so that you can:

• Understand your attack surface with visibility into all of your internet connected assets, services and applications.
• Gain insight into your entire attack surface in minutes, with minimal configuration so you can assess your security posture.
• Continuously monitor changes in your attack surface. Get notifications when changes take place.

• Configure Tenable Attack Surface Management with as many of your primary domains as possible. Let this “run” for a week or so, the product will ingest and scrape the internet to pull in relevant external data.
• Go through your suggested domains and add them to your inventory if they are relevant for your organization. This ensures all relevant, external data is within the platform.

Tenable Attack Path Analysis

*Tenable Attack Path Analysis is only available within Tenable One Enterprise.

Get started by visiting the Tenable Attack Path Analysis onboarding page and following the onboarding steps and best practices.

• Anticipate and prioritize your most critical attack paths within your environment as attackers see them.
• Automatically correlate your exposures, identity, access and permissions, business critical assets and tie those relationships together for an up to date view of your environment.
• See what techniques you are most susceptible to using the MITRE ATT&CK framework.
• Explore the relationships within your environment using visualizations and relationship mappings to apply choke points.

• Review your Findings to determine the most critical attack paths and determine your next course of action.
• Explore and get specific contextual data when you explore the different nodes within an attack path visualization.
• Under ATT&CK, see where you are most at risk against the MITRE ATT&CK framework.