Story image

Tenable & ServiceNow partner to address blindspots in cyber risk understanding

12 Mar 2018

ServiceNow and Tenable have formed what they call a ‘strategic security alliance’ to address organisations’ blind spots in understanding cyber risk.

The two companies have integrated the Tenable Cyber Exposure Platform and ServiceNow Security Operations to address cyber risk management.

“Security teams can’t declare ‘mission accomplished’ after the vulnerability scan alone,” comments ServiceNow’s security business general manager Sean Convery.

“Together, Tenable and ServiceNow give customers an understanding of business impact and security risk, so patching and other response actions can have maximum impact and accelerate remediation.”

They believe that organisational silos separate security and IT teams. This results in the identification of security vulnerabilities,however the vulnerabilities are not being fixed in a timely manner.

The two companies developed a common visibility strategy that automatically discovers IT, cloud, and IoT assets and continually scans the systems for vulnerabilities.

The two platforms can also link vulnerabilities with an asset’s business criticality and prioritise issues based on that data to speed up remediation.

“We’re delighted to work with ServiceNow to provide our joint customers with broader visibility and deeper insight into their Cyber Exposure so they can understand and reduce cyber risk holistically across their entire attack surface, from IT to Cloud and Containers to IoT devices,” comments Tenable’s chief product officer Dave Cole, chief product officer, Tenable. 

“Bridging the gap between Security and IT is the only way to tackle this growing problem in today’s modern digital enterprise.”

Tenable has also been working on its own strategy for CISOs by launching Tenable.io Lumin, an application that analyses cyber exposure.

“In spite of decades of hard work, the attackers have the advantage. The stakes are too high for the status quo to remain,” Cole comments.

“We must come together as an industry to transform vulnerability management, putting the CISO in the driver’s seat so organisations can proactively measure and manage cyber risk in the same way as other business risks, such as production forecasting and managing potential supply chain disruptions. It’s time to flip the advantage into the hands of security.”

ServiceNow also recently pledged its commitment to India’s talent and technology with the opening of its Hyderabad R&D Centre. The centre is the company’s first R&D operation in Asia.

“Hyderabad is one of the region’s most exciting technology centres that has rapidly established itself as a global software development hub. With access to world‑class talent, superior infrastructure and a thriving technology sector, the city is a perfect match for ServiceNow’s continued growth and investment in the region,” comments ServiceNow VP & GM of APJ, Mitch Young.

“Our success in the market has been underpinned by a multiplying customer base and a stronger enterprise ecosystem in India. With continuing technological advancements and the swell of data businesses must manage, finding new ways to enhance productivity will be core to business success and economic growth. The opportunity for Indian organisations is vast and only growing, and the new centre represents an important step as we continue to expand across the region,” Mitch concludes.

Survey: IT pros nostalgic over on-prem data centre visibility
There are significant security and monitoring challenges faced by IT staff responsible for managing public and private cloud deployments.
61% of CIOs believe employees leak data maliciously
Egress conducted a survey to examine the root causes of employee-driven data breaches, their frequency, and impact.
Opinion: BYOD can be secure with the right measures
Companies that embrace BYOD are giving employees more freedom to work remotely, resulting in increased productivity, cost savings, and talent retention.
Sonatype and HackerOne partner on open source vulnerability reporting
Without a standard for responsible disclosure, even those who want to disclose vulnerabilities responsibly can get frustrated with the process.
OutSystems and Boncode team up for better code analysis
The Boncode and OutSystems alliance aims to help organisations to build fast and feel comfortable that the work they're delivering is at peak quality levels.
Security top priority for Filipinos when choosing a bank - Unisys
Filipinos have greatest appetite in Asia Pacific to use biometrics to access banking services
Nuance biometrics fight back against fraud
Nuance Communications has crunched the numbers and discovered that it has prevented more than US$1 billion worth of fraud from being passed on to users of its Nuance Security Suite.
Attacks targeting Cisco Webex extension explode in popularity - WatchGuard
WatchGuard's Internet Security Report for Q4 2018 also finds growing use of a new sextortion phishing malware customised to individual victims.