Tenable Expands AI Exposure Management with New Launch at Black Hat USA 2025
In an era where businesses are rapidly integrating generative AI into their operations, Tenable has risen to the challenge of addressing the associated security risks. At the recent Black Hat USA 2025 conference, Tenable unveiled a game-changing expansion of its Tenable One platform — the introduction of Tenable AI Exposure. This innovative solution aims to comprehensively manage the exposures driven by generative AI technologies, ensuring organizations can harness their potential without compromising security.
The Generative AI Landscape
As enterprises strive to leverage the efficiency and productivity offered by generative AI tools such as ChatGPT Enterprise and Microsoft Copilot, they are simultaneously navigating a complex web of risk management. Traditional security protocols struggle to provide visibility into how these tools are utilized, what sensitive data may be at stake, and how such platforms can be exploited by malicious actors. This lack of insight has the potential to expose organizations to unprecedented risks.
The Need for Comprehensive Exposure Management
Steve Vintz, co-CEO and CFO at Tenable, emphasized the importance of a holistic exposure management strategy, stating, “Simply discovering shadow AI isn’t enough.” He highlighted that organizations need a robust solution to uncover their entire AI footprint, manage associated risks, and enforce governance that aligns with their existing policies. Tenable AI Exposure, therefore, represents a vital advancement in the evolution of exposure management by delivering comprehensive visibility and control for organizations keen to safely embrace generative AI.
Features of Tenable AI Exposure
Tenable AI Exposure is designed with a focus on simplicity and efficiency. Its agentless deployment allows for rapid coverage, enabling organizations to achieve comprehensive visibility within minutes. Here are some of the platform’s key features:
-
AI Discovery: The solution unifies insights from Tenable AI Aware and AI Security Posture Management (AI-SPM). This integration facilitates the detection of both sanctioned and unsanctioned AI usage throughout an organization’s environment, creating a clear map of user interactions and risk-laden activities.
-
AI Exposure Management: By leveraging AI-SPM, Tenable AI Exposure helps organizations identify and prioritize threats. This includes sensitive data leakage—encompassing personally identifiable information, payment card data, and protected health information—as well as misconfigurations and insecure external integrations.
- Governance and Control: With the ability to enforce security guardrails and organizational policies, Tenable AI Exposure mitigates potential risks associated with unsafe behaviors. This capability is crucial in addressing emerging threats, such as prompt injections and AI output manipulations.
Integration into the Tenable One Ecosystem
Tenable AI Exposure integrates seamlessly into the Tenable One platform, providing a unified view of risk across the entire attack surface. By combining the advanced features of Tenable AI Aware, AI-SPM, and governance capabilities, organizations gain a robust framework for discovering, managing, and securing their AI applications.
Availability and Future Prospects
Currently, Tenable AI Exposure is available through a private customer preview program. The company anticipates general availability by the end of 2025, signaling a significant step forward in the intersection of generative AI and cybersecurity.
Overall, Tenable’s expansion into AI exposure management is a critical development for organizations navigating the complexities of AI integration. With the right tools and strategies in place, businesses can confidently utilize generative AI while safeguarding their sensitive data and operations.
Tenable’s innovative approach is poised to reshape how organizations conceptualize and manage AI-related risks, ensuring that the promise of advanced generative technologies can be realized without introducing unacceptable vulnerabilities.
