Network security company Tenable Inc. today added security posture management capabilities for data and artificial intelligence solutions to the company’s Tenable Cloud Security platform that will reduce customer risk of exposure to misconfigurations and vulnerabilities.

The company’s Cloud Security service helps companies discover risk within hybrid and multicloud environments, including vulnerabilities such as excess privileges, risky entitlements and other misconfigurations that could lead to data leaks or leave sensitive AI data vulnerable.

According to Tenable Research, 38% of organizations are battling what the company calls a “toxic triad,” cloud workloads that are publicly exposed, critically venerable and too accessible internally through high privileges. This triad of problems creates an environment where sensitive data and AI resources are more likely to be uncovered by bad actors trying to get company information.

To help resolve this issue, the company rolled out data security posture management, or DSPM, and AI security posture management, or AI-SPM. As AI large language models have become more popular, enterprise cloud environments have increasingly become gold mines of data of training data for AI. How it is stored and accessed has become increasingly important to protect AI resources from prying eyes, especially sensitive company documents and information.

“Data is constantly on the move and new uses for data in today’s AI-driven world have created new risks,” said Liat Hayun, vice president of product management for Tenable Cloud Security. “DSPM and AI-SPM capabilities from Tenable Cloud Security bring context into complex risk relationships so teams can prioritize threats based on the data involved.”

According to the company by integrating DSPM and AI-SPM into Cloud Security, enterprise customers will be able to discover, classify and analyze their sensitive data using agentless scanning. It includes an intuitive user interface that answers questions about what type of sensitive data is housed in the cloud and where it’s located and who has access to it.

“The importance of cloud data has made communicating data exposure risk one of the biggest security challenges for CISOs,” said Philip Bues, senior research manager of cloud security at IDC. “Tenable is at the forefront of this emerging cloud-native data protection platform conversation, enabling customers to contextualize and prioritize data risk and communicate it, which is pertinent to almost every domain in CNAPP.”

Tenable’s data and AI security posture management solution is backed by vulnerability intelligence from the company’s research division and provides context-driven analytics and remediation guidelines for the most threatening flaws. This way, information technology and security teams can rapidly identify and reduce access exposures for multi-cloud environments and AI resources through data use before they become issues.

Tenable said the new DSPM and AI-SPM tools are available for all customers of Cloud Security and Tenable One, the company’s exposure management platform, starting today.

Image: JanBaby/Pixabay