Tenable Network Security has introduced expanded support for the industry’s top three security frameworks, Center for Internet Security Critical Security Controls (CSC), ISO/IEC 27001/27002 (ISO 27K) and NIST Framework for Improving Critical Infrastructure Cybersecurity (CSF), enabling organizations to automate technical controls and improve security effectiveness. According to the Trends in Security Framework Adoption Survey, a research study conducted by Dimensional Research on behalf of Tenable, 44 percent of organizations use more than one cybersecurity framework. Thirty-five percent of those not using any framework plan to adopt one or more of them in the next year. Tenable offers a simple and flexible way to implement and maintain the technical controls of the world’s three leading security frameworks, helping customers move away from periodic compliance to a security model based on continuous conformance. “Organizations are constantly looking for ways to streamline and maintain their security operations,” said Gary Hayslip, deputy director and chief information security officer, City of San Diego, Calif. “The ability to automate and simplify conformance to the leading security frameworks helps CISOs determine if their security controls are inadequate, and then develop an ongoing improvement plan to track progress and communicate overall security status to the c-suite.”
With Tenable, organizations, including those adopting multiple frameworks, have access to out?of?box reports, dashboards and Assurance Report Cards (ARCs) to efficiently automate and demonstrate conformance to industry best practices. Customers also benefit from broad coverage across the entire IT environment, including physical, virtual and cloud systems, giving them the continuous visibility and critical context needed for a holistic view of their security posture.
“Cybersecurity has become a top boardroom priority and CISOs are under tremendous pressure to provide the assurance to the board that proper security controls are in place and operating effectively,” said Cris Thomas, strategist, Tenable Network Security. “Tenable alleviates this pressure by giving organizations the right measurement tools to communicate the security controls of the leading frameworks, helping them mitigate risk and better protect the network.”
