CIO Influence
CIO Influence News Cloud

Tenable Integrates Terrascan Into Nessus to Enable Secure Cloud Application Delivery

Tenable Integrates Terrascan Into Nessus to Enable Secure Cloud Application Delivery
Added firepower helps security and DevOps teams ensure that only secure infrastructure and software are launched in the cloud

Tenable, the Cyber Exposure company, announced Nessus now includes Terrascan, the leading open-source cloud security analyzer that helps developers secure Infrastructure as Code (IaC). The integration into Nessus continues to further Tenable’s broader cloud strategy, helping enterprises secure their full cloud stacks both during build time and at runtime. The combined solution helps the Nessus user community address security operations and cloud application infrastructure.

Latest ITechnology News: Calix Launches New Software and Systems Capabilities for the Industry’s Only End-to-End Solutions

Terrascan is an open-source IaC security analyzer that enables cloud developers to scan infrastructure code and find security issues as part of the software delivery process. With more than 500 out-of-the-box policies, it helps identify issues such as missing or misconfigured encryption on resources and communication, and inadvertent exposure of cloud services.

Terrascan enables cloud engineers to test infrastructure code against security policies early in the development process, when it’s least costly and disruptive to fix. It provides more confidence when “shifting left” and makes secure design an integral part of the DevOps process. As organizations move full steam ahead with their cloud, ‘as code’ and containerization projects, they increase their attack surface. Nessus with Terrascan lets them innovate and simultaneously address security concerns.

Latest ITechnology News: Sparkle and Atos sign partnership to answer growing demand for Cloud services and solutions

“Infrastructure as Code is about making development and cloud delivery programmatic and efficient. Adding Terrascan to Nessus will enable the Nessus community to more easily validate the configuration state of modern infrastructure before it gets deployed, giving cloud developers peace of mind, knowing that the process can be managed securely,” said Glen Pendley, chief technology officer, Tenable. “Terrascan will remain open source. We are not changing the model, and we value and are committed to the Terrascan community, with plans for additional development and investments to increase usability and accessibility.”

The benefits that Terrascan adds to Nessus include:

  • Increased delivery speed – eliminates lengthy pre-production security gates by automating cloud-native security assessments early in the software development lifecycle.
  • Reduced risk – helps Cloud DevOps teams avoid releasing insecure software into the cloud and reduces potential windows of risk.
  • Rapid time to value – takes advantage of over 500 predefined, standards-based policies to test a broad range of IaC for alignment with security benchmarks.

Latest ITechnology News: MOBILTEX Releases Next-Generation CorView.Cloud Platform Powered by AWS

[To share your insights with us, please write to sghosh@martechseries.com]

Related posts

SK Telecom and Thales Explore 5G Post-quantum Cryptography

Business Wire

Domo Data Experience Platform Now Available in the Microsoft Azure Marketplace

Business Wire

ITProTV Releases Updated Training Course for CompTIA A+ Certification

Leave a Comment