Tenable Cloud Security is a cloud-native application protection platform (CNAPP) that provides security for multi-cloud and hybrid cloud environments. The platform offers unified visibility across cloud assets including infrastructure, workloads, AI resources, identities, containers, Kubernetes, and infrastructure as code (IaC). The solution addresses four primary cloud security risks: misconfigurations, vulnerabilities, unsecured identities, and vulnerable sensitive data. It identifies toxic combinations of these risks to prioritize remediation efforts. The platform includes multiple security capabilities: - Cloud Security Posture Management (CSPM) for compliance and governance - Cloud Infrastructure Entitlement Management (CIEM) for least-privilege access and zero trust - Cloud Workload Protection (CWP) for vulnerability management across running workloads - Data Security Posture Management (DSPM) for data discovery, classification, and risk prioritization - Infrastructure as Code (IaC) security with DevOps workflow support - AI Security Posture Management (AI-SPM) for AI workload and service visibility - Cloud Detection and Response (CDR) for service and host activity analysis - Kubernetes Security Posture Management (KSPM) for container security The platform maps asset, identity, and risk relationships to uncover attack paths across hybrid cloud environments. It uses Tenable's Vulnerability Priority Rating (VPR) scores to focus on critical risks. The solution supports just-in-time (JIT) access for privilege enforcement and integrates with the Tenable One Exposure Management Platform for comprehensive attack surface coverage.