Integrate Device Security with Tenable Vulnerability Management
Integrate Device Security through Cortex XSOAR with Tenable Vulnerability Management.
Where Can I Use This?
What Do I Need?
Device Security (Managed by Strata Cloud Manager)
(Legacy) IoT Security (Standalone portal)
One of the following subscriptions:
Device Security subscription for an advanced
Device Security product (Enterprise Plus,
Industrial OT, or Medical)
Device Security X subscription
One of the following Cortex XSOAR setups:
A free, cohosted, limited-featured
Cortex XSOAR instance
A full-featured Cortex XSOAR server
In addition to continuously and passively
monitoring network traffic to discover devices and assess risk,
Device Security supports the integration of third-party vulnerability
scanners such as Tenable Vulnerability Management, formerly known as Tenable.io.
You might want to perform an on-demand
vulnerability scan to get deeper insights on device vulnerabilities
or if Device Security detects anomalous behavior warranting investigation
of a particular device. Device Security incorporates the scan results
such as CVEs into its ongoing
risk score assessments.
It can also send detected vulnerabilities to a CMMS as work orders
for tracking and resolving.
When you initiate a vulnerability scan from the Device Security portal, it sends a command
through Cortex XSOAR to Tenable Vulnerability Management in the cloud. Tenable then relays the
scan command to a Nessus scanner, and after the scan is complete, Tenable returns
the results in a PDF report through XSOAR to Device Security. The flow is
illustrated step-by-step below.
Integrating with Tenable requires either a full-featured Cortex XSOAR server
or the purchase and activation of an Device Security third-party integration add-on license, which comes with a free cohosted Cortex XSOAR instance. The basic
plan includes a license for three integration add-ons, one of which can be used for
Tenable Vulnerability Management. The advanced plan includes a license for all supported third-party
integrations.