Operational Playbooks

Effective cyber exposure management requires more than just identifying vulnerabilities; it requires a consistent, repeatable process for assessing and reducing risk across your attack surface. "Operational Playbooks" are strategic guides designed to help you achieve specific security outcomes. Each playbook spans multiple parts of Tenable Exposure Management and the Tenable One platform, guiding you through the cycle of discovery, assessment, and remediation.

Objectives

With these playbooks, you can accomplish the following key objectives:

Standardization: Establish common processes and timelines for Security and IT teams.
Efficiency: Reduce noise by focusing only on prioritizing and remediating the risks that matter most to your business.
Continuous Improvement: Shift from being reactive to taking a proactive, cyclical approach to risk management.

The Exposure Management Lifecycle

By using these playbooks cyclically, you can move away from viewing exposure management as a straight line with a finish line and towards maintaining a continuous loop of discovery and improvement.

For example:

Phase 1: Discover & Assess — Identify assets and scan for vulnerabilities.
Phase 2: Prioritization — Use Vulnerability Priority Rating (VPR) and Asset Criticality Rating (ACR) to determine what needs to be fixed first.
Phase 3: Remediation — Hand-off to IT to apply patches or mitigations.
Phase 4: Measurement — Validate the fixes and track your Cyber Exposure Score (CES) improvement.

Prerequisites

Before executing these playbooks, ensure the following requirements are met:

Access: You can log in to both Tenable Exposure Management and Tenable Vulnerability Management.
Roles: You have the appropriate roles (e.g., Standard, Scan Operator, or Administrator) to perform the tasks.
Sensors: Your sensors, including scanners and agents are deployed and actively communicating with the platform.

Get Started

To get started, see the following topics: