Exposure management company Tenable announced a significant expansion of its Tenable One platform with the launch of Tenable AI Exposure, a comprehensive solution to see, manage, and control the risks introduced by generative AI. Unveiled at Black Hat USA 2025, these new capabilities provide an end-to-end approach that moves beyond discovery to include risk management and policy enforcement for enterprise AI platforms like ChatGPT Enterprise and Microsoft Copilot.
As businesses race to adopt generative AI to boost productivity, they are inadvertently creating a new, complex, and often invisible frontier of exposure. Security teams lack visibility into how employees use these powerful tools, which sensitive data might be exposed, and how they could be manipulated by attackers. Tenable now offers a single, unified solution that addresses the entire lifecycle of AI security challenges.
“Simply discovering shadow AI isn’t enough. A true exposure management strategy requires an end-to-end solution that lets organizations discover their entire AI footprint, manage the associated risks, and govern its use according to their policies. That’s exactly what we are delivering today,” said Steve Vintz, co-CEO and CFO at Tenable. “With Tenable AI Exposure, we’re giving organizations the visibility and control they need to safely embrace the promise of generative AI without introducing unacceptable risk. This is a critical step in the evolution of exposure management.”
Tenable’s unified AI Exposure capabilities, delivered through an agentless deployment that provides coverage within minutes, offer comprehensive visibility and control over enterprise AI use.
The platform enables AI discovery by unifying insights from Tenable AI Aware, AI Security Posture Management (AI-SPM) scanning, and continuous monitoring to detect all sanctioned and unsanctioned AI usage across the environment. This helps organizations gain a clear understanding of user interactions, data flows, and activities that could introduce risk.
It supports AI exposure management by using AI-SPM to identify, prioritize, and address threats such as sensitive data leakage, including personally identifiable information, payment card data, and protected health information, alongside misconfigurations and unsafe external integrations.
Tenable also enforces governance and control over AI usage by applying security guardrails and organizational policies. This reduces the risk of unsafe behaviors and helps mitigate emerging threats like prompt injections, jailbreaks, and manipulation of AI-generated output.
Tenable AI Exposure integrates into the Tenable One platform, providing a unified view of risk across the entire attack surface. With the combination of Tenable AI Aware, AI-SPM, and the new governance features, customers will gain comprehensive capabilities to discover, manage, and secure enterprise AI usage.
Tenable AI Exposure is now available through a private customer preview program. General availability is expected by the end of 2025.
