Tenable launches Hexa AI to automate security workflows
Tenable has launched Tenable Hexa AI, an AI engine for its Tenable One Exposure Management Platform, designed to automate security workflows.
The product is intended to help security teams coordinate work across vulnerabilities, identities, assets, configurations and AI systems as cyber attacks and defensive tools grow more complex.
Tenable presented the launch as a response to a growing coordination problem in security operations. Security teams now work across fragmented tools while managing a widening attack surface driven by AI-based attacks, rapid vulnerability discovery and the spread of automated systems.
Hexa AI operates within the Tenable One platform and draws on what Tenable calls its Exposure Data Fabric. The data layer gives the system context on how different parts of an organisation's technology estate interact, helping it identify priorities, assess the environment and trigger steps to reduce exposures.
Workflow focus
The product includes both pre-built and custom agents that can automate repeatable tasks such as asset management, visualisation reporting and operational health checks, while also supporting organisation-specific workflows with human oversight.
The platform is built to work across IT, cloud, identity, operational technology and AI environments. That reflects a broader shift in cyber security operations, where teams are expected to manage risk across increasingly mixed estates rather than within traditional IT boundaries alone.
Eric Doerr, Chief Product Officer at Tenable, said the gap between vulnerability discovery and exploitation is narrowing.
"There has never been a greater need to have an agentic system preemptively fixing issues before they are exploited. As AI-based attacks accelerate, the window from discovery to exploitation has effectively vanished," Doerr said.
"Tenable Hexa AI marries an agentic orchestration engine to the powerful contextual exposure data fabric of Tenable One, automating complex tasks and orchestrating fixes across the enterprise, neutralizing exposures before they're exploited," he added.
Tenable is positioning the product within the exposure management market, which focuses on identifying and prioritising security weaknesses across a business rather than treating issues in isolation. In practice, that means linking data on assets, identities, misconfigurations and vulnerabilities so teams can decide which problems present the greatest risk.
One aim is to move security teams away from reactive incident response and toward a more continuous process of risk reduction. The launch also reflects a wider industry push to use AI not only for detection, but also for operational decision-making and task execution.
Customer view
Tarek Houni, Head of Exposure Management at a French-based international manufacturing company, described time savings from automation in one internal process.
"Tenable Hexa AI has fundamentally shifted how we deploy our security resources, powering and scaling efficiency across workflows," Houni said.
"Reclaiming two days a month on a single process like asset tagging is a massive win for our team. That is two days our team no longer spends on tedious upkeep, and can instead redirect entirely toward investigating exposures, closing critical gaps, and actively reducing our organisational risk," he said.
The example highlights one of the practical selling points for AI tools in cyber security: reducing the manual work involved in maintaining inventories, updating labels, checking system health and preparing reports. Those tasks are often necessary for governance and remediation, but they can absorb time that teams would otherwise spend investigating high-risk issues.
Tenable serves more than 40,000 customers globally, according to the company. The release shows how cyber security suppliers are trying to embed AI agents into day-to-day security operations as customers look for ways to manage a growing volume of alerts, assets and exposures.