Tenable is placing Hexa AI at the center of a more tightly controlled approach to cybersecurity automation. The new AI engine is built into the Tenable One Exposure Management Platform and is designed to help security teams move faster without loosening oversight.
That balance matters because AI-powered threat discovery is also accelerating on the other side of the equation. Tenable is positioning Hexa AI as a way to respond to that speed with automation that can act quickly while still remaining safe enough for enterprise environments.
Controlled agentic AI for security operations
Hexa AI brings multi-step reasoning to security workflows, giving it the ability to handle more complex tasks in stages. It also supports the Model Context Protocol, which should make it easier for organizations to tailor workflows to their own needs.
With those capabilities, IT teams can build digital guardian agents that operate more independently. Tenable says those agents are meant to help disrupt cyber threats with less manual intervention.
Built on exposure data and connected to existing tools
The system runs on Tenable Exposure Data Fabric, which the company describes as a highly comprehensive and context-rich exposure data repository for cybersecurity. Hexa AI also works as an orchestration layer that connects directly to the security and IT tools already in use inside an organization.
That integration is intended to automate workflows from end to end. Its layered reasoning can also carry out complex commands across multiple digital surfaces with a single click, reducing the old routine of cross-checking data across separate applications just to identify the root cause of a problem.
Beyond detection: remediation, policy, and audit work
Hexa AI is not limited to spotting threats. It can also orchestrate remediation by creating and routing tickets to the right teams automatically, which should help security operations move faster once an issue is identified.
The platform can also generate custom security policies instantly and produce audit-ready reports. For teams under pressure from active threats, those capabilities are meant to support more tactical decision-making and less time spent assembling documentation manually.
Investigation and configuration support
For deeper investigations, network practitioners can trace hidden threat paths by using identity attributes such as service accounts or Active Directory groups. Hexa AI also offers interactive guidance for configuring complex encryption sensors in enterprise operating systems.
These features point to a broader use case than simple alert handling. Tenable is aiming for a system that can assist with both investigation and operational setup inside environments where many tasks still require careful coordination.
Why Tenable is keeping the controls tight
Eric Doerr, Tenable’s Chief Product Officer, said AI agents that run without proper limits and oversight can become unpredictable or brittle in real-world environments. That is why Hexa AI is built with a strict control structure.
Tenable says the product wraps strong AI models in a system designed to stay reliable and secure at scale. It also places Hexa AI inside a tightly controlled agentic harness, with continuous visibility and strong auditability as core parts of the design.
The result is an automation model Tenable wants organizations to trust in production, not just in isolated testing. As frontier AI systems keep reducing the time needed to find vulnerabilities, Tenable is betting that equally fast but carefully governed automation will become essential for defense.
Source: id.mashable.com