Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Security Frameworks


Take control. Propel improvement. Secure the business.

Network security is a key challenge for organizations of all sizes. Increasingly, IT teams are using security frameworks to guide their efforts to protect their critical systems and data.

Learn About Security Frameworks   ▶

A variety of security frameworks are available to help users meet due care standards, continuously identify security gaps, comply with multiple compliance requirements and communicate business risk to executives.

To create a tailored solution, many organizations are selecting controls from different frameworks to suit their specific risk profile, requirements and resources. For example, they may use the NIST Cybersecurity Framework or ISO/IEC 27001/2 for administrative controls and the CIS Critical Security Controls for technical controls.

Get the Solution Story

Learn how Tenable SecurityCenter CV automates and continuously monitors technical controls.

Read Now

NIST solution

NIST Cybersecurity Framework


NIST SP 800-171


NIST SP 800-53


CIS solution

CIS Critical Security Controls


ISO solution

ISO / IEC 27001 / 27002


A Next-Generation Approach to Security

CSF mockup

SecurityCenter Continuous View® (SecurityCenter CV™) supports the flexibility of frameworks, with report, dashboard and Assurance Report Card® (ARC) templates that can easily be tailored to meet business needs.

SecurityCenter CV collects data from multiple sensors to provide advanced analysis of vulnerability, threat, network traffic and event information and delivers a continuous view of IT security across your environment.

Get a Demo

Broadest Coverage

Supports most technical controls prescribed in the NIST CSF, ISO/IEC 27002 and CIS CSC frameworks, and builds them into an automated control foundation for managing risk and securing the business.


Use active scanning combined with continuous listening to obtain a complete view of control conformance across your environment.

Analyze Third-Party Security Products

Audit configurations of many third-party products and analyze events generated by them to identify control weaknesses.

Dynamic Asset Grouping

Focus dashboards to display a complete security and compliance view for services in your industrial control system and IT networks, including physical and virtual infrastructure, cloud and mobile environments.

Measure, Visualize and Communicate Adherence to Controls

Easily measure, visualize and understand your technical control conformance status by using dashboard templates, and identify gaps between where you are and where you want to be.

Map Technical Control Status to Business Objectives

Use SecurityCenter CV Assurance Report Cards to compare your current security status to the desired status and help you build a roadmap for demonstrating a defensible security program.

Learn More

Cybersecurity Frameworks and Foundational Security Controls – a Survey of IT Professionals

Get the Report NowSee How You Measure Up

“Today’s security teams are looking for all the help they can get to do an increasingly difficult job. Frameworks have become a common place to look for guidance, with most companies, 80%, saying they use a cybersecurity framework.” Dimensional Research, November 2016
Try for Free Buy Now

Try Tenable.io Vulnerability Management


Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Sign up now and run your first scan within 60 seconds.

Buy Tenable.io Vulnerability Management

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Purchase your annual subscription today.

65 assets

Try Nessus Professional Free


Nessus® is the most comprehensive vulnerability scanner on the market today. Nessus Professional will help automate the vulnerability scanning process, save time in your compliance cycles and allow you to engage your IT team.