Meet Tenable Hexa AI: the agentic engine of the Tenable One Exposure Management Platform. Learn how Tenable Hexa AI automates complex security workflows and transforms exposure intelligence into coordinated action to help your security team meaningfully reduce cyber risk.

In the time it takes you to read this blog, an AI-assisted attacker can scan your environment searching for entry points, gain initial access by exploiting a vulnerability or misconfiguration, perform recon, move laterally, elevate their privileges, and breach your organization’s sensitive data — all before your reactive threat detection and response tools can piece together what’s happening and trigger an alert. 

This isn’t a theoretical risk. 

In November 2025, Anthropic revealed that a threat actor had jailbroken Claude Code and used it to automate as much as 90% of a targeted attack, executing “thousands of requests, often multiple per second” and achieving an attack speed the company says would have been impossible for human hackers — or defenders — to match. 

For the modern defender, the math no longer adds up: manual triage, spreadsheet-based remediation, and siloed tools cannot win a race against machine-speed exploitation as security teams struggle to coordinate and automate workflows involving humans, automation — and increasingly — AI agents. 

The challenge of keeping pace with the speed of attacks, vulnerability discovery, exploitation, and attack surface expansion demands a new security operating model and a new approach to reducing cyber risk. Exposure management delivers this new approach, and Tenable Hexa AI, introduced today with a fleet of mission-ready agents, ushers in a new operating model.

What is Tenable Hexa AI? What does it do? 

Tenable Hexa AI is the agentic engine of the Tenable One Exposure Management Platform. 

Built to transform your security operating model for the AI era, Tenable Hexa AI:

• coordinates AI agents, human approvals, and workflows into a single agentic orchestration engine;
• automates complex tasks and security workflows, such as building risk dashboards, tagging assets, configuring vulnerability assessments, isolating a risky asset and more, in seconds;
• transforms exposure intelligence into coordinated action to reduce cyber risk. 

While Tenable Hexa AI handles the execution of complex, multi-step workflows at machine scale, it is designed to give you complete control and transparency. With Tenable Hexa AI, you and your team maintain control over when to proceed with complete automation and when you need a human in the loop. And everything Tenable Hexa AI does is logged, so you can always audit any action it takes with or without human supervision. 

Machine speed. Human judgement. One engine. That’s Tenable Hexa AI.

What customers say about Tenable Hexa AI

Tarek Houni, Head of Exposure Management at an international manufacturing company based in France, says “Tenable Hexa AI has fundamentally shifted how we deploy our security resources, powering and scaling efficiency across workflows.” 

Capabilities of Tenable Hexa AI 

The capabilities of Tenable Hexa AI fall into three main categories: assessment configuration, risk intelligence, and advanced workflow orchestration. With Tenable Hexa AI, you can use Tenable-built AI agents, build your own custom agents, and orchestrate both to meet your needs. And with Model Context Protocol (MCP) built in, Hexa AI acts as a universal adapter, allowing you to use our fleet of agents and build custom logic that connects your specific business tools to any LLM.

1. Assessment configuration

The foundation of any security program is a clear understanding of the environment. Tenable Hexa AI removes the administrative friction required to organize your attack surface and deploy assessments.

Tenable Hexa AI categorizes assets at scale by suggesting identification schemas based on your specific environmental context and owner data. For organizations with established frameworks, you can integrate your existing data by uploading a CSV and providing a simple instruction: “Apply this schema to all matching assets in our environment.” The transition from manual categorization to automated organization happens in seconds. By streamlining the configuration of these assessments, Tenable Hexa AI ensures you can achieve visibility across your entire attack surface, reducing the blind spots that lead to security surprises.
 

2. Risk intelligence

Security data is most effective when it is tailored to your specific business needs. These capabilities transform raw metrics into prioritized intelligence that reflects your unique operational reality.

Rather than spending hours manually configuring reports, Tenable Hexa AI can generate immediate visualizations of your posture by simply asking Tenable Hexa AI to “Build a dashboard showing all current risks in my environment.” Because global vulnerability scales don't always reflect local business impact, the system allows you to define rules that adjust severity or accept risks based on your specific context. This ensures your team is focused on remediation where it matters most. This intelligence extends into cloud environments, where plain-language queries provide instant insights into cloud assets and over-privileged users, moving you from a question to an answer in a single step.
 

3. Advanced workflow orchestration

To bridge the gap between identifying a risk and resolving it, Tenable Hexa AI handles the execution of complex, multi-step tasks across your ecosystem.

Tenable Hexa AI carries out workflows based on your intent, whether you are reconciling data from disparate sources or automating a sequence of administrative tasks like adjusting risk levels or configuring new scans. While the platform manages the heavy lifting of these sequences, you dictate the exact level of human oversight required. Tenable Hexa AI combines machine speed with human control, to the extent desired by customers. With Tenable Hexa AI, you and your team maintain control over when to proceed with complete automation and when you need a human in the loop. 

For organizations seeking flexibility, we have built in support for Model Context Protocol (MCP), allowing Tenable Hexa AI to act as a universal adapter. By leveraging our fleet of agents, you can build custom logic that connects your specific business and security tools to any LLM, using Tenable One to orchestrate actions to reduce risk and keep your organization safe.

What distinguishes Tenable Hexa AI from other agentic AI security tools? 

The agentic action capabilities that set apart Tenable Hexa AI from conventional security chatbots are built on Tenable’s Exposure Data Fabric, the industry’s most comprehensive repository of contextualized exposure data, gleaned from our native sensors deployed across over 40,000 customer environments. 

Tenable sensors collect data across IT, OT, and cloud environments about assets, identities, vulnerabilities, misconfigurations, and AI systems, including the LLMs our customers are using.

The breadth and depth of data that makes up Tenable’s Exposure Data Fabric is the product of years of ingestion, normalization, and contextual enrichment across IT, cloud, OT, identity, and AI environments, and it cannot easily be replicated. The Exposure Data Fabric provides the authoritative context enabling Tenable Hexa AI to:

• understand how vulnerabilities, identities, assets, configurations, and AI systems across your attack surface interact to create exposure;
• determine which exposures create the most risk for your organization;
• validate the real security posture of your environment;
• orchestrate the steps required to close your organization’s highest-risk exposures. 

Tenable’s Exposure Data Fabric makes agentic AI for preemptive security possible. Without this depth and breadth of data, agents can only guess what action to take. With it, they’re capable of reasoning across your exposure landscape and helping to move security operations beyond reactive response to consistent, machine-speed risk reduction.

The next phase of AI in security isn’t about using a chatbot to get answers to basic questions. It’s about shifting the cybersecurity operating model from humans orchestrating tools to AI orchestrating tools under human direction. This is the agentic shift: AI that doesn’t just inform, but acts to fundamentally change your team’s capacity to reduce risk.

Experience the shift at RSAC 2026

Tenable Hexa AI is currently in private preview for select Tenable One customers.

• Visit us: See the live demo at Booth #6155 (North Expo Hall), RSA Conference 2026.
• Get access: Contact your Tenable Account Team to join the private preview program.

Want to learn more? Download the Tenable Hexa AI data sheet to get the full technical breakdown of our agentic capabilities and read the press release to learn about Tenable's vision for the future of proactive risk reduction and AI-powered exposure management.