Tenable Research Shows Organizations Struggling to Keep Pace with Cloud Security Challenges

Rhea-AI Summary

Tenable (NASDAQ: TENB) has released its State of Cloud and AI Security 2025 report, revealing significant challenges in cloud security management. The study found that 82% of organizations operate hybrid environments and 63% use multiple cloud providers, managing an average of 2.7 environments.

The research, conducted with the Cloud Security Alliance across 1,000+ IT professionals, highlights how rapid adoption of hybrid, multi-cloud, and AI systems has created security blind spots. While 58% have adopted unified security monitoring, 57% use Cloud Security Posture Management, and 54% implemented Extended Detection and Response, many organizations still struggle with fragmented systems and inconsistent identity governance.

Positive

• None.

Negative

• 82% of organizations face security risks from complex hybrid environments
• Widespread issues with inconsistent identity governance and excessive permissions
• Many security tools operate in silos, limiting unified risk control effectiveness

Survey findings point to rapid growth of hybrid, multi-cloud and AI systems creating blind spots and complexity that leads to risk

COLUMBIA, Md., Sept. 10, 2025 (GLOBE NEWSWIRE) -- Tenable®, (NASDAQ: TENB) the exposure management company, today released its State of Cloud and AI Security 2025 report, revealing that the rapid growth of hybrid, multi‑cloud and AI systems has outpaced cloud security strategies, creating new layers of complexity and risk.

According to the study, 82% of organizations now operate hybrid environments spanning on‑premises and cloud, and 63% use more than one cloud provider, managing an average of 2.7 environments. With each IT environment bringing its own tools, policies and shared responsibility models, the cloud and AI workload sprawl creates complex and fragmented systems that leave major blind spots for security teams. The result is disjointed visibility, inconsistent identity governance, and gaps in risk monitoring that attackers can exploit. As AI-driven workloads add more layers of complexity, identity has become one of the biggest sources of weakness in this environment, with inconsistent governance and excessive permissions regularly cited as drivers of cloud breaches.

This shift is driven by cost pressures, regulatory requirements, and performance needs and, in some cases, has led organizations to move their cloud-based workloads back on‑premises for greater control. While the report shows that many organizations have adopted solutions such as unified security monitoring (58%), Cloud Security Posture Management (57%), and Extended Detection and Response (54%), the shift toward broader visibility across hybrid and cloud environments remains nascent.

Many tools still operate in silos, limiting their ability to unify risk control. Consequently, few organizations have the consistent policy enforcement, identity management, and risk monitoring needed to secure such a diverse IT landscape.

The State of Cloud and AI Security 2025 research, commissioned by Tenable and developed in collaboration with the Cloud Security Alliance, surveyed more than 1,000 IT and security professionals worldwide to understand how organizations are adapting their strategies to manage risk across increasingly complex cloud and AI‑driven infrastructures.

“The report confirms what we’re seeing every day in the field. AI workloads are reshaping cloud environments, introducing new risks that traditional tools weren’t built to handle," said Liat Hayun, VP of Product and Research at Tenable.

“We’re in the middle of the fastest evolution in cloud computing history. Unfortunately, as our research made clear, many security strategies are already behind the curve,” said Jim Reavis, Co-founder and CEO, Cloud Security Alliance. “The risks of standing still are growing by the day. Organizations need to rethink their approach and build adaptive, future-ready defenses that are capable of evolving as fast as the technology they safeguard.”

To support this strategic reset, Tenable Cloud Security helps organizations unify visibility and risk management across their IT, hybrid, and multi-cloud environments. It tackles identity, misconfigurations and access governance head-on while enabling teams to integrate AI-specific exposures into their risk strategies. This allows security teams to shift from reactive incident management to a proactive approach to exposure management.

Download the report here.

More information on Tenable Cloud Security is available at: https://www.tenable.com/cloud-security

Read today’s blog post here.

About Tenable
Tenable® is the exposure management company, exposing and closing the cybersecurity gaps that erode business value, reputation and trust. The company’s AI-powered exposure management platform radically unifies security visibility, insight and action across the attack surface, equipping modern organizations to protect against attacks from IT infrastructure to cloud environments to critical infrastructure and everywhere in between. By protecting enterprises from security exposure, Tenable reduces business risk for more than 44,000 customers around the globe. Learn more at tenable.com.

Media Contact:
Tenable
tenablepr@tenable.com

FAQ

What are the key findings of Tenable's Cloud and AI Security 2025 report?

The report reveals that 82% of organizations operate hybrid environments, 63% use multiple cloud providers, and organizations manage an average of 2.7 cloud environments, creating significant security challenges.

How many organizations are using Cloud Security Posture Management according to Tenable's 2025 report?

According to the report, 57% of organizations have adopted Cloud Security Posture Management solutions.

What are the main security challenges identified in Tenable's 2025 cloud security report?

The main challenges include disjointed visibility, inconsistent identity governance, excessive permissions, and gaps in risk monitoring across hybrid and multi-cloud environments.

How many IT and security professionals were surveyed in Tenable's 2025 cloud security study?

The study surveyed more than 1,000 IT and security professionals worldwide in collaboration with the Cloud Security Alliance.

What solutions does Tenable offer for cloud security challenges in 2025?

Tenable Cloud Security helps organizations unify visibility and risk management across IT, hybrid, and multi-cloud environments, addressing identity, misconfigurations, and access governance challenges.