SecurityBrief Australia - Technology news for CISOs & cybersecurity decision-makers
Australia
Msp security operations center analysts monitoring threat dashboards
#
Digital Transformation
#
Cloud Security
#
IoT Security

LevelBlue & Tenable launch exposure service for MSPs

Fri, 6th Mar 2026
Author image
By Joseph Gabriel Lagonsin, News Editor

LevelBlue has expanded its vulnerability and exposure management offering for managed security service provider (MSSP) and managed service provider (MSP) partners through a partnership with Tenable.

The new service, Exposure Management for Partners, integrates Tenable tools into LevelBlue's partner ecosystem. The companies are positioning it as a move beyond periodic vulnerability scans to continuous exposure management across a broader range of assets and environments.

Many organisations now operate across cloud services, identity platforms, operational technology networks, web applications, and internet-facing systems. Security teams often manage these areas with separate products and processes, which can create visibility gaps and increase manual work when prioritising remediation.

Partner offering

Exposure Management for Partners uses a maturity-based structure, with options based on the customer and service model. It includes scanning, monitoring, analytics, and risk prioritisation capabilities built on Tenable technology.

At the base level, LevelBlue will embed vulnerability scanning into its unified service management platform. Customers receive Nessus-based scanning, with unlimited IP coverage and automated ingestion of scan data into the LevelBlue platform for analysis.

A second tier adds Tenable Vulnerability Management, including agent-based scanning and passive monitoring. It expands asset visibility and adds analytics.

Partners can also add attack surface management and web application scanning to extend coverage. The goal is broader visibility into internet-facing and application-layer risk that falls outside traditional endpoint and network scanning.

At the highest tier, partners can use Tenable One exposure management, described as a unified, risk-based platform focused on organisation-wide visibility and prioritisation.

Client context

LevelBlue is positioning the service around risk context for end customers. Clients can view vulnerabilities and exposures alongside threat activity, asset importance, and other environmental signals, helping teams prioritise remediation based on risk rather than raw scan output.

The service also includes automated log ingestion and continuous scanning to surface critical exposures faster and support more timely remediation.

Coverage extends to areas that have drawn increased attacker attention in recent years, including cloud environments, identity systems, and external attack surfaces. These often span multiple teams and suppliers, which can complicate ownership of fixes.

Channel focus

The launch targets MSSPs and MSPs that package security services for multiple customers. Exposure management has become a growing priority as customers ask for more continuous assessment and clearer prioritisation, rather than periodic, compliance-driven scanning.

LevelBlue said combining its managed security services model with Tenable's technology gives partners a foundation for delivering vulnerability and exposure management services. It also linked the approach to expanding partner service portfolios through a structure that adapts to customer maturity.

The companies did not disclose commercial terms, pricing, or revenue-sharing details.

Market backdrop

Vulnerability management has traditionally focused on identifying known weaknesses and patching them. Exposure management takes a broader view, covering external-facing assets, identity systems, misconfigurations, and the pathways attackers may exploit. Many organisations have increased scanning frequency but still struggle with prioritisation and the operational workload of remediation.

Channel partners also face pressure to standardise service delivery across customers while maintaining flexibility for different environments. Integrations can reduce onboarding friction, streamline reporting, and influence how providers package services and measure outcomes.

The partnership reflects a wider trend: security service providers rely on specialist vendors for core tooling, then wrap those tools with managed operations, reporting, and response services.

"Organisations today require more than periodic scans. They need continuous visibility across cloud, identity, operational technology, web applications, and external assets, along with clear insight into how cyber risk impacts the business," a LevelBlue spokesperson said.

Related stories
Vodafone & Google Cloud launch AI & security tools
ISACA launches AI risk certification amid governance gap
Turning security into a story: How managed service providers use reporting to drive retention and revenue
Barracuda spots 7 million device code phishing attacks
CommBank deploys AI to spot emerging fraud patterns

Top stories

AI flaws & supply-chain risks top new pentesting report
Exclusive: Google Cloud on the road to autonomous SecOps
Zapier expands AI governance controls for enterprise users
Avatier launches offline card after Stryker cyberattack
Automotive microcontroller market set to hit USD $15.1bn