Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070
contact_icon
Buy Try
Exposure Management
AI Security
Cloud Security
OT Security
Vulnerability Management
Hexa AI
Identity Security
Patch Management
Attack Surface Management
Web App Scanning
Security Tool Connectors
View all products

Explore By Use Case

Secure AI
Secure OT/IoT
Exposure Management
Cloud Security
Compliance
Vulnerability Management
Asset Inventory
Highly Secure Environments
Secure Data Centers
Zero-Trust

Explore By Industry

Financial Services
Energy
Healthcare
Technology
Education
Government Defense
Retail
Why choose Tenable
Industry recognition
Customer stories
Tenable vs competitors
Report
Tenable is the one clear leader in Exposure Management
See why
Resource library
Exposure management resources
Blog
Research center
Training and certification
Cybersecurity guide
Customer stories
Find a partner
Resources

Exposure management
resource center

Accelerate your exposure management strategy with practical resources and tools.
Explore
About Tenable
Leadership
Investor relations
Tenable ventures
Awards and recognition
Media room
Careers
Engagement and inclusion
Exposure Management Leadership Council
15:48 EDT, 14 May, 2026

Tom Croll

Consultant, Tenable

Subscribe

Tom Croll is a former Gartner analyst and co-author of the original research on cloud native application protection platforms (CNAPP), defining the requirements for effective application security in public cloud. With over 20 years of industry experience, he was also one of the earliest pioneers of DevSecOps methodologies. His current expertise and skills center on advising in cloud application and infrastructure security (IaaS, PaaS and SaaS), security service edge (SSE) and secure access service edge (SASE), with deep knowledge of the SaaS security posture management (SSPM) market. In previous positions, he worked as a lead cloud security architect for multiple financial and government organizations, including most recently the U.K.'s Financial Conduct Authority. Tom has led agile development teams to develop cloud security best practices across multiple industry sectors. He is a consultant for Tenable.

Profile picture for user Tom Croll

Blog post

Cloud Security
Choosing the Right CNAPP: Six Considerations for Mid-Sized Enterprises image
Dec 31 2024

Choosing the Right CNAPP: Six Considerations for Mid-Sized Enterprises

Cloud Security
An Analyst’s Guide to Cloud-Native Vulnerability Management: Where to Start and How to Scale image
Sep 19 2024

An Analyst’s Guide to Cloud-Native Vulnerability Management: Where to Start and How to Scale

Cloud Security
Tag, You’re IT! Tagging Your Way to Cloud Security Excellence image
Jun 26 2024

Tag, You’re IT! Tagging Your Way to Cloud Security Excellence

Cloud Security
Taking Control of Kubernetes: Enforcing Least Privilege to Secure Your Kubernetes Environment image
Mar 18 2024

Taking Control of Kubernetes: Enforcing Least Privilege to Secure Your Kubernetes Environment

Cloud Security
Beyond the Horizon: Top 5 Cloud Security Trends to Watch in 2024 image
Jan 16 2024

Beyond the Horizon: Top 5 Cloud Security Trends to Watch in 2024

News and Views
Decrypting CNAPP: Moving Beyond the Acronyms and Analyst Jargon to a Unified Approach to Cloud Security image
Nov 21 2023

Decrypting CNAPP: Moving Beyond the Acronyms and Analyst Jargon to a Unified Approach to Cloud Security

News and Views
Unpacking the Shared Responsibility Model for Cloud Security: How To Avoid Coverage Gaps and Confusion image
Aug 2 2023

Unpacking the Shared Responsibility Model for Cloud Security: How To Avoid Coverage Gaps and Confusion

News and Views
Five Core Principles for Hybrid Cloud Security  image
Mar 29 2023

Five Core Principles for Hybrid Cloud Security