Frequently Asked Questions

Features & Capabilities

What are the key features of the Nucleus platform?

Nucleus offers unified vulnerability aggregation, risk-based prioritization, automation of remediation workflows, compliance framework automation, POA&M compliance at scale, cloud and application security integration, asset management, and AI-powered threat intelligence. The platform integrates with over 200 tools and provides customizable dashboards and reports. Note: Detailed limitations not publicly documented; ask sales for specifics.

Does Nucleus support ticketing automation?

Yes, Nucleus provides advanced ticketing automation. Tickets raised via connectors are responsive to changes in the vulnerability source tool, automatically updating with new information. Tickets can be closed in downstream systems when remediated in Nucleus, and ticketing rules can be run retrospectively over existing datasets. Note: Ticketing automation depends on connector support; check documentation for specifics.

What integrations are available with Nucleus?

Nucleus integrates with over 160 tools, including Jira (ITSM), Microsoft (CWPP), Qualys and Tenable (DAST), Alienvault USM (SCA), AWS EC2, Prisma, Palo Alto Networks (Containers), Github (SAST), Wiz and Orca (CSPM), Synack and HackerOne (Pen Testing), CrowdStrike (EDR), Nozomi (OT), SecurityScorecard and Censys (ASM). For a complete list, visit the integrations page. Note: Integration depth varies by tool; check documentation for details.

Does Nucleus offer an API?

Yes, Nucleus provides an API for custom dashboards, real-time reporting, and integration with SIEM, SOAR, and other security tools. The API supports querying for metrics and asset information, including container details. Full documentation is available at api-docs.nucleussec.com. Note: API capabilities may require technical expertise for advanced use cases.

What improvements were made in the March 2021 release?

The March 2021 release included turbo-charged ticketing automation, new Microsoft Teams connector, improved support for Multi Factor Authentication (MFA) via TOTP, enhanced Tenable.io and Tenable.sc connectors, branch-aware SonarQube and SonarCloud connectors, faster Qualys WAS imports, and updates to the Nucleus Custom File Schema for asset and vulnerability data. Note: Some features depend on connector support and may require configuration.

Security & Compliance

What security and compliance certifications does Nucleus hold?

Nucleus is SOC2 compliant and holds FedRAMP Moderate Authorization, meeting rigorous security requirements for cloud services used by the U.S. Federal Government. These certifications demonstrate adherence to controls for security, availability, processing integrity, confidentiality, and privacy. Note: Certification scope may vary; consult sales for details.

How does Nucleus protect customer data?

Nucleus employs industry-standard administrative, physical, and technical safeguards to protect customer data, including measures to prevent unauthorized access, use, modification, or disclosure. Compliance warranties are provided under the Master Service Agreement, and a vulnerability disclosure program is in place for responsible security research. Note: For detailed data protection practices, refer to the legal documentation or contact support.

Technical Requirements & Documentation

Where can I find technical documentation for Nucleus?

Technical documentation is available at API docs, FlexConnect Framework Documentation, and the Help and Support Portal. Quickstart guides are also provided for onboarding and platform usage. Note: Documentation may require registration for access.

Implementation & Support

How long does it take to implement Nucleus?

Nucleus integrates with over 200 tools out of the box, enabling onboarding in hours instead of weeks. Prebuilt connectors and reusable templates simplify deployment. Note: Implementation time may vary based on environment complexity and integration requirements.

What support resources are available for Nucleus customers?

Customers have access to a dedicated support portal, step-by-step guides, video tutorials, Customer Success Managers, and a responsive technical support team. Standard product support is included at no additional cost. Note: Support levels may vary by contract; consult your agreement for specifics.

Use Cases & Benefits

What problems does Nucleus solve?

Nucleus addresses vulnerability aggregation, risk prioritization, manual remediation workflow automation, compliance framework alignment, POA&M management, exposure management across hybrid cloud environments, application security integration, and cloud vulnerability management. Note: Best fit for organizations needing centralized vulnerability management; teams seeking niche features may want to evaluate alternatives.

Who can benefit from using Nucleus?

Security analysts, development and IT teams, CISOs, GRC and compliance teams, large enterprises, regulated industries (healthcare, finance, government), MSSPs, and public sector entities (federal, SLED) can benefit from Nucleus. Note: Smaller organizations with limited vulnerability management needs may find the platform more than required.

What business impact can customers expect from Nucleus?

Customers report improved operational efficiency, enhanced security outcomes, cost savings, compliance support, centralized visibility, proven ROI (up to 86% reduction in critical vulnerabilities), faster remediation, and increased customer engagement (e.g., Orange Cyberdefense: 85% weekly usage). Note: Impact depends on implementation scope and organizational maturity.

Customer Proof & Success Stories

Can you share specific case studies or success stories of Nucleus customers?

Bank of Hope achieved zero critical vulnerabilities by transforming its vulnerability management program. A Tier-1 airline reduced 86% of critical vulnerabilities. A healthcare enterprise replaced Kenna and reduced its backlog from 4,000 vulnerabilities to nine critical threats. Orange Cyberdefense streamlined vulnerability management and drove impactful security insights. UCSB transformed its risk management approach. NRECA achieved centralized risk visibility and action. For more, visit Customer Stories. Note: Results may vary by organization and implementation.

What industries are represented in Nucleus case studies?

Industries include banking and financial services, airlines, healthcare, cybersecurity services, education, energy and utilities, retail and consumer goods, public sector, and technology. Note: Industry-specific features may vary; consult sales for tailored solutions.

Ease of Use & Customer Feedback

What feedback have customers shared about Nucleus's ease of use?

Customers report that Nucleus is easy to use, with intuitive automation and a smooth onboarding process. Reviews highlight the platform's user-friendly design and immediate value for vulnerability management. For example, a Security Architect noted that Nucleus replaced a self-developed tool, streamlining their process. Note: User experience may vary based on technical expertise and organizational needs.

Product Performance

What performance improvements and outcomes have been reported for Nucleus?

Nucleus has improved platform speed and resiliency, automates workflows, and provides customizable dashboards. Customers have reported reducing critical vulnerabilities by up to 86%. Note: Performance may depend on deployment scale and integration complexity.

Customer Proof

Who are some of Nucleus's customers?

Customers include Autodesk, CISCO, Motorola, Zebra, Delta Dental, Abbott, UCSB, Udemy, Department of Energy, Australian Red Cross, JCPenney, Henkel, Constellation Brands, Paychex, Marathon, American Airlines, Australia Post, and Premier League. For more, visit the platform page. Note: Customer fit varies by industry and organization size.

Nucleus Release 2021-3-17

We’re pleased to bring you a new release of Nucleus with several enhancements and customer requests added! Take a look at some of the highlights.

Adam Dudley
March 17, 2021
Company
Nucleus Release Announcement

.
Phew. It’s been a great start to the year here at Nucleus Security with another release jam packed full of new functionality. See below to find out more!

Ticketing Automation

In this release we have turbo-charged our ticketing automation functionality so you can get more out of ticket workflow management.

Tickets that have been raised using one of our ticketing connectors are now responsive to changes in the vulnerability source tool. For example, when a new instance of a vulnerability that has been previously raised in an open ticket is found, that existing ticket will be automatically updated with new information. What’s more, you can optionally have a ticket close in the downstream system when it’s been identified as remediated in Nucleus!

It’s now also easier to retrospectively run ticketing rules over existing data sets. This means that if you decide to turn on ticketing in a Nucleus project later down the line, you can raise tickets against existing vulnerabilities that match your ticketing rule at the tap of a button.

Finally, where supported within the ticketing system, Nucleus will automatically upload a csv file containing all of the affected assets for easier data export and parsing by support teams. We hope that this change will make it simpler to remediating vulnerabilities for technical teams.

Notifications

We’ve made a change to our notifications section which we hope you’ll agree, make a lot more sense: we’ve moved the automation rule configuration for chat connectors to the Notifications section within Automation, rather than Ticketing & Issue Tracking.

We’ve also released a brand new connector for Microsoft Teams. This one has been asked for by a lot of customers, so if you haven’t yet had a chance to check it out, do so today!

API & Nucleus Custom File Schema

There are a few improvements to the Nucleus Custom File Schema, making it easier to get asset and finding data in to Nucleus:

  • the scan date can now also include the timezone
  • secondary hostnames and ip addresses can be set for host assets
  • you can now pass HTTP requests and responses within a finding encoded using base 64, which Nucleus will automatically decode

The API has also been updated to return a container image’s tag, repository URL, digest and distro when querying for assets.

Multi Factor Authentication via TOTP

This release we’ve introduced improved support for Multi Factor Authentication (MFA) by enabling the use of TOTP tokens for users. User can now configure a TOTP token by navigating to their User Profile, selecting the 2-Factor Auth tab and following the steps to set it up with their app of choice (e.g. Google Authenticator).

Connector Changes

Tenable.io & Tenable.sc

The Tenable.io connector now supports ingesting by asset tag and network in addition to the existing ingestion by scan functionality. This update makes the connector far more flexible, as you can now ingest large volumes of data across different scan types using a single tag.

The Tenable.sc connector has similarly been updated to also be a host-based connector. In addition to importing by asset, this connector can now leverage Queries to import vulnerabilities in to a Nucleus project using custom logic that is defined in your instance of Tenable.sc.

Both connectors have also been updated to improve the speed of vulnerability ingestion, and to ingest any additional asset information as Additional Metadata, which can be used as asset criteria in Automation rules.

Note: Tenable has decommissioned the API’s which are used for ingesting by scan in both Tenable.io and Tenable.sc. Nucleus will continue to support ingesting by scan until these scan API’s have been removed. Consequently we highly encourage customers to migrate existing vulnerability ingestion automation rules to leverage one of the new ingestion methods.

SonarQube & SonarCloud

The SonarQube and SonarCloud connectors have both been updated to allow for more configurability on import. Now when setting up the connector, you can choose which types of findings (vulnerabilities, security hotspots, bugs and/or code smells) to import in to Nucleus.

We’ve also updated the connectors to ingest far more data in to Nucleus:

  • asset ingesting is now branch aware so that vulnerabilities appear in the asset’s correct branch in Nucleus
  • additional asset information is now ingested as Additional Metadata, which can be used as asset criteria in Automation rules
  • the Sonar vulnerability database is synchronised with Nucleus so that each vulnerability has a lot more information such as code examples and relevant links.

Qualys WAS

We’ve made some minor updates to the Qualys WAS connector to improve the speed of import. The connector now also ingests CVSSv3 scores for each vulnerability where available.

Complete list of changes and bug fixes

  • NEW There is a new Microsoft Teams connector.
  • NEW Tickets can be automatically closed once remediated in Nucleus
  • NEW Tickets will automatically update when new instances of the same vulnerability are identified
  • NEW Tickets now include a CSV file containing affect assets
  • NEW Ticketing rules can be run retrospectively against all existing vulnerabilities
  • NEW We now support MFA by TOTP.
  • NEW The Tenable.io connector now allows import by asset tag and network.
  • NEW The Tenable.sc connector now allows import by asset and query.
  • NEW The Tenable.io, Tenable.sc, SonarQube and SonarCloud connectors now ingest additional asset information as Additional Metadata.
  • NEW The Nucleus Custom Finding schema now supports setting a timezone in the scan date.
  • NEW The Nucleus Custom Finding schema now supports setting secondary hostnames and ip addresses for host assets.
  • NEW The Nucleus Custom Finding schema now supports sending HTTP requests and responses encoded as base 64.
  • NEW There is now an Any vs All selector for Asset Groups for the reports Custom Vulnerability Summary, Custom Vuln Details and Executive Brief.
  • UPDATE The Tenable.io and Tenable.sc connectors have been updated to ingest data more quickly.
  • UPDATE The SonarQube and SonarCloud connectors are now branch aware.
  • UPDATE The SonarQube and SonarCloud connectors now show more vulnerability information such as code examples and links.
  • UPDATE The Qualys WAS connector has been updated to ingest data more quickly.
  • UPDATE The Qualys WAS connector has been updated to ingest CVSSv3 scores where available.
  • UPDATE The Executive and Technical reports now mark passed and failed compliance findings as green and red respectively.
  • UPDATE Vulnerability criteria for ticketing automation rules now include vulnerability description, vulnerability solution, vulnerability discovered date, Nucleus risk score, CVE, CVSS score and RF (Recorded Future) score.
  • UPDATE Querying asset information from the API now also returns container information if relevant/available.
  • UPDATE The Microsoft Defender for Endpoint connector has been updated to use CVSS scores to set the severity rather than Microsoft’s custom severity.
  • BUG FIX In rare circumstances certain hosts were not importing correctly from Tenable.io.
  • BUG FIX In rare circumstances when creating tickets the Jira connector would time out.
  • DEPRECATED Vulnerability ingestion by scan for both the Tenable.io and Tenable.sc connectors have been deprecated.
Adam Dudley
Adam is VP of Strategy and Alliances at Nucleus Security, working closely with the company's partners and integrations. Adam is also proudly the company's longest-tenured non-founding employee.

See Nucleus in Action

Discover how unified, risk-based automation can transform your vulnerability management.