Case Study: AppsFlyer achieves hardened cloud security and right-sized access policies with Tenable Networks (Tenable Cloud Security)

AppsFlyer uses Tenable Cloud Security to harden its cloud environment with improved access policies

AppsFlyer, a global leader in mobile attribution serving 12,000+ brands and 8,000+ partners, runs a large multi-cloud environment (AWS, Google Cloud, Azure, Alibaba) with tens of thousands of resources and 90,000+ active apps. The security team prioritized identity governance and least-privilege access in 2020 but found it hard to govern entitlements inside the cloud—Okta federated identities helped with users and groups but native cloud tools were complex, time-consuming and not repeatable.

By deploying Tenable Cloud Security, AppsFlyer quickly discovered excessive entitlements and public exposures (e.g., S3 buckets, internet-facing EC2 instances with high IAM privileges, exposed databases), used platform risk scores to right-size policies, and pushed fixes to DevOps via Jira. They removed unused SaaS access, pruned stale IAM identities and permissions, accurately sized federated roles, and rolled the solution into production and CI/CD—significantly improving visibility, reducing high-risk access, and hardening their cloud environment.

AppsFlyer

Guy Flechter

Chief Information Security Officer