NEW YORK--(BUSINESS WIRE)--Indegy, the leader in industrial cyber security, today announced a new release of the Indegy ICS Security Suite that delivers unparalleled end-to-end visibility into operational technology (OT) cyber threats, vulnerabilities, assets and their configurations. Indegy provides purpose built OT security monitoring that has traditionally been lacking in industrial networks, and matches IT-grade standards for control and audit.
According to the recent Idaho National Laboratory (INL) report Cyber Threat and Vulnerability Analysis of the U.S. Electric Sector, “threat actors on multiple fronts continue to seek to exploit cyber vulnerabilities in the U.S. electrical grid.” The report cites China, Iran, Russia and others as the primary adversaries.
“Industrial operations are now highly connected, making them sensitive to downtime from cyber attacks, malware, and maintenance errors, yet these environments lag behind IT networks in security, visibility and control,” said Mille Gandelsman, CTO of Indegy. “With this new release, Indegy gives OT network managers and engineers unprecedented visibility from the network all the way to the backplane configuration of industrial controllers to detect threats, address vulnerabilities and automate asset management.”
Vulnerability Management
To detect threats, Indegy’s new
automated vulnerability management capabilities build a continuously
updated security risk profile for each asset based on its criticality
level and by monitoring the following:
- Open and misused network ports
- Security hotfixes deployed on MS-Windows machines, including servers, workstations, desktops, SCADA terminals and HMIs
- Cybersecurity vulnerabilities on the devices in the environment, based on CVE scoring
This enables organizations to identify and remediate threats before they can be exploited.
Backplane Configurations
In order to assess cyber risk and
ensure operational reliability and safety, industrial operators need to
identify and track assets, plus control their configurations. New
automated asset management capabilities monitor and maintain a complete
inventory of industrial controllers, their settings and backplane
configurations, including:
- Firmware and OS versions
- Patch levels
- Module names, models and serial numbers
- Usage statistics, and more
This detailed visibility can be used to recover from incidents and restore devices to a "known good" state, provide asset tracking for compliance and support capacity planning.
Full Packet Capture Retention
To automate and simplify
forensic investigations and incident response, Indegy retains full
packet captures of all the traffic in a monitored network. This
comprehensive recording of activity allows the Indegy ICS Security Suite
to provide extended visibility into anomalous behaviors, reconnaissance
and intrusions by maintaining a complete and continuous audit trail.
Availability
Indegy ICS Security Suite v2.4 is available
immediately.
About Indegy
Indegy, the leader in industrial cyber
security, protects industrial control system (ICS) networks from cyber
threats, malicious insiders and human error by providing visibility and
control. The Indegy Industrial
Cyber Security Suite arms security and operations teams with full
visibility into ICS activity and threats by combining hybrid,
policy-based monitoring and network anomaly detection with unique device
integrity checks. The Indegy ICS Suite is deployed by manufacturing,
pharmaceutical, energy, water and other industrial organizations around
the world. For more information visit www.indegy.com,
and follow us on Twitter and LinkedIn.