π―Basically, Claroty's new tool helps organizations see and manage their security better.
What Happened
Claroty has introduced Visibility Orchestration capabilities in its SaaS product, Claroty xDome. This advancement aims to transform the often vague concept of visibility into a quantifiable measurement that demonstrates the effectiveness of a strong Cyber-Physical Systems (CPS) protection program. The new feature is designed to enhance the understanding of CPS environments across various sectors, including industrial, healthcare, commercial, and public sectors.
The Rising Threat of Visibility Blind Spots
The increasing prevalence of undiscovered and unmonitored assets poses significant cyber risks. Clarotyβs Team82 has verified over 200 cyber attacks in the past year, where attackers accessed CPS environments by scanning for internet-exposed devices and exploiting default credentials. Devices such as PLCs, HMIs, and medical devices have become entry points for attacks, compromising critical systems that support daily operations.
Organizations are becoming aware of their visibility blind spots, realizing that their CPS environments are crucial for value creation. However, many still mistakenly believe that having an asset inventory equates to achieving visibility. In reality, this visibility is often inconsistent and incomplete, creating gaps between visibility data and actionable security outcomes.
Turning Data into Actionable CPS Security
Gil Gur Arie, Chief Product Officer at Claroty, emphasized that achieving meaningful visibility is essential for building a robust CPS security posture. Despite this, many organizations struggle to translate visibility into actionable insights that align with business goals. Claroty xDome aims to bridge this gap by providing high-quality, AI-enriched data that leads to prioritized actions for security teams.
Key Features of Visibility Orchestration
- Automated Visibility Recommendations: An intelligent engine analyzes the current Visibility Score of assets and generates prioritized tasks to address data gaps.
- Multi-Method Enrichment: The tool orchestrates various collection methods to enhance the profiles of identified CPS assets, ensuring high-fidelity visibility.
- CPS Library Asset Profile Enhancement: Claroty xDomeβs AI-driven library consolidates fragmented data into a single, actionable source of truth, improving visibility and accuracy.
- Centralized Edge Scan Management: Users can configure and monitor periodic scans for multiple hosts directly from xDome, enhancing operational efficiency.
- Flexible Edge Deployment: Organizations can utilize existing infrastructure without needing additional hardware or configurations.
- In-App Integration Orchestration: Users can trigger and configure integrations directly from the Visibility Recommendations page, streamlining security workflows.
Conclusion
Claroty's innovative Visibility Orchestration capabilities in xDome represent a significant step forward in CPS security. By providing organizations with a clearer understanding of their environments and actionable insights, it enables them to enhance their security posture and effectively mitigate risks.
π Pro insight: Claroty's approach to visibility orchestration could redefine asset management strategies in CPS environments, promoting proactive security measures.
