Continuous OT security network monitoring that provides visibility,
risk management and threat detection.
Operational technology security & network connectivity has become a mandatory business requirement.
It requires a shift in the security mindset from “How can I air gap or isolate?”
to “How can I stay secure while connected?”
SCADAfence Platform is a non-intrusive continuous network monitoring solution that was purposely built to provide the required visibility and security for organizations adopting advanced Industrial IoT technologies.
SCADAfence is deployed as a non-intrusive component in the OT network. By integrating with a mirroring port in network switches, there is no impact on day-to-day operational processes. The installation process requires zero downtime, and the platform algorithms are automatically configured without any input from the user. The solution is software-based and is available either as a virtual appliance or as a network appliance.
Once introduced into the OT network, SCADAfence runs OT security assessment and starts to monitor the OT network activities. With passive DPI analysis and optional active polling, SCADAfence discovers all the assets in the network and their relevant industrial characteristics. The platform completely digitalizes the asset inventory and network communications mapping. In addition, an adaptive baseline is created to capture the current operational behavior of the environment.
SCADAfence algorithms offer real-time detection of malicious activities and anomalous behavior within the operational technology network. This is based on deviations from normal behavioral profiles, rule-based capabilities, signature-based alerts and proprietary threat intelligence, the system detects abnormal activities that threaten the network. This includes cyber-attacks and non-malicious threats.
SCADAfence can seamlessly integrate with existing firewalls, SOCs, SIEM products, with log aggregation devices or incident handling systems and processes. It does so by interfacing with industry standard mechanisms, and by being part of the security management processes, with internal alert handling management and advanced reporting.
Digitalize your asset inventory with automatic asset discovery and network mapping. This allows users to replace outdated and manually obtained spreadsheets with updated real-time information about their environment.
Identify where the OT network is exposed to potential risks and what attack scenarios threaten operations. Understand what proactive mitigation steps can be applied to reduce the attack surface and increase the network resiliency.
Continuously monitor the operational technology network architecture for an accurate view of your security posture and insight into real-time events. Enable complete and continuous control over your most critical business assets.
Uncover malware and ransomware that threaten operational continuity. Early detection of threats enables effective response before damage occurs, preventing unplanned operational downtime and improving overall OT Security
Gain insight into non-malicious issues that occur on a daily basis and can cause significant damage to the operational environment. Detection of incidents such as human error, misconfiguration and device malfunction that can disrupt operations.
For every incident created, receive all the relevant information to understand the root cause of the event. Benefit from advanced forensics tools that clarify the context of the alert. Manage incident response using our remediation recommendations.
SCADAfence supports integration to existing management systems such as SOC and SIEM. This enables effective management of incidents in OT and integrates OT security into the IT security workflow-whether if it’s managed internally or by a MSSP.
Advanced event management and reporting tools, integrated with 3rd party incident management products and firewalls, enable an effective and well documented incident handling process, improving IT/OT security management overall.