Claroty’s New VRM Capabilities Help CISOs

The RBA and the Ministry of the Interior sign a memorandum of understanding to strengthen the SOCI

Claroty has announced an expansion of its security solutions with the introduction of additional risk and vulnerability management (VRM) capabilities.

The company, which provides cyber-physical system (CPS) protection and security solutions across the expanded Internet of Things (XIoT), has expanded the VRM capabilities of its software-as-a-service (SaaS) platforms, recognizing the strain faces. by chief information security officers (CISOs) in today’s world.

For example, research by Fortinet has found that CISOs are becoming responsible for managing an increasing amount of an organization’s cybersecurity, including operational technology (OT) security and CPS, and it is estimated that 95 percent of critical infrastructure CISOs are now responsible for securing CPS. as well as information technologies (IT).

Of those, 98 percent must quantify and account for their organization’s CPS risk posture.

On top of this, the conventional wisdom on CPS vulnerability management is confusing: nearly 70 percent of all CPS vulnerabilities disclosed last year received a high or critical CVSS v3 severity score, but less than 8 percent of them have been exploited. .

As a result, security teams become overloaded, and conventional wisdom and solutions are based entirely on CVSS scores. It also means that CISOs and their resources stay away from very real problems that may appear in vulnerabilities with lower scores but, as a result, greater attractiveness to threat actors.

In light of this, Claroty has announced the implementation of VRM capabilities within its Medigate and xDome SaaS based solutions.

“CISOs and security teams face an increasingly uphill battle to mitigate the risk of outdated and insecure assets, as well as new vulnerability discoveries. Due to the uniqueness of CPS and critical infrastructure environments, patching everything is often impossible or overly complex to execute,” said Grant Geyer, Product Manager at Claroty.

“These VRM enhancements to the Claroty SaaS portfolio further equip our customers to answer their toughest cybersecurity questions: how to accurately assess risk and which vulnerabilities to mitigate first based on the likelihood they will be exploited in missions.” industrial, clinical or otherwise. critical environments”.

The new enhancements “will provide the most transparent and granular way to quantify CPS’s risk posture,” with a new framework that takes into account an expanded range of factors that can increase risk, as well as offsetting control improvements that can offset the risk.

For new customers, this framework comes pre-configured, allowing for a quick and easy calculation of an organization’s risk posture.

Clients also gain greater flexibility and control, allowing them to tailor CPS risk calculations to their needs.

“As highlighted in Australia’s SOCI Act, understanding an organization’s attack surface and its vulnerabilities starts with knowing what is on the network, the risk posture of each asset and the options available to remediate it,” the CEO said from Claroty healthcare distributor, Wavelink. Ilan Rubin.

“The Medigate by Claroty platform is a key component that complements Wavelink’s health, mobility and security offerings, and the platform’s new VRM enhancements will help our partners and end customers achieve these goals more efficiently and effectively” .

You can find more information about Claroty and its new VRM enhancements on the Claroty website.

Leave a Reply

Your email address will not be published. Required fields are marked *