Claroty 全球領先的工業網路安全解決方案
在當今高度互聯的世界中,營運技術 (OT) 系統已成為關鍵基礎設施的支柱。這些系統控制著電力、水、交通、醫療和製造等關鍵服務。然而,OT 系統也越來越容易受到網路攻擊的影響。
了解方案
終端資料安全
保護您的關鍵基礎設施免受日益嚴重的網路威脅
Claroty 致力於保護您的關鍵基礎設施免受日益嚴重的網路威脅,能夠協助組織保護工業、醫療保健,以及企業環境中的所有網路實體系統:泛物聯網(XIoT)。公司的整合平台可以將客戶現有的基礎結構整合,提供可見性、風險和弱點管理、威脅偵測,以及安全遠端存取的全方位控制。Claroty 針對製造業以及醫療業提供 xDome 以及 Medigate 解決方案,以供用戶因應各種不同的 OT 環境所面臨到的安全挑戰。
Claroty xDome - 工業網路安全之旅的模組化 XIoT 解決方案
透過以下方式明確了提供網路安全決策
資產探索
利用最廣泛、最深入的 XIoT 協議覆蓋組合,加之 Claroty Team82 對這些協議特定領域的研究,可提供關於 XIoT 資產的細緻、集中的清單
弱點與風險管理
xDome 能夠按要全完全自訂企業組織的風險容忍度,提供量身定製的風險評分和安全建議。
網路保護
利用對 XIoT 資產及其行為模式的可視性,來自動定義並推薦網路通訊策略,用戶可更輕鬆地透過現有安全基礎架構來監控、改進和實施這些策略;網路保護功能有助於為「零信任」實踐奠定基礎。
威脅檢測
採用彈性檢測模式以持續監測用戶的環境,在已知威脅和新興威脅剛剛顯現時便即時發現並提供快速有效的響應。
資產及變更管理
協助企業組織簡化資產及變更管理,企業組織可以按特定使用者和分組來自動執行資產管理工作流,從而節省管理時間並減少操作人員的維護時間。
Claroty xDome
為企業組織提供資產完整可視化、識別、測量和風險優先順序
資產可視性
- 曝險管理 Exposure
Management(Vuluneability & Risk) - 網路保護 Network Protection
- 威脅偵測 Threat Detection
- 彈性快速部署
- 依據角色的使用者體驗
- 完整整合生態系統
IEC 62443 / NIS2 - Claroty
NIS2 REQUIREMENT
SUMMARY OF CLAROTY SUPPORT
SOLUION(S)
1. Policies on risk analysis and information security
Claroty discovers and assesses all assets, systems, vulnerabilities, and cyber and operational risks in CPS environments and uses this extensive visibility to automatically define and enable the enforcement of policies that mitigate exposure to such risks.
Claroty Dome,
Medigate,& CTD
Medigate,& CTD
2. Incident handling
Claroty continually monitors the entire CPS environment for the earliest indicators of known and unknown threats, contextualises all alerts to optimise response, and integrates with SIEM, SOAR, and related solutions to extend existing SOC workflows across all CPS.
Claroty Dome,
Medigate,& CTD
Medigate,& CTD
3. Crisis management and business continuity
Claroty delivers a comprehensive, real-time inventory for all CPS, logs all asset and network changes and anomalies, defines and enables enforcement of network segmentation policies and access controls that help protect against and contain incidents, and offers ready-made integrations with backup and recovery tools - all of which help drive and improve entity-wide crisis management and continuity efforts.
Claroty Dome
Medigate, SRA,& CTD
Medigate, SRA,& CTD
4. Supply chain security
Claroty correlates all discovered assets against the latest CVEs and other weaknesses, continually assesses risk in the CPS environment, and provides secure-yet-frictionless remote access to OT for all internal and third-party users, enabling customers to effectively and efficiently assess, manage, and mitigate third-party risk across their supply chains.
Claroty Dome
Medigate, SRA,& CTD
Medigate, SRA,& CTD
5. Security in network and information systems
Claroty correlates all discovered assets against the latest CVEs, misconfigurations, and other weaknesses in real-time, continually assesses risk exposure in the entire CPS environment, and provides highly secure-yet-frictionless remote access to OT for all internal and third-party personnel, enabling customers to effectively and efficiently assess, manage, and mitigate cyber risk across their environments.
Claroty Dome
Medigate, SRA,& CTD
Medigate, SRA,& CTD
6. Policies and procedures to assess the effectiveness of cybersecurity risk management
Claroty offers a custom risk-scoring mechanism, the ability to simulate the impact of risk remediation measures, proactive monitoring and historical assessments to measure how respective controls impact enterprise-wide risk posture over time, and flexible reporting to simplify the communication of this information for stakeholders across disciplines.
Claroty Dome,
Medigate,& CTD
Medigate,& CTD
7. Basic cyber hygiene practices and cybersecurity training
Claroty's risk reporting and simulation include remediation recommendations that help inform cyber hygiene and training needs. Additionally, Claroty's SRA solution enables easy enforcement of RBAC, password policies, and other cyber hygiene practices among both internal and third-party personnel.
Claroty Dome
Medigate, SRA,& CTD
Medigate, SRA,& CTD
8. Policies and procedures for cryptography, encryption
Claroty encrypts all user-, CPS-, and other system-related data in accordance with NIS2 GDPR, and other regulatory requirements. Claroty also alerts on events in which sensitive data, such as personal health information (PHI), is processed against policies or otherwise, enabling customers to preempt incidents involving potential data exposure.
Claroty Dome
Medigate, SRA,& CTD
Medigate, SRA,& CTD
9. Human resources security, access controls, and asset management
Claroty's risk mitigation recommendations help inform and prioritise cyber hygiene and access control policies. Additionally, Claroty's SRA solution enables easy enforcement of RBAC, password policies, and other cyber hygiene practices for internal and third-party personnel. Claroty's seamless integration with CMDB, CMMS, and related solutions enables easy extension of existing asset management workflows to all CPS entity-wide.
Claroty Dome
Medigate, SRA,& CTD
Medigate, SRA,& CTD
類型
條文
一般
62443-1
62443-1
概念與模型
62443-1-1
62443-1-1
術語與縮寫詞彙表
62443-1-2
62443-1-2
系統安全合規性指標
62443-1-3
62443-1-3
IACS 安全生命週期與用例
62443-1-4
62443-1-4
規章及制度
62443-2
62443-2
IACS 資產擁有者之安全計劃要求
62443-2-1
62443-2-1
IACS 安全管理實施指南
62443-2-2
62443-2-2
補丁管理
62443-2-3
62443-2-3
IACS 服務提供商之計畫要求
62443-2-4
62443-2-4
系統
62443-3
62443-3
術語、概念及模型
62443-3-1
62443-3-1
安全風險評估與系統設計
62443-3-1
62443-3-1
系統安全要求和安全等級
62443-3-3
62443-3-3
組件
62443-4
62443-4
安全產品開發週期
62443-4-1
62443-4-1
IACS 組件的技術安全要求
62443-4-2
62443-4-2
- IEC 62443 視為國際廣泛採納和認可的工作自動化及控制系統 Industrial Automation and Control System,簡稱 IACS 的網通安全標準(Cybersecurity)。
- NIS 2 包含資安事件回報與危機管理、弱點處理與揭露、評估措施有效性的政策與程式、密碼的有效使用等,並要求各公司解決供應鏈中的資安風險。
安全架構 - 連續性需要基於零信任的體系結構來降低風險
- OT 資源細分和普渡模型保護(ISA / IEC 62443 合規)
- 本機多重身份驗證和憑據管理(密碼庫)
- 限制使用者在正確的時間訪問正確的資產(Least Privilege・RBAC)
- 消除直接連接帶來的風險
- 確保僅將安全檔傳輸到 OT 網路
實現所有 OT 維運的可視性
彈性需要可視性以及追蹤和回應遠端用戶活動的能力
- 管理員能夠接受或拒絕遠端訪問請求
- 即時會話監控,能夠立即終止遠端存取
- 使用地端伺服器進行遠端動作錄製,以實現 GDPR 合規性和檔核要求
- 紀錄系統內為 SRA 管理執行的所有使用者操作並置於上下文中
