In 2019, the SANS Institute released the results of it’s annual State of OT/ICS Cybersecurity survey. According to the report, the risk presented by adversary threats drives an organizations’ approach to operational technology security.
The survey included more than 300 respondents, including security professionals and others working in enterprise IT or industrial control systems. According to the report, almost half of asset owners and operators are prioritizing visibility into industrial control systems as their top cybersecurity initiative for 2020.
Industrial cybersecurity company Dragos, Inc. is working to make that a little easier. On June 2, the company announced a new offering for asset visibility, discovery and identification. Dragos Platform 1.6 has been enhanced with advanced capabilities to help customers reduce the risk of adversary threats.
“The technology built into the Dragos platform has always been engineered by practitioners for practitioners,” Robert M. Lee, Chief Executive Officer and Co-Founder of Dragos, Inc., said in a press release. “With this latest evolution, we’ve armed customers with the advanced technical capabilities they need to anticipate threats, gain visibility across the industrial environment, and reduce risk, all in one, comprehensive package.”
Dragos Platform 1.6 provides detailed and in-depth visualization to help customers easily map ICS/OT assets and network communications, identify anomalous behaviors, and rapidly investigate and respond to threats. The enhanced platform includes expanded protocol, device, and vendor support along with improved case management tools, customizable rule creation, and context-rich notifications.
Users will also receive monthly updates with information on adversary intelligence, ICS/OT device data, threat analytics and investigation playbooks.
According to Dragos, their new offering is the first ICS/OT cybersecurity technology to incorporate MITRE ATT&CK for ICS. The framework provides a detailed account of adversary threats including the tactics and techniques used when attacking critical infrastructure in energy transmission and distribution plants, oil refineries, wastewater treatment facilities, transportation systems, and more.
“We realize that gaining a more detailed understanding of our network environment corresponds directly with our capacity to preempt cyber threats, rapidly targeting them before they have a chance to present a risk to the continuity of our business and operations,” Jason Nations, Senior Manager of Enterprise Security at OG&E, said in the release. “With the new environmental visibility and asset information technology in the Dragos Platform 1.6 combined with the ability to map threat detections using the MITRE ATT&CK for ICS framework, we know we have what we need to stay ahead of adversaries.”