Industrial cybersecurity company Radiflow enhanced on Monday its CIARA platform, an ROI-driven OT risk assessment and management tool that delivers to industrial and OT environments multi-site prioritization based on attack simulations, keeping teams better protected, and within budget.
Using the CIARA (Cyber Industrial Automated Risk Analysis) platform, CISOs will gain an in-depth perspective into their sites in a single dashboard. The extensive knowledge enables OT operators to eliminate the guesswork by letting teams anticipate the impact of potential threats using simulations of known attacks from a continuously updated global database, according to Radiflow. This can also be turned into simulated ‘What-If’ situations of mitigations to decide which course of action would be most suitable in light of the changes in the threat landscape.
As operational technology (OT) facilities and production sites are constrained by their inability to even temporarily shut down operations, the CIARA platform allows for a digital twin of multiple facilities to be created on the same user interface (UI), for security and risk teams to execute OT BAS (Breach & Attack Simulations) in a global enterprise view, Radiflow said. While this has been a common practice to prepare for attacks in the IT world through twin-network simulations, it is the first time that an OT environment can benefit from this proven strategy, it added.
The CIARA platform comes with a non-intrusive breach attack simulator that takes into account the business importance of each site. This enables the CISO to detect vulnerable points on their industrial automation networks across all their sites, allowing them to take up effective mitigation tools.
“CIARA is now a central environment where CISOs can evaluate proven security techniques against the latest threats without tampering with their existing network”, Ilan Barda, Founder and CEO of Radiflow, said in a press statement. “Utilizing the revolutionary all-in-one dashboard to keep an eye on all global operations is a critical step to preventing any cyber attack on vital OT facilities.”
The CIARA platform uses a fully automated, threat intelligence-driven risk assessment algorithm that calculates the likelihood of each attack tactic and the effectiveness of corresponding risk-mitigation measures. As this exercise is carried out across thousands of data points for network, asset, locale, industry, adversary capabilities, and attack tactics, the platform can deliver increased effectiveness of their risk-mitigation measures throughout the entire system lifecycle, while significantly reducing cybersecurity expenditure.
The weighted data is used to run network-wide attack simulations and inter-asset attack vectors, leading to a comprehensive real-world assessment report, as well as risk prioritization and recommendations for mitigation. The resulting blueprint is fully ISA/IEC 62443-compliant.
Allowing CISOs to continuously monitor and simulate vulnerabilities, based on recent attacks that have been attempted in their industry or location, has a significant impact on the quality of OT monitoring, without slowing down or stopping critical infrastructure, Radiflow said.
In June, Rafael Advanced Defense Systems announced that Radiflow will be part of a new consortium that it had set up to provide solutions for cyber-protecting crucial Israeli infrastructure, especially from state and independent hackers. The Rafael-led cyber OT Consortium includes a variety of companies that provide battle-proven solutions using complementary technologies. Within the consortium, Radiflow will offer its technologies in OT threat detection and monitoring, threat intelligence-based BAS, industrial risk assessment, and optimization of cybersecurity operations.
Radiflow had joined Mitsubishi Electric UK last November to address the IEC 62443 cybersecurity standard needs in the critical infrastructure and industrial automation markets. With the new offering covering cybersecurity software, hardware, and consultancy services, Mitsubishi customers can protect systems through adherence to critical industry security frameworks.