On February 4, cybersecurity solutions provider Radiflow announced it was launching a new business-driven industrial risk analytics service for operational technology networks.
Radiflow specializes in solutions for industrial automation networks. The company’s new iRISK solution is designed to provide comprehensive vulnerability assessment reporting for OT networks, including risk prioritizations and mitigation recommendations.
“iRISK adds an important new risk planning and mitigation prioritization layer to OT cybersecurity between mapping and visibility to threat detection,” Rani Kehat, vice president of business development at Radiflow, said in a press release. “Our risk assessment capabilities enable our industrial enterprise and critical infrastructure operator customers to assess their risk levels and plan their mitigation roadmaps in the most effective way, while enabling our MSSP partners to differentiate their OT cybersecurity offerings with new and advanced services.”
With iRISK, users can generate a risk-oriented visibility report for their OT network. This industrial risk analytics report includes the details of network properties, risk levels for devices and links, and potential attack paths for detected vulnerabilities. The unique iRISK algorithm allows users to calculate the likelihood of each attack on the analyzed OT network. This algorithm evaluates the network context of each device rather than its standalone posture.
“iRISK applies a unique approach to weigh the exploitability of the assets and links in the OT network’s digital image against historical attack data combined with impact analysis based for each business process,” the February 4 release says. “iRISK uses this weighted data to run multiple attack simulations in order to provide a unique modelling of the likelihood of attacks and effectiveness of the proposed mitigations.”
In addition to industrial risk analytics, iRISK also provides mitigation recommendations related to its assessments. These recommendations, which are aligned with National Institute of Standards and Technology guidelines, specify corrective actions for improving the OT network’s security posture.