On March 18, PAS announced the release of its PAS Cyber Integrity™ 6.3. The new release of the company’s cybersecurity offering builds on the company’s ability to assess and identify risk with the addition of risk analytics, which operates as a continuous mechanism to both identify and quantify risks for multi-vendor OT (Operational Technology) endpoints. The new release also features forensic analysis capabilities that provide insight into the impact and propagation of a cyberattack.
“Industrial facilities must swiftly identify and remediate OT asset cybersecurity risks to preserve operational safety and reliability,” says Sid Snitkin, vice president of cybersecurity services at ARC Advisory Group. “This can be challenging, as those securing vital OT systems may lack the visibility, context, and situational awareness needed to identify risks, prioritize remediation activities, and accelerate incident response and recovery. Cyber Integrity risk analytics provide a comprehensive view of cyber asset inventory, configurations, and vulnerabilities across industrial control systems.”
Risk Analytics Capabilities
PAS Cyber Integrity helps industrial end users to secure critical OT systems necessary for safe and reliable production. Most end users are not aware of the complete picture of OT related assets in their plant that may be vulnerable. Cyber Integrity enables end users to gather and maintain a complete, accurate inventory of OT cyber assets, capture configuration baselines, monitor for unauthorized configuration changes, automate a continuous vulnerability and patch management process across the enterprise, and implement a program for system backup and recovery.
The new risk analytics capabilities in PAS Cyber Integrity allows users to:
- Continuously measure industrial endpoint security posture and provide visibility into cybersecurity risks: vulnerabilities, patch currency gaps, configuration baseline deviations, and unauthorized configuration changes down to the field instrument level.
- Identify OT endpoint security degradation and risk propagation so that OT security specialists, automation engineers, and risk/compliance managers can prioritize remediation and reduce industrial cybersecurity attack surfaces.
- Enable forensic investigations via extensive multi-vendor configuration and referential insight to provide foundational ICS cybersecurity, enterprise scalability, performance, and platform independence.
Many end users are adopting risk management-based approaches to cybersecurity and are looking for ways to easily measure and manage risk across multiple vendor products and systems. The addition of edge computing and IoT to the already complex landscape of industrial control systems and sensors is increasing the complexity of managing good OT level cybersecurity programs. The promise of identifying unauthorized configuration changes all the way down to the device level is another issue that users face today that has not received a lot of attention, but with intelligent sensors and actuators gaining more scrutiny in the wake of IoT device level hacks, cybersecurity at the device level is gaining more attention even in process plants.
Cyber Integrity is built upon the PAS Integrity™ platform. According to PAS, Integrity “manages configurations for hundreds of industrial companies across the world. PAS solutions are used at over 1,380 industrial facilities including 13 of the top 15 chemical companies, 10 of the top 15 refining companies, and 5 of the top 15 power companies in the world.” PAS will showcase the new Cyber Integrity risk analytics release at the SANS ICS Security Summit on March 18-19, 2019, in Orlando, Florida.