The Situation
Increased global connectivity and the significant increase in the number of sophisticated cyberthreats targeting industrial control systems (ICS) drove this Middle East Oil & Gas company's leadership to identify new risks and develop solutions to enhance cyber resilience and reduce risk to their ICS environments.
Results
- Hybrid asset data collection (agent, agentless, and network traffic analysis)
- Asset baselining and snapshot of the current security state (patches, signatures, compliance, etc.)
- Comprehensive asset management (auto-discovery, device inventory, software inventory, topology view, logical ports, and approved services)
- Configuration change management (baseline management and change detection)
- Events and alerts (centralized collection and consolidation, logical and correlation rules)
- Compliance with best practice standards and regulatory guidelines
- Integration with SIEMs and log managers
- Patch management
