Dubai: Tenable®, Inc., the Cyber Exposure company, announced the industry’s first integrated Cyber Exposure solution to provide a unified view of cyber risk spanning information technology (IT) networks and operational technology (OT), from enterprise applications to industrial control systems. For the first time, security leaders can rely on a single platform to measure, manage and reduce cyber risk across both IT and OT environments with Tenable Industrial Security™ now integrated with Tenable.sc™ (formerly SecurityCenter) for vulnerability management on-premises.

Digital transformation means that the days of fully air-gapped OT assets are largely gone. Modern OT environments increasingly interconnect with IT, resulting in a complex, sensitive and vastly expanded attack surface. As effective risk management is built on a unified understanding of the entire IT/OT attack surface, organizations are shifting responsibility for OT security to the Chief Information Security Officer (CISO). Yet traditional IT security solutions lack the ability to continuously discover and assess sensitive OT assets. Conversely, most OT security solutions don’t translate to the world of IT. This lack of holistic visibility creates security blind spots and increases the chances of mission- and safety-critical systems being compromised or taken offline. An attack on a high-value OT asset, for example, may begin by compromising a traditional IT asset and then moving laterally.

When used with Industrial Security, Tenable.sc solves this problem by delivering unprecedented clarity into an organization’s converged IT/OT environments. Tenable.sc leverages industry-leading Nessus® scanners to gather a wealth of security-related information from IT-based assets on OT and IT networks. Tenable.sc then combines that information with passively collected asset and vulnerability data from Industrial Security, which provides safe, reliable asset discovery and vulnerability management purpose-built for OT environments. Designed for critical systems that require a non-intrusive approach to vulnerability management, Industrial Security is an OT-native solution that helps identify and prioritize OT risks so organizations can keep safety-critical production assets secure and fully functional. The integration of Tenable.sc and Industrial Security provides the first complete picture of IT and OT assets together, identifying exposures and vulnerabilities across the entire enterprise and helping organizations prioritize and manage cybersecurity against business risk.

Additional enhancements to the Tenable.sc and Industrial Security integrated solution include:

  • Integration with Tenable Cyber Exposure Technology Ecosystem to improve remediation and response processes for both IT and OT environments. Tenable’s market-leading integration partners span some of the most widely deployed Security and IT technologies, including industry-leading SIEM, IT Ticketing and Configuration Management Database (CMDB) solutions. Together, these integrated solutions accelerate the time-to-detect and remediate issues through a greater breadth of visibility across the modern attack surface, depth of analytics, and integrated data and workflows, fostering better collaboration across Security and IT Operations teams.
  • Expanded OT Asset Coverage which includes significantly wider and deeper coverage of several thousand new devices from leading industrial manufacturers, such as Yokogawa and Emerson. These new manufacturers join the top 10 leading industrial manufacturers — including Siemens, Schneider, Rockwell/Allen-Bradley, Honeywell, Mitsubishi and others — whose devices are already covered by Industrial Security.

“The interconnectedness of digital infrastructure today means the security of IT directly impacts OT, and vice versa. Without a single, unified view into converged IT/OT environments, CISOs are basically being asked to defend their organizations blindfolded and with one arm tied behind their backs. It’s bad cyber strategy and it places the business at serious risk,” said Renaud Deraison, co-founder and chief technology officer. “Tenable.sc is a platform used and loved by thousands of CISOs and security teams for on-premises vulnerability management and the integration with Industrial Security for comprehensive IT/OT visibility is a natural and obvious extension of our leading vulnerability management capabilities.”

For more information about the integration, visit
http://lookbook.tenable.com/it-ot-convergence-gartner/industrial-security-overview

About Tenable
Tenable®, Inc. is the Cyber Exposure company. Over 27,000 organizations around the globe rely on Tenable to understand and reduce cyber risk. As the creator of Nessus®, Tenable extended its expertise in vulnerabilities to deliver the world’s first platform to see and secure any digital asset on any computing platform. Tenable customers include more than 50 percent of the Fortune 500, more than 25 percent of the Global 2000 and large government agencies. Learn more at www.tenable.com.

© Press Release 2019

Disclaimer: The contents of this press release was provided from an external third party provider. This website is not responsible for, and does not control, such external content. This content is provided on an “as is” and “as available” basis and has not been edited in any way. Neither this website nor our affiliates guarantee the accuracy of or endorse the views or opinions expressed in this press release.

The press release is provided for informational purposes only. The content does not provide tax, legal or investment advice or opinion regarding the suitability, value or profitability of any particular security, portfolio or investment strategy. Neither this website nor our affiliates shall be liable for any errors or inaccuracies in the content, or for any actions taken by you in reliance thereon. You expressly agree that your use of the information within this article is at your sole risk.

To the fullest extent permitted by applicable law, this website, its parent company, its subsidiaries, its affiliates and the respective shareholders, directors, officers, employees, agents, advertisers, content providers and licensors will not be liable (jointly or severally) to you for any direct, indirect, consequential, special, incidental, punitive or exemplary damages, including without limitation, lost profits, lost savings and lost revenues, whether in negligence, tort, contract or any other theory of liability, even if the parties have been advised of the possibility or could have foreseen any such damages.