Industrial Control Systems Security Solutions

Cisco offers ICS capabilities through its IPS Industrial Signatures solution. IPS has been established as a vulnerability mitigation technique for over a decade and can protect ICS networks against threats, regardless of whether the underlying issue is in a traditional network component or specific to ICS. Cisco’s IPS Industrial Signatures solution provides rapid-response to mitigate attacks, while also maintaining the availability and integrity of critical assets.

Siemens offers ICS solutions through SIRIUS, a unique, comprehensive portfolio for ICS applications. Its strength lies in its modular design, which can be easily integrated into distributed systems. SIRIUS consists of monitoring and control devices, safety systems, position and safety switches, and commanding and signaling devices. Its control systems consist of multi-processor systems that contain simple combinable function blocks, such as simple mathematics or logical operations through motion control of all linear and rotational axis.

The ISS SCADA security solution by IBM has three main components: Intrusion Prevention Systems, SCADA Assessment Services, and IBM Managed Security Systems. IBM Proventia Network Intrusion Prevention System (IPS) has the ability to protect systems from critical vulnerabilities or attacks, while IBM Managed Security Services for clients provides outsourced solutions for comprehensive real-time security management.

Honeywell offers a vast range of ICS security products including advanced process control software, industrial flame monitoring sensors, switches and controls, automation lifecycle support services, control monitoring and safety systems, gas detection (fixed and portable), industrial wireless solutions, distributed control system, test and measurement sensors, application whitelisting and device control service, endpoint protection, industrial cybersecurity risk manager, managed industrial cyber security services, network security, and response and recovery.

ABB offers a wide range of products under its ICS security portfolio, such as Network Manager SCADA/Distribution Management Systems (DMS), SCADA/Energy Management Systems (EMS), SCADA/Generation Management Systems (GMS), and ABB Control Systems 800xA. Its ICS security services include consulting services, maintenance services, professional services, remote monitoring services, and support services. ABB offers safe, effective, and enhanced operation of electric power systems through its SCADA/Energy Management System (EMS). EMS provides an open platform that enables smooth integration with other utility information systems while offering enhanced security levels.

Trend Micro offers a security platform, Trend Micro Consumer Connect (TMCC) for the telecom industry. It protects connected home environments using a threat intelligence system (Trend Micro Smart Protection Network) that protects communications and secures devices. This platform also delivers additional integrated security services.

General Electric provides ICS solutions that help improve the operational efficiency of an organization through asset optimization, enhanced process performance, and increased productivity. Prednix, a flagship product launched by the company in 2016, combines cutting-edge technology with industry experience to rapidly analyze machine-grade data and deliver faster outcomes. General Electric mainly caters to the healthcare, power generation, and manufacturing sectors. Its products are flexible and inexpensive and offer better productivity and lower risk as compared to products from its competitors.

Fortinet’s ICS security or SCADA solution protects ICS from advanced threats. Its appliances are highly reliable for harsh environments and compliant with Federal Information Processing Standard (FIPS) 140-2 and Common Criteria Evaluation Assurance Level (EAL) 4+. The solution is easy to deploy and manage, with tightly integrated security, networking, wireless, and admission control capabilities that can track devices and the traffic they produce.

McAfee’s Database and Endpoint Security offers real-time protection to business-critical databases from external, internal, and intra-database exploits. The solution delivers robust security and constant compliance without the need for architecture changes, expensive hardware, or downtime.

Symantec provides ICS security solutions for both, operators to secure their plants and infrastructure as well as equipment vendors to increase the security of their products. Symantec’s Critical System Protection (SCSP) helps plant/infrastructure operators protect their equipment from sophisticated attacks. SCSP offers robust, signature-less, and host-based protection in managed and unmanaged scenarios, without compromising the device’s performance. Some of the key features of SCSP are application whitelisting, application specific network firewall controls, integrated host-based firewall, USB device whitelisting, auto-sandboxing, anti-exploit mitigation techniques, and deep application discovery.

Check Point uses security gateways, application control, unified central management, asset and anomaly detection, intrusion prevention, and secure harsh environments with 1200R to protect ICS networks from cyber attacks and malicious threats. Its 1200R solution delivers rugged, comprehensive security to most environments.

F5 Networks provides security to data, applications, and businesses. The company deploys its services with partners such as Amazon Web Services, Azure, RedHat, and VMWare.

Kaspersky Industrial CyberSecurity is a solution developed for critical infrastructures and industrial equipment. This solution combines a variety of conventional security technologies. Device access control is also included in this solution which helps customers monitor connections to portable data storage media and peripheral devices. Kaspersky Industrial CyberSecurity provides cybersecurity across all network levels.

CyberX platform is the simplest, most mature, and most interoperable solution for auto-discovering assets, identifying critical vulnerabilities and attack vectors, and continuously monitoring ICS networks for malware and targeted attacks. What’s more, CyberX provides seamless integration with existing SOC workflows for unified IT/OT security governance.

Lockheed Martin Corporation is a global security and aerospace company that offers full-spectrum cyber capabilities and cyber resilient systems to the intelligence community and global security customers. The company secures platforms, systems, networks, and data of businesses through various innovative products.

Belden’s Industrial Cyber Security solution portfolio safeguards and supports industrial networks, PCs, critical endpoints, and industrial controllers while simultaneously maintaining reliability in delivery, high availability, and operational resilience.

FireEye’s solutions for critical infrastructure and ICS are in pace with industry standards and federal regulations to protect complete network environments. The company provides comprehensive solutions which protect important assets from cybersecurity threats.

Nozomi Networks offers an ICS solution called SCADAguardian. It safeguards control networks from cyber-attacks and operational disruptions by analyzing passive network traffic and rapidly detecting cyber threats. It offers real-time network visualization by improving system awareness and understanding network structure and activity. It also helps monitor network and ICS by providing comprehensive cybersecurity and reliability monitoring.

Microsoft’s cloud-based machine learning and artificial intelligence applications help detect and stop millions of threats that can infect networks. In-depth analysis from Microsoft Security Intelligence helps protect modern workplaces across its entire attack surface, securing identities, endpoints, cloud apps, and infrastructure.

Indegy developed a cybersecurity platform that provides comprehensive visibility into the critical control plane of Operational Technology (OT) networks to identify threats that place the safety, reliability, and security of ICS at risk. The Indegy Cyber Security platform provides automated and centralized threat monitoring and anomaly detection capabilities. It enables organizations to protect their physical processes from external threats by maintaining comprehensive visibility and oversight of all the activities on OT networks anywhere in the world.

Raytheon’s High Speed Guard Industrial Control System, an accredited software solution, offers highly complex, unidirectional or bi-directional automated data transfers between multiple physically segregated networks. Features such as rapid and automatic data transfer, compatibility with diverse communication systems, and low administration cost make High Speed Guard an ideal choice for production-critical systems. This solution also establishes rapid output and low-latency transfer rates.

Corero’s product Corero SmartWall Threat Defense System (TDS) protects network infrastructure, online services, and confidential data from DDoS attacks. The Corero technology is at par with industry standards on all fronts. Corero provides a comprehensive solution, in a good network design natural “collapsed inspection points” are built inherently by the devices that provide the segmentation between the different levels. Instead of deploying first- or even next-generation firewall technology between the levels, transparent inspection technology is imperative to protect against the wide array of electronic threats facing ICS components today.

The visibility, analytics, and automation delivered through Rapid7’s Insight Cloud help security teams reduce vulnerabilities, monitor for malicious behavior, investigate and shut down attacks, and automate routine tasks.

Bayshore’s Industrial Cyber Protection Platform provides security against existing cyber threats and risks. It uses a Policy Engine to actively block unauthorized communications on the network, while simultaneously providing alerts to enable IT teams to take appropriate action The main advantages of the platform include logic-rich policy-based security and inspection of industrial application traffic.

Northrop Grumman offers a SPUDS (SCADA Protocol Unique Digital Signature) tool that monitors and protects Industrial Control Systems (ICS) against malicious activity. The tool is a combination of both, software and hardware components that monitors an organization’s network continuously for the detection of insider threats and anomalous and malicious code.

Schneider offers an open, interoperable, and IoT-enabled platform called EcoStruxure that helps connect businesses making them efficient, sustainable, safe, and more reliable.

Sentryo is a unique provider of solutions dedicated to managing the cyber risk of M2M networks and Industrial Control Systems (ICS). The company’s ICS CyberVision solution offers control engineers complete visibility over all equipment connected to their industrial networks, enabling them to identify threats and make the right decisions to ensure the integrity of their systems. The solution also uses artificial intelligence and machine learning algorithms to gain a real-time understanding of the state of the industrial facility, analyze alarms, and control the security of the infrastructure.

Rockwell offers a modern Distributed Control System (DCS) known as PlantPAx that seamlessly integrates critical process areas and the balance of plants into a common automation platform. The DCS connects process, discrete, power, information, and safety control into one plant-wide infrastructure. Rockwell’s PlantPAx offers a range of architecture options and scalable system capabilities.

SecurityMatters provides a highly advanced threat monitoring and intelligence platform called SilentDefense that protects ICS/SCADA networks through Deep Packet Inspection (DPI) technology. The platform has a large number of ICS threat indicators that safeguard asset owners from critical cyberattacks, network errors, and operational faults.

Darktrace offers Darktrace Enterprise, an artificial intelligence cyber defense solution that uses AI and ML to protect networks, and Darktrace Industrial, a specially designed offering used to identify threats and vulnerabilities in SCADA systems and IT networks as it major offerings. In addition to these solutions, it also offers Darktrace Cloud, Darktrace SaaS, and Darktrace Antigena. The company has adapted innovative mathematical models to ICS data for machines, networks, and users within environments, which spots previously unidentified anomalies in real-time.

Dell is a major technology driven company providing a computing platform for the outdoors. The company provides a security solution that can be deployed in any outside situation without changing the present power connectivity.

CyberArk provides a security solution that manages privileged access to IT environments. It is scalable and protects networks from malware threats. It also addresses vulnerabilities between IT environments, industrial control systems, and remote users. CyberArk’s Core Privileged Access Security Solution is used by many organizations to protect their digital assets.

Positive Technologies' ICS security portfolio consists of 2 products, namely, MaxPatrol for vulnerability and compliance management, and PT ISIM for cyber threat detection and incident response. It also provides ICS/SCADA security assessment and forensic investigation services.

Veracity offers best-in-class security through a centralized command center for industrial control systems. The company also offers an industrial network platform to improve the reliability, efficiency, and security of industrial networks and devices.

AlertEnterprise delivers Information Technology and Operational Technology (IT-OT) Convergence for Corporate and Critical Infrastructure Protection. It also eliminates silos and uncovers blended threats across IT Security, Physical Access Controls, and Industrial Control Systems for true prevention of insider threats, fraud, theft, sabotage, and acts of terrorism.

FDT Group is an international not-for-profit organization that consists of leading member companies active in industrial automation manufacturing. The main goal of the organization is to provide an open and non-proprietary standardized interface to integrate field devices with engineering, automation, and asset management systems.

Drive Lock SE is a leading IT firm specializing in IT and data security with a strong focus on the continuous improvement of its products. Security training is expensive and neither powerful nor reasonable, as they are seldom led in direct connection to a related attack. Employees even see them as superfluous, aggravating or irritating, and they don't require the dynamic collaboration surprisingly included. DriveLock Smart SecurityEducation, then again, is a basic, adaptable, persistently accessible on the web or disconnected and is a halfway overseen arrangement.

Dragos’ Worldview is a dedicated ICS intelligence offering in the marketplace that provides defenders with contextual reports and IOC’s to further illuminate adversarial behavior and enable appropriate detection and preventative measures. Its Threat Operations Center includes services such as threat hunting and incident response and training.

Akamai offers security services to protect websites, mobile infrastructure, and APIs. These services are trusted by various asset managing companies, insurance companies, and financial technology companies.

Mimecast provides an expanded cloud suite that helps make email communication safer, restoring trust and bolstering cyber resilience. Its web security, archive and data protection, awareness training, and uptime assurance services help organization battle cyber attacks with ease.

Juniper Networks offers products and services for high-performance networks that enable customers to build scalable, reliable, secure, and cost-effective networks for their businesses. The company offers services and products in the Cloud, Service Provider, and Enterprise verticals. Juniper Networks also offers services, including maintenance and support, professional services, and education and training programs.

ESET is a pioneer in IT security and the maker of award-winning proactive technology. Its security solutions protect over 100 million computer users–businesses and consumers–in more than 180 countries, enabling them to enjoy safer technology. ESET's goal is to make sure that everybody can enjoy the opportunities that technology offers.

Cylance provides security recommendations looking at business threats and then provides measures that can be deployed according to the infrastructure.

Airbus offers ICS solutions such as ICS Security Risk Analysis and ICS Security Maturity Check. Airbus’ ICS solutions help customers uncover weaknesses and flaws in their industrial systems. ICS Security Risk Analysis helps customers with document analysis, risk analysis, data analysis, reporting, and risk evaluation.

Claroty provides comprehensive security solutions that enable IT teams to detect, control, and protect an organization’s networks. It uses an advanced CoreX engine for its Claroty Platform specially designed for large industrial networks that can continuously monitor and analyze networks to detect vulnerabilities.

Maverick is one of the leading providers of industrial security solutions for manufacturing industries. The company develops industrial security policies and procedures, facilitates training and awareness, and offers vulnerability and patch management to control testing/simulation environments.

Carbon Black safeguards industrial control systems from upcoming external threats without interrupting their availability. The company’s solutions follow strict regulatory compliances and ensure strict control of critical, high-risk systems.

IYS Control Systems uses PLCs, embedded control, Windows PC, and Windows Mobile Devices, as well as low technology to offer solutions to different businesses. IYS’s design software contains SolidWorks 3D Cad, Altium Schematic Capture, Altium PCB Design, Altium FPGA Design, AutoCAD 2D, and Visual Studio for PC-based systems.

Nation-E offers cybersecurity for critical infrastructure and the Internet of Things. The company focuses on the detection and mitigation of real-time data vulnerabilities, preventing the operational and financial impact caused by malicious attacks. Solutions provided by the company include Supervisory Control and Data Acquisition (SCADA) systems, Programmable Logic Controllers (PLC), and Communication Hubs. Nation-E’s ICS solutions secure the blind spot between IT and OT systems and provide maximum protection to systems designed without cybersecurity contemplations in mind.

BeyondTrust provides privileged access management to protect data breaches associated with stolen credentials, misused privileges, and compromised remote access. Platforms supported by BeyondTrust’s offerings include the endpoint, server, cloud, DevOps, and network device environments.