Industrial and critical infrastructure managers, after the WannaCry and NotPetya attacks, were forced to implement more robust cybersecurity controls. These attacks had quickly spread from the Internet and IT networks to OT networks across ordinary SMB connections. The industry has known for years that most OT protocols and devices are "insecure by design" - lacking many modern controls like endpoint security, regular patch cycles, etc. Claroty aims to fill this gap with by introducing leading-edge security technologies to OT networks, in an effort to secure it just the way everything else on the Internet is protected.
Claroty is a cybersecurity software company focused on protecting industrial control networks. The privately-held company headquartered in New York was founded in 2014 with intent to let the industrial world enjoy the substantial benefits of increasingly networked-control systems, without compromising operational resiliency, personnel safety, or the security of core assets. It arms the cybersecurity and engineering teams of industries with solutions designed to offer them a complete picture of what is happening across their complex industrial control network. By providing extreme visibility into ICS (Industrial Control System) networks, Claroty brings the benefits of IT to the OT world, enabling users to respond rapidly to critical process disruptions and system abnormalities.
Claroty enables engineers, operators, and cybersecurity professionals to protect and optimize even the most complex OT networks with a single holistic platform. Claroty was commended by Frost & Sullivan for dominating the OT network protection market with its holistic security platform. Claroty made it to SINET’s 2018 Innovators list and also won the S4x18 ICS Threat Detection Challenge that was cooked up by Digital Bond, ICSSecure and the aeSolutions teams last year. Claroty is even an ASTORS Award Winner in the Best Cyber Critical Infrastructure Solution category.
Claroty’s ‘Core’ Products
Claroty’s platform provides security teams with extreme visibility into industrial control networks, real-time monitoring, network segmentation, control over employee and 3rd party remote access, and integration with existing SOC, cybersecurity and network infrastructure. Claroty's advanced CoreX engine powers the Claroty Platform and is the foundation on which Claroty's integrated suite of products is built on. Here’s a glimpse of Claroty’s some well-performing products, in brief.
Continuous Threat Detection – It is Claroty’s flagship product that provides extreme visibility, continuous threat and vulnerability monitoring, and deep insights into ICS networks. Its real-time threat monitoring ability not only detects and hunts down known and unknown threats, but it also monitors for critical changes in the network that can have a negative impact on the industrial process. The product leverages existing network infrastructure to block malicious traffic or quarantine suspicious devices with NAC and Firewall integrations to stop attacks in real-time. It also helps automate ‘virtual segmentation’ in lower levels of OT networks where blocking is prohibited. Continuous Vulnerability Monitoring and the ability to automate Network Segmentation Policy Creation are a few other tasks that the product aids with.
Secure Remote Access – Claroty Secure Remote Access minimizes the risks remote users, including employees and 3rd parties, introduce to OT networks. It provides a single, manageable interface that all external users connect through, prior to performing software upgrades, periodic maintenance, and other support activities on assets within ICS networks. It enables network administrators to define and enforce user access and authentication policies for each asset. It acts as a middle layer that separates the industrial control assets from external parties and thus eliminating direct, insecure interaction. It vaults critical passwords and helps organizations implement best practices and comply with regulatory requirements in order to stay secure.
Enterprise Management Console – It is a centralized management interface that consolidates data from Claroty products across multiple sites, and displays a unified view of assets, activities, and alerts, making it highly suitable for security operations center (SOC) deployments. With Claroty Enterprise Management Console in place, organizations receive consolidated cross-site asset, alert and activity data – filtered and analyzed to proactively highlight operational issues and spot important security trends. Claroty integrates with infrastructures like SIEM (Security Information and Event Management), and others, allowing SOC teams to utilize familiar security tools to filter, correlate and analyze data - complementing their existing IT security knowledge with insights into OT security.
Security Posture Assessment – Claroty Security Posture Assessment serves security teams with the information they need to fix hidden issues that may give an attacker a foothold or impact critical processes. It provides a detailed analysis of the assets and network communication patterns discovered and deep insights about weaknesses in an OT network. The report it generates will include known vulnerabilities for the devices in the network and a list of network hygiene and other configuration issues that can provide a potential attack pathway.
Cybersecurity Thought Leaders
Amir Zilberstein, Benny Porat, and Galina Antova together founded Claroty in 2014. Mr. Zilberstein is CEO of Claroty and a pioneer in the OT Security market. Prior to Claroty, Mr. Zilberstein co-founded Waterfall Security Solutions – a manufacturer of high-end security gateways for the critical infrastructure markets. He managed a team of exceptional researchers and developers in an elite cyber unit of the Israeli Defense Force. Mr. Zilberstein, who is also the inventor and author of ten patents, helped build Gita Technologies post his cooperation with the team at the Defense Force.
Mr. Porat, who also led a strategic research team within an elite cyber unit of the Israeli Defense Force, was a security researcher at NorthBit before building Claroty. He has also published several works on online pattern matching. Benny Porat is CTO of Claroty.
Galina Antova is Chief Business Development Officer at Claroty. Prior to co-founding the company, Ms. Antova was the Global Head of Industrial Security Services at Siemens and served in various roles at IBM in the Provisioning and Cloud Solutions Business.
“Claroty’s mission is to protect industrial control networks from cyber-attacks; ensuring the safe and reliable operation of the world’s most critical infrastructures.”
“We go beyond Ethernet/IP into the realms of the most arcane fieldbus and serial protocols. No corner of the ICS network is dark to us and no event remains misunderstood.”