The cyber threats which make headlines every day are now targeting industrial networks and are impacting the real world in the form of production outage, environmental disaster or human safety. To prevent and mitigate these problems, Sentryo, a developer of cybersecurity solutions for the Industrial Internet, has launched the Sentryo ICS CyberVision app for IBM QRadar. This new app leverages IBM security intelligence technology to help cybersecurity teams build a coordinated threat management strategy across both IT and industrial environments.
How the ICS CyberVision App for IBM QRadar Works
Sentryo’s ICS CyberVision feeds the IBM QRadar Security Intelligence Platform with a detailed list of events, vulnerabilities and asset information from the company’s industrial network to gain comprehensive visibility on the company’s cybersecurity posture.
IBM QRadar ingests data from Sentryo ICS CyberVision, along with other log, flow, user, asset and vulnerability data across an organization’s IT infrastructure to identify security threats in real-time. Integrating QRadar and ICS CyberVision gives a unified view to visualize attacks based on both IT and industrial networks, the ability to correlate IT and OT events to quickly detect and remediate threats, to accelerate forensic investigations, to build comprehensive security reports, and more.The Sentryo application for QRadar is freely available to the security community through IBM Security App Exchange, a marketplace where developers across the industry can share applications based on IBM Security technologies.
“As industrial networks are embracing IT technologies and connected applications, they are more exposed to cyberattacks than ever. Enterprises of all sizes need to take cybersecurity measures to ensure continuity, resilience and safety of their industrial operations,” explains Laurent Hausermann, Sentryo’s COO and co-founder. “Integrating Sentryo’s ICS CyberVision with IBM QRadar allows corporations to manage cybersecurity as a whole, leveraging their skills and investments in their SOC to enable a safe migration to industry 4.0 technologies.”