Claroty, the cyber-physical systems (CPS) protection company, announced a new strategic collaboration with Google Security Operations that brings greater threat detection and response capabilities to organisations looking to bridge the gap between IT and operational technology (OT) in order to secure mission-critical infrastructure.
This integration will enhance security by feeding high-fidelity, context-rich alerts and vulnerability data from SaaS-powered Claroty xDome or on-premise Claroty Continuous Threat Detection (CTD) into Google’s cloud-native security operation platform.
Security operation centres
Security operation centres (SOCs) are in the trenches of converging IT and OT environments
Security operation centres (SOCs) are in the trenches of converging IT and OT environments, creating a new set of unique security challenges compounded by legacy systems, limited visibility, and the proprietary protocols that come with OT specialisation.
As a result, SOCs are left with a lack of visibility into the types of threats that impact physical operations, overwhelmed by unfiltered alerts and growing compliance demands, and plagued by slowing response times that expose organisations to risk.
The integration builds on Google Security Operations’ existing support for Claroty telemetry by enabling organisations securing CPS environments to unify their threat detection, accelerate incident response, proactively manage and remediate exposures, enhance threat hunting, and simplify compliance efforts.
Risk reduction
By prioritising remediation, this new integration drives meaningful risk reduction and operational efficiency. Capabilities of the integration include:
- Ingesting Claroty Alerts and Vulnerabilities into Google Security Operations: Correlate xDome and CTD insights with broader enterprise data for enriched context and precision threat detection that focus on risk-based remediation.
- Earlier Detection of Critical Threats: Identify CPS-specific risks that traditional IT tools miss for recognition of threats targetting OT, IoT, and other CPS assets before they escalate.
- Faster, Risk-Based Incident Response and Remediation: Empower security teams to detect and respond to threats with actionable, OT-aware intelligence, enabling remediation of underlying vulnerabilities that significantly reduces mean time to resolution (MTTR).
Threat landscape
“The CPS threat landscape is quickly expanding and is a high-value target for bad actors looking to exploit potential vulnerabilities as digital transformation takes shape across enterprises,” said Tim Mackie, Vice President of Worldwide Channel and Alliances at Claroty.
He adds, “By combining the verticalised expertise of Claroty and our deep understanding of CPS, from deep protocol expertise to complete asset context, with Google Security Operations’ ability to prioritise threats, automate response workflows, and correlate complex attack patterns across domains, we’re able to increase operational uptime, simplify compliance across hybrid environments, and above all else, reduce risk.”
IT security
“IT security teams are increasingly taking on the responsibility of securing physical assets, from IoT, to medical devices, to building management systems, to supply chain automation,” said McCall McIntyre, Head of Security Product Partnerships, Google Cloud.
He adds, “They need a fully integrated solution in their SOC that leverages the unrivaled knowledge of CPS delivered by Claroty and the intelligence-driven workflows of Google Security Operations that together empower SOC teams with a unified view of threats across environments, enabling earlier detection of attacks and accelerating response times.”
Learn why leading casinos are upgrading to smarter, faster, and more compliant systems
