FAQ: Claroty xDome

The latest step forward on Claroty’s ​​mission to secure the cyber-physical systems (CPS) of connected organizations is our release of Claroty xDome — the first SaaS platform to support the entire industrial cybersecurity journey while driving resilience across the extended internet of things (XIoT). The following Q&A provides clarity on the scope of xDome and the challenges it is purpose-built to address.

What Challenges are Introduced by XIoT? 

The XIoT has been fueled by rapid digital transformation, which includes a vast web of cyber-physical systems — ranging from traditional OT assets in industrial environments, to “smart” lighting and HVAC systems to even internet-connected vending machines within facilities. Although there are undeniable benefits to this advanced technology, this CPS interconnectivity has created new security blindspots, and a growing attack surface that poses risk to operations and safety. In order to maintain cyber and operational resilience in the midst of evolving XIoT, organizations need a robust solution that spans the entire cybersecurity journey. 

Why Did Claroty Introduce xDome as The Latest Addition to its Portfolio?

Enterprises are rapidly modernizing their industrial and commercial environments by deploying new XIoT assets alongside their existing brownfield CPS equipment. These conditions are fueling new risk blindspots, amplifying scalability requirements across technology stacks, and leading to more types of cybersecurity stakeholders with increasingly complex needs. As the XIoT continues to evolve, organizations must understand that achieving and maintaining cyber and operational resilience simply can not be satisfied by traditional solutions or generalized approaches. 

That’s why the Claroty Team introduced xDome, to tackle these challenges and, ultimately, further enable enterprises to embrace digital transformation safely, securely, efficiently, and with confidence. 

What is The Scope of xDome’s Coverage for Securing The XIoT?

​​xDome spans the entire cybersecurity journey, from empowering organizations with complete asset visibility and effective vulnerability and risk management, to enhanced network protection, to optimal detection and response. Core use cases and capabilities include:

• Asset Discovery: A complete XIoT asset inventory is the foundation of the industrial cybersecurity journey. To ensure full visibility, xDome offers three flexible methods that can be combined or used separately based on the unique needs of each environment — passive monitoring, Claroty Edge, and/or integration ecosystem. 

• Vulnerability & Risk Management: xDome automatically correlates every asset with our comprehensive vulnerability database. Customers can leverage 90+ variables to customize their risk tolerance parameters, which xDome then ingests to provide tailored risk scores and recommendations to inform effective mitigations.

• Network Protection: xDome leverages its XIoT visibility to recommend network communication policies. Customers can then easily monitor, refine, and automatically enforce these policies through their existing infrastructure. This lays the lay foundation for effective implementation of Zero Trust best practices that insulate environments against threats.

• Threat Detection: xDome continuously monitors for the earliest indicators of known and emerging threats. By profiling all assets and communications, xDome establishes a baseline of normal behavior to weed out false positives and minimize alert fatigue.

• Asset & Change Management: xDome harnesses in-depth asset insights and an enriched CMDB to monitor for maintenance issues and necessary updates, enable SLA compliance, support audit requests, and drive workflow and supply chain efficiencies.

What Differentiates xDome From Other Offerings in The Market?

xDome is the first and only SaaS-based platform to support the full industrial cybersecurity journey without compromising on the breadth or depth of controls. As a SaaS solution with quick and easy deployment options and a flexible UI purpose-built to adapt to all operational, cybersecurity, and executive needs, xDome deploys and scales effortlessly no matter the user or use case. Highlights include: 

• The broadest and deepest asset discovery capabilities of any SaaS solution. All other SaaS solutions only offer “one-size-fits-all” asset discovery via passive monitoring, xDome offers three discovery methods — passive monitoring, our Claroty Edge collector, and enrichment via third-party integrations —  that customers can mix and match to achieve full visibility in a manner best-suited for their environment.

• Vulnerability and risk management support backed by award-winning research. xDome is the only SaaS solution with vulnerability and risk management capabilities backed by Claroty’s domain expertise and acclaimed research arm, Team82. 

• Unmatched network segmentation controls that protect against escalating risks. Only xDome has the depth of knowledge and purpose-built technology needed to jumpstart and optimize customers’ segmentation programs via expert-defined policies that can be automatically enforced with customers’ existing firewall and NAC solutions.

• The industry’s lowest time-to-value (TTV) and total cost of ownership (TCO)

At Claroty, we understand that the extended internet of things is continuously evolving, and that a modular, SaaS-powered cybersecurity platform, like xDome, is needed to protect your environment and fulfill your goals as they evolve. With xDome, industrial organizations can gain unmatched visibility through precise techniques, and build a strong foundation for cyber and operational resilience with a platform that scales effortlessly no matter the user or use case.