The NIST cybersecurity framework is a set of guidelines and best practices developed by the National Institute of Standards and Technology (NIST) in response to an Executive Order from the U.S. government. The intention of the framework is to help organizations in critical infrastructure sectors manage and reduce cybersecurity risk.
This framework categorizes five core functions — identify, protect, detect, respond, and recover — as a flexible starting point for organizations to improve their cybersecurity awareness and preparedness. It also includes categories and subcategories which provide a more concrete action plan for specific departments or processes within an organization.
NIST guidelines are mandatory for U.S. government agencies and any organization doing business with the U.S. government. However, the framework should be adopted by all organizations — both public and private — concerned about their cybersecurity posture.
As the NIST CSF's first function, Identify encompasses a series of controls focused on developing an organizational understanding to manage cybersecurity risk to systems, people, assets, data, and capabilities.
Claroty Support: Claroty’s automated asset discovery capabilities and centralized asset inventory allow organizations to gain complete, real-time visibility into all IoT, IIoT, IoMT, and other connected devices — providing them with the XIoT asset inventory that is foundational to complying with the NIST cybersecurity framework.
As the NIST CSF's second function, Protect encompasses a series of controls focused on outlining the appropriate safeguards to ensure delivery of critical infrastructure services.
Claroty Support: Claroty equips organizations to harden their environments against cyber threats by harnessing expert-defined policies and granular access controls to embrace network segmentation and Zero Trust. We also offer a newly enhanced Vulnerability and Risk Management (VRM) module, which allows organizations to better understand their CPS risk posture, better allocate their resources to improve it, and to protect their critical CPS environments from growing threats.
As the NIST CSF's third function, Detect encompasses a series of controls focused on enabling the timely discovery of cybersecurity events.
Claroty Support: Claroty enables organizations to continuously monitor for and respond to the earliest indicators of threats — ranging from ransomware, to equipment failures, to malicious insiders, to IP theft, to misconfigurations —before they impact safety, compliance, or other assets.
As the NIST CSF's fourth function, Respond encompasses a series of controls focused on taking action against a detected cybersecurity incident.
Claroty Support: Claroty offers multiple detection engines to automatically profile all assets, communications, and processes in CPS networks. Our solutions have a deep understanding of proprietary industrial protocols and device behaviors to ensure each device receives the security policy appropriate for it — and prevents any future violations. We also provide a portfolio of threat capabilities that seamlessly integrate with your existing tech stack — bridging the IT-Industrial expertise gap.
As the NIST CSF's fifth function, Recover encompasses a series of controls focused on appropriate activities to maintain plans for resilience and to restore any capabilities or services that were impaired due to a cybersecurity incident.
Claroty Support: Claroty solutions provide change information on critical systems to assess whether affected systems can be put back into production, and KPIs for improvement through our analysis of network segmentation, critical system vulnerabilities, and attack vectors. We also enable information sharing for secure and efficient distribution of information critical to recover.
Claroty xDome is a flexible SaaS platform purpose-built for all use cases & types of CPS on the entire industrial cybersecurity journey.
Medigate by Claroty is a SaaS-based healthcare cybersecurity platform that safeguards the connected devices that underpin patient care.
Claroty Secure Remote Access (SRA) delivers frictionless, reliable, secure remote access for internal and third-party OT personnel.
Claroty Continuous Threat Detection (CTD) offers robust, on-premises cybersecurity controls for industrial environments.