Claroty Named a Strong Performer in The Forrester Wave™: Operational Technology Security Solutions, Q2 2024
Download the Report
Claroty Toggle Search

How Claroty Secures DoD OT and FRCS

Definition

Facility-related control systems (FRCS) serve crucial roles in maintaining safe and effective operation of DoD facilities both in CONUS and OCONUS. Yet, these systems are often the overlooked aspects of the security of the mission, regardless of whether that mission is defense or supports defense, such as medical operations or utility monitoring.

Problem Statement

The interruption of any FRCS can often impede mission-critical operations. Disrupting the base or building power supply can obviously bring downstream impact to supply movement, fueling systems, and even airfield lighting. Today, FRCS systems have grown, increasingly connect to and are controlled via the internet, offer remote access, and commonly utilize insecure protocols and legacy systems.  As a result, they create new attack vectors and their vulnerabilities are growing. Without adequate security controls, they tend to be uniquely vulnerable to cyber threats and can be used by adversaries as a stepping stone into the rest of the OT network, sitting dormant until ‘trigger’ time. Further compounding these issues are visibility limitations, as the Services struggle to know what assets they have – both in CONUS and on foreign soil OCONUS.

Solution

To eliminate many of these core challenges, Claroty can assist the Services in applying OT-specific security following the Zero trust reference architecture (ZTRA). Using the Claroty purpose-built OT security portfolio, you can 1) gain visibility and vulnerability insight into all FRCS, 2) segment the network with least impact to the OT network, 3) secure remote access for staff and contractors, 4) maintain protection across FRCS by monitoring for any change to the devices, communication patterns, anomalous communications within each protocol, and misconfigurations, providing alerting and audit trails, and 5) extend existing IT security controls and governance to OT.

Facility-related and other building controls
Building automation systems
Life safety systems
Utility monitoring & control systems
Communications
Intrusion detection systems
Robotics
Definition

Facility-related control systems (FRCS) serve crucial roles in maintaining safe and effective operation of DoD facilities both in CONUS and OCONUS. Yet, these systems are often the overlooked aspects of the security of the mission, regardless of whether that mission is defense or supports defense, such as medical operations or utility monitoring.

Problem Statement

The interruption of any FRCS can often impede mission-critical operations. Disrupting the base or building power supply can obviously bring downstream impact to supply movement, fueling systems, and even airfield lighting. Today, FRCS systems have grown, increasingly connect to and are controlled via the internet, offer remote access, and commonly utilize insecure protocols and legacy systems.  As a result, they create new attack vectors and their vulnerabilities are growing. Without adequate security controls, they tend to be uniquely vulnerable to cyber threats and can be used by adversaries as a stepping stone into the rest of the OT network, sitting dormant until ‘trigger’ time. Further compounding these issues are visibility limitations, as the Services struggle to know what assets they have – both in CONUS and on foreign soil OCONUS.

Solution

To eliminate many of these core challenges, Claroty can assist the Services in applying OT-specific security following the Zero trust reference architecture (ZTRA). Using the Claroty purpose-built OT security portfolio, you can 1) gain visibility and vulnerability insight into all FRCS, 2) segment the network with least impact to the OT network, 3) secure remote access for staff and contractors, 4) maintain protection across FRCS by monitoring for any change to the devices, communication patterns, anomalous communications within each protocol, and misconfigurations, providing alerting and audit trails, and 5) extend existing IT security controls and governance to OT.

Facility-related and other building controls
Building automation systems
Life safety systems
Utility monitoring & control systems
Communications
Intrusion detection systems
Robotics
Definition

Facility-related control systems (FRCS) serve crucial roles in maintaining safe and effective operation of DoD facilities both in CONUS and OCONUS. Yet, these systems are often the overlooked aspects of the security of the mission, regardless of whether that mission is defense or supports defense, such as medical operations or utility monitoring.

Problem Statement

The interruption of any FRCS can often impede mission-critical operations. Disrupting the base or building power supply can obviously bring downstream impact to supply movement, fueling systems, and even airfield lighting. Today, FRCS systems have grown, increasingly connect to and are controlled via the internet, offer remote access, and commonly utilize insecure protocols and legacy systems.  As a result, they create new attack vectors and their vulnerabilities are growing. Without adequate security controls, they tend to be uniquely vulnerable to cyber threats and can be used by adversaries as a stepping stone into the rest of the OT network, sitting dormant until ‘trigger’ time. Further compounding these issues are visibility limitations, as the Services struggle to know what assets they have – both in CONUS and on foreign soil OCONUS.

Solution

To eliminate many of these core challenges, Claroty can assist the Services in applying OT-specific security following the Zero trust reference architecture (ZTRA). Using the Claroty purpose-built OT security portfolio, you can 1) gain visibility and vulnerability insight into all FRCS, 2) segment the network with least impact to the OT network, 3) secure remote access for staff and contractors, 4) maintain protection across FRCS by monitoring for any change to the devices, communication patterns, anomalous communications within each protocol, and misconfigurations, providing alerting and audit trails, and 5) extend existing IT security controls and governance to OT.

Facility-related and other building controls
Building automation systems
Life safety systems
Utility monitoring & control systems
Communications
Intrusion detection systems
Robotics
Definition

Facility-related control systems (FRCS) serve crucial roles in maintaining safe and effective operation of DoD facilities both in CONUS and OCONUS. Yet, these systems are often the overlooked aspects of the security of the mission, regardless of whether that mission is defense or supports defense, such as medical operations or utility monitoring.

Problem Statement

The interruption of any FRCS can often impede mission-critical operations. Disrupting the base or building power supply can obviously bring downstream impact to supply movement, fueling systems, and even airfield lighting. Today, FRCS systems have grown, increasingly connect to and are controlled via the internet, offer remote access, and commonly utilize insecure protocols and legacy systems.  As a result, they create new attack vectors and their vulnerabilities are growing. Without adequate security controls, they tend to be uniquely vulnerable to cyber threats and can be used by adversaries as a stepping stone into the rest of the OT network, sitting dormant until ‘trigger’ time. Further compounding these issues are visibility limitations, as the Services struggle to know what assets they have – both in CONUS and on foreign soil OCONUS.

Solution

To eliminate many of these core challenges, Claroty can assist the Services in applying OT-specific security following the Zero trust reference architecture (ZTRA). Using the Claroty purpose-built OT security portfolio, you can 1) gain visibility and vulnerability insight into all FRCS, 2) segment the network with least impact to the OT network, 3) secure remote access for staff and contractors, 4) maintain protection across FRCS by monitoring for any change to the devices, communication patterns, anomalous communications within each protocol, and misconfigurations, providing alerting and audit trails, and 5) extend existing IT security controls and governance to OT.

Facility-related and other building controls
Building automation systems
Life safety systems
Utility monitoring & control systems
Communications
Intrusion detection systems
Robotics
Definition

Facility-related control systems (FRCS) serve crucial roles in maintaining safe and effective operation of DoD facilities both in CONUS and OCONUS. Yet, these systems are often the overlooked aspects of the security of the mission, regardless of whether that mission is defense or supports defense, such as medical operations or utility monitoring.

Problem Statement

The interruption of any FRCS can often impede mission-critical operations. Disrupting the base or building power supply can obviously bring downstream impact to supply movement, fueling systems, and even airfield lighting. Today, FRCS systems have grown, increasingly connect to and are controlled via the internet, offer remote access, and commonly utilize insecure protocols and legacy systems.  As a result, they create new attack vectors and their vulnerabilities are growing. Without adequate security controls, they tend to be uniquely vulnerable to cyber threats and can be used by adversaries as a stepping stone into the rest of the OT network, sitting dormant until ‘trigger’ time. Further compounding these issues are visibility limitations, as the Services struggle to know what assets they have – both in CONUS and on foreign soil OCONUS.

Solution

To eliminate many of these core challenges, Claroty can assist the Services in applying OT-specific security following the Zero trust reference architecture (ZTRA). Using the Claroty purpose-built OT security portfolio, you can 1) gain visibility and vulnerability insight into all FRCS, 2) segment the network with least impact to the OT network, 3) secure remote access for staff and contractors, 4) maintain protection across FRCS by monitoring for any change to the devices, communication patterns, anomalous communications within each protocol, and misconfigurations, providing alerting and audit trails, and 5) extend existing IT security controls and governance to OT.

Facility-related and other building controls
Building automation systems
Life safety systems
Utility monitoring & control systems
Communications
Intrusion detection systems
Robotics
Definition

Today’s military medical clinics and hospitals provide numerous services, the devices for which are all “connected” in ways like never before. When the DHA operates a facility, regardless of whether they are on a domestic base or OCONUS, they are reliant on MRIs, IV’s, Xray machines, and other medical devices collectively referred to as the Internet of Medical Things (IoMT) as well as other IoT devices required in the healthcare environment.

Problem Statement

Amid digital transformation, increasingly interconnected technology environments, and an evolving threat landscape, the cyber risks facing these healthcare systems are growing exponentially. And for clinics and hospitals that DoD operates OCONUS, they are typically run on infrastructure they don’t control.  With DoD medical facilities more highly targeted by adversaries, the cyber risks may be even greater.

Solution

Claroty’s OT security portfolio helps the military medical community to 1) gain full visibility into all connected devices in your clinical environment, 2) integrate your existing IT tech stack and workflows with those of your IoMT, and 3) extend your existing IT security controls and governance into your clinical environment.

Claroty’s OT security platform has earned 30+ awards and accolades in healthcare cybersecurity, protecting 20M+ medical devices and IoT devices in healthcare environments. We deliver cyber resilience with device discovery, vulnerability and risk management, network protection and threat detection

Medical devices - IOMT
MRI
IV
X-Ray
Definition

When it comes to the DoD Mission Stack, DoD Mission Critical systems or Defense Critical Assets within DoD’s Missions and their weapons and platforms, are the highest priority. Fighter jets as platforms entail many components and subsystems – across navigation, propulsion, fuel and weapons systems – that are all critical to securely enable the mission. They also include supporting operations like airfield operations and fuel storage.

Problem Statement

Each component of the fighter jet as platform must be considered in securely enabling a successful mission(s). And each component has interdependencies, from the security of the fueling operations for successful arrival of fuel, to the security of the communications that inform real-time changes to missions.

Solution

Claroty sees the full picture of Operational Technology (OT) that securely enables the DoD Missions, and adherence to zero-trust controls and the Risk Management Framework (RMF).  Our solutions enable DoD, per the NDAA, to ‘identify threats to, vulnerabilities in, and remediations for, the OT aspects of its missions and mission elements’. We can help you to automate asset inventories for operational systems, autonomously detect threats and vulnerabilities in these systems, provide full featured cyber risk management, recommend mitigations and automate micro-segmentation.  These capabilities implemented on OT networks enforce zero-trust principles and improve the cyber resiliency and survivability of systems on these OT networks.

Mission Critical Systems

Fighter jets
Navigation
Propulsion
Fuel
Weapons
Airfield lighting
Fuel storage
Definition

When it comes to the DoD Mission Stack, DoD Mission Critical systems or Defense Critical Assets within DoD’s Missions and their weapons and platforms, are the highest priority. Surveillance aircraft as platforms come with many components and subsystems – across navigation, propulsion, fuel and surveillance systems – that are all critical to securely enable the mission.

Problem Statement

Each component of the Surveillance aircraft platform must be considered in securely enabling a successful mission(s). And each component has interdependencies, from the security of the fueling operations for successful arrival of fuel, to the security of the communications that inform real-time changes to missions.

Solution

Claroty sees the full picture of Operational Technology (OT) that securely enables the DoD Missions, and adherence to zero-trust controls and the Risk Management Framework (RMF).  Our solutions enable DoD, per the NDAA, to ‘identify threats to, vulnerabilities in, and remediations for, the OT aspects of its missions and mission elements’. We can help you to automate asset inventories for operational systems, autonomously detect threats and vulnerabilities in these systems, provide full featured cyber risk management, recommend mitigations and automate micro-segmentation.  These capabilities implemented on OT networks enforce zero-trust principles and improve the cyber resiliency and survivability of systems on these OT networks.

Mission Critical Systems

Surveillance aircraft
Navigation
Propulsion
Fuel
Surveillance
Definition

Entry Control Facilities (ECF) and Access Control Points (ACP) at DoD facilities CONUS and OCONUS are the first line of defense in physical DoD infrastructure. Covered by the security requirements of the Unified Facilities Criteria (UFC) documents, Bases, facilities and functions vary in their ECF/ACP capabilities, from cameras to automated entry systems. They also rely upon the base electrical power, data and communication infrastructure often not under the DoD’s direct control.

Problem Statement

ECF/ACP capabilities themselves are increasingly interconnected technology environments. Cyber adversaries can use the digital domain to attack physical infrastructure as part of a chain of events to diminish or disrupt mission systems and operations. With an evolving threat landscape and greater connectedness, the cyber risks facing these systems are growing exponentially and should be considered as part of a base’s cyber plan and that of Installations of the Future.

Solution

Claroty sees the full picture of Operational Technology (OT) that securely enables the DoD Mission stack.  Our solutions enable DoD, per the NDAA, to ‘identify threats to, vulnerabilities in, and remediations for, the OT aspects of its missions and mission elements’.  Claroty’s OT security solutions consider every device – including these easy-to-overlook physical security devices - of a cohesive cyber security plan for a base, facility or mission function. We deliver cyber resilience with:

•Device discovery

•Vulnerability & Risk Management

•Network Protection, and

•Threat Detection

across these functions, enabling adherence to UFC 4-022-01 and other Unified Facilities Criteria and mandates to secure DoD missions globally.

Entry control facility (ECF) / Access control point (ACP)
Automated identification equipment/entry (AIE) systems
Uniform traffic control devices
Active vehicle barriers (AVBS)
Turnstiles or other pedestrian controls
Cameras
Electrical power, data, and communication infrastructure
Definition

When it comes to the DoD Mission Stack, DoD Mission Critical systems or Defense Critical Assets within DoD’s Missions and their weapons and platforms, are the highest priority. Space assets as platforms come with many components and subsystems – whether communications or defense platforms such as the US Space Force (USSF) space launch infrastructure – that are all critical to securely enable the mission.

Problem Statement

Each component of a Space asset as a platform must be considered in securely enabling a successful mission(s). And each component has interdependencies, increasing the complexity in securing the whole of the platform. Increased connectivity adds to the complexity to create increased cyber-risk due to an expanding cyber-attack-surface. Therefore, these systems must be secure-by-design and have cybersecurity/zero-trust controls in place to protect these OT systems.

Solution

Claroty sees the full picture of Operational Technology (OT) that securely enables the DoD Missions, and adherence to zero-trust controls and the Risk Management Framework (RMF).  Our solutions enable DoD, per the NDAA, to ‘identify threats to, vulnerabilities in, and remediations for, the OT aspects of its missions and mission elements’. We can help you to automate asset inventories for operational systems, autonomously detect threats and vulnerabilities in these systems, provide full featured cyber risk management, recommend mitigations and automate micro-segmentation.  These capabilities implemented on OT networks enforce zero-trust principles and improve the cyber resiliency and survivability of systems on these OT networks.

Space assets
Definition

When it comes to the DoD Mission Stack, DoD Mission Critical systems or Defense Critical Assets within DoD’s Missions and their weapons and platforms, are the highest priority. Space assets as platforms come with many components and subsystems – whether communications or defense platforms such as the US Space Force (USSF) space launch infrastructure – that are all critical to securely enable the mission.

Problem Statement

Each component of a Space asset as a platform must be considered in securely enabling a successful mission(s). And each component has interdependencies, increasing the complexity in securing the whole of the platform. Increased connectivity adds to the complexity to create increased cyber-risk due to an expanding cyber-attack-surface. Therefore, these systems must be secure-by-design and have cybersecurity/zero-trust controls in place to protect these OT systems.

Solution

Claroty sees the full picture of Operational Technology (OT) that securely enables the DoD Missions, and adherence to zero-trust controls and the Risk Management Framework (RMF).  Our solutions enable DoD, per the NDAA, to ‘identify threats to, vulnerabilities in, and remediations for, the OT aspects of its missions and mission elements’. We can help you to automate asset inventories for operational systems, autonomously detect threats and vulnerabilities in these systems, provide full featured cyber risk management, recommend mitigations and automate micro-segmentation.  These capabilities implemented on OT networks enforce zero-trust principles and improve the cyber resiliency and survivability of systems on these OT networks.

Space assets

Claroty Demo

Want to learn more about how the Claroty Platform can empower your CPS cybersecurity journey?

Claroty
LinkedIn Twitter YouTube Facebook