Combining Technology to Combat Cyber Threats

July 21, 2017
Waterfall Security Solutions and FireEye formed a global partnership to provide manufacturers with a multi-layered approach to protect industrial networks.

As cyber threats become more complex, industrial control systems (ICS) are even more vulnerable to attack. To that end, plant floor security can’t be handled the same way as it is in the enterprise where all the IT department may need is a firewall, virus detection software and network monitoring applications. The systems on the manufacturing floor need all of that—and more—because protecting ICSs requires multiple layers of security to keep the environment in a safe state.

With that in mind, two cybersecurity technology vendors are teaming up to provide industrial businesses with a joint offering that unites threat detection software with hardware-enforced network protection.

This week, Waterfall Security Solutions, a maker of a unidirectional security gateway, and FireEye, a provider of the Threat Analytics Platform (TAP), entered into a global partnership to deliver a multipronged approach to secure industrial networks.

This joint offering enables customers to monitor their ICS networks using FireEye’s cloud-based Helix service, a detection and response platform that simplifies, integrates and automates security operations. They can then safeguard the network using Waterfall’s Unidirectional CloudConnect for reliable and secure IT/OT integration.

Here’s how it works:

FireEye’s TAP aggregates log and event data from multiple sources and applies intelligence against that data to drive actionable alerts. Event data is compressed, encrypted and sent to the cloud for centralized log retention, real-time threat analysis and incident investigation. TAP can prioritize actions based on risk and can identify the highest priority focus areas for an incident responder to help organizations accelerate their detection and response cycles.

CloudConnect also gathers data, specifically from industrial sources such as historians, OPC servers, devices and the ICS. It then converts that data into a unified cloud-friendly format, such as XML files, relational databases, publish/subscribe protocols or SOAP web services. CloudConnect is based on Waterfall’s Unidirectional Gateway technology that allows information to be sent out of the ICS network for data sharing with the enterprise, but it is physically incapable of receiving data back into the ICS network.

Working together, TAP and CloudConnect integrate industrial networks with threat detection applications without the risk of allowing bad actors into the environment.

Ironically, there is a cloud-based aspect to the cybersecurity offering. Industrial businesses that previously refrained from using any cloud or Industrial Internet of Things (IIoT) services due to security concerns, can be confident that their ICS networks are safe from external cyber risks.

“This new partnership is an important step towards improved security for industrial sites,” said Lior Frenkel, CEO and co-founder of Waterfall Security Solutions. “An increasingly complex industrial threat landscape demands increasingly sophisticated security solutions.”

About the Author

Stephanie Neil | Editor-in-Chief, OEM Magazine

Stephanie Neil has been reporting on business and technology for over 25 years and was named Editor-in-Chief of OEM magazine in 2018. She began her journalism career as a beat reporter for eWeek, a technology newspaper, later joining Managing Automation, a monthly B2B manufacturing magazine, as senior editor. During that time, Neil was also a correspondent for The Boston Globe, covering local news. She joined PMMI Media Group in 2015 as a senior editor for Automation World and continues to write for both AW and OEM, covering manufacturing news, technology trends, and workforce issues.

Sponsored Recommendations

Measurement instrumentation for improving hydrogen storage and transport

Hydrogen provides a decarbonization opportunity. Learn more about maximizing the potential of hydrogen.

Learn About: Micro Motion™ 4700 Config I/O Coriolis Transmitter

An Advanced Transmitter that Expands Connectivity

Learn about: Micro Motion G-Series Coriolis Flow and Density Meters

The Micro Motion G-Series is designed to help you access the benefits of Coriolis technology even when available space is limited.

Micro Motion 4700 Coriolis Configurable Inputs and Outputs Transmitter

The Micro Motion 4700 Coriolis Transmitter offers a compact C1D1 (Zone 1) housing. Bluetooth and Smart Meter Verification are available.