- Securing Things Newsletter
- Posts
- OT Security Visibility Solutions & Metrics
OT Security Visibility Solutions & Metrics
β Lessons learned consulting on top OT Security Solutions, KPIs/ODMs, & moreπ [Securing Things by M. Yousuf Faisal]
M. Yousuf Faisal
January 29, 2025
In partnership with
Disclaimer: All views presented here, in this newsletter, are my own.
Author or the newsletter are not liable for any actions taken by any individual or any organization / business / entity. The information provided is for education and awareness purposes only and is not specific to any business and or situation.
Hey Securing Things Community,
After providing consulting/advisory services to asset owners related to OT security solutions for visibility, spanning multiple continents (except for Africa) on:
β reviews / assessments, vendor evaluation / comparison, POCs, planning and deployment and or post deployment advisory/review.
Hereβs what I found out.
If you donβt want to miss out on 5 figures ($$$$$) or more worth of free advice, close this and donβt read further.
Otherwise in this newsletter edition, Iβll be sharing:
my observations from field,
some input from other experts from the field, related resources and reference few interesting talks/presentations on the subject.
in addition, my most viewed posts, and
optionally - but highly recommended and useful podcast β adding a new non-security, well actually itβs about securing your financial future - so still kinda securing things ;-). Have shared within close circle and now sharing with this great community here.
Together with (Sponsor):
Discover 100 Game-Changing Side Hustles for 2025
In today's economy, relying on a single income stream isn't enough. Our expertly curated database gives you everything you need to launch your perfect side hustle.
Explore vetted opportunities requiring minimal startup costs
Get detailed breakdowns of required skills and time investment
Compare potential earnings across different industries
Access step-by-step launch guides for each opportunity
Find side hustles that match your current skills
Ready to transform your income?
But before we begin, do me a favour and make sure you hit the βSubscribeβ button to let me know that you care or liked and keep me motivated to publish more. Thanks!
Kung Hei Fa Choi - For all those who observe CNY celebration and holidays - its the year of snake and the 1st day of time off with your friends and family. Wishing all a prosperous and healthy year ahead.
OT Security Solutions for Visibility
There are different types of OT security solutions on the market that provides or promise to provide you with full visibility of your OT environments and do more. But not all solutions are equal and or have full end-to-end coverage.
Only handful of niche OT security visibility solution specific vendors left out there and many of such have been acquired by OEMs and or other big technology players.
Below are a list of OT visibility security solutions providers, acquisitions and market insights, in no particular order:
Verve β acquired by β Rockwell Automation. Keeping the name so far.
SCADAfense β acquired by β Honeywell.
Indegy β acquired by β Tenable. Changed it to Tenable OT.
CyberX β acquired by β Microsoft. Changed it to Azure Defender for IOT.
Securitymatters SilentDefense β acquired by β Forescout. Changed it to
Sentryo β acquired by β Cisco β Changed it to Cyber vision.
Mission Secure β acquired by β Service Now.
Besides these players and acquisitions thereβs a handful of other providers:
Dragos, Nozomi, Claroty and Armis remains to name a few leading ones in this space (in no particular order), they have acquired some significant funding as well in the recent past.
OTBase are another interesting product focused on asset management.
Darktrace, Industrial defender, Opswat, TxOne and others have similar solutions.
We also have few new niche players in the mix with some interesting offerings like Exalens, Phosphorous, EmberOT and more.
Few other technology players like PA, Fortinet etc. do offer visibility through a portfolio of their solution stack but not a single product.
Some of the above solutions only provide passive capabilities for network level visibility and deep packet inspection, some also offer add-ons for active capabilities and endpoint visibility at an additional cost. Some are unique in a sense that they are endpoint / agent driven. Only few have capability released for wireless etc.
While most of these offer vulnerability identification, vulnerability management is an add-on and limited to only a few among the mix.
There are claims for all having AI features now (as buzz word), but there are use of some Machine Learning detection capabilities which would differ significantly.
Most of the top ones now seems to have come up with almost similar functionality or features in the last one year or so and compete against each other.
Some of these solutions have lost market share, changed product directions and or have a uncertain future ahead.
So choosing the right one would be essential for your specific OT security objective, use case and for your specific environment needs.
I wrote an article on OT IDS evaluation/selection and implementation as part of OT security dozen / program series. Check that out β here.
The same was published on ISAGCA website and LinkedIn and continue to receive a number of views monthly.
<Note: I am not endorsing any of the above listed vendors or product or service depicted and nor advising to select any vendors here>.
Drop in your best email address to subscribe and continue reading the rest of the newsletter edition for free.
Reply