Protecting your OT networks commonly involves several key areas of focus: Controlling how people get on to the network, where they can go once on, triggering on what they do (known and unknown), hardening of assets that they access, alerting on the assets they access and maintain integrity of accessed assets. Successfully monitoring these focus areas requires security analysts have detailed event context – and good context requires good asset awareness. An asset-coupled security monitoring system binds the asset database to the network event subsystem, which delivers valuable information faster, with lower total cost and with greater insight than other approaches.
Dominic Storey, Tenable