HANOVER, Md., March 19, 2018 /PRNewswire/ -- Dragos, Inc., the industry's leader in industrial threat detection and response, and Schweitzer Engineering Laboratories (SEL), the industry's lead supplier of digital systems that protect power grids around the world, have formed a partnership to arm the electric power community with the tools to better detect and respond to threats within their industrial control system (ICS) networks.
"With the increasing and persistent cyber-attacks focused on critical infrastructure, new solutions are required to protect ICS networks," said SEL COO Dave Whitehead. "To combat these challenges, Dragos and SEL have integrated their technologies to create a proactive, intelligence-driven approach to threat detection and incident response."
Greater Visibility, Threat Detection, and Response in the ICS
The Dragos Platform integration with SEL devices provides comprehensive insight into power system networks and their communications, allowing asset owners and operators to gain deep packet inspection into SEL communications to monitor for security events. In addition, the Dragos Platform collects, aggregates, and analyzes unique SEL events and logs not available to other security technologies to provide wider coverage for threat detection and response efforts. The partnership also opens new opportunities for unique detection and response practices.
- The Dragos Platform provides the most comprehensive data source coverage in the industrial security market. It passively identifies assets across multiple data sources, including: network traffic, host-based logs, data historian events, and logs from SEL assets, including SEL ICON and SEL Real-Time Automation Controllers (RTACs).
- Threat behavior analytics provide analysts context into adversary actions, such as why alerts are generated, instead of simply alerting on anomalies and changes in environments. The Dragos Platform is the industry's only intelligence-driven threat detection product for industrial networks. The integration with SEL allows for the creation of new threat analytics focused on adversary behaviors against SEL equipment and communications.
- The Dragos and SEL partnership enables new SEL equipment-specific investigation playbooks. The playbooks, created by senior industrial cybersecurity analysts in the Dragos Threat Operations Center, are paired with each threat behavior analytic and provide step-by-step guides to responding to threats, allowing analysts to respond effectively and efficiently against cyber incidents in power system networks.
"SEL and Dragos share a mission focus and dedication to protecting the electric power community," said Dragos Founder and CEO Robert M. Lee. "That is what is exciting about the Dragos and SEL partnership. It will facilitate immediate integrations for our customers, but also enable new research and innovation for the community and as such is a huge step forward for electric power cybersecurity."
Innovative, Joint Solution for Proactive Defense
The SEL-2470S is the industry's first hardened, software-defined networking (SDN)-enabled switch designed to improve Ethernet performance in mission-critical applications. When integrated into the SEL2470S and the SEL-5056 Software-Defined Network Flow Controller the Dragos Platform retrieves all information and authorized flows on the network for complete and fully accurate network visibility. In addition, unauthorized network flows are sent to the Dragos Platform for analysis to provide context and proactive actions ahead of a cyber incident. This powerful combination is an industry first and helps maintain the highest levels of reliability and safety in power system networks.
Commitment to On-going, Joint Research
Dragos and SEL, as trusted leaders in the electric power community, are committed to providing joint research of emerging threats and impacts of cyber events on industrial environments, so we can empower defenders to take a proactive approach to cyber defense. This research, that reflects our teams' unparalleled experience combatting threats and vulnerabilities, will include whitepapers and presentations we will share with the community to equip asset owners and operators with the knowledge to better understand the threats and what we are doing to ensure they are informed and prepared to defend against the next adversary.
Dragos applies expert human intelligence and threat behavior analytics to redefine industrial control system (ICS) cybersecurity. Its industry-first, ICS cybersecurity ecosystem provides industrial security practitioners with unprecedented situational awareness over their environments, with comprehensive threat intelligence, detection, and response capabilities. Dragos' solutions include the Dragos Platform, software providing ICS-specific asset discovery, threat detection, and investigation capabilities; Dragos Threat Operations Center, providing ICS threat hunting, incident response services, and ICS cybersecurity training; and Dragos ICS WorldView, providing global, ICS-specific threat intelligence in the form of weekly reports and critical alerts upon discovery. Headquartered in metropolitan Washington DC, Dragos' team of ICS cybersecurity experts are practitioners who've lived the problems the industry faces hailing from across the U.S. Intelligence Community to private sector industrial companies. For more information, please visit dragos.com.
SEL serves the power industry worldwide through the design, manufacture, supply and support of products and services for power system protection, monitoring, control, automation, communications and metering. For more than 30 years, SEL has provided industry-leading performance in products and services, local technical support, a 10-year worldwide warranty and a commitment to making electric power safer, more reliable and more economical. For more information, please visit selinc.com.
Contact: Liz Tippitt, 1-901-413-5080