Deal highlights the ongoing convergence of IT and OT in IoT era
Tenable is bolstering its operational technology (OT) security expertise with the acquisition this week of Indegy, a 5-year-old company whose products address such areas as active threat and anomaly detection, policy- and signature-based detection, and what the company calls Industrial Cyber Security-as-a-Service (ICSaaS).
The Lowdown: The deal highlights the growing convergence of IT and OT as more industrial systems become connected in this era of Internet of Things (IoT) and the ensuing cyberthreats they face increase.
The Details: Tenable has integrated Indegy’s Industrial Cybersecurity Suite with its Tenable.sc offering for on-premises management, which is available today. In the first half of 2020, Tenable will release interations of Tenable.io for cloud-based vulnerability management and Tenable Lumin for visualization and analytics integrated with Indegy’s platform.
The combination of Tenable and Indegy technology in a single platform will offer enterprises:
> Risk-based measurement: Within Lumin, companies will be able to score and benchmark the cyberexposure of IT and OT environments within a single platform.
> Unified view of vulnerabilities: Enterprises will be able to view and manage OT and IT security vulnerabilities – from initial assessment to remediation verification – through the same platform.
> Deep intelligence of OT environments: Indegy’s technologies give customers an understanding of the entire OT device, including components from multiple vendors and how they relate to one another.
> IT and OT vulnerability assessment: Indegy offers a non-intrusive way to actively analyze OT devices while also enabling passive monitoring. This will be combined with Tenable’s agent-based scanning, active analysis, and passive monitoring.
> OT-specific process management: Indegy’s technologies benefit both security and plant operations teams, providing such features as OT asset inventory, configuration management, and threat detection.
Background: Since its founding in 2014, Indegy has raised $36 million in three funding rounds, the latest one in August 2018 for $18 million, led by Liberty Technology Venture Capital.
The Buzz: “For every company in every industry, OT is now part of the modern attack surface. CISOs are being asked to secure OT systems alongside IT but lack the necessary visibility and technology to manage and measure OT cyberrisk in the same way as IT risk,” Tenable Chairman and CEO Amit Yoran said. “The combination of Tenable and Indegy brings together two pioneers of IT vulnerability management and industrial cybersecurity to deliver the industry’s first unified, risk-based view of IT and OT security. This is a game-changer that will help transform how security and the C-suite make strategic decisions around OT risk. This acquisition is a critical milestone in delivering on our cyberexposure strategy to help organizations understand and reduce cyber-risk across the entire modern attack surface. Indegy extends our depth of OT expertise and intelligence, and our breadth of OT-specific capabilities from vulnerability management to asset inventory, configuration management, and threat detection. We look forward to working with the Indegy team to help the industry usher in the next wave of IT/OT convergence.”
“When we started Indegy, we set out on a mission to protect industrial networks through a mix of cybersecurity expertise and hands-on OT experience, developing products which solve the hardest industrial cybersecurity challenges,” said Barak Perelman, co-founder and CEO of Indegy. “We’re excited to accelerate this mission by joining Tenable, a visionary IT cybersecurity leader with a trusted brand and proven track record of product innovation. We look forward to working with the Tenable team and bringing OT cybercapabilities to its broad customer base.”