Company Enhances Continuous Threat Detection Solution with Exposure Management and FISMA Support, via STIG-hardened Configuration Management Controls and FIPS-compliance

, /PRNewswire/ -- Claroty, the cyber-physical systems (CPS) protection company, today announced new investments in the U.S. Public Sector to enhance protection of OT, IoT, IoMT and Facility-related control systems (FRCS)/Building Management Systems (BMS). Claroty is now offering enhanced exposure management and Federal Information Security Modernization Act (FISMA) support with Security Technical Implementation Guide (STIG)-hardened configuration management controls within Claroty Continuous Threat Detection (CTD). These new capabilities will enable greater efficiency and operational improvements across U.S. Federal Departments and Agencies, State, Local and Education (SLED), and the defense industrial base, when protecting increasingly vulnerable CPS assets.

Enhancing Exposure Management within the U.S. Public Sector

Offensive activity from state-sponsored threat actors continues to rise, exploiting new and existing vulnerabilities in the nation's most mission-critical infrastructure. With new exposure management capabilities, Claroty CTD gives U.S. Public Sector agencies securing these vital operations the ability to swiftly prioritize and remediate exposure based on exploitability. Security teams will be able to contextualize and prioritize remediation for the most critical vulnerabilities with enrichment from CISA's Known Exploited Vulnerabilities (KEV) catalog. This, combined with the existing support for the Exploit Prediction Scoring System (EPSS), enables automated vulnerability "priority group assignments," a more sophisticated method of categorizing and ranking vulnerabilities and their associated assets based on a comprehensive risk assessment for network-wide exposures. The ability to prioritize assets and critical vulnerabilities to remediate threats also comes with the portability of flyaway kits to expedite the process, regardless of resource constraints, allowing organizations to more effectively and swiftly reduce risk and optimize limited resources.

FISMA Support with STIG-hardened Configuration Management Controls

Additionally, Claroty has also enhanced CTD's operating system (ClarotyOS) for STIG-hardened configuration management controls (CM-2). These controls, in addition to other enhancements, support U.S. Federal government FISMA and Department of Defense Risk Management Framework (DoD RMF) requirements for Federal agencies. Compliance with these controls enables organizations to satisfy NIST 800-53 Rev5 requirements by securely configuring their technology solutions to protect against potential threats. With this hardened OS, Federal agencies can deploy it in the most optimized and secure way.

Enabling Compliance Outcomes and Reporting to Drive Operational Efficiency

Claroty has also made updates to CTD that further ease organizations' ability to meet compliance requirements, including:

With automation, streamlined workflows and portability for agility and resource optimization, seamless integration with existing IT security operations, and a targeted impact-centric vs. asset-centric perspective, Claroty enables the Public Sector fiscal prudence and operational optimization with measurable outcomes. Agencies can assess their cybersecurity resilience with a clear path to significant long-term operational cost reductions, freeing up valuable human resources for higher-value strategic activities with maximized productivity.

"Government agencies are fighting an uphill battle right now, facing greater threats with fewer resources," said Jen Sovada, General Manager, Public Sector at Claroty. "They need technology that comprehensively addresses current and emerging cybersecurity threats so they don't sacrifice efficacy for efficiency. Claroty continues to develop CTD intentionally, to meet the specific needs of those working to secure our nation's critical operations—from understanding exposure, remediating vulnerabilities, and enabling compliance."

Enhancements to Claroty's on-premise CTD offering comes as the company continues its pursuit towards achieving FedRAMP High authorization for its SaaS offering, Claroty xDome.

Learn more about how Claroty supports U.S. Federal, State and Local governments at http://www.clarotygov.us/.

About Claroty
Claroty has redefined cyber-physical systems (CPS) protection with an unrivaled industry-centric platform built to secure mission-critical infrastructure. The Claroty Platform provides the deepest asset visibility and the broadest, built-for-CPS solution set in the market comprising exposure management, network protection, secure access, and threat detection – on-premise with Claroty Continuous Threat Detection (CTD) or in the cloud with Claroty xDome. Backed by award-winning threat research and a breadth of technology alliances, The Claroty Platform enables organizations to effectively reduce CPS risk, with the fastest time-to-value and lower total cost of ownership. Claroty is deployed by hundreds of organizations at thousands of sites globally. The company is headquartered in New York City with U.S. Federal headquarters in Northern Virginia. To learn more, visit clarotygov.us.

Media contact: [email protected]

SOURCE Claroty