Many industrial control systems run on outdated operating systems, exposing OT environments to greater cyber security risks. Targeted cyberattacks jeopardize the destruction of critical infrastructure systems when operating systems such as Windows XP are no longer provided software updates from Microsoft.

Verve Industrial and VMware Carbon Black App Control have partnered together for over a decade on sensitive OT systems as a way to protect these critical systems when anti-virus updates are delayed and/or running on outdated operating systems without software updates. Carbon Black App Control provides a protection layer to these endpoints that other solutions do not offer.

The Verve Security Center (VSC)’s latest integration with VMware Carbon Black App Control enhances asset management capabilities by creating a full 360-degree view of an asset’s cybersecurity profile, including information about whitelisting enforcement mode status and alerts from Carbon Black.

It then combines this information with full details on OS, application software, patch status, and configurations on OS-devices as well as full asset inventory, firmware, and vulnerabilities on embedded OT devices leveraging existing protocols and communications.

VMware Carbon Black App Control is an industry-leading application control product, used to lock down servers and critical systems, prevent unwanted changes and ensure continuous compliance with regulatory mandates. It installs a software agent on these legacy operating systems, producing additional layers of protection for the susceptible assets. Integration into the Verve Security Center brings critical cyber awareness data for a quick analysis of cyber threats in operational technology (OT) environments.

In addition, vulnerability remediation services administer monthly reviews of patch and software vulnerabilities, integrated patch deployment or software removal, and onsite cross-vendor deployment support. The solution also includes robust reporting for compliance and monitoring purposes.

Integrating VMware Carbon Black App Control data with Verve Industrial’s power asset visibility gives operators unparalleled insight into determining the health of their cybersecurity program. Customers are empowered to make informed decisions for faster remediation of vulnerabilities with the highest risk.

Related Resources

Blog

Compensating Controls in ICS Security

How and when to apply OT/ICS compensating controls when software patching is not an option in industrial cyber security.

Read the Story
Blog

SolarWinds: Implications of Compromised Supply Chain Security

Following the SolarWinds software incident, what lessons can asset owners learn from published causation and guidance - and how can product owners for more to help secure their customers?

Read the Story
Blog

Network Stack Fuzzing: Amnesia 33 and MCUs (siblings to CPUs in most IACS devices)

MCU-based devices are not really the same as a PLC with an MMU and stack-to-device vulnerability matching isn’t as bad as it seems.

Read the Story

Subscribe to stay in the loop

Subscribe now to receive the latest OT cyber security expertise, trends and best practices to protect your industrial systems.