Dragos Empowers Utility Providers With Free OT Cybersecurity Software

Dragos, Inc. (Dragos) intends to democratize access to operational technology (OT) cybersecurity software through its recently announced Dragos Community Defense Program (CDP). While governments are investing substantial funds into strengthening industrial cybersecurity, small utility providers need to catch up in implementing robust OT cybersecurity measures. For Dragos, it is imperative to support water, natural gas, and electricity utility providers, as they serve as critical nodes of societal infrastructure.

 

Dragos is empowering small utility providers with OT cybersecurity software, giving them access to a threat-responsive, collaborative environment that enhances security and operational control. Image used courtesy of Pixabay

 

The Dragos Platform

One feature of the Dragos Platform that utility providers can access is an interactive and customizable map of facility assets. With the map feature, asset managers can hone in on specific asset elements including equipment vendor, device type, and version of firmware. Users of the Dragos platform can take advantage of its asset vulnerability management capabilities, backed by experts in OT cybersecurity. Customers can assess asset vulnerability in bulk or individually over the full lifecycle with historical disposition provided through round-the-clock automated data collection and analysis.

Dragos’s vulnerability management capabilities are backed by its WorldView threat intelligence, which is itself supported by industrial control systems (ICS) cybersecurity practitioners.

 

A snapshot of the configurable asset map available to Dragos Platform customers. Image used courtesy of Dragos

 

The threat intelligence aspect of Dragos’s software allows users to identify indicators of compromise associated with malicious behavior, map malicious behavior, and analyze intent. The software also helps generate action items and recommendations concerning the mitigation of cyber threats.

 

Neighborhood Keeper

Neighborhood Keeper is an information-sharing network that enables Dragos Platform customers to identify and target potential supply chain risks, weaknesses, and associated cyber threats that could prove damaging to operations (whether in industrial or utilities facilities).

Neighbourhood Keeper integrates trusted advisers such as government entities, ISACs (Sharing and Analysis Centers), and CERTs (Cyber Emergency Readiness Teams) into their system. This integration makes it easier to share critical information about dangers, patterns, and research with the larger Neighbourhood Keeper group. Participants can receive and absorb threat intelligence through multiple routes, as well as anonymously send protected requests for support to both peers and reputable advisors.

 

Neighborhood Keeper is an information exchange platform that harnesses cyber threat awareness community-wide. Image used courtesy of Dragos

 

A collaborative environment is encouraged, one which heightens awareness of potential cyber threats. Neighbourhood Keeper functions as a comprehensive reference center and connected knowledge exchange platform.

The visibility solution functions like the human body's protective innate and adaptive immune system, where individuals within a well-corroborated network (like white blood cells) exchange information (send signals) such as alerts, alert descriptions, and potential solutions to tackle cyber threats and protect facilities and their workers from incurring damage. Dragos also offers on-demand OT cyber and Dragos Platform training and instruction.

 

The Dragos Community Defense Program

The Dragos CDP, created in 2022 as a trial initiative in response to the growing global risks associated with the Ukraine invasion, has partnered with Elastic. This collaboration makes use of Elasticsearch, a search analytics technology, to grow and distribute the Dragos technology for free. With Elasticsearch serving as the foundational engine for log storage and inquiries, customers of the Dragos Platform can perform thorough searches over large security log collections.

The Dragos OT-CERT (OT-Cyber Emergency Readiness Team) assists participants in the Dragos CDP. This offers customers a variety of complementary resources, such as guidelines, videos, recommended procedures, training, hands-on exercises, and webcasts, all geared at improving industrial cybersecurity competence. Dragos has proactively supported insufficiently funded organizations through OT-CERT since 2022, and the organization today has over 1,500 members from 60 countries.