sb-as logo
Story image

Forescout and ServiceNow advance tech partnership to protect critical infrastructure

Forescout and ServiceNow have announced they are advancing their partnership for enhanced operational technology (OT) and industrial IoT capabilities, with an aim of helping organisations to protect critical infrastructure from cyber threats.

The new technology integration is said to help ensure integrity and stability of critical infrastructure through improving asset intelligence as well as threat prevention, detection and response for industrial control systems (ICS) and OT environments.

The integration allows security teams to make informed decisions based on device type and environment to close the security gap from unmanaged OT devices and improve performance in crucial metrics such as ‘mean time to resolve’ (MTTR) in remediating vulnerable or affected systems.

Combining complementary technologies for OT discovery, threat detection and configuration management, the Forescout-ServiceNow integrated solution centralises security and improves resiliency in manufacturing, energy, transportation and other sectors where increasingly internet-connected infrastructure is often invisible to traditional cybersecurity controls, the companies state.

Customers using Forescout to continuously discover and monitor OT and ICS environments can now leverage ServiceNow’s powerful configuration management database (CMDB) platform for more efficient asset, service and security management.

The integration features a data-driven ability to automate device discovery, CMDB updates and prioritised remediation or incident management workflows based on risk level, easily scaling defences with technology and business demands.

As Forescout detects a device is non-compliant or compromised, an appropriate ServiceNow incident is created and aligned with CMDB asset record.

Forescout can also automatically respond to the incident with relevant network or system actions per policy and keeps CMDB asset record accurate with real-time device context.

This creates an end-to-end asset intelligence and incident management system that proactively reduces risk with streamlined operations.

Forescout chief product and strategy officer Pedro Abreu says, “Forescout and ServiceNow are introducing the future of integrated OT network defence.

“Combining Forescout’s strength in control system discovery, classification and threat recognition with the power of ServiceNow CMDB, which provides a single system of record for IT, will help eliminate network blind spots.

“It also reduces needless manual task hours and uncertainty currently threatening the OT and industrial Internet of Things (IoT) landscape today.”

As a ServiceNow design partner, Forescout played a role in helping ServiceNow create new and standardised IoT and OT classes for the ServiceNow CMDB, enabling a comprehensive CMBD based on real-time device profiles across IT, IoT and OT.

ServiceNow vice president and general manager of ITOM, Security and CMDB Jeff Hausman says, “ServiceNow CMDB is the data platform for IT.

“Data enrichment of the ServiceNow CMDB via Forescout continuous device discovery and automatic workflows helps customers drive transformation, deliver services and provide operational resilience.

“ServiceNow and Forescout enable security teams to better understand their organisation’s OT and industrial IoT devices and expedite incident response to protect critical infrastructure.”

The companies will continue working closely together to design the future of ServiceNow’s CMDB to accommodate a growing array of device types.

IDC research director of Security & Trust Robyn Westervelt says, “Forescout’s integration with ServiceNow’s CMDB eliminates the need for spreadsheets and manual task of populating OT assets into an organisation’s CMDB.

“A continuous and up-to-date CMDB across IT and OT eliminates blind spots and reduces cyber risk.”

The enhanced OT and industrial IoT Forescout-ServiceNow capabilities are available now.

Story image
Three-in-one cloud security can ease business through difficult times
By leveraging a comprehensive security platform, organisations can block threats and prevent leakage for all interaction between endpoints, devices and apps, writes Bitglass product marketing manager Juan Lugo. More
Story image
Malware attacks abusing machine identities grew eightfold over the last 10 years - report
"Machine identity capabilities have become commoditised and are being added to off-the-shelf malware, making it more sophisticated and harder to detect."More
Story image
App install fraud up $945 million in APAC
Asia Pacific was exposed to US$945 million in app install fraud in the first half of 2020. This is according to the AppsFlyer annual fraud report The State of Mobile Ad Fraud 2020 Edition. More
Story image
Reports suggest spike in vaccine-related phishing campaigns
According to new research from Check Point, the primary attack delivery method is email, constituting 82% of all attack vectors for malicious files in the last month.More
Story image
Security teams face mounting stress, call for execs to step in
“With more organisations operating under remote work conditions, the attack surface has broadened, making security at scale a critical concern. This is a call to action for executives to prioritise alleviating the stress."More
Story image
Distributed workforces pose new challenges for information management
“Collaboration can be stymied, mistakes can be made, and organisations can suffer data breaches if they don’t immediately address the issue of how employees are accessing and sharing information while working remotely.”More