OT/ICS Asset Inventory Management and Discovery

The first step to securing your operational technology (OT) and determining the overall risk level begins with identifying which devices are present in your network. Security regulations for critical systems, such as the EU NIS directive and NERC-CIP, require an asset inventory as a base for risk management. Establishing this inventory and keeping it up to date can be a lot of work.

StationGuard automatically discovers all assets in the network, creates a global asset inventory database, and alerts you on new assets in your networks. It collects accurate information for each asset by combining network analysis with imported SCL engineering files and spreadsheets. The asset inventory can be updated by importing information from external sources.

An asset inventory database with precise details about each protection and control IED is crucial to successful vulnerability and risk management. The more information you have about each asset, the more accurate your vulnerability analysis and prioritization will be. StationGuard and its central management system GridOps support you in the whole workflow from creating and updating the asset inventory to vulnerability and risk management.

Did you know: All our cybersecurity solutions can be found on brand-new website. Explore our products and solutions now: omicroncybersecurity.com

Take a look

专家推荐

StationGuard Solution

Our IDS StationGuard and its central management system GridOps work perfectly together: while GridOps provides the management interface for StationGuard’s sensors across the grid, StationGuard collects all the data and analyzes it.

Our Products

StationGuard allows robust asset inventory management with comprehensive and rich data per asset. This inventory can be filtered, searched, exported, and integrated into 3rd-party systems. By documenting all connections as well as protocols and applications in use, StationGuard aids in the assessment of the entire system.

GridOps is a component of StationGuard that provides additional management and features, such as grid-level asset inventory, alert dashboard, sensor management, centralized user management, vulnerability management, and reporting.

 

StationGuard

Certified risk management and security assessment

阅读更多
GridOps
Central Management System for StationGuard
阅读更多
请求信息

自动收集关于你的资产的详细信息

借助被动网络流量分析,您可以检测网络中的所有设备通信报文,但报文不包括电力自动化网络中的固件版本等设备详细信息。因此,StationGuard 将导入的工程配置文件与被动接收的网络流量进行汇总,从而获得最精确的设备信息,包括工程说明、类型、硬件配置、产品订购代码和固件版本。

您可以导出清单,并将其导入设备和配置管理系统、ERP 系统以及电子表格中。通过将电子表格(CSV 文件)导入 StationGuard,您可以关闭回路并同步至任何其他来源。与 StationScout 工具结合使用,还可以执行主动设备查找,从而找到实际安装的固件版本。

StationGuard 提供 ServiceNow 等工单系统插件,可自动创建工单以响应 IDS 警报。通过导入 StationGuard 中的设备清单,系统可将工单自动分配给负责警报相关设备或站点的工程师。

此方案的优点

Detailed asset identification

StationGuard combines information sniffed in the network with imported SCL engineering files. This unveils accurate asset information like the engineering descriptions, type, hardware configuration, and firmware version.

Combined with active discovery

With the optional Active Asset Identification, it is possible to read out device nameplates safely using IEC 61850 MMS without interfering with the process. You will be able to compare original engineering specifications with the installed devices, which will provide you with even more insight.

3rd-party integration

We provide plugins for 3rd-party asset inventory and configuration management databases (CMDB) and ticketing systems. This allows you to automatically create tickets from alerts and assign them to the right engineers, based on the affected asset.

Built-in Vulnerability Management

Often tools display every vulnerability that even remotely applies, making it tedious to figure out which vulnerabilities pose a real risk. By using an expert-created database of device types and vulnerabilities, only the vulnerabilities that are relevant for your system are shown.

Choose Your Setup

Regardless of the software, you can choose the perfect platform for your intended use.
Our solutions run on RBX1 (fixed), VBX1 (virtual), and on MBX1 (mobile) platforms.

RBX1
Robust and cybersecure 19-inch platform
阅读更多
MBX2
Mobile, hardened test set for powerful communication analysis
阅读更多
VBX1
Virtualized platform for cybersecurity and testing applications
阅读更多

比较产品细节

  • 19” rack installation for permanent use in harsh substation environments
  • 8x SFP (back) + 1x RJ45 (front)
  • Different DC/AC supply ranges, redundant option

    •  

  • Mobile usage with quick-setup
  • 4x SFP slots to connect with fiber and Ethernet ports
  • AC and DC power supply options
  • Permanent installation available (DIN rail)

    •  

  • The power of RBX1 and MBX1 – only virtualized
  • Deployment on existing computing platforms
  • Compatible with VMware ESXi

    •  

请求信息
Literature
StationGuard Sensor | Detecting Cyber Instrusions in Substation Networks (749 KB)
Easy integration into your substations, SOC and control centres
StationGuard Deployment (162 KB)
StationGuard Sensor | Security Information Center (SOC) & SIEM Integration (150 KB)
需要更多细节?
获取报价?
索取演示?
联系我们
You are using an outdated browser version.
Please upgrade your browser or use another browser to view this page correctly.
×