Protection starts with visibility. Powered by Microsoft’s Defender for IoT, our service leverages passive network capture technology to automatically discover assets and visualize OT/ICS networks and asset relationships, eliminating operational concerns typically associated with sensitive OT / ICS environments.
Once assets are discovered, our services capture OT/ICS environment communication, firmware, and other integral asset vulnerability related information. With this information, Difenda’s C3 team can assess an OT/ICS environment overall risk posture and work with customers to develop proactive risk mitigation strategies.
Integrated IT and OT Threat Detection and Response
Core to Difenda’s MDR services are the Microsoft Azure Sentinel and Defender suite of security products. In addition to providing customers with detection and response services within IT environments, customers can extend protection to OT/ICS environments through Defender for IoT services coupled with our MDR-OT service offering.
By adding MDR-OT services to existing MDR for IT services, customers receive fully integrated 24x7x365 threat detection and response services, all delivered through the Difenda Shield. As with our IT MDR services, customers receive the following benefits by subscribing to our MDR-OT services:
• Threat detection and response
• Threat hunting
• Threat intelligence
• SIEM platform and use case management
• Remote incident response services
As part of our MDR services, customers can leverage both pre-defined and customer requested response playbooks covering both IT and OT environments. Our services are designed to consider key detection and response factors such as asset sensitivity / impact and maintenance schedules to protect critical production environments.