Protection starts with visibility. Powered by Microsoft’s Defender for IoT, our service leverages passive network capture technology to automatically discover assets and visualize OT/ICS networks and asset relationships, eliminating operational concerns typically associated with sensitive OT / ICS environments.
This visibility is foundational to Difenda’s ability to help customers secure their OT/ICS environments, but also supports operational planning and maintenance activities
Once assets are discovered, our services capture OT/ICS environment communication, firmware, and other integral asset vulnerability related information. With this information, Difenda’s C3 team can assess an OT/ICS environment overall risk posture and work with customers to develop proactive risk mitigation strategies.
Integrated IT and OT Threat Detection and Response
Core to Difenda’s MXDR services are the Microsoft Azure Sentinel and Defender suite of security products. In addition to providing customers with detection and response services within IT environments, customers can extend protection to OT/ICS environments through Defender for IoT services coupled with our MXDR-OT service offering.
By adding MXDR-OT services to existing MXDR for IT services, customers receive fully integrated 24x7x365 threat detection and response services, all delivered through the Difenda Shield. As with our MXDR-IT services, customers receive the following benefits by subscribing to our MXDR-OT services:
• Threat detection and response
• Threat hunting
• Threat intelligence
• SIEM platform and use case management
• Remote incident response services
As part of our MXDR services, customers can leverage both pre-defined and customer requested response playbooks covering both IT and OT environments. Our services are designed to consider key detection and response factors such as asset sensitivity / impact and maintenance schedules to protect critical production environments.