Splicecloud enables rapid visibility of cyber-physical exposures in Operational Technology networks
Splicecloud enables rapid visibility into cyber-physical exposures on Operational Technology networks. The zero-touch version of this service requires no hardware deployment and is enabled by forwarding metadata of communications using built in switch capabilities to Splicecloud for analysis and profiling. Alternatively, if the OT network underlay infrastructure does not support metadata export, a low cost light probe, or full featured deep probe can be used to extract the required data from a network tap.
Download the brochure here.
|
Rapid visibility
Splicecloud acts as a flight recorder for OT communications, bringing visibility down to the infrastructure level. |
|
Behavioural profiling
Leverage the near-deterministic nature of OT traffic to identify attacker behaviour and unauthorized changes to the network or nodes. |
|
Forensic audit trail
Splicecloud keeps a record of OT nodes and behaviours, the backbone for a timely incident response capability. |
|
Network Visualizations
Visualize and understand OT network traffic using our Untangle engine.
|
|
Outlier detection
Splicecloud uses AI to identify anomalies in device to device communication, and to detect compromised devices and command-and-control back channels. |
|
Three steps to get started
Follow simple guided three step setup instructions to get going. |
|
Cybersplice cloud security |
To facilitate the visibility required during cyber-physical exposure assessments, Splicecloud zero-touch or rapid deployment options are leveraged. Follow these three steps to get started:
|
Step 1 |
|
Contact Cybersplice or one of our partners to confirm eligibility. Provide us with the required contact details and IP address from which Splicecloud will accept the metadata and allow connections to the console. |
|
Step 2 |
|
Forward your flow records from the OT infrastructure systems (switches) through to Splicecloud (remember to allow this one way outgoing traffic through your corporate and/or infrastructure firewalls). |
|
Step 3 |
|
Log in to Splicecloud and tag subnets and OT devices as they are discovered by the passive metadata feed. Visualize and monitor your OT network. Splicecloud automatically identifies behaviours, outliers, assets and services. |
* For the companion probes, there is an additional step to download, or to ship, drop and activate the feed.
Cybersplice and our partners can advise on how to enable export of flow records. We also offer a bi-weekly feedback session to assist customers with queries and advise on mitigations for avoidable exposures.
Various options are available depending on customer infrastructure capability and visibility requirements. Please review the Splicecloud brochure for a feature comparison.
