A new integration between Claroty and Google Security Operations will feed alerts and vulnerability data from SaaS-powered Claroty xDome or on-premise Claroty Continuous Threat Detection (CTD) into Google’s cloud-native security operation platform.
The integration builds on Google Security Operations’ existing support for Claroty telemetry by enabling organisations securing CPS environments to unify their threat detection, accelerate incident response, manage and remediate exposures, enhance threat hunting, and compliance efforts. Capabilities of the integration include:
-
Ingesting Claroty Alerts and Vulnerabilities into Google Security Operations: Correlate xDome and CTD insights with broader enterprise data for context and threat detection that focus on risk-based remediation.
-
Earlier Detection of Critical Threats: Identify CPS-specific risks for recognition of threats targeting OT, IoT, and other CPS assets before they escalate.
-
Faster, Risk-Based Incident Response and Remediation: Empower security teams to detect and respond to threats with actionable, OT-aware intelligence, enabling remediation of underlying vulnerabilities that reduces mean time to resolution (MTTR).
“The CPS threat landscape is quickly expanding and is a high-value target for bad actors looking to exploit potential vulnerabilities as digital transformation takes shape across enterprises,” said Tim Mackie, Vice President of Worldwide Channel and Alliances at Claroty. “By combining the verticalised expertise of Claroty and our deep understanding of CPS, from deep protocol expertise to complete asset context, with Google Security Operations’ ability to prioritise threats, automate response workflows, and correlate complex attack patterns across domains, we’re able to increase operational uptime, simplify compliance across hybrid environments, and above all else, reduce risk.”
“IT security teams are increasingly taking on the responsibility of securing physical assets, from IoT, to medical devices, to building management systems, to supply chain automation,” said McCall McIntyre, Head of Security Product Partnerships, Google Cloud. “They need a fully integrated solution in their SOC that leverages the unrivaled knowledge of CPS delivered by Claroty and the intelligence-driven workflows of Google Security Operations that together empower SOC teams with a unified view of threats across environments, enabling earlier detection of attacks and accelerating response times.”
