Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Cloud

5/18/2021
09:10 AM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Siemens Energy Collaborates With ServiceNow for Precision Defense Against Cyber Threats Targeting Energy Industry

  • Siemens Energy’s monitoring and detection industrial IOT security platform and ServiceNow’s cross-enterprise digital workflows can help energy companies mitigate cyberattacks at machine-speed
  • Collaboration creates bridge between cybersecurity experts analyzing anomalies and malicious behavior and plant operators capable of acting on credible threat intelligence across industrial operating environments
  • Combined software solution to help secure the energy transition to enable industry-wide adoption of digital, distributed and low-emissions technologies

Siemens Energy today announced a collaboration with ServiceNow to create a unified software service offering enabling energy companies to monitor, detect and respond to cyber threats targeting digitally connected critical infrastructure.

The new solution brings together Siemens Energy’s artificial intelligence (AI)-based software from its Managed Detection and Response (MDR), powered by Eos.iiTM, service to provide visibility and context across industrial operating environments with ServiceNow’s Operational Technology Management (OT Management) systems to connect cyber threats and digital workflows that allow analysts to quickly assess, prioritize and act against events in the field. The unified software solution creates a detection engine and workflows that streamline operations for cybersecurity analysts to monitor anomalous or malicious behavior in Security Operations Centers (SOC), and energy plant operators to act on credible threat intelligence at machine speed. 

“Most energy companies struggle with the complex technological and economic challenges involved in monitoring, detecting and preventing cyberattacks on critical infrastructure. Our MDR, powered by Eos.ii, solution, is the first AI-based platform built to provide visibility and context across the energy industry’s digital operating environment in time to stop attacks,” said Leo Simonovich, head of Industrial Cybersecurity at Siemens Energy. “Leveraging Eos.ii’s monitoring and detection software with ServiceNow’s digital workflows will help turn cyber threat intelligence into action so plant operators can respond to incidents with precision defense at machine speed.”

"The ability to quickly turn data into action is critical to being able to proactively, reactively and remotely mitigate cyberattacks targeting critical infrastructure. Yet, this is one of the biggest challenges for industrial innovation,” said Marshall Tyler, vice president of Industry Solutions at ServiceNow. “Siemens Energy is a leader in this space and together we are arming the energy industry with the insights and workflows they need to deliver critical services and protect their customers and stakeholders."

While the energy transition has introduced new levels of cyber risk — exposing flaws in existing vulnerability management and security response strategies — most companies continue to invest in business models and technologies that rely on the seamless integration of physical and digital assets.

Leveraging Siemens Energy’s Eos.ii software, energy companies can turn cyber threat intelligence targeting operational technology (OT) and information technology (IT) networks — connected to physical energy assets — into an actionable response through the ServiceNow OT Management product. This enables plant operators to act with Precision Defense, a response method to deploy appropriate, targeted and proportionate measures to correct and recover from cyber incidents. Responding to cyber threats with Precision Defense allows energy plant operators to improve efficiency and reduce operating costs while responding to incidents with little to no downtime for critical systems.

Siemens Energy’s MDR system provides a unified picture of anomalous behavior for defenders with actionable insights to stop attacks. The service goes beyond conventional monitoring by achieving a deeper understanding of how digital systems relate to the real world. With its unified OT and IT data stream, MDR’s Eos.ii technology platform uses AI and digital twin technology to compare billions of real-time data points against a correctly functioning asset. This provides context for Siemens Energy’s analysts to determine not only which events are abnormal, but which are consequential. The technical achievement of unified data streams and machine learning make an unprecedented platform for targeted, in-depth analysis.

 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Commentary
Ransomware Is Not the Problem
Adam Shostack, Consultant, Entrepreneur, Technologist, Game Designer,  6/9/2021
Edge-DRsplash-11-edge-ask-the-experts
How Can I Test the Security of My Home-Office Employees' Routers?
John Bock, Senior Research Scientist,  6/7/2021
News
New Ransomware Group Claiming Connection to REvil Gang Surfaces
Jai Vijayan, Contributing Writer,  6/10/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win an Amazon Gift Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
The State of Cybersecurity Incident Response
In this report learn how enterprises are building their incident response teams and processes, how they research potential compromises, how they respond to new breaches, and what tools and processes they use to remediate problems and improve their cyber defenses for the future.
Flash Poll
How Enterprises are Developing Secure Applications
How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-31618
PUBLISHED: 2021-06-15
Apache HTTP Server protocol handler for the HTTP/2 protocol checks received request headers against the size limitations as configured for the server and used for the HTTP/1 protocol as well. On violation of these restrictions and HTTP response is sent to the client with a status code indicating why...
CVE-2021-20027
PUBLISHED: 2021-06-14
A buffer overflow vulnerability in SonicOS allows a remote attacker to cause a Denial of Service (DoS) by sending a specially crafted request. This vulnerability affects SonicOS Gen5, Gen6, Gen7 platforms, and SonicOSv virtual firewalls.
CVE-2021-32684
PUBLISHED: 2021-06-14
magento-scripts contains scripts and configuration used by Create Magento App, a zero-configuration tool-chain which allows one to deploy Magento 2. In versions 1.5.1 and 1.5.2, after changing the function from synchronous to asynchronous there wasn't implemented handler in the start, stop, exec, an...
CVE-2021-34693
PUBLISHED: 2021-06-14
net/can/bcm.c in the Linux kernel through 5.12.10 allows local users to obtain sensitive information from kernel stack memory because parts of a data structure are uninitialized.
CVE-2021-27887
PUBLISHED: 2021-06-14
Cross-site Scripting (XSS) vulnerability in the main dashboard of Ellipse APM versions allows an authenticated user or integrated application to inject malicious data into the application that can then be executed in a victim’s browser. This issue affects: Hitachi ABB Power Grids ...