Get Started with VMDR OT
Qualys VMDR OT provides comprehensive visibility and vulnerability management for critical infrastructure across all industrial network layers - Control, Supervisory, and Site Operations.
Industrial IoT (IIOT) and smart manufacturing greatly enhance Overall Equipment Efficiency (OEE) and cost savings. However, they also increase enterprises’ exposure to cyber-attacks due to rapid digitization and newly established inter-connectivity between previously air-gapped industrial environments and enterprise networks. Industrial assets have higher availability and reliability requirements. Their functioning round the clock and malfunction can potentially lead to significant physical safety incidents. Qualys provides a single platform and a single pane of glass for all IT & OT Asset Inventory, Vulnerabilities Management, Policy Compliance, and OT Endpoint based Threat Detection and Response.
Typically, industrial processes are supported by multiple equipment manufactured by different industrial vendors and powered by varied industrial protocols such as Ethernet/IP, Modbus TCP, Siemens S7 Comm, S7Comm Plus, Profinet, BACnet, and DNP3, among others. Many of these protocols are insecure by design, lacking basic authentication and encryption, so it is even more critical to have visibility and regular risk assessments conducted in these environments.
With Qualys VMDR OT, you get real-time asset inventory, network visualization, and vulnerability management for your industrial control systems. With an intuitive interface and a fully automated risk assessment workflow, Qualys VMDR OT is a powerful tool to reduce the risk of costly and dangerous cyber security breaches.
VMDR OT provides asset inventory, network visibility, and vulnerability postures at all the Purdue levels.
|
Purdue Level |
Assets |
Feature |
Supported by |
Available on Qualys Applications |
|---|---|---|---|---|
|
Purdue Levels 0/1/2 |
Hardware like PLC, RTU, IO, Robots, VFDs etc |
- Asset Inventory -Vulnerability Management |
- Qualys Network Passive Sensor - VMDR OT Out of band configuration assessment |
VMDR OT |
|
Purdue Levels 2 and above |
OT/ICS OS-based endpoints hosting ICS Vendor software - (Engineering workstations, Operator Stations, HMI Servers, DCS Servers, etc.) |
Asset Inventory |
VMDR application (Safe OT Device scan support in Qualys Scanner and Cloud Agent) |
VMDR, CSAM, For more information, refer to the OT Device Scan details. |
|
Vulnerability Management |
VMDR (OT/ICS OS-based endpoints hosting ICS Vendor software) |
VMDR |
||
|
Policy Compliance |
Policy Compliance application IEC 62443 NERC CIP Policy |
Policy Audit |
Benefits
Real-time VMDR asset inventory
Extensive Industrial protocol support
Out of band Configuration Assessment support
Robust vulnerability management
Broad industrial vendor support
Know the Requirements
VMDR OT application can be accessed with a subscription to VMDR, Cyber Security Asset Management (CSAM) and Qualys Network Passive Sensor (NPS) applications.
Let's Get Started!
VMDR OT is powered by Qualys Network Passive Sensor. It continuously monitors all network traffic and flags any asset activity. It identifies and profiles devices the moment it is connected to the network.
Qualys Network Passive Sensor (NPS) identifies assets in an industrial environment that can’t be actively scanned. Qualys Network Passive Sensor (NPS) enriches existing asset inventory with additional details, such as recent open ports, traffic summary, network services, and applications. This helps to gain a deeper understanding of an asset and its activity on the network in real-time.
Discover Assets and Collect Inventory
Visualize the Assets and Vulnerability Postures on the Dashboard
Customizable Dynamic Dashboards
Dashboards help you visualize your assets, see your threat exposure, leverage saved searches, and quickly fix the priority of vulnerabilities.
Qualys VMDR OT integrates with Unified Dashboard (UD) to bring information from all Qualys applications into a single place for visualization. UD provides a powerful, new dashboarding framework and platform service that will be consumed and used by all other products to enhance the existing dashboard capabilities.
Qualys VMDR OT offers several dashboards out-of-the-box. Each dashboard displays a short description of the information it offers. You can also easily configure widgets to pull information from other modules/applications and add them to your dashboard. You can add as many dashboards as you like to customize your view.
For more information, refer to the Unified Dashboard help.
Global Dashboard Permissions
Your access to Unified Dashboard depends on the Admin utility's global permissions granted to you. Refer to the Online Help in the Admin utility for information on Global Dashboard Permissions.
When you assign the Global Dashboard permissions to a role, the Global Dashboard permissions override the module-specific dashboard permissions. As a result, the module-specific dashboard permissions are ignored.