Cisco® Cyber Vision provides full visibility into an ICS, including dynamic asset inventory, real-time monitoring of control networks and process data, and comprehensive threat intelligence, so users can build secure infrastructures and enforce security policies to control risk. Combining an edge monitoring architecture and integration with Cisco’s leading security portfolio, Cisco Cyber Vision can be deployed at scale so as to ensure the continuity, resilience, and safety of industrial operations.
Cisco Cyber Vision leverages an edge computing architecture
that enables security monitoring
components to run within Cisco’s
industrial network equipment.
No need to source dedicated
appliances and build a dedicated
out-of-band network.
The solution boasts unique simplicity and the lower costs
of the Cisco Cyber Vision architecture
when looking to deploy OT security at
scale.
Visibility embedded into the industrial
network
Know what to protect. Cisco Cyber Vision is embedded in industrial networks so the user can see everything that connects to it.
Operational insights for OT
Maintain system integrity and production continuity. Cisco Cyber Vision keeps track of process data, asset modifications, and variable changes.
Holistic threat detection
Detect threats before it’s too late. Cisco Cyber Vision identifies known and emerging threats as well as process anomalies and unknown attacks. Fully integrated with the Cisco security portfolio, it extends the IT security operations center (SOC) to the OT domain.
Security assessments
Securing OT infrastructure starts with having a precise view of asset inventory,
communication patterns, and network topologies. Cisco Cyber Vision automatically builds an accurate
list of all your industrial assets and detailed network maps so users can define what needs to be done.
Network segmentation
Industrial security best practices suggest migrating networks toward architectures compliant with
IEC62443 zones and conduits to avoid having an attack spread to the entire industrial infrastructure.
Cisco Cyber Vision integrates with Cisco Identity Services Engine (ISE) to create asset groups and
leverages Cisco industrial network equipment to dynamically enforce segmentation policies.
Extending cybersecurity to the OT domain
Cisco Cyber Vision
combines protocol analysis, intrusion detection, behavioral analysis, and OT threat intelligence to detect
asset vulnerabilities, and any attack tactic.
Enabling a converged IT/OT SOC
Cisco Cyber Vision brings detailed
information on OT assets and threats to Cisco Firepower® firewalls, the ISE access controller, and
the Stealthwatch® traffic analyzer so users can build and enforce security policies without disrupting
production.
Driving governance and compliance
Cisco Cyber Vision logs all
events from the user's ICS to run efficient audits, build incident reports, and work with both IT and
OT teams to drive actions.