Verint Threat Protection System™ for Industrial NetworksNEW PERSPECTIVE. NEW DEFENSE.

Protect Your IT and OT (SCADA) Networks from Advanced Cyber AttacksVerint Threat Protection System™ (TPS) offers critical utilities a government-grade cyber security solution for defending both IT and OT networks. Using an intelligence-driven approach that combines multiple detection sensors, investigation and forensics on a single pre-integrated platform, TPS helps Security Operations Center (SOC) teams maximize their threat visibility while bolstering productivity. Cyber Attacks Against Critical Infrastructure Are a Clear and Present Danger

Cyber attacks against critical infrastructure – electricity, oil, gas and transportation networks – are growing. In the Ukraine in 2015, cyber attackers brought down the power grid for six hours and inflicted months-long damage to control centers. In recent years, the Energetic Bear group (aka Dragonfly) has compromised hundreds of energy facilities in Europe and North America. These targeted attacks disrupt critical services and business continuity, as well as potentially jeopardizing millions of lives.

INCREASED CONNECTIVITY EXPOSES OT NETWORKS TO CYBER THREATS Most SCADA applications utilize dedicated operational (OT) networks that were originally isolated from the organization's IT network. However, over time, OT networks have become interconnected to IT and mobile networks, which may compromise the SCADA environment (99% of cyber attacks actually come through the IT network). These connections also increase the risk that multiple national facilities will be impacted by a single attack.

Legacy SCADA networks and industrial protocols were not built with security in mind. There are no authentication methods in the protocols to prevent an infiltrator from accessing any network device and inflicting damage to local or remote assets. Visibility and detection are also problematic as IT security monitoring solutions do not support OT protocols to identify anomalies.

VERINT THREAT PROTECTION SYSTEM – A NEW PERSPECTIVE FOR MONITORING INDUSTRIAL NETWORKSVerint® Threat Protection System™ for Industrial Networks (TPS) was built to address the challenges posed by advanced cyber threats. Harnessing Verint's 20 years of data intelligence experience and market-leading analytics capabilities, TPS offers comprehensive risk analysis, detection, investigation, and response capabilities in one pre-integrated platform.

The solution monitors payloads, network and endpoints, automatically detecting attacks across the attack cycle. Multiple detection engines send indicators of compromise to a central TPS brain for analysis and cross-validation, effectively reducing false positives. Automated investigation transforms thousands of alerts into a handful of incidents, each with recommendations for incident response – increasing analyst productivity and speeding time to remediation.

TPS leverages Verint's partnership with the Israel Electric Company (IEC), one of the world's most cyber-targeted power companies. Combining Verint's advanced cyber security technologies with IEC's field-proven cyber security defense methodologies and services, TPS offers best-in-class cyber defense against state-sponsored cyber adversaries. Complementary security layers in the IT and OT networks as well as the gateway between them enables security teams to detect and stop malicious cyber activity.

NEUTRALIZE ADVANCED CYBER ATTACKS ON OT AND IT NETWORKSAdvanced attacks may exploit maintenance windows and other weaknesses to bypass the "security gap" and one-way traffic flow between OT and IT networks. To protect OT networks, TPS uses an anomaly-based detection engine that passively monitors traffic going to the PLC, identifying and alerting on anomalies found in OT protocols and field values. This dedicated engine has a high detection rate with minimal false alarms.

The TPS brain aggregates and links alerts from the anomaly detection engine with insights from the other TPS engines to build the complete attack storyline across both IT and OT networks. This provides accurate insights into attacks that cross the security gap, enabling utilities to detect and prevent sophisticated threats targeting the operational environment.

"Power and utilities report the average number of detected incidents skyrocketed to 7,391, a six-fold increase over the year before." PWC, The Global State of Information Security® Survey 2015

Verint Threat Protection System For OT And IT Networks

ONE PRE-INTEGRATED, INTELLIGENCE-DRIVEN SOLUTIONto cover both OT and IT networksSHORTER TIME TO DETECTION AND INVESTIGATIONvia a unified interface ATTACK CHAIN-DRIVEN APPROACHanalyzes indicators of compromise across network, payloads and endpoints, identifies command & control channels and lateral movement common to advanced cyber campaignsPASSIVE OT NETWORK MONITORINGwithout disrupting serviceDEPLOY CENTRALLYto protect the OT control center, remote sites and field devices

WHY VERINT TPS FOR INDUSTRIAL NETWORKS?

Switch

DETECTION

FORENSICS

INVESTIGATION

RESPONSE

SOCOT Monitoring

E

TransmissionGeneration

Switch

Distribution

Commercial & Industrial Business and Residential Consumers

Transmission Substation

DistributionSubstation

Power StationPower Transformers

Mirr

orM

irror

IT Monitoring

w w w . v e r i n t . c o m / c y b e r | I n f o . c y b e r @ v e r i n t . c o m

About Verint Systems Inc.Verint® (Nasdaq: VRNT) is a global leader in Actionable Intelligence® solutions with a focus on customer engagement optimization, security intelligence, and fraud, risk and compliance. Today, more than 10,000 organizations in 180 countries — including over 80 percent of the Fortune 100 — count on intelligence from Verint solutions to make more informed, effective and timely decisions.Learn more about how we’re creating A Smarter World with Actionable Intel l igence® at www.verint.com