Armis Agentless Security Platform

Additional Info

CompanyArmis, Inc.
Websitehttps://armis.com/
Company size (employees)100 to 499
Type of solutionCloud/SaaS

Overview

Armis is the first agentless, enterprise-class security platform to address the new threat landscape of unmanaged and IoT devices. The proliferation of these devices in the enterprise has sparked a digital transformation larger in scale and greater in risk than the PC and mobile revolutions combined. Eight billion connected devices are in use today, and 25 billion or more will be in use by 2020. These devices are designed to connect and improve productivity and efficiency. However, the vast majority have no security, are hard or impossible to update, and businesses have no way to manage them. Because business can’t see or managed these devices, they have created a huge security blind spot.

Armis is solving the biggest security issue facing enterprises today with a novel approach. As an agentless and passive platform, it discovers and analyzes all managed and unmanaged devices in the enterprise environment, as well as rogue devices and networks. This gives businesses visibility and control over devices on and off of approved networks. We allow businesses to discover wired and wirelessly connected devices. Armis’ platform lets businesses quarantine devices acting suspiciously or maliciously, protecting environments from evolving IoT exploits or attacks.

Fortune 1000 companies trust Armis’ unique out-of-band sensing technology to discover all managed, unmanaged, and IoT devices; communicating via wired, Wi-Fi, Bluetooth, Zigbee, and other common IoT protocols that are invisible to legacy security systems. Armis continuously analyzes endpoint behavior to identify risk and attacks so it can protect critical information and systems.

From unmanaged laptops, smartphones, to smart TVs, printers, HVAC controls, badge readers and medical or industrial devices, these connected devices create the new attack landscape. Armis lets businesses see every device, locally and remote, and understand what each is doing, identify associated risks, and stop attacks.

How we are different

Armis has three critical differentiators:


Agentless - Armis is completely agentless, which is critical for two reasons. First, almost all unmanaged and IoT devices can’t take an agent. They are not designed to. So the only option is agentless. Second, agents bring overhead and headaches - hence the “agent fatigue” being experience by security professionals today. Even without an agent, Armis can see every device across every site and network, including make, model, OS, history, connections, behavior, reputation, and more. We can stop attacks because we leverage existing networking infrastructure and integrate with the existing network as well as firewall, NAC, and other security solutions to quarantine suspicious or malicious devices.


Passive - Armis delivers passive, real-time continuous vulnerability assessment of all devices in the enterprise. This is important because many of these new unmanaged and IOT devices cannot or should not be scanned. For healthcare, scanning biomedical device can have devastating effects if it is delivering patient care or cause the device to crash. Some regulations forbid such active scanning. For manufacturing, scanning can cause failures or crashes of production equipment. With passive scanning, Armis provides non-disruptive vulnerability assessment of all devices and threat identification - increasing security as well as compliance for the enterprise.


Critical Device Insights - Armis brings a unique device intelligence with its Device Knowledgebase which contains over 7 million device profile characteristics we have gathered from device manufacturers and anonymized customer environments. Comparisons of OUI, device type, connections, historical interactions, fingerprints, location, movement, and other unique behavioral attributes as compared to other similar devices allows us to not only identify a device, but identify what it is doing, and if that behavior is appropriate or suspicious. This information combined with our Threat Intelligence Engine lets Armis take necessary action to protect against compromised devices.