Promote this Nomination
|Company (that provides the nominated product / solution / service)||Dragos|
|Company size (employees)||50 to 99|
|Type of solution||Hybrid|
In 3 bullets, summarize why this product or service is different from the competition and deserves recognition:
1. Content Packs Containing Threat-Behavior Analytics; Investigation Playbooks Enable Faster and More Effective Threat Investigation and Mitigation. Typical industry solution anomaly-detection tactics are time-consuming, requiring a baseline profile be built and maintained to identify abnormalities in industrial networks and leaving analysts to figure out the context and response. In contrast, Dragos Platform threat-behavior analytics provide immediate value without requiring a baseline and contain rich context, enabling the analyst to know what’s occurring and how to respond.
The Dragos ICS threat detection and response Platform is the most technologically complete solution in the industrial cyber threat detection and response market today. It provides security teams with unprecedented knowledge of their industrial control system (ICS) assets and activity, the threats and adversaries they face, and the tools and knowledge to defend against them. It is the industry’s first and only solution to codify and integrate the knowledge of the industry’s most trusted ICS security experts and an intelligence-driven approach with software technology. When you deploy the Dragos Platform, you get not only the features and benefits of advanced software, you get the transfer of knowledge from Dragos Threat Intelligence, Threat Hunting, and Incident Response teams that is integrated right into the Platform. This means that OT security teams have the ability to independently respond through the investigation and response guidance provided through the product’s playbooks.
The Dragos Platform provides all of the necessary capabilities to gain visibility into industrial networks across the entire industrial cybersecurity framework. It operates as a security incident and event management (SIEM) solution, purpose built for industrial environments, and can be deployed in a security operations center (SOC) model. It is modularly designed so that it can be deployed in whole or in parts to address both immediate and longer-term needs.