Additional Info

CompanyVerve Industrial Protection
Websitehttp://www.verveindustrial.com
Company size (employees)50 to 99
Type of solutionSoftware

Overview

Verve Industrial Protection has been helping ensure reliable and secure industrial control systems for 25 years. Its principal offering, the Verve Security Center, is a unique, vendor-agnostic OT endpoint management platform that provides IT-OT asset inventory, vulnerability management, and the ability to remediate threats and vulnerabilities from its orchestration platform. Verve’s Design-4-Defense professional services support clients in ensuring their OT environments are designed and operated in a secure manner. To learn more about Verve Industrial, please visit us at www.verveindustrial.com

How we are different

Rich Asset Inventory for Patch Identification - Verve Security Center provides visibility into 100% of connected assets. Through a combination of best-in-class tools for agent-based systems and a proprietary Agentless Device Interface (ADI), clients can inventory and monitor all assets in their OT/ICS network. Notably, Verve’s 100% software-based approach delivers this visibility without requiring expensive taps or other hardware collectors.


Integrated Patch Deployment/Application - Verve Security Center also automates the deployment (or application) of patches into OT environments. Verve leverages 25+ years of vendor-agnostic experience in industrial controls to build an OT-safe patching solution. The Verve Security Center patching module allows users to build baselines for patches that are approved and unapproved and use baselines to reflect those approved by a specific vendor. Once this baseline is established, Verve dashboards are filtered to report on only those patches that have been approved, eliminating the complexity of manually recalling which patches should and should not be deployed. Then the operator can choose to execute those selected patches in an automated fashion, rather than depending on manual processes or unreliable tools such as WSUS.


Centralized Reporting and Compliance - One of the more tedious regulatory and managerial tasks related to patch management is the requirement to baseline systems before and after patch application. Any baseline changes need to be captured and entered into corporate change management workflows to secure the new configuration and maintain compliance. Verve Security Center automates baseline configuration automatically flagging any changes to target systems. Moreover, Verve’s ADI inventories proprietary systems that constitute up to 75% of all assets, gathering and confirming that patch updates have been deployed on networking, relays, PLCs, and other embedded devices. Importantly, this patching tool allows customers to run a baseline after an update and confirm the latest version is installed.