SteelCloud Software Deployed to Secure Critical OT Infrastructure at Major Energy Company
Ashburn, Virginia – March 2, 2022 – SteelCloud LLC, a leading STIG and CIS compliance automation software developer, announced today its ConfigOS technology has been licensed to a major U.S. energy company to secure Operational Technology (OT) assets.
SteelCloud’s software will be used to harden OT endpoints using the Center for Internet Security (CIS) industry-standard for system-level controls. The initial implementation will be deployed to support the NIST security framework and will include thousands of process control and SCADA assets. The ConfigOS agent-less architecture provides unique benefits to OT operators because it performs its cyber work without the need to load software on OT assets.
According to Gartner, “attacks on organizations in critical infrastructure sectors have increased dramatically, from less than 10 in 2013 to almost 400 in 2020 — a 3,900% change.” Gartner also predicts that by 2025, “30% of critical infrastructure organizations will experience a security breach that will result in the halting of an operations- or mission-critical cyber-physical system.”
“With the convergence of IT and OT networks, securing those assets from cyber-attack is more important today than ever,” said Curtis Dukes, CIS Executive Vice President and General Manager, Security Best Practices. “SteelCloud’s application uses CIS consensus-based Benchmarks to significantly reduce common threats such as malware, insufficient authorization, and remote intrusion.”