Introducing Claroty xDome Secure Access:
Learn More
Claroty Toggle Search

Complying with:

The NIST Cybersecurity Framework

Claroty simplifies compliance with the NIST cybersecurity framework (CSF), empowering organizations to drive resilience across their critical operations and infrastructure.

NIST Cybersecurity Framework FAQs

What is the NIST Cybersecurity Framework?

The NIST cybersecurity framework is a set of guidelines and best practices developed by the National Institute of Standards and Technology (NIST) in response to an Executive Order from the U.S. government. The intention of the framework is to help organizations in critical infrastructure sectors manage and reduce cybersecurity risk.

What are the NIST CSF Requirements?

This framework categorizes five core functions — identify, protect, detect, respond, and recover — as a flexible starting point for organizations to improve their cybersecurity awareness and preparedness. It also includes categories and subcategories which provide a more concrete action plan for specific departments or processes within an organization.

Who Does the NIST Framework Impact?

NIST guidelines are mandatory for U.S. government agencies and any organization doing business with the U.S. government. However, the framework should be adopted by all organizations — both public and private — concerned about their cybersecurity posture.

How Claroty Supports Compliance with the NIST Framework

IDENTIFY:

As the NIST CSF's first function, Identify encompasses a series of controls focused on developing an organizational understanding to manage cybersecurity risk to systems, people, assets, data, and capabilities.

Claroty Support: Claroty’s automated asset discovery capabilities and centralized asset inventory allow organizations to gain complete, real-time visibility into all IoT, IIoT, IoMT, and other connected devices — providing them with the XIoT asset inventory that is foundational to complying with the NIST cybersecurity framework.

Asset discovery is foundational not only to the NIST CSF but also to the entire cyber-physical systems (CPS) cybersecurity journey — which is why Claroty equips customers with a real-time inventory of all the CPS that underpin their operations.
Using its CPS visibility and expertise, Claroty defines policies for firewalls and NAC solutions to optimize the implementation of a key protective control: network segmentation.

PROTECT:

As the NIST CSF's second function, Protect encompasses a series of controls focused on outlining the appropriate safeguards to ensure delivery of critical infrastructure services.

Claroty Support: Claroty equips organizations to harden their environments against cyber threats by harnessing expert-defined policies and granular access controls to embrace network segmentation and Zero Trust. We also offer newly enhanced Exposure Management capabilities, which allows organizations to better understand their CPS risk posture, better allocate their resources to improve it, and to protect their critical CPS environments from growing threats.

DETECT:

As the NIST CSF's third function, Detect encompasses a series of controls focused on enabling the timely discovery of cybersecurity events.

Claroty Support: Claroty enables organizations to continuously monitor for and respond to the earliest indicators of threats — ranging from ransomware, to equipment failures, to malicious insiders, to IP theft, to misconfigurations —before they impact safety, compliance, or other assets.

Recognizing the rising frequency and impact of threats targeting CPS, Claroty continuously monitors for the earliest indicators of known and emerging threats.
Claroty enriches all alerts with deep context, including root-cause analyses and mapping to the MITRE ATT&CK Framework to optimize prioritization and response workflows.

RESPOND:

As the NIST CSF's fourth function, Respond encompasses a series of controls focused on taking action against a detected cybersecurity incident.

Claroty Support: Claroty offers multiple detection engines to automatically profile all assets, communications, and processes in CPS networks. Our solutions have a deep understanding of proprietary industrial protocols and device behaviors to ensure each device receives the security policy appropriate for it — and prevents any future violations. We also provide a portfolio of threat capabilities that seamlessly integrate with your existing tech stack — bridging the IT-Industrial expertise gap.

RECOVER:

As the NIST CSF's fifth function, Recover encompasses a series of controls focused on appropriate activities to maintain plans for resilience and to restore any capabilities or services that were impaired due to a cybersecurity incident.

Claroty Support: Claroty solutions provide change information on critical systems to assess whether affected systems can be put back into production, and KPIs for improvement through our analysis of network segmentation, critical system vulnerabilities, and attack vectors. We also enable information sharing for secure and efficient distribution of information critical to recover.

Claroty’s granular risk scoring mechanism continuously assesses and quantifies the risk of all assets in the environment, providing invaluable insights to guide recovery activities.

Claroty Solutions that Align with the NIST CSF

Claroty xDome

Claroty xDome is a flexible SaaS platform purpose-built for all use cases & types of CPS on the entire industrial cybersecurity journey.

Medigate by Claroty

Medigate by Claroty is a SaaS-based healthcare cybersecurity platform that safeguards the connected devices that underpin patient care.

Claroty xDome Secure Access

Claroty xDome Secure Access delivers frictionless, reliable, secure access for internal and third-party OT personnel.

Claroty CTD

Claroty Continuous Threat Detection (CTD) offers robust, on-premises cybersecurity controls for industrial environments.

Explore Additional Resources

Claroty Demo

Want to see how Claroty will support your entire XIoT cybersecurity journey?

Claroty
LinkedIn Twitter YouTube Facebook