Claroty equips all organizations in the aviation sector — from airlines to airport authorities — with the industrial cybersecurity controls needed to protect their OT, IoT, IIoT, and BMS assets, as well as all other cyber-physical systems (CPS) that underpin their most critical operations and infrastructure.
Record-high fuel prices, pressure to improve the passenger experience, evolving regulations, global supply chain disruptions, scheduling challenges, and sustainability concerns are among many factors driving digital transformation in the aviation sector. From advanced navigation and communication systems to maintenance management software to in-flight Wi-Fi connectivity, airlines and airports are modernizing operations to help ensure safe and efficient operation.
Unfortunately, introducing internet connectivity to formerly air-gapped operational technology (OT) introduces cyber risk that may pose a threat to aviation operations. Without a purpose-built cyber-physical systems (CPS) security program in place, organizations in the aviation sector run the risk of operational disruptions due to ransomware, other cyber attacks, or even unintentional user errors. This can manifest in delays and cancellations, leading to lost revenue and reputational damage. Mitigating these risks and, ultimately, gaining cyber and operational resilience requires a new approach that extends far beyond traditional, IT-oriented security solutions. Enter Claroty.
Securing the OT and other cyber-physical systems that underpin aviation operations and infrastructure requires following three key principles:
Asset visibility is foundational to industrial cybersecurity — which is why all segments of the aviation sector must attain a complete, real-time inventory of all OT, IoT, and BMS assets and other cyber-physical systems across airports, planes, control centers, and maintenance facilities. Claroty is proud to deliver the industry-leading visibility our aviation customers need to comprehensively secure their OT environments.
Aviation operations tend to rely heavily on cyber-physical systems that leverage proprietary OT protocols, as well as legacy systems that predate modern cyber threats. As such, the traditional, cybersecurity solutions aviation organizations have long relied on to secure their IT systems cannot be used to secure OT. At the same time, Claroty seamlessly integrates with your existing IT-centric security tools to enable holistic visibility and security.
Unlike their IT counterparts, many OT environments lack essential cybersecurity controls and consistent governance. Claroty eliminates this gap for our aviation customers. After providing visibility into all cyber-physical systems and integrating your existing IT tools and workflows with OT, Claroty extends your existing IT controls to OT — unifying your security governance and driving all use cases on your journey to cyber and operational resilience.
The Claroty journey to cyber resilience empowers organizations in all segments of the aviation sector to extend — and further optimize — the following cybersecurity use cases and governance areas from IT to OT:
Claroty’s automated asset discovery capabilities create a centralized inventory that serves as the foundation for all cyber resilience use cases, equipping aviation organizations with real-time inventory of all OT, IoT, and BMS assets and all other CPS across your OT environment.
Claroty extends your IT vulnerability management controls to OT by automatically detecting, assessing, and recommending remedial actions for CPS vulnerabilities across your ports, hubs, lines, vehicles, and vessels, enabling you to prioritize and deploy mitigations to minimize your OT environment's risk exposure.
Claroty hardens OT environments in all transportation segments against cyber threats by defining network segmentation policies that can be easily enforced by your existing firewall and NAC solutions, as well as providing secure access purpose-built with controls for internal and third-party OT users.
Claroty enables aviation organizations to continuously monitor for and respond to the earliest indicators of threats — ranging from ransomware attacks, to equipment failures, to rogue insiders — before they impact service availability, visibility, communication, safety, compliance, or other critical assets.
The Claroty journey to operational resilience equips aviation organizations to extend and optimize the following security and operational use cases and governance areas from IT to OT:
Operational resilience starts with full visibility into all CPS in your OT environment. Claroty’s automated asset discovery capabilities deliver just this — empowering aviation organizations with the complete, real-time inventory you need as the foundation for all operational resilience use cases.
Change management is essential to governance, compliance, asset maintenance, and procurement decisions enterprise-wide. Claroty empowers MoC programs across IT and OT with continuous asset and operational monitoring and flexible reporting to inform these and related decisions.
Claroty streamlines and enhances asset management for aviation organizations by harnessing in-depth asset insights and an enriched CMDB via ready-made integrations to monitor for asset updates, enable SLA compliance, and optimize supply chain management and procurement.
Claroty xDome Secure Access delivers highly secure and granularly controlled remote access that is frictionless to use and administer and supports all OT remote access use cases key to all aviation segments: from OT remote maintenance, to auditing, to vendor management and more.
Complying with industry standards and regulations is a notoriously complex, ever-evolving endeavor for the aviation industry. Claroty helps streamline audits and compliance, not only with respect to cybersecurity, but also in adjacent areas — from physical safety to availability and more. Highlights include:
Claroty’s support for the entire CPS security journey supports and simplifies transportation organizations' compliance with the requirements set forth by: TSA, FAA, EPA, NIS 2.0, RCE, SOCI/SLACIP, TRIPC, MSE-428(98), and many more.
Compliance with the following cybersecurity practices and standards is seamlessly enabled by the controls offered by Claroty’s portfolio: CISA CPGs, IMO, MTSA, IEC 62443, ENISA, NIST CSF, CIS, ISO 27001, and many more.
Leading aviation organizations worldwide trust Claroty to protect the critical cyber-physical systems that help ensure safe and secure movement of passengers and goods worldwide. Here's why:
Our comprehensive cybersecurity platform has earned dozens of accolades for seamlessly enhancing the safety, security, and efficiency of OT, IoT, IIoT, BMS, and other CPS.
Our award-winning Team82 researchers have disclosed more vulnerabilities than any other group. Their findings enhance our platform’s protections and drive security industry-wide.
The Top 3 automation vendors (Rockwell Automation, Schneider Electric, and Siemens) invest in, partner with, and are loyal customers of Claroty, further validating our leadership.
Claroty's vast technical ecosystem further expands the capabilities — and ROI — of our aviation customers’ existing security and operational investments. Key technical integration partners include:
Claroty xDome is a highly flexible, modular SaaS-based solution that supports your entire industrial cybersecurity journey.
Claroty xDome Secure Access delivers frictionless, reliable, and secure access for internal and third-party industrial personnel.
Claroty Continuous Threat Detection (CTD) is a robust solution that delivers comprehensive cybersecurity controls for industrial environments.
Want to learn more about how Claroty's portfolio will empower you to achieve cyber and operational resilience?
Enhance network visibility with Claroty's granular intelligence of connected devices used for endpoint profiling through roles and role-mapping rules to create effective enforcement policies, through Aruba's ClearPass Policy Manager.
The Claroty AirWave integration allows Claroty to connect with Aruba AirWave server and import visibility data for wired and wireless devices, that are connected using AirWave infrastructure.
NAC, Network Management
xDome/xDome for Healthcare/CTD
Visibility & Insights, NSM
Aruba AirWave, Aruba ClearPass Policy Manager
Claroty
The Claroty CTD Connector for AUVESY versiondog fuses CTD’s XIoT visibility with versiondog’s data management capabilities to automate, optimize, and centralize an organization's inventory, risk and vulnerability assessment and correlation, and backup and recovery coverage for OT assets.
Version Management
CTD
CTD
VersionDog
Claroty
Check Point Software Technologies is a leading provider of cyber security solutions to corporate enterprises and governments globally. Check Point Infinity’s portfolio of solutions protects enterprises and public organisations from 5th generation cyber-attacks with an industry leading catch rate of malware, ransomware and other threats. Infinity comprises three core pillars delivering uncompromised security and generation V threat prevention across enterprise environments: Check Point Harmony, for remote users; Check Point CloudGuard, to automatically secure clouds; and Check Point Quantum, to protect network perimeters and datacenters, all controlled by the industry’s most comprehensive, intuitive unified security management; Check Point Horizon, a prevention-first security operations suite. Check Point protects over 100,000 organizations of all sizes.
Firewall
xDome/xDome for Healthcare/CTD
NSM, CTD
Check Point IoT Controller, Checkpoint Management & FW GW
Claroty
CTAP Certified
To enrich the value of device profiles and their security context, Claroty integrates with numerous Microsoft systems:
Microsoft DHCP enriches Claroty data by adding accurate IP assignment information.
Claroty's integration with Microsoft Intune enriches mobile-managed device profiles with OS, application version, and other security attributes.
Claroty's integration with Microsoft Active Directory brings in data elements that provide additional asset visibility and profiling context.
For patch management, Claroty's integration to Microsoft SCCM improves OS and application visibility for domain attached devices to improve passive vulnerability correlation precision and overall coverage.
Claroty's integration with Microsoft Defender Advanced Threat Protection (MDATP) enables cloud application discovery and is supportive of DLP strategies.
Network Management, DHCP, Mobile Device Management, Patch Management
xDome/xDome for Healthcare
Vulnerability & Risk Management, Visibility & Insights
Microsoft Active Directory, Microsoft Defender ATP, Microsoft DHCP Server using WinRM, Microsoft Intune, Microsoft SCCM
Claroty
The integrated Claroty and Mission Secure solution enables organizations to gain not only complete visibility into their OT networks, but also the ability to enforce granular, context-aware cybersecurity policies.
Network Security
xDome
Mission Secure Platform
Mission Secure
CTAP Certified
Claroty integrates with the Palo Alto Networks Cortex ecosystem and the Panorama™ firewall solution by fusing its knowledge of device profiles, communication protocols, and workflow requirements, feeding them directly into Panorama to enable an enterprise-class risk management capability.
Firewall, SIEM
xDome/xDome for Healthcare/CTD
NSM
Palo Alto NGFW
Claroty
The integration with QRadar enables vital communication events, alerts, and vulnerabilities data to flow into QRadar.
SIEM
xDome/xDome for Healthcare/CTD
Visibility & Insights
QRadar
Claroty
By providing missing device identity and incident context, the integration between Rapid7 and Claroty provides actionable threat intelligence to Rapid7 InsightIDR.
Exposure Management
xDome/xDome for Healthcare
Vulnerability & Risk Management
Rapid7 VM
Claroty
The integration with Rockwell Automation allows Rockwell customers to leverage Claroty's expertise with vulnerabilities, risks, and threat intelligence to enhance Rockwell AssetCentre's data management, centralized inventory, backup, and recovery coverage for the industrial networks.
Version Management
CTD, xDome
Claroty
The integration with Splunk allows it to consume xDome, CTD, and the Medigate Platform’s device profiling, vulnerability, risk insights, advanced traffic monitoring and threat/alert data. The combined solution powers Splunk’s advanced analytics, visualization and reporting capabilities. working with its native OT data model thus enabling advanced investigative detection and response workflows around the XIoT.
SIEM
xDome/xDome for Healthcare/CTD
Visibility & Insights
Splunk Platform
Claroty
