Streamline discovery of assets, and related vulnerabilities in your Operational Technology (OT) and Industrial Control System (ICS) Environments in your Manufacturing Sites.
Dragos’s OT vulnerability management solutions provide the most accurate and complete information available to industrial organizations. The Dragos Platform provides continuous monitoring of OT networks to streamline discovery of asset inventory, map out resources and automatically assess for flaws in the environment by comparing the inventory to known OT vulnerabilities.
Purpose-built for OT, the Dragos Platform uses our own vulnerability knowledge base for this assessment. Dragos provides added context during these checks by validating the accuracy of public information about vulnerabilities and providing confidence ratings to detections to help organizations prioritize risk.
Dragos also enriches that information with unique mitigation guidance that goes above what the Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) and the National Vulnerability Database (NVD) offers. Most importantly, Dragos layers in threat intelligence about how attackers are using vulnerabilities and OT-specific domain knowledge about operational risks to develop a system to score vulnerabilities based on a “Now-Next-Never” system for prioritization of all detected vulnerabilities in an environment.
This Now-Next-Never system folds insight from Dragos based on our experts’ evaluation of the software, the vulnerability itself, the OT attack surface areas, and the steps necessary for attackers to leverage the flaw to impact OT processes. This analysis offers the most thorough threat insight to provide a risk-based prioritization fully relevant to OT environments.
Continuously update your OT Vulnerabilities in ServiceNow from your Dragos Platform with our Vulnerability Response integration. Use with the Service Graph Connector for Dragos for optimal device details and results.
- ServiceNow Operational Technology (OT) Certified
- Compatible with ServiceNow OT Vulnerability Response (OT VR)
- Simple configuration via Guided Setup
- Dragos Vulnerability rating prioritization rating.
- Designed to work with Service Graph Connector for Dragos
Version 1.1.0
- New- Dragos Vulnerability Intel. From a Dragos Vulnerable Item, you can view Dragos' specific mitigation guidance, which includes:
- "Now-Next-Never" Prioritization
- Threat intelligence data from Dragos, including exploitability information
- Dragos adjusted CVSS score
- Mitigations and Playbooks
- Additional fields are visible when viewing an unmatched Discovered Item from Dragos. This will aid in reviewing and identifying unmatched CIs.
Version 1.0.15
- New bidirectional state change integration, which, if enabled, will push certain Vulnerable Item states back to Dragos to keep the 2 systems in sync:
- Stale
- False Positive
- Deferred (will also re-open the vulnerability in Dragos after the Deferral expires in ServiceNow)
- New Guided Setup section to walk through setup of the bidirectional state change integration
Version 1.0.14 is certified for Quebec, Rome, San Diego and Tokyo compatibility.
- Added Module Access Policies to Key Management Framework allowing the application to access GlideEncrypter. This fixes an issue where stored Dragos credentials were not being stored/retrieved properly
ServiceNow Requirements
- CMDB CI Class Models (1.32)
- Vulnerability Response (20.0.0)
- System Import Sets