Claroty-Oil & Gas Company Secures Offshore Drilling Operations
Claroty-Oil & Gas Company Secures Offshore Drilling Operations
Oil & Gas – Global Oil & Gas Company Secures Offshore Drilling Operations with Claroty
Direct connectivity between a global oil and gas company’s corporate IT network and the OT networks aboard each of its contractor-managed offshore drilling ships enabled it to achieve impressive production efficiency. Recognizing that this connectivity also posed considerable risks to the availability, reliability, and safety of its offshore drilling operations, the company turned to Claroty for assistance assessing and mitigating these risks.
Challenges
The company noted several operational and structural challenges that hindered its ability to effectively and proactively secure its offshore drilling operations.
Fragmented and vulnerable network architecture: Each of the company’s mobile offshore drilling units (MODUs) included four independent OT networks that were not air-gapped and thus were vulnerable to spillover attacks from the IT network.
Heavy reliance on third-party contractors: The company outsourced management of its MODUs to exploration and production (E&P) contractors. Each MODU is managed by a different contractor who utilizes remote access connections to service it. However, remote access is a common attack vector. If the remote party’s device becomes infected with malware or their access credentials are stolen, for example, this can make the systems they access susceptible to compromise. Additionally, since all remote connections were via third-parties, the company could not monitor them and had no insight into whether actions taken remotely were authorized and error-free.
Limited OT visibility: A consequence of having a different contractor manage each MODU is that each MODU’s OT networks comprise different assets that utilize different protocols. Given that OT protocols are proprietary and incompatible with traditional asset management tools, the company was unable to inventory its OT assets and thus unable to assess, much less mitigate, the risks to which they were exposed. The company’s two aforementioned challenges further exacerbated these visibility limitations.
Customer Quote
“Claroty is a comprehensive solution. Its single dashboard across all sites showing the real-time status of all of our OT assets was a key factor in our decision to use this platform. Claroty really gave our team an extreme level of visibility into our OT networks that other companies were unable to provide. The fact that they achieved this without impacting our existing systems made the decision even easier for us.”
The Solution
The Claroty Platform was deployed on top of existing offshore OT network infrastructure and then connected to the company’s onshore security operations center (SOC) via an existing satellite communication network. Platform components utilized include:
Continuous Threat Detection (CTD) for full-spectrum OT asset visibility, continuous security monitoring, and real-time risk insights with zero impact to operational processes and underlying devices.
Secure Remote Access (SRA) to safeguard OT networks from threats introduced via unmanaged and unmonitored access by remote users, including employees and third-party vendors.
Enterprise Management Console (EMC) to simplify management overall, consolidating data from across The Claroty Platform and providing a unified view of assets, activities, and alerts across multiple sites. The platform also integrates
Outcomes
Utilizing The Claroty Platform, the company was able to:
Discover and profile all OT assets, communications, and processes within two weeks of deployment for multipleMODUs around the globe.
Integrate the platform with its existing IT security infrastructure to create a highly effective and unified IT/OT SOC, greatly improving alignment and collaboration across IT and OT security, as well as with E&P contractors.
Leverage SRA’s customizable user-access controls, least-privileges policies, and auditing features to monitor manage, and minimize risks introduced by remote access.
Provide its E&P contractors with a user-friendly, OT purpose-built interface through which they easily connect remotely—and securely—to service OT assets.
Proactively protect against security incidents and thus reduce exposure to risks to the availability, reliability, and safety of its offshore drilling operations.
Claroty bridges the industrial cybersecurity gap between information technology (IT) and operational technology (OT) environments. Organizations with highly automated production sites and factories that face significant security and financial risk especially need to bridge this gap. Armed with Claroty’s converged IT/OT solutions, these enterprises, and critical infrastructure operators can leverage their existing IT security processes and technologies to improve the availability, safety, and reliability of their OT assets and networks seamlessly and without requiring downtime or dedicated teams. The result is more uptime and greater efficiency across business and production operations.
Backed and adopted by leading industrial automation vendors, Claroty is deployed on all seven continents globally. The company is headquartered in New York City and has received $100 million in funding since being launched by the famed Team8 foundry in 2015.
Want to know more about how Claroty can help you in your business? Contact us now