Today we are proud to announce that the latest release of the Industrial Defender Automation Systems Manager™ (ASM), version 6.2, is available! Our dedicated product team works along-side existing end-users to continually improve functionality and develop advanced capabilities within this single, unified platform. The Industrial Defender ASM is specifically designed and purpose built to assist asset owners in the task of ensuring the safe and reliable operations of industrial control systems (ICS).
The 6.2 release addresses features that will assist cybersecurity, compliance and change management requirements for ICS enviornments. The latest version expands ICS operational management capabilities with a new, highly customizable module that tracks ICS asset performance indicators. Additionally ASM v6.2 delivers features and enhancements to assist customers in meeting the rapidly approaching NERC CIP v5 April 2016 start date. The ASM continues to win customers and has become the de-facto standard for operational technology (OT) cybersecurity by automating many of the manual processes required to secure global critical infrastructure operational assets.
The Industrial Defender ASM solution is comprised of three components:
- ASM – the Automation Systems Management platform used to search, sort and report on data collected from assets and systems within the ICS environment
- ASA – the Advanced System Appliance captures, correlates and securely routes events and asset configuration data to the ASM for analysis, management, and reporting. Continual data collection directly from local devices through various methods, using standard communication protocols like SSH, SFTP, SNMP or through specially designed automation system agents is the ideal solution for mission critical networks where no inbound access is allowed.
- Agents – the Industrial Defender ASM agents enable automated collection of configuation state and event data from endpoints, locally and remotely. Agents are deployed with no impact to your environment and require limited resource utilization.
Five New Features for ASM 6.2
1. Reports from search deliver greater report flexibility and utility
Appearing in the same formal format as reports generated using the Reporting tab, reports can now be created, scheduled, and saved directly from query results on ASM search pages, such as Active Asset Search, User Search and Event Search. The unique reports generated from these searches can be scheduled for automatic creation and storage on the ASM. Email notification can be automated upon scheduled report generation.
2. New workflows to manage configuration rules remotely enhance asset state data collection functionality
Now managed from the ASM, configuration rules allow you to select specific types of state data to collect from assets such as asset details, users, firewall rules, software installed, patches installed, network interfaces, ports and services, and configuration backups. Configuration rules are easily associated with asset groups for efficient configuration rule management. Although default configuration rules are provided out-of-the-box, custom configuration rules can be created.
You don’t need remote or physical access to asset after first-time installation!
3. Rule management workflow provides greater ease-of-use
A new rule management workflow delivers a rich set of improved usability features including new search panels for rule pages, additional default rules libraries for import, bulk rule classification upon import, and a report showing rules applied to assets.
4. User configuration export and import functions boost user-defined configuration
The export and import function is redesigned to include all user-defined configuration data including asset configurations, rules, notifications and contacts. This capability increases utility and portability. Four common use cases for this feature; disaster recovery, NERC CIP v5 compliance, QA to production migration and FleetView deployment.
5. Asset Trends widgets enable asset performance monitoring in real-time
Asset Trends widgets display continuous, analog information in both a graph and table format over a selectable time interval using menus of metric categories and associated metric names for display. Asset Trends widget types include CPU, disk, memory, network and a customizable advanced widget.
New ASA Features for 6.2
Waterfall Diode support: Waterfall Diode implementation supports ASA to ASA or ASA to ASM communication. Data collected on the ASA can now be sent through Waterfall diodes, models WF100TX and WF100RX, via UDP and File Transfer to another ASA or to the ASM.
State data collection capability from the ASM: Configuration of State Data Collection (Configuration Rules), formerly available only on the ASA, has been added to the ASM. Rules for agents performing state data collection can now be defined and managed directly from the ASM. This simplifies management of configurations with multiple ASAs reporting to an ASM.
Standalone manual agent option to import offline state data files: Add standalone agent option for remote hosts. An ASA user can import offline state data files. A new manual option has been added to configAgent.pl in addition to monitor and manage when configuring an agent. This allows agent configuration locally on remote off-network Windows and Linux hosts. State data files can then be offloaded to a USB stick and manually added to the database on an ASA.
Support for a Modbus server destination: More alert monitoring options available with new Modbus-based HMI support. A user can now create a Modbus server as a destination when configuring an ASA.
New Agent Features for 6.2
CentOS support: Support added for agents running on CentOS v5 and CentOS v6. The agent installer has been upgraded to install agents on CentOS v5 and Centos v6.
Standalone manual agent option to import offline state data files: Standalone agent option for remote hosts. An ASA user can import offline state data files. A new manual option has been added. This allows agent configuration locally on remote off-network Windows and Linux hosts. State data files can then be offloaded to a USB stick and manually added to the database on an ASA.
Find out how Industrial Defender ASM can help you manage your secuirty, operations and compliance projects. Request an appointment today!