As companies adopt more IoT devices to drive efficiency and boost visibility for informed decision-making, outdated firmware and use of default credential settings on xIoT devices create vulnerabilities ripe for exploitation. As we mentioned in a recent blog, for IT managers tasked with protecting critical xIoT infrastructure, it’s essential to implement a comprehensive IoT risk management strategy to identify and remediate security vulnerabilities.
Serving this need, imei’s IoT Protect managed service provides device security, compliance, and vulnerability patching across the xIoT perimeter. Built on Phosphorus Intelligent Active Discovery, our managed service provides accurate, safe, and rapid discovery of all xIoT devices on your network.
It delivers IoT security management and breach prevention across an extended IoT (xIoT) environment, encompassing more than 1.3 million unique IoT, OT, IoMT, and IIoT cyber-physical systems, without the need for hardware or agents. Designed to suit various types of businesses and their unique needs, we deliver imei IoT Protect in three distinct ways as follows:
imei IoT Protect – Discover
Effective device security begins with a clear understanding of all devices on the network, their posture, and suitability to perform the desired functions. The Discover service begins with a scan of your network to identify all xIoT devices, capturing unmatched deep device metadata.
We classify devices and allocate them against a proprietary database of more than 1.3 million xIoT device records.
Next, we assess device credentials, firmware versions, vulnerabilities and more and provide a detailed report summarising the key findings and compliance status. The service also provides recommendations to remediate or limit vulnerabilities across in-scope attack vectors and identifies end-of-life devices.
imei IoT Protect – Remediate
Timely remediation of identified risks reduces ongoing risk and prevents threats. The Remediate service prioritises actions based on the Discover report and performs credential rotation to enhance password security and remove any default credential settings. Updates to firmware are carried out to mitigate vulnerabilities and optimise device performance. Other actions include managing and uploading device certificates, remotely rebooting devices where necessary, and enabling or disabling Telnet, SSH, UPnP, and FTP services. All the actions performed during the service, including vulnerabilities mitigated and updates completed are presented in Remediation report.
imei IoT Protect – Manage
Ongoing monitoring and management of device security and vulnerabilities protection against xIoT threats are provided through the Manage service. This includes orchestrating firmware version control and configuration optimisation, updating certificates and credential rotation. There’s also a 24x7 monitoring and alerting portal, with rebooting actions performed on unresponsive devices. And support is provided by an Australia-based helpdesk. A summary of monthly incidents and compliance as well as end-of-life device notifications is also provided.
Get ahead of growing xIoT cybersecurity risks
To maximise resources devoted to managing critical assets and plug gaps in IoT cyber resilience, please get in touch with us for more information on imei IoT Protect.
.svg)
