SOURCE: FireEye

FireEye

February 29, 2016 08:00 ET

FireEye Launches New Mandiant Service to Help Address Strategic Cyber Security Needs of Industrial Control Systems

Industrial Control Systems (ICS) HealthCheck -- A Security Assessment Combining Operational Technology and IT Security Expertise to Improve Detection and Response Capabilities in Critical Systems

MILPITAS, CA--(Marketwired - Feb 29, 2016) - FireEye, Inc. (NASDAQ: FEYE), the leader in stopping today's advanced cyber attacks, today announced the launch of the Mandiant® ICS HealthCheck service, a minimally-invasive cyber security assessment for operators of mission-critical ICS. The ICS HealthCheck service is available now and is a core component of FireEye's continued focus on securing critical infrastructure.

ICS HealthCheck was specifically designed to meet the needs of asset owners concerned about the operational risk associated with software-based agents, network scanning or other security evaluation techniques. Mandiant's purpose-built methodology does not require any changes to the control system and does not generate network traffic that could disrupt normal operations. By modeling network architecture and data flows, using nation-state grade intelligence to simulate possible attacks, and prioritizing controls, organizations are able to better detect and respond to the unique threats their ICS environments face. This unique methodology bridges IT security and operational technology (OT) by enabling IT security teams and the engineering staff who manage ICS infrastructure to help create and identify joint solutions to identified vulnerabilities.

"The cyber security threats to ICS are becoming more tangible as threat actors expand beyond IP theft, cybercrime and espionage into ransomware, disruptive attacks and wiper malware," said Dan Scali, senior manager, ICS Security Consulting, FireEye. "The ICS HealthCheck is a critical service offering for any organization running ICS infrastructure, and, as part of the FireEye platform, allows customers to benefit from our intelligence on ICS-specific threats, strategically address risks, and reduce their time to detect and respond to threats."

Mandiant ICS HealthCheck customers receive the following tools:

  • Threat Model Diagram: a diagram of the ICS infrastructures -- including its interactions with the IT networks, ICS vendor networks, the Internet, and other access vectors -- overlaid with FireEye's ICS-specific intelligence to show how attackers could disrupt or degrade operations
  • ICS HealthCheck report: an overview of the technical flaws Mandiant identifies, including vulnerabilities, misconfigurations, or weaknesses, along with their risk priority
  • Technical & Strategic Recommendations: a presentation specifically designed to align IT and OT stakeholders at the technical and management levels around addressing the threats to their ICS infrastructure

As part of FireEye's initiative to secure ICS infrastructure, the Mandiant ICS HealthCheck along with the recently announced strategic partnership with Parsons bolsters the service portion of the FireEye platform. The recent acquisition of iSIGHT Partners has added deep intelligence capabilities around ICS to the FireEye platform while the newly announced strategic partnership with Belden adds ICS integrations to FireEye technologies.

More information on the Mandiant ICS HealthCheck can be found here:
https://www.fireeye.com/services/mandiant-industrial-control-system-gap-assessment.html

For more information on the FireEye ICS initiatives please visit:
www.fireeye.com/blog/executive-perspective/2016/02/a_new_approach_tose.html

About FireEye, Inc.

FireEye has invented a purpose-built, virtual machine-based security platform that provides real-time threat protection to enterprises and governments worldwide against the next generation of cyber attacks. These highly sophisticated cyber attacks easily circumvent traditional signature-based defenses, such as next-generation firewalls, IPS, anti-virus, and gateways. The FireEye Threat Prevention Platform provides real-time, dynamic threat protection without the use of signatures to protect an organization across the primary threat vectors and across the different stages of an attack life cycle. The core of the FireEye platform is a virtual execution engine, complemented by dynamic threat intelligence, to identify and block cyber attacks in real time. FireEye has over 4,400 customers across 67 countries, including more than 680 of the Forbes Global 2000.

Forward-Looking Statements
This press release contains forward-looking statements, including statements related to the features, objectives and benefits of the Mandiant ICS HealthCheck service. These forward-looking statements involve risks and uncertainties, as well as assumptions which, if they do not fully materialize or prove incorrect, could cause the results of FireEye to differ materially from those expressed or implied by such forward-looking statements. The risks and uncertainties that could cause such results to differ materially from those expressed or implied by such forward-looking statements include the ability of FireEye to retain and recruit highly experienced and qualified personnel; customer demand for and market acceptance of such offering; changes in the technology or the industries in which such offering is related; competitive pressures faced by FireEye; and general market, political, economic, and business conditions; as well as those risks and uncertainties included under the captions "Risk Factors" and "Management's Discussion and Analysis of Financial Condition and Results of Operations," in FireEye's annual report on Form 10-K filed with the Securities and Exchange Commission on February 26, 2016, which is available on the Investor Relations section of the company's website at investors.FireEye.com and on the SEC website at www.sec.gov. All forward-looking statements in this press release are based on information available to the company as of the date hereof, and FireEye does not assume any obligation to update the forward-looking statements provided to reflect events that occur or circumstances that exist after the date on which they were made. Any future service, feature, objective or benefit that may be referenced in this release is for information purposes only and is not a commitment to deliver any service, feature, objective or benefit. FireEye reserves the right to modify future plans at any time.

© 2016 FireEye, Inc. All rights reserved. FireEye, Mandiant and iSIGHT are registered trademarks or trademarks of FireEye, Inc. in the United States and other countries. All other brands, products or service names are or may be trademarks or service marks of their respective owners.