CROWDSTRIKE 2025 THREAT HUNTING REPORT

Get the Report

ON-DEMAND SIEM MASTERCLASS WEBINAR

Watch Recording

ON-DEMAND POWER VIRTUAL SERVER SESSION

Watch Recording

ON-DEMAND UNVEILING NEW POWERS ON IBM CLOUD

Watch the Recording

UTILITY COMPANY IN WESTERN CANADA

Enhance security posture for OT

Delivering OT (Nozomi)  and SIEM (QRadar) solution for provincial utility provider 

The Challenge

  • MGain visibility into known vulnerabilities associated with their Industrial Control System assets.
  • Clarify view of the Water/Wastewater assets footprint in the region.
  • Develop bi-directional integration between the SIEM (IBM QRadar) and OT Security platform (Nozomi Guardian).
Determined businessman climbing building with help of rope

The Solution

  • GlassHouse Systems delivered infrastructure, pre and post sales services and on going support.
  • IBM QRadar SIEM with Nozomi Guardian appliance and Remote Collectors to pool data, parse in realtime and feed into Qradar.
  • Professional Services for implementation, tuning, support and training of QRadar and Guardian.
businessman hand pointing to padlock on touch screen computer as Internet security online business concept-1

Benefits

  • Visibility of the Industrial Control System network and mapping all assets above Level 1 of the Purdue Model.
  • Ability to quickly patch or update the ICS equipment against known vulnerabilities published to the ICS-Cert CVE Advisories.
  • Comply with Critical Infrastructures requirements and ramp up new team members quickly as needed.
  • Reduce events analysis time and false positives, by integrating the ICS systems into the centralized event management system (SIEM). 

" GlassHouse Systems conducted a month-long Proof of Concept with the customer, showcased integration capabilities, properly tuned the QRadar SIEM to pull in ICS asset data so that their SOC Team could efficiently triage events across that portion of the network.