Identifying and remediating or mitigating known ICS vulnerabilities is one of the best ways to prevent industrial compromises. Given the sophistication and effectiveness of recent industrial incidents, it is more important than ever to implement effective ICS vulnerability management. Cyber Integrity provides robust vulnerability and patch management capabilities for complex, multi-vendor industrial facilities. PAS by Hexagon collects the latest known vulnerability and patch information, and makes it available for you to automatically download and use within Cyber Integrity.
The system wide settings for vulnerability management allow you to specify a list of email addresses to notify if the import of the latest vulnerability and patch information is not completed successfully. For comprehensive information about vulnerability and patch management, and other Cyber Integrity features, see Understanding Vulnerability and Patch Management.
To use vulnerability and patch management, you need to implement the following asset models:
-
PAS Cyber Integrity
-
PAS Workflows
-
PAS Vulnerability Management
-
PAS Patch Management
You should also implement the asset models for your other types of systems. For more information, see the Implementation Guide for each asset model.
For more information about vulnerability management, see the following topics: