Claroty Continuous Threat Detection provides extreme visibility, continuous threat and vulnerability monitoring, and deep insights into ICS networks. It was specifically designed to ensure safe, secure and reliable operations in large, complex industrial networks – ensuring zero impact to the underlying operational processes and improved cyber resiliency. Continuous Threat Detection extracts precise details about each asset on the industrial network, profiles all communications and protocols, generates a fine-grain behavioral baseline that characterizes legitimate traffic, and alerts you to network changes, new vulnerabilities and threats. The alerts the system generates provides the contextual information you need to investigate and respond quickly.

• Rapidly detect industrial operations risk, enhance cyber resiliency, and minimize unplanned downtime
• Prevent impact to physical processes, expensive industrial equipment or injuries to people
• Quickly deploy and scale across multiple sites and reduce overall management costs

Continuous Threat Detection deeply understands ICS network communications, protocols and behaviors – providing detailed, accurate information that remains up-to-date. The system automatically discovers asset details across the entire industrial network – IP assigned, nested assets and assets that communicate over serial connections. It automatically profiles all the communications that happen between assets in the network - generating very highfidelity baselines that are used to detect anomalies, create virtual zones and to hunt for threats.