The utility’s primary facility and two dozen distributed assets in remote locations connect to its network via cellular, microwave or fiber communications.
The remote, distributed assets include unmanned water conveyance systems such as storage tanks, pump stations and lift stations that serve roughly 6,000 customers spread across 200 square miles.
The utility implemented GrayMatterGUARD, an industrial cybersecurity solution that deceives attackers, harvests intelligence and empowers operators to control their cyber strategy with rapid policy and boundary creation via a drag-and-drop interface.
To demonstrate its capabilities, engineers performed a network penetration test on a group of previously unmanaged, remote sites now protected by GrayMatterGUARD.
GrayMatterGUARD’s agentless technology was configured inline as an undetectable bridge via a ruggedized appliance. The solution successfully prevented the pen tester’s Red Team from gaining scanning visibility into the rest of the network.
An automated containment response stopped the pen tester’s threat from moving within the network. Next, GrayMatterGUARD active threat detection triggered an alert that reported the anomalous network behavior to operators. A blocking rule was pushed out to the other locations involved to completely contain the threat.