Wärtsilä protects critical infrastructure with Tenable OT Security

Wärtsilä protects critical infrastructure with Tenable OT Security

Wärtsilä, a global leader in life cycle solutions for marine and energy markets, has invested in Tenable to manage its operation technology, subsequently protecting its critical infrastructure. Ross Bailey, Cyber Security Expert, Wärtsilä, tells us more about this partnership and how it has helped the company save time and costs.

Marine and energy innovator, Wärtsilä, is using Tenable OT Security to manage its operational technology (OT) asset inventory collection and provide holistic visibility into its OT environment. The deployment allows Wärtsilä to answer its customers’ questions about asset delivery, reducing supply chain risks and taking a proactive stance on cybersecurity.

“The visibility Tenable OT Security delivers helps our customers protect critical infrastructure and adhere to regulations and compliance requirements in a forthright and measured way,” said Wärtsilä’s Cyber Security Expert, Ross Bailey.

Spreadsheets and manual data entry led to errors and compliance challenges

A global leader in innovative technologies and life cycle solutions for the marine and energy markets, Wärtsilä emphasises innovation in sustainable technology and services to help its customers continuously improve environmental and economic performance.

Building a modern power plant or marine vessel requires hardware and software solutions from a variety of suppliers. Customers need to understand every component, down to the firmware and serial number. Adding to the urgency, the European Cyber Resilience Act (CRA) will impose cybersecurity obligations on all devices that have a network connection.

Wärtsilä set out to address these challenges by creating automated asset inventory collection, streamlining compliance reporting and enabling OT vulnerability reporting.

In the past, the suppliers who installed the equipment for Wärtsilä’s customers created an asset list in an Excel spreadsheet. The manual process was time-consuming, error-prone and only relevant for a specific point in time. Technicians had to merge files when new devices were added.

Wärtsilä needed to make the process easy, repeatable and always up-to-date for its customers.

Tenable OT Security automates asset discovery and visualisation at scale

Tenable OT Security enables Wärtsilä to identify assets, communicate risk and prioritise action all while enabling its IT and OT teams to work better together. Knowing exactly which assets exist, its configurations and full situational awareness of both sides of the house, empowers the security team to see and understand the big picture.

According to Bailey, Wärtsilä tested several vendor technologies before selecting Tenable OT Security.

“Many of these asset management tools are passive – they sniff the network by looking at the traffic at the mirror port and using that information to decipher assets. Tenable uses a proprietary approach to query devices in a safe way, PLCs for example, to get rich asset information. And that’s where it really shined for us,” said Bailey.

Tenable OT Security’s automated asset discovery and visualisation capabilities provide a comprehensive, up-to-date inventory of all assets. This includes workstations, servers, Human-Machine Interfaces (HMIs) and programmable logic controllers (PLCs), including dormant devices that do not communicate frequently over the network. The latter it uncovers by leveraging its patented active querying capabilities. The results are detailed device information, such as firmware and OS versions, internal configurations and serial numbers.

“With regulations like the Cyber Resilience Act coming into law, the need to disclose real-time vulnerability information in a short amount of time adds a huge challenge we’d not be able to meet without a solution like Tenable OT Security,” added Bailey.

As Wärtsilä rolls out the Tenable OT Security solutions across its dynamic environment, the partnership with the Tenable team has been crucial for a successful deployment.

“The great thing about using Tenable OT Security is working with the Tenable people,” said Bailey. “They have great technical expertise, appropriately sizing our environment and positioning us to scale as our licensing needs grow.”

Wärtsilä helps customers visualise asset inventory and protect key infrastructures

Now, Wärtsilä can deliver a complete asset inventory to its customers. During site acceptance testing, Tenable OT Security is integrated with each customer’s environment to provide a way to scan the project delivery and existing assets to obtain a complete asset inventory, as well as allow manual asset enrichment for legacy devices. This improved visibility helps customers protect critical infrastructure while meeting compliance requirements.

“There is no silver bullet when asset scanning in an OT environment. Some of these old devices are not compatible with any proprietary protocols or even Simple Network Management Protocol,” said Bailey. “A flexible tool like Tenable OT Security – which allows for manual asset enrichment – is essential.”

Wärtsilä is also helping its customers save time and increase productivity. Before integrating Tenable OT Security, the asset inventory was tedious and time-consuming, taking, on average, two technicians around seven hours per installation. Automated processes help technicians work more efficiently, with improved accuracy.

“Automating the asset inventory process saves Wärtsilä’s suppliers several hours of tedious work while improving the accuracy of the inventories for customers,” added Bailey. “With fewer errors and more consistency in the data, Wärtsilä can standardise and normalise the data.”

Tenable OT Security can also create an asset map based on what it senses on the network. As various OT assets ‘talk’ to each other across the network, Tenable OT Security uses that information to gather valuable context.

“Our vision is to use Tenable OT Security to create a digital twin – a 3D map of how devices are connected and snapshots of all configuration changes – with near real-time asset visibility,” said Bailey. “In the past, we’ve done it on an ad-hoc basis, but the data is only good for that point in time, the process is time-consuming and we may not get all of the device contexts we need.”

In addition to providing customers with complete and accurate asset inventories, Tenable is enabling Wärtsilä to develop new services that help customers visualise their OT environment. Tenable Security Center – a vulnerability reporting engine that gathers and evaluates vulnerability data distributed across the enterprise – will enable rich reports that illustrate vulnerability trends over time, allowing Wärtsilä’s customers to assess risk and prioritise vulnerabilities.

“In the future, we will install Tenable Security Center and provide a dashboard and reports to customers through a service we’re calling the ‘Asset Visualisation Service’. When customers don’t know what assets they have, we can provide an inventory and a vulnerability report,” concluded Bailey.

Browse our latest issue

Intelligent CISO

View Magazine Archive