Tenable, a cybersecurity firm best known for its vulnerability management solutions, announced on Monday that it has acquired Indegy, a provider of cybersecurity solutions for operational technology (OT) environments, for $78 million in cash.
Indegy offers a platform that protects industrial control systems (ICS) from cyber, insider and operator error (non-malicious intent) threats, by providing visibility into ICS networks and identifying changes to controllers that could indicate an attack, including changes to firmware, logic, and configuration updates.
In June 2019, Indegy launched an industrial cybersecurity-as-a-service offering designed to help organizations monitor and protect their OT environments using cloud technologies and real-time threat intelligence sharing.
Through the acquisition, Tenable plans to deliver a platform that will allow customers to view and manage OT security issues alongside IT vulnerabilities, and provide risk-based measurement to score, trend, and benchmark IT and OT together.
“For every company in every industry, OT is now part of the modern attack surface. CISOs are being asked to secure OT systems alongside IT, but lack the necessary visibility and technology to manage and measure OT cyber risk in the same way as IT risk,” said Amit Yoran, chairman and CEO, Tenable. “Indegy extends our depth of OT expertise and intelligence, and our breadth of OT-specific capabilities from vulnerability management to asset inventory, configuration management and threat detection,” he added.
The acquisition of Indegy marks the latest in a handful of industrial cybersecurity firms that have been snapped up, with more likely to follow in 2020. In November 2018, network access security firm ForeScout Technologies acquired SecurityMatters for approximately $113 million in cash. In March 2019, Industrial cybersecurity firm Dragos acquired NexDefense in what was mostly an asset sale. In June 2019, Cisco announced plans to acquire OT cybersecurity firm Sentryo for an undisclosed sum.
Indegy CEO Barak Perelman has been a SecurityWeek Expert Contributor since 2016.