Low-code security automation company Swimlane LLC today announced a new partnership with industrial control system cybersecurity startup Dragos Inc. to extend protection for operational technology infrastructure with automation.

The partnership launches with an integration between Swimlane Turbine and the Dragos Platform that allows customers to automate threat detection and enrichment across information technology and OT environments, leveraging artificial intelligence for synchronized response. The combined offering builds on Swimlane’s existing security automation ecosystem for OT environments to allow customers to tailor their OT security approach to their specific needs.

Swimlane and Dragos argue that the convergence of modern IT and legacy industrial control systems presents a critical cybersecurity challenge due to outdated ICS technology struggling to integrate securely with modern systems and the limitations of traditional IT security solutions in ICS/OT environments. Those factors, along with a 50% rise in reported ransomware attacks targeting industrial organizations, require urgent prioritizing and implementing effective ICS-specific security controls.

The integration of Swimlane Turbine and the Dragos Platform offers centralized case management, automated ticketing and vulnerability management use cases to streamline workflows and improve communication.

Centralized case management offers a unified view of IT/OT assets, allowing analysts to focus on strategic decision-making instead of manual data collection. Dashboards are populated by self-documenting Swimlane Playbooks to provide security teams with visual models to easily see organization-wide OT asset risk levels.

Dragos customers also gain access to Swimlane Turbine Canvas, a low-code automation studio that allows OT experts to build custom Swimlane Playbooks easily and quickly. The service uses modular and reusable components to extend the value of Dragos’ playbooks to streamline incident response by automating actions across IT and OT environments.

The integration also supports the sharing of native and historical information within IT and OT environments. Native correlation is said to allow analysts to see how previous cases with the same IOCs were resolved, providing insights into the business logic used to triage the threat and to enable recognition of persistent threats over time.

“The Swimlane and Dragos integration allows industrial organizations to speed detection and recovery from cyber threats,” said Matt Cowell, global vice president of business development at Dragos. “The integration pairs the Dragos Platform’s ability to identify and guide remediation for threat behaviors in OT with Swimlane’s automation across IT and OT environments. With accelerated mean time to recovery, responders can be more efficient and ultimately strengthen their security posture.”

Dragas was last in the news in September when it announced that it had raised $74 million in new funding as an extension to a previous round of $200 million in October 2021 to bolster its ability to make ICS and operational-technology cybersecurity more accessible worldwide. Investors include Koch Disruptive Technologies Inc., funds managed by BlackRock Inc., Emerson Electric Co., Hewlett Packard Enterprise Co., Allegis Cyber LLC, Canaan Partners LP, DataTribe Capital LLC, Energy Impact Partners LLC, Schweitzer Engineering Laboratories Inc., National Grid plc and Rockwell Automation Inc.

Swimlane was last in the news in January when it added new features to its Turbine platform that bring generative artificial intelligence and automation together to solve security problems in an organization.

Image: Dragos