NetWitness has announced expanded operational technology (OT) visibility through a strategic partnership with DeepInspect, strengthening its threat detection and response capabilities across converged IT and industrial environments. The collaboration marks a significant advancement in cybersecurity, as organizations increasingly seek unified solutions to secure both enterprise systems and critical infrastructure.
As industrial environments become more connected to enterprise networks, the boundary between IT and OT systems continues to blur. This convergence introduces new vulnerabilities, exposing operational systems to cyber threats traditionally associated with IT environments. In response, NetWitness and DeepInspect have integrated their technologies to provide comprehensive visibility across these interconnected ecosystems.
The integration enables industrial protocol telemetry captured by DeepInspect is to be directly ingested into the NetWitness platform. Leveraging advanced log and packet analytics, NetWitness processes this data to correlate OT activity alongside traditional IT telemetry. This unified approach allows security teams to monitor, detect, and investigate threats across the entire attack surface from a single platform.
By extending visibility into OT environments, the NetWitness platform empowers organizations to detect anomalies, analyze suspicious behavior, and perform in-depth forensic investigations using both metadata and raw network traffic. This capability is critical in identifying threats that move laterally between IT and OT systems – an increasingly common tactic in modern cyberattacks targeting industrial infrastructure.
John Pirc (JP), Chief Product and Technology Officer at NetWitness, emphasized the importance of unified security strategies. He said, “Organizations can no longer treat IT and operational technology as separate security domains.” “Security teams obtain the context necessary to identify and address threats spanning both enterprise and operational networks by expanding visibility into industrial environments.”
The integrated architecture also enhances security operations center (SOC) efficiency by consolidating alerts, telemetry, and investigation workflows into a single interface. This reduces operational complexity and enables faster, more effective incident response, particularly in environments where downtime can have significant operational and financial consequences.
Marco Lombardi, CEO of DeepInspect, highlighted the real-world impact of the collaboration. “This integrated solution addresses the growing demand for unified IT and OT security and has already demonstrated its value in securing critical infrastructure, including major transportation systems,” he noted.
The combined capabilities of NetWitness and DeepInspect align with the core functions of the NIST Cybersecurity Framework – Identify, Detect, Protect, Respond, and Recover – ensuring that organizations can implement not just compliant but operationally effective security strategies.
As cyber threats continue to evolve and target increasingly interconnected systems, this partnership underscores the importance of integrated cybersecurity platforms. By bridging the gap between IT and OT environments, NetWitness is enabling organizations to build resilient, future-ready security infrastructures capable of defending against sophisticated, cross-domain attacks.
Recommended Cyber News :
- CRIL Warns of Rising Middle East Cyber Threats
- Corelight Unveils Agentic AI to Accelerate SOC Triage and Strengthen Threat Detection
- SentinelOne and Cloudflare Expand Partnership for Unified AI-Driven Threat Detection
To participate in our interviews, please write to our CyberTech Media Room at info@intentamplify.com
