Glossary

I already purchased a passive inventory solution. How is ID different?

Industrial Defender builds in a wide variety of hardware, firmware and software data collection methods, including active, agentless and passive options, into one sensor. Our solution provides features that a passive solution can’t, including:

Device Configuration Data

System Access & Authentication

Firewall Information & Events

Asset Resource Utilization & Status

Device Configuration Data

Installed firmware and software inventory, including versions
OS, including vulnerabilities and patches installed
File integrity monitoring
Open ports and services
Policies modified
Removable media installed
Malicious code detected/AV
Failure of event logging
Serial number

Learn more

*This list is not all encompassing. The data collected varies for each device, dependent upon the manufacturer, model, and version.

System Access & Authentication

Successful and failed login attempts
Generic and shared user accounts
Local and A/D accounts
Password parameters and age
User account locked
Policies modified
Privilege raised
Failure of event logging

Learn more

*This list is not all encompassing. The data collected varies for each device, dependent upon the manufacturer, model, and version.

Firewall Information & Events

Firewall rules, including change detection
Blocked execution (packet)
Blocked unauthorized file
Policies modified

Learn more

*This list is not all encompassing. The data collected varies for each device, dependent upon the manufacturer, model, and version.

Asset Resource Utilization & Status

CPU usage over time
RAM usage over time
Disk space
Swap space
Connectivity lost
Shutdown
Rebooted and boot checksum
Backup failure

Learn more

*This list is not all encompassing. The data collected varies for each device, dependent upon the manufacturer, model, and version.

We can also ingest data from your passive monitoring solution to give you more granular asset data and better SIEM integrations.

How is compliance reporting with Industrial Defender different?

Our one-click compliance reporting for 50+ international standards and regulations gives you all the information you need to prove compliance with your standard. We help 8 of the top 10 utilities in the UnitedStates stay compliant with the most stringent standard in the world, NERC CIP.

I run our SOC. What does ID do for me?

SOC analysts love us! Our solution provides the contextual asset intelligence they need to act on threat intelligence and security alerts. If you are a Splunk user, check out our Splunk integration. It’s the best in the OT space:

https://www.industrialdefender.com/industrial-defender-splunk/

Is this a point solution for OT?

No, Industrial Defender is a comprehensive OT security platform offering asset visibility, asset management, vulnerability management, security monitoring and compliance reporting in one UI.

Do you have an API?

Yes, we have a comprehensive API that connects with almost anything you need it to! For more information on our data sharing capabilities, checkout our integrations data sheet: https://www.industrialdefender.com/integrations-data-sheet/

Can ID integrate with my enterprise CMDB?

Yes, we have comprehensive integration options with ServiceNow, IBM, BMC and more.

I have Qualys and Nessus, why would I need another vulnerability management platform?

OT environments are both unique and sensitive. Performing those types of scans in operational systems is both risky and incomplete. Our scanless, cloud-based offering, Immunity by ID, leverages machine learning and natural language processing to create a prioritized list of vulnerabilities using existing asset inventory information. Learn more about Immunity here: https://www.industrialdefender.com/immunity-by-industrial-defender/

Will I be able to show my SOC team that our OT systems are secure, without giving them access?

Yes, our comprehensive APIs share any data our system collects with your SIEM of choice.

How can I position the solution to get buy in from the executive team?

We recommend pitching OT cybersecurity investments in terms of risk reduction and TCO. Industrial Defender can help you consolidate multiple point solutions for visibility, security and compliance into one tool.Because of our turnkey deployments, scalable infrastructure and team of experts, we have the lowest TCO in the industry. If you need help quantifying risk, we’ve created this helpful risk calculator: https://www.industrialdefender.com/risk-calculator-request/

I just need a portion of the ID platform. Do I have to buy the whole thing?

No, both Illuminate and Immunity can be purchased as standalone solutions. You can also individually license ID core components based on your needs.

Can I run your product on prem? In the cloud?

Yes, you can run ID on virtual or physical machines or in the cloud. We also offer a hosted managed service, CopilOT, to help augment your security team.

What resources do I need to deploy ID?

Our solution is simple enough that you can manage it yourself. If you need help managing the tool, we also offer a wide range of Professional Services to help. https://www.industrialdefender.com/professional-services/

OT Security

The practice of protecting operational technology systems that control physical processes across critical infrastructure sectors.

At Industrial Defender, we use “OT security” as a broad, inclusive term that encompasses traditional control systems, IIoT technologies, and facility-level systems like building management platforms.

ICS Security (Industrial Control Systems Security)

A subset of OT security focused on securing systems such as PLCs (Programmable Logic Controllers), RTUs (Remote Terminal Units), and DCS (Distributed Control Systems) used in industrial automation.

At Industrial Defender, ICS security is central to our work in environments like utilities, oil & gas, and manufacturing.

SCADA Security (Supervisory Control and Data Acquisition Security)

A specialization within ICS security focused specifically on protecting SCADA systems, which provide centralized monitoring and control over distributed assets.

SCADA systems are commonly found in sectors like power transmission, water treatment, and pipeline operations.

At Industrial Defender, securing SCADA environments is an integral part of our OT security services.

How They Compare

OT Security is the broadest term, covering all aspects of industrial digital systems.
ICS Security focuses more specifically on control systems that manage industrial processes.
SCADA Security is a narrower specialization within ICS, specifically for geographically distributed monitoring and control.
At Industrial Defender, we typically use OT Security as the umbrella term that captures the full spectrum of control and monitoring systems.

Visibility, Inventory, and Asset Context

OT Asset Management

The process of identifying, collecting, and maintaining comprehensive, accurate information about OT assets.

At Industrial Defender, this means more than an inventory—it includes rich metadata like configuration states, firmware versions, user accounts, and running services, making the data actionable for security and compliance teams.

OT Visibility

The ability to observe and understand what assets and behaviors exist within an OT environment.While the term often refers to passive network monitoring, Industrial Defender combines passive and safe active methods to deliver confirmed, in-depth visibility into asset configurations and system activity.

Cyber-Physical and Facility-Level Security

Cyber-Physical Security

Cyber-physical security protects systems where digital infrastructure directly impacts physical operations, such as power grids, industrial machinery, and safety systems.

This concept has emerged as cyberattacks increasingly pose real-world risks—highlighting the need to secure both digital systems and the physical processes they control.

At Industrial Defender, protecting cyber-physical systems is at the core of our mission, safeguarding the convergence of digital and physical environments against evolving cyber threats.

Building Management System (BMS) Security

The protection of automated building systems that control HVAC, lighting, access control, energy usage, and more.

At Industrial Defender, we see BMS security as part of the broader OT security landscape. These systems may not be industrial, but they are operational—and essential for facilities like hospitals, data centers, and airports.

How They Compare

Cyber-Physical Security focuses on the intersection of digital and physical processes across industrial systems.
BMS Security is a specialized segment of OT security, focused on the digital systems that control physical environments within buildings.
At Industrial Defender, we secure both critical facility operations and large-scale industrial systems under a unified approach.

Connected Devices: IoT, IIoT, and IoMT

IoT (Internet of Things)

Refers to general-purpose connected devices used in homes, offices, and commercial settings—like smart thermostats, fitness trackers, or building sensors.

While IoT can include healthcare devices (sometimes referred to as IoMT – Internet of Medical Things), Industrial Defender’s focus remains on securing industrial environments.

IIoT (Industrial Internet of Things)

Describes connected devices used in industrial environments to support automation, monitoring, and optimization of operations—such as smart sensors, remote diagnostics, and predictive maintenance tools.

At Industrial Defender, we specialize in securing IIoT devices that operate within regulated and safety-critical environments.

IoMT (Internet of Medical Things)

A subset of IoT that includes connected medical devices used in healthcare settings—such as infusion pumps, wearable monitors, and diagnostic tools.

While not our primary focus, this category is useful to understand when comparing how different industries categorize cyber-physical devices.

How They Compare

IoT refers to general consumer and business devices that are connected to the internet.
IIoT focuses specifically on industrial environments where devices control or monitor physical processes.
IoMT is specific to healthcare, with connected devices designed to monitor patient health and automate medical processes.
At Industrial Defender, our priority is on IIoT, ensuring its safe deployment and continuous security.

Foundational Context: Critical Infrastructure

Critical Infrastructure

Defined as sectors and systems essential to public safety, national security, and economic stability.

In the U.S., this includes 16 sectors identified by CISA, such as Energy, Water, Transportation, and Communications.

In the EU, the NIS2 directive expands on these categories, requiring enhanced cybersecurity measures from both essential and important entities.

At Industrial Defender, we serve organizations across these critical sectors—helping them meet strict regulatory requirements while strengthening operational resilience.

Key Terms in OT Cybersecurity

Device Configuration Data

System Access & Authentication

Firewall Information & Events

Asset Resource Utilization & Status

Visibility, Inventory, and Asset Context

Cyber-Physical and Facility-Level Security

Connected Devices: IoT, IIoT, and IoMT

Foundational Context: Critical Infrastructure

Request Your Demo

Asset Visibility & Management

Vulnerability Management

IT/OT Collaboration

Compliance Reporting

Stay up to date.

PRODUCTS

SERVICES

SOLUTION BY TYPE

SOLUTION BY FUNCTION

SOLUTION BY INDUSTRY

RESOURCES

COMPANY

SOLUTIONS

PLATFORM

INDUSTRIES

RESOURCES

COMPANY

SUPPORT

REQUEST DEMO

Key Terms in OT Cybersecurity

Visibility, Inventory, and Asset Context

Cyber-Physical and Facility-Level Security

Connected Devices: IoT, IIoT, and IoMT

Foundational Context: Critical Infrastructure

Request Your Demo

Asset Visibility & Management

Vulnerability Management

IT/OT Collaboration

Compliance Reporting

Stay up to date.

PRODUCTS

SERVICES

SOLUTION BY TYPE

SOLUTION BY FUNCTION

SOLUTION BY INDUSTRY

RESOURCES

COMPANY