The Claroty xDome Add-on delivers comprehensive visibility, security and alert management capabilities for healthcare and industrial network environments.
The Claroty xDome Add-on is designed to map multiple source types to identify the type of data the add-on collects from Claroty xDome to the following data models: Splunk Common Information Model (CIM), Splunk Enterprise Security (ES), Splunk Add-On for OT Security.
The application add-on enables Splunk to automatically ingest Medical, operational technology (OT), IoT and IT asset data, communication events and alert information from Claroty xDome.
Resulting in the efficacy of monitoring all assets and potential threats in your healthcare and industrial environments in one location, leading to more effective security monitoring and stronger security posture.
• Unified visibility across Medical, OT, IoT and IT environments.
• Extend your existing IT SOC workflows and capabilities to Medical and OT systems.
• Manage all Medical, OT, IoT and IT alerts from a single viewpoint within the SIEM.
Note: This add-on maps data from Medigate by Claroty and Claroty xDome platforms.
What's New? - Version 1.0.0:
Mapped Claroty’s XDome data of assets, communication events and alert information with Splunk CIM, Splunk ES and OT Security Data Models. Mapping includes objects and fields.
As a Splunkbase app developer, you will have access to all Splunk development resources and receive a 10GB license to build an app that will help solve use cases for customers all over the world. Splunkbase has 1000+ apps from Splunk, our partners and our community. Find an app for most any data source and user need, or simply create your own with help from our developer portal.