Claroty

Claroty is a cybersecurity company that provides platforms and tools for securing Operational technology (OT), industrial control systems (ICS), Internet of Things (IoT), and similar connected cyber-physical systems in enterprise and critical infrastructure environments.

• Cyber-physical systems protection platform for OT, ICS, and IoT environments (security)
• Asset discovery, inventory, and visibility across industrial and healthcare networks (asset management / observability)
• Network monitoring, risk and vulnerability management, and threat detection for industrial and clinical environments (threat detection and response)
• Remote access control and monitoring for third parties and internal users connecting to critical systems (secure remote access)
• Governance, Risk, and Compliance (GRC) support for cyber-physical security programs in regulated sectors (GRC / Security Operations (SecOps))

More About Claroty

Claroty focuses on cyber-physical systems security in sectors that use OT, industrial control systems (ICS), and connected IoT devices, including healthcare IoT and building management systems. Its offerings are designed for enterprises that operate industrial plants, utilities, transportation systems, hospitals, and other critical infrastructure, where physical processes and safety depend on networked devices and control systems.

The company’s core platform (cyber-physical systems security) typically integrates with existing enterprise security stacks and industrial networks to provide asset discovery, continuous monitoring, and risk management. By passively analyzing network traffic and protocols used in industrial and clinical environments, the platform builds an inventory of devices such as PLCs, Distributed Control System (DCS) components, medical devices, smart building controllers, and other connected assets. This inventory underpins functions such as vulnerability assessment, configuration analysis, and exposure management.

Claroty’s offerings in Network Detection and Response (NDR) (NDR / threat detection and response) focus on identifying anomalous activity and potential threats across OT, ICS, and IoT networks. The technology is designed to understand a range of industrial and medical protocols and to profile normal operational baselines, so that deviations such as suspicious commands, unusual lateral movement, or policy violations can be flagged. Security teams can use this context to triage alerts, investigate incidents, and coordinate with IT SecOps centers.

In addition to monitoring and detection, Claroty provides secure remote access capabilities (secure remote access) that support third-party vendors, maintenance staff, and internal engineers who connect to critical systems. These capabilities generally include granular access control, session management, detailed logging, and policy enforcement for remote connections to OT and clinical environments. The approach is aimed at reducing risks associated with unmanaged remote connectivity while maintaining operational workflows for support and maintenance.

Claroty also addresses GRC requirements (GRC / SecOps) related to cyber-physical security. Its tools can support alignment with regulatory frameworks and industry guidelines in sectors such as energy, manufacturing, and healthcare by providing evidence of asset inventories, applied security controls, and incident handling procedures. Integration with Security Information and Event Management (SIEM), Security Orchestration Automation Response (SOAR), and broader enterprise IT security tooling allows organizations to manage cyber-physical security in coordination with IT security programs.

Within enterprise directories and technology taxonomies, Claroty is typically categorized under OT security, ICS security, IoT and medical IoT security, NDR for industrial environments, and secure remote access for critical infrastructure. Its platforms are used by SecOps, OT engineering teams, and risk management functions to gain visibility into industrial and clinical networks, manage vulnerabilities, control remote connectivity, and detect and respond to threats that could affect both digital systems and physical processes.