Dragos Platform
Industrial cybersecurity platform delivering OT asset visibility and threat detection.
Vendor Information
Dragos Platform Overview
The Dragos Platform is purpose-built cybersecurity software for operational technology (OT) and industrial control systems (ICS), providing asset visibility, threat detection, vulnerability management, and incident response specifically for critical infrastructure. Unlike IT security tools that lack understanding of industrial protocols, the platform uses threat behavior analytics that characterize adversary tactics, techniques, and procedures (TTPs) to identify malicious activity with high confidence while minimizing false positives that plague generic solutions.
The platform discovers and classifies OT, IT, IoT, and IIoT assets through passive network monitoring and active ICS device collection, capturing device type, manufacturer, firmware version, and communication patterns with detailed vulnerability context. Detection capabilities use composite threat analytics based on real-world attack groups documented by Dragos WorldView intelligence researchers, providing alerts with investigation playbooks that guide security teams through efficient response workflows and automated risk prioritization based on environmental context rather than generic CVE scores.
Founded in 2016 by former NSA analysts who investigated Ukraine power grid attacks, Dragos has raised over $440 million and achieved unicorn status with 500-1,000 employees serving critical infrastructure globally. The company has been positioned as a Leader in Gartner's 2025 Magic Quadrant for Cyber-Physical Systems Protection Platforms for both execution and vision, competing with Claroty and Nozomi as the top three pure-play OT security vendors.
Key Capabilities
Standardized capabilities mapped to this product's security niche
Monitors ICS network traffic by analyzing span port or tap data without injecting any traffic, critical for environments where active probing can cause PLC faults or safety system trips.
Performs deep packet inspection across a range of industrial protocols: Modbus, DNP3, IEC 61850, EtherNet/IP, PROFINET, OPC-UA, BACnet. Coverage breadth and inspection depth (command-level function code analysis vs. packet-level header parsing) both vary across ICS security products and are primary evaluation criteria.
Models expected behavior of safety-instrumented systems (SIS) separately from process control systems, preventing false alerts on normal SIS state machine transitions.
Identifies device vulnerabilities by fingerprinting asset type, firmware version, and protocol implementation from passive traffic observation, no active scan that could disrupt device operation.
Maps network topology, identified vulnerabilities, and detected anomalies to IEC 62443 zone and conduit requirements and security level targets.
Provides a single platform for monitoring both enterprise IT and OT network segments, enabling unified SOC operations without separate monitoring tooling for each domain.
Ingests and applies threat intelligence specific to critical infrastructure threat actor groups (Sandworm, ELECTRUM, Volt Typhoon), and sector-specific attack techniques.
Generates pre-formatted incident notifications compliant with CISA reporting requirements, NERC CIP-008, and sector-specific regulatory reporting obligations.
Supports sector-specific compliance frameworks alongside IEC 62443: NERC CIP for electric utilities, TSA security directives for pipelines, NRC cybersecurity requirements for nuclear.
Monitors OT system availability, process variable integrity, and control system state, flagging deviations that indicate cyberattack or equipment failure affecting operational continuity.
Integrations
Compatible tools and platforms
Solution Details
Compliance & Certifications
Regulatory frameworks and security certifications
Deployment Options
Where and how this solution can be deployed
Support Channels
Available support and communication options
Pricing Model
How this solution is priced
How to buy
This profile hasn’t been claimed yet. Contact the vendor directly for pricing and purchasing options.
Is this your company?
Claim Your Profile