Radiflow Ltd. - Experts & Thought Leaders

Radiflow, a renowned provider of cyber security solutions for industrial automation networks, announced significant growth in revenues and bookings following the launch of new products in 2020 and continued international expansion. “Although last year has been a challenge for many vendors due to the impact of the global pandemic reducing overall IT spending, the OT cyber security space has been relatively unaffected and Radiflow has experienced its best year to date,” explains Ilan Barda, CEO of Radiflow. Cyber security space “Our critical national infrastructure (CNI) business continued its consistent growth, but the biggest growth has been within manufacturing - an area that had traditionally been less active in the cyber security space and has been prompted to strengthen its defences following a number of high-profile breaches during 2019/20 - today, nearly one third of our revenues come from manufacturing.” Radiflow recorded a 2x increase in sales as compared to the previous year and a 3x increase in bookings Radiflow recorded a 2x increase in sales during 2020 compared to the previous year and a 3x increase in bookings building a strong basis to continue its growth in 2021. Regionally, Europe has been the fastest growing sales territory for Radiflow including new customers in power, oil & gas and manufacturing. In parallel 2020 did also see major deals in North America and Asia Pacific including new US power utilities and national water and transportation operators in APAC. Critical business operations As of December 2020, Radiflow industrial cyber security solutions for critical business operations have been successfully deployed in over 5,000 sites by major utilities and industrial enterprises worldwide. Radiflow has also grown its team and partner community to meet international expansion. A major highlight is the creation of a new sales team to cover Western Europe led by the appointment of 2 new sales directors: Jesper Nilsson, Sales Director, who brings extensive experience in cyber security including his last role in CyberX and Katrin Rabe, Channel Director, who worked in large multi-national industrial automation vendors such as GE. Risk modelling and management On a commercial level, Radiflow expanded its network of partners especially with tier-1 system integrators that can serve the new tier-1 customers and provide the suite of services around Radiflow products. For example, Radiflow announced a collaboration with Mitsubishi Electric UK to address the needs of IEC62443 cyber security standards in the Critical Infrastructure and Industrial Automation markets. Radiflow will be announcing additional such partnerships with global system integrators during the first half of 2021. Part of the surge in sales in 2020 and increased pipeline for 2021 is due to the launch of Radiflow CIARA, a new platform offering Cyber Industrial Automated Risk Analysis (CIARA) to deliver emerging best practice around risk modelling and management using the ISA/IEC 62443 series of standards. Assets data collection CIARA uses automatic data-driven algorithms as a response to the growing digitisation of the production floor CIARA is the first fully automated tool for assets data collection, data-driven analysis and transparent risk metrics calculation, including risk scoring per zone and business process based on business impact. The unique platform uses automatic data-driven algorithms as a response to the growing digitisation of the production floor. “CIARA delivered a number of industry firsts and addressed a significant sector wide need to streamline previously complex and time-consuming risk assessment processes,” explains Barda. “It not only solves an immediate tactical issue, but has also helped us to expand the conversation with our clients to the wider Radiflow portfolio which has led to significant sales growth.” Industrial automation networks On the technology research side, Radiflow has engaged in several joint projects including with the Fraunhofer Institute of Optronics, System Technologies and Image Exploitation to apply advanced machine learning and artificial intelligence to cyber security for industrial automation networks. Radiflow was also part of a project with the National Cybersecurity Center of Excellence (NCCoE) around Cybersecurity for Distributed Energy Resources. “Our goal for 2021 is to capitalise further on the foundation we have built during the previous year,” says Barda. “We have introduced unique technologies combined with a growing partner community and the next phase is to expand our geographic reach to meet the untapped opportunity - especially in Europe.” Barda concludes.

Radiflow, a provider of cyber security solutions for industrial automation networks, announces a collaboration with Mitsubishi Electric UK to address the needs of IEC62443 cyber security standards in the Critical Infrastructure and Industrial Automation markets. Radiflow develops trusted industrial cyber security solutions for critical business operations that have been successfully deployed in over 4,000 sites by major utilities and industrial enterprises worldwide. Security risk assessments The combination of the automation knowledge and tools of Mitsubishi Electric UK with the cyber security and IEC 62443 compliance skills of Radiflow, provides a holistic view of a client’s risk posture. Radiflow will also provide Mitsubishi Electric UK customers with a consultancy service for cyber security, which includes the provision of OT security risk assessments, provision of Radiflow intrusion detection software and general advice on alignment with IEC 62443-3. Supporting asset owners There is a growing demand for solutions that address the requirements of cyber security in the OT space" In addition, the solution will help customers to support asset owners in satisfying the requirements of the NIS Directive along with due diligence in alignment with CPNI (Centre for the Protection of National Infrastructure) best practice. Commenting on the announcement, David Bean, Solutions Manager for Mitsubishi Electric UK said, “Our new collaboration with Radiflow provides expertise in the field of OT cyber security which compliments and broadens the services that we offer our customers through the Mitsubishi Electric UK System Service Operation. There is a growing demand for solutions that address the requirements of cyber security in the OT space and we are looking forward to delivering those solutions and building our relationship further with the team at Radiflow.” Data-driven analysis Ilan Barda, Founder & CEO of Radiflow added, “Radiflow sees huge value for OT organisations to have cyber security services and solutions aligned with their automation systems. By combining the automation knowledge and tools of Mitsubishi with the OT cyber security skills and tools of Radiflow, we are able to provide a holistic view of an organisation’s OT risk posture.” In August, Radiflow launched Cyber Industrial Automated Risk Analysis (CIARA), the first fully automated tool for asset data collection, data-driven analysis and transparent risk metrics calculation including risk scoring per zone delivering best practice around risk modelling and management using the ISA/IEC 62443 series of standards.

Radiflow, a renowned provider of cyber security solutions for industrial automation networks, announced the launch of CIARA, a major new platform offering Cyber Industrial Automated Risk Analysis (CIARA). The solution helps meet emerging best practice around risk modelling and management using the ISA/IEC 62443 series of standards. CIARA is the first fully automated tool for assets data collection, data-driven analysis and transparent risk metrics calculation including risk scoring per zone and business process based on business impact. The new platform is a response to the growing digitisation of the production floor (Industry 4.0) that has led to rising tide of cyber threats - while risk assessment processes remain manual tasks that fail to address the full scope of the issue. Advanced analysis algorithms CIARA is a next-generation Cyber risk platform intended to support the CISO, Operation manager and other risk stakeholders that act to reduce cyber risk in Industry 4.0 environments using advanced analysis algorithms to automate and manage the entire cyber security risk life cycle. Threat landscape is changing continuously which means a yearly risk assessment quickly becomes out of date" The solution adheres to the ISA/IEC 62443 series of standards, developed by the ISA99 committee and adopted by the International Electrotechnical Commission (IEC), which provides framework to address and mitigate current and future security vulnerabilities in industrial automation and control systems (IACSs). In addition, the CIARA reports assist the operators to meet regulations including the EU NIS Directive and elements of NERC CIP Cybersecurity Requirements with additional support for the NIST Cyber Security Framework under development. Cyber security risks “Risk assessment is currently a complex and time consuming process that for the most part revolves around spreadsheets and subject matter expertise which is cumbersome and prone to human error,” said Rani Kehat, Radiflow BVP Business Development. “Worse still, the threat landscape is changing continuously which means a yearly or bi-yearly risk assessment quickly becomes out of date - leading to a false sense of security." "With CIARA, industrial organisations can now perform continuous assessment of their cyber security risks and base cyber security expenditure planning in direct correlation to the potential loss, backed up with quantitative data.” Digital network models Yehonatan Kfir, CTO at Radiflow, also highlight the complexity that CIARA helps to overcome, “CIARA automates the process of examining hundreds of the most commonly used security controls, against simulation of hundreds of cyber threat types while modelling against dozens of features for the digital network models including protocols, vulnerability, firmware versions, topology, device type and many others." CIARA speeds up the risk management process by utilising the structure of ISA/IEC 62443" "These risk assessments are then factored against common OT risk scenarios including loss of availability, loss of control, damage to property and other. The result is a matrix of potentially tens of thousands of permutations that can’t be analysed by humans while CIARA is able to evaluate it and provide comprehensive reports in a few minutes.” Threat intelligence feed CIARA is continually updated with assets data from the field and a threat intelligence feed that is based on multiple sources including the MITRE ATT&CK knowledgebase of adversary capabilities, tactics and techniques. Ilan Barda, CEO for Radiflow, commented: “For many of our customers that are the new to the area of ICS/SCADA Cyber Security, CIARA dramatically speeds up the risk management process by utilising the methodology and structure of ISA/IEC 62443 – a standard that is likely to become a mandated requirement in the future." Risk assessment processes "There is also significant budgetary pressure in the post COVID-19 business environment, and planning capabilities to help better assign scarce resources are another driving force for the adoption of better risk assessment processes,” Barda adds. CIARA has been BETA tested successfully by several existing Radiflow customers and partners including a top 5 global consultancy firm and is now available for new customers with an easy demo offering.