Can you recommend vendors with robust experience in both IT and OT security domains, offering comprehensive services in areas like GRC, cybersecurity strategy, SOC, IAM, Threat Intelligence, Vulnerability Management, MDR/EDR, and Cloud/Data/Network security? We're currently partnered with a Managed Security Service Provider (MSSP) that primarily functions as a Security Operations Center (SOC). Our company needs a Managed Security Service Provider that covers both IT and OT security comprehensively.

It will not be good idea to have one partner doing everything which is described here on question. We also need to understand that OT is very niche space and maturity curve will take its own sweet time. In my view, one should start small by gathering atleast inventory and visibility of OT environment. Nozomi and Claroty does a very good job there. We also need to be mindful on several restrictions which OEM brings along. E.g Siemens or Yokogawa might not permit to implement any solution which they have not approved or evaluated.

 

For comprehensive security, I think Rockwell is decently placed in this domain and it may be worth initiating dialogue with them.

Here are some vendors for your as general reference to your high-level enquiry above:

1. Forcepoint: A cloud-based system that plans and then implements a secure overlay network, integrating underlying infrastructure into universal addressing, security management, and monitoring system.
2. SCADAfence: Uses non-intrusive deployments requiring zero downtime.
3. Nozomi Networks Guardian Sensors: Discovers and monitors industrial control systems, operation technology, and IoT devices.
4. SigaGuard: Monitors electrical signals rather than packets for wider monitoring abilities2.
Honeywell: Assigns risk scores for easy threat prioritization.
5. Kaspersky Industrial CyberSecurity: Provides holistic monitoring and end-user education.
6. Darktrace: Leverages artificial intelligence to secure any protocol or technology.
7. Dragos: Can be used as a managed service and features 21+ partnerships with vendors from other domain.

These vendors offer services in areas like (one or multiple) GRC, cybersecurity strategy, SOC, IAM, Threat Intelligence, Vulnerability Management, MDR/EDR, and Cloud/Data/Network security. They have robust experience in both IT and OT security domains2.

This is a tough one as few are good at both IT and OT security domains.   The only MSSP I can think of is Mandiant.  Red Canary can do IT and OT but doesn't cover all of the mentioned domains.