For improvement, I think the training could be more practical. We have external training, but they're mostly theoretical. I want the solution to provide hands-on lab experience to help users learn better. As a user or administrator, it's easy to use. However, documentation is a bit lacking for deploying the collection server or spanning and trafficking. We need clearer guidelines on what to do first, second, and so on. The two points for improvement are more lab-oriented, practical training, and better documentation for implementing the tool. Even though the support is very good and they explain everything, having clearer documentation would be helpful.
In my company, we have done PoC on multiple vendors, and at that point, we figured out what improvements are needed in Claroty Platform. When we talk about vulnerabilities, Claroty Platform only gives the vulnerabilities based on the make and model of the devices, so it doesn't provide any resolution or any detailed explanation of how one can resolve such issues. From a vulnerability point of view, if you want to do vulnerability management, that will be a little bit of a difficult task with Claroty Platform because most of the time, we will have to figure out how to resolve it and whether patches are available for this particular device or version of the software which we are using.
The product could be improved in terms of user interface design. While functional, the interface could be more intuitive and user-friendly, especially for new users who might find it somewhat complex initially. We would appreciate enhanced integration capabilities with third-party applications and more advanced analytics features, such as predictive analytics, that can forecast potential system failures before they occur.
OT Security Engineer at a manufacturing company with 10,001+ employees
Real User
Top 20
2024-07-24T10:41:00Z
Jul 24, 2024
First, the graphical user interface is quite poor. It's 2024, and we still have to export data to Excel to make use of it. The solution could have a better graphical or user interface. Second, their active queries need substantial improvement. The current system lacks efficiency and the ability to communicate with and gather information from multiple systems. Third, the reporting capabilities for vulnerability management require significant enhancement. Better reporting tools and improved ways to create reports are essential for usability. The current method of report creation does not align with how we need to use the tool. The tool cannot exclude a specific factory line from the sensors while implementing new work to avoid false positives. After the implementation, I would like to return that line to training mode to learn any new configurations or changes. This would allow the system to create a new baseline for those assets. However, that functionality is not available right now.
I've reported four bugs and three feature requests so far. The main area of focus should be on how attacks are detected. The attack vector information needs to be more detailed. For example, it's not enough to state that an SMB v1 version open can lead to a WannaCry attack. A more detailed explanation should help clients understand the various ways an attack could occur.
The product fulfills our company's needs. Currently, Claroty Platform focuses on industrial control systems and OT. If Claroty Platform expands to the IT network side, it will benefit Claroty and those who want the tool for their IT network part. Information related to zero-day attacks, which are difficult to detect in a system, is an area of concern that needs to be improved over time by the Claroty Platform. Sometimes, the weaknesses in certain systems cannot be captured by Claroty Platform because it lacks knowledge about zero-day attacks. The product's integration capabilities are an area of concern where improvements are required.
The Claroty Platform is tailored for monitoring and securing industrial control systems. It offers deep visibility into OT networks, enabling effective anomaly detection and vulnerability assessments. Its user-friendly interface and robust reporting tools facilitate easy management and compliance, enhancing organizational efficiency and cybersecurity posture in industrial environments.
For improvement, I think the training could be more practical. We have external training, but they're mostly theoretical. I want the solution to provide hands-on lab experience to help users learn better. As a user or administrator, it's easy to use. However, documentation is a bit lacking for deploying the collection server or spanning and trafficking. We need clearer guidelines on what to do first, second, and so on. The two points for improvement are more lab-oriented, practical training, and better documentation for implementing the tool. Even though the support is very good and they explain everything, having clearer documentation would be helpful.
In my company, we have done PoC on multiple vendors, and at that point, we figured out what improvements are needed in Claroty Platform. When we talk about vulnerabilities, Claroty Platform only gives the vulnerabilities based on the make and model of the devices, so it doesn't provide any resolution or any detailed explanation of how one can resolve such issues. From a vulnerability point of view, if you want to do vulnerability management, that will be a little bit of a difficult task with Claroty Platform because most of the time, we will have to figure out how to resolve it and whether patches are available for this particular device or version of the software which we are using.
The product could be improved in terms of user interface design. While functional, the interface could be more intuitive and user-friendly, especially for new users who might find it somewhat complex initially. We would appreciate enhanced integration capabilities with third-party applications and more advanced analytics features, such as predictive analytics, that can forecast potential system failures before they occur.
First, the graphical user interface is quite poor. It's 2024, and we still have to export data to Excel to make use of it. The solution could have a better graphical or user interface. Second, their active queries need substantial improvement. The current system lacks efficiency and the ability to communicate with and gather information from multiple systems. Third, the reporting capabilities for vulnerability management require significant enhancement. Better reporting tools and improved ways to create reports are essential for usability. The current method of report creation does not align with how we need to use the tool. The tool cannot exclude a specific factory line from the sensors while implementing new work to avoid false positives. After the implementation, I would like to return that line to training mode to learn any new configurations or changes. This would allow the system to create a new baseline for those assets. However, that functionality is not available right now.
I've reported four bugs and three feature requests so far. The main area of focus should be on how attacks are detected. The attack vector information needs to be more detailed. For example, it's not enough to state that an SMB v1 version open can lead to a WannaCry attack. A more detailed explanation should help clients understand the various ways an attack could occur.
There are a few protocols that Claroty doesn't currently support.
Claroty Platform could improve the pricing to get more acceptability in the market.
The product fulfills our company's needs. Currently, Claroty Platform focuses on industrial control systems and OT. If Claroty Platform expands to the IT network side, it will benefit Claroty and those who want the tool for their IT network part. Information related to zero-day attacks, which are difficult to detect in a system, is an area of concern that needs to be improved over time by the Claroty Platform. Sometimes, the weaknesses in certain systems cannot be captured by Claroty Platform because it lacks knowledge about zero-day attacks. The product's integration capabilities are an area of concern where improvements are required.