The Newton headquarters of CyberArk, which has teamed with Forescout and Phosphorus to address risks tied to IoT devices. (CC BY-SA 4.0)

Privileged access management company CyberArk today joined forces with Forescout and Phosphorus to leverage automated network integration to more effectively secure IoT devices on corporate networks.

CyberArk maintains that companies can significantly reduce risk by using the joint integration they will offer to discover, secure and manage the increasing amount of networked IoT devices.

Adam Bosnian, executive vice president, global business development at  CyberArk, said to protect against weak IoT firmware, organizations must maintain an up-to-date inventory of their IoT assets and continually assess the network to help ensure that patches are pushed and weak or default credentials do not remain in use.

However, security teams find it difficult and costly to maintain visibility and manage the full lifecycle of IoT manually. Bosnian said CyberArk’s integration with Forescout and Phosphorus can potentially reduce risk by delivering an automated solution that grants visibility into enterprise IoT networks. The tactic also automatically shrinks the attackable surface area by actively managing, securing and monitoring the credentials used to access their solutions.

Through the integration, the Forescout platform continuously discovers IoT assets as they are added to the network, while the Phosphorus enterprise product assesses each asset, assigns it a risk level, and remediates firmware vulnerabilities. Then CyberArk’s privileged access security product then enforces security best practices by centralizing the management of privileged accounts, applying threat analytics  and automating detection and credential rotation.

The integrations are available on the CyberArk Integrations page for Forescout and Phosphorus.