, ,

Claroty pushes microsegmentation into critical infrastructure

The alliance expansion shows OT security moving toward containment and resilience.

Claroty pushes microsegmentation into critical infrastructure
Summary
  • Claroty has added Akamai, ColorTokens, Corsha, Elisity, and Zero Networks to its alliance programme.
  • The integrations bring microsegmentation capabilities into cyber-physical systems environments.
  • Critical infrastructure security is shifting from visibility and detection toward containment, least privilege, and operational resilience.

Claroty has expanded its Technology Alliances Program with microsegmentation partners Akamai, ColorTokens, Corsha, Elisity, and Zero Networks, aiming to strengthen operational resilience in critical infrastructure and other cyber-physical systems environments.

The integrations bring microsegmentation capabilities into the Claroty Platform, combining asset discovery, exposure management, and policy enforcement. The goal is to help organisations limit lateral movement across operational technology, internet of things, healthcare, and industrial environments where downtime can affect safety, production, and public services.

Microsegmentation is familiar in enterprise IT, but operational environments are harder. Factories, hospitals, utilities, transport systems, and energy networks often contain legacy devices, proprietary protocols, and equipment that cannot easily run agents or tolerate frequent change. Security teams may have incomplete asset inventories, while operations teams are cautious about controls that could interrupt production or service delivery.

Claroty’s asset context is central to the proposition. Segmentation policies are only useful if organisations know what devices exist, what they communicate with, what role they play, and what risk they carry. In a cyber-physical environment, a poorly designed rule can break a production line or clinical workflow. A well designed rule can contain a breach before it spreads from an IT foothold into operational systems.

The alliance model also reflects a maturing OT security market. Many organisations have already invested in visibility tools, vulnerability management, remote access, network detection, and identity controls. The next step is turning that knowledge into enforceable policy. That requires integrations between discovery platforms and enforcement points, whether those controls sit in networks, identity layers, cloud systems, or specialised microsegmentation tools.

Regulatory pressure is reinforcing the shift. In Europe, NIS2 and sector-specific resilience requirements are pushing operators of essential services to show stronger controls over supply chain risk, incident response, and continuity. Documentation alone will not satisfy boards or regulators after a major outage. Organisations need evidence that high risk communications are restricted, critical assets are protected, and compensating controls exist where patching is impossible.

Zero trust language can become vague, although in OT the concept has a concrete edge: only the systems that need to communicate should be allowed to do so, and those permissions should reflect real operational roles. For unpatchable assets, least privilege network access may be one of the few realistic protections available.

Integration complexity remains the risk. Security buyers are often promised unified platforms, only to inherit another layer of tools requiring specialist skills and careful tuning. Claroty and its partners will need to prove that recommended policies can be validated safely, deployed gradually, and evidenced clearly to operations, security, and compliance teams.

Critical infrastructure attacks increasingly test blast radius as much as perimeter defence. Visibility remains important, but the operational question is whether organisations can contain compromise without stopping the systems society depends on.