07 August 2025
Claroty has announced a new collaboration with Google Security Operations, aiming to enhance threat detection and response capabilities for organisations overseeing both IT and operational technology (OT) systems.
This partnership enables organisations managing cyber-physical systems (CPS) to utilise high-fidelity, context-rich alerting and vulnerability data from Claroty’s xDome and Continuous Threat Detection (CTD) platforms, integrating seamlessly into Google’s cloud-native security operations platform.
As security operation centres (SOCs) face increasing challenges in managing the convergence of IT and OT, this integration seeks to address issues such as limited visibility into physical system threats, an overload of unfiltered alerts, compliance complexities, and slower incident response times caused by legacy architectures and proprietary OT protocols. By unifying threat detection across both domains, the collaboration aims to accelerate incident response, streamline compliance, and support risk-based remediation efforts.
Key features of the joint solution include the ingestion of Claroty’s alerts and vulnerability data into Google Security Operations. This allows for the correlation of Claroty’s insights with broader enterprise data, enriching threat context and enabling SOC teams to prioritise responses based on risk. The integration also facilitates earlier identification of OT, IoT, and CPS-specific threats that might be overlooked by traditional IT security tools, helping security teams reduce mean time to resolution (MTTR) with actionable intelligence tailored to operational environments.
“By combining Claroty’s expertise in CPS protocols and asset context with Google Security Operations’ threat prioritisation and automation capabilities, we can increase operational uptime, simplify compliance in hybrid environments, and most importantly, reduce risk,” said Tim Mackie, Vice President of Worldwide Channel and Alliances at Claroty.
The trend of IT security teams taking responsibility for safeguarding physical assets is growing, with assets spanning IoT devices, medical equipment, building management systems, and supply chain automation.
“Security teams require a unified view of threats across diverse environments. Our joint solution leverages Claroty’s deep CPS knowledge and Google’s intelligence-driven workflows to enable earlier detection and faster response to attacks,” said Recognising this, McCall McIntyre, Head of Security Product Partnerships at Google Cloud.
By feeding high-quality data from Claroty’s platforms into Google Security Operations, organisations are positioned to better detect and mitigate risks targeting operational assets. The combined solution aims to support compliance requirements, improve operational efficiency, and help security teams prioritise actions that most effectively reduce risk exposure. Designed for both cloud-based and on-premise deployments, the integration offers a flexible approach suitable for hybrid organisational infrastructures.
