You may also be interested in
One of the world’s top 10 oil and gas producers operates complex refining operations across remote locations and manages assets from a wide range of OEM vendors.
- Operated complex refining infrastructure in remote areas with highly segmented networks
- Needed vendor-agnostic security platform to manage assets from over a dozen OEM brands
- Faced mandate from corporate IT to achieve measurable cybersecurity improvements within 6 months
- Lacked unified visibility and control over OT security across thousands of endpoints
- Deployed Verve® by Rockwell Automation Verve Security Center across thousands of OT/ICS endpoints, including servers, HMIs, embedded controllers, and network devices.
- Implemented deep risk and vulnerability assessments across segmented networks
- Engaged Verve Industrial Protection (VIP) services to support the deployment of security tools
- Integrated third-party solutions such as Dell backup and Carbon Black malware protection directly into Verve Security Center for centralized visibility
- Achieved full asset visibility and vulnerability identification across OT environments
- Identified and remediated security risks including dormant accounts, missing patches, and unapproved software
- Enabled centralized IT teams to monitor security posture and remediation progress across facilities
- Became a model cybersecurity site for OEM vendors and internal stakeholders within 6 months.
One of the world’s top 10 oil and gas companies partnered with Verve® by Rockwell Automation to implement a comprehensive OT cybersecurity program. With a six-month deadline for measurable improvement, the company needed a unified solution to streamline risk assessment, remediation, and visibility across its highly complex refining operations.
Challenge
Remote Operations with Segmented Networks
This oil and gas producer operates a series of complex refining facilities in remote locations. These facilities used equipment from more than a dozen OEM vendors and relied on segmented, layered networks with NAT routers and multiple subnets—making centralized cybersecurity visibility and control especially difficult.
Mandate for Rapid Cybersecurity Improvement
The company’s corporate IT group required measurable improvement in ICS/OT cybersecurity maturity within just 6 months. They needed a vendor-agnostic solution capable of working across an array of embedded controllers, HMIs, and networking equipment while maintaining operational continuity.
Solution
Turnkey Platform Deployment Across Thousands of Endpoints
Verve® by Rockwell Automation deployed the Verve Security Center across thousands of ICS/OT endpoints. This included HMIs, servers, embedded controllers like DeltaV and Triconex. It also integrated with network infrastructure from vendors like Cisco, Hirschmann, and Emerson. The platform enabled in-depth vulnerability and risk assessment at both endpoint and segment levels.
Deep Inventory and Vulnerability Insights Across Segmented Networks
The Verve platform was able to reach into heavily segmented network environments to gather asset inventory and vulnerability data. Having access to these capabilities helped the client quickly and effectively prioritize risk remediation.
Services to Support Implementation and Tool Integration
The company also used Verve’s Industrial Protection (VIP) services team to accelerate deployment and integrate third-party security tools including Dell’s backup solution and Carbon Black for malware protection. These components were integrated directly into Verve Security Center—providing real-time status updates on malware detection and backup health.
Result
Achieve OT Cybersecurity Maturity in Six Months
Within 6 months, the client achieved significant advancements in OT/ICS cybersecurity maturity. The Verve Security Center enabled full asset visibility, vulnerability management, and identification of high-risk issues such as dormant user accounts, risky software, and missing patches.
Real-Time Centralized Security Management
The platform provided a unified dashboard for centralized IT teams to monitor security status, track remediation across all sites, and enforce control standards consistently.
Tangible risk reduction and organizational impact included:
- Full asset and vulnerability visibility across thousands of endpoints
- Remediation of major control gaps
- Backup and malware protection integrated into centralized management
- Internal and OEM vendor recognition as a model site for cybersecurity best practices
"Verve® by Rockwell Automation enabled us to have the same security functionality and consistent measurement in OT as we have in our IT side,” says the company’s Chief Information Security Officer.
Published September 26, 2025