Platform Evolution

Introducing ICG 2.0
Operational Assurance
& Resilience

The world's critical infrastructure can no longer afford to just detect and respond. ICG 2.0 marks a fundamental shift — from managing threats to assuring operations and engineering resilience from the inside out.

Discover the evolution
ICG 2.0
Chapter 01

The Limits of Threat Management

Understanding why reactive security is no longer sufficient for critical infrastructure operators.

For years, the industry defined success as finding threats faster. ICG built its reputation on doing exactly that — delivering world-class OT visibility, threat detection, and incident response for the most complex industrial environments on earth.

But the landscape has shifted beneath our feet. Today's adversaries are patient, persistent, and purpose-built for critical infrastructure. Nation-state actors don't announce themselves with loud alerts — they establish quiet footholds, map process dependencies, and wait.

Meanwhile, operational complexity has exploded. OT/IT convergence, cloud-connected SCADA, remote access for field engineers, and third-party supply chain integrations have created attack surfaces that no legacy threat management tool was designed to handle.

"The question is no longer 'Are we being targeted?' — it's 'Are we certain we can operate through anything that comes our way?'"

ICG Product Vision — 2025

Reactive threat management answers the first question. Operational Assurance answers the second. ICG 2.0 was built to answer it continuously, automatically, and with the depth of context that only a purpose-built OT intelligence platform can provide.

The Evolution

From Detection to Assurance: The ICG Journey

ICG 1.0 — Foundation Era
OT Asset Discovery & Passive Monitoring

Established deep OT protocol support and passive network monitoring. Built the industry's most accurate asset inventory for industrial environments — Purdue-model aware, vendor-agnostic, and non-disruptive.

ICG 1.5 — Intelligence Era
Threat Detection & Vulnerability Management

Layered in behavioral analytics and OT-specific threat intelligence, enabling security teams to detect lateral movement, configuration drift, and known CVEs across operational networks in real time.

ICG 2.0 — Assurance Era
Operational Assurance & Resilience Platform

A complete architectural reimagining. ICG 2.0 unifies cyber, operational, and physical telemetry into a single assurance engine — delivering continuous risk posture, autonomous response orchestration, and guaranteed operational uptime modeling.

Platform Architecture

The ICG 2.0 Assurance Stack

Four integrated layers that collectively deliver uninterrupted operational intelligence — from the field device to the boardroom.

Data Fabric
Intelligence
Assurance
OT Networks
SCADA / ICS Telemetry
Protocol-native ingestion across Modbus, DNP3, IEC 61850, PROFINET
IT Infrastructure
Enterprise Network Data
Log aggregation, NDR feeds, identity telemetry
IoT / IIoT
Edge Device Sensors
Smart meters, field sensors, RTUs, PLCs
Physical
Environmental & Physical
CCTV, access control, HVAC, power feeds
Behavioral AI
Anomaly & Threat Detection
ML baselines, process-aware anomaly scoring, zero-day detection
Risk Engine
Operational Risk Scoring
Continuous exposure modeling with business-context weighting and criticality mapping
Threat Intel
OT-Specific Intelligence
Curated ICS/OT IOCs, MITRE ATT&CK for ICS, sector feeds
Core Platform — ICG 2.0
Operational Assurance & Resilience Engine
Unified dashboards · Autonomous response playbooks · Compliance automation · Resilience scoring · Executive reporting · Uptime SLA modeling
What's New in ICG 2.0

Core Platform Capabilities

CAP-01
Continuous Assurance Posture

A living risk score that updates in real time as conditions change — not a static report, but a dynamic operational guarantee validated against your mission-critical processes.

Real-time OT-aware Automated
CAP-02
Resilience Scoring & Forecasting

Predictive modeling that stress-tests your environment against known threat scenarios, infrastructure failures, and supply chain disruptions — before they happen.

Predictive Scenario-based Board-ready
CAP-03
Autonomous Response Orchestration

Pre-validated, process-aware response playbooks that execute containment and isolation steps autonomously — with full operator override at every stage.

SOAR-integrated Human-in-loop OT-safe
CAP-04
Converged OT/IT/Physical View

A single-pane-of-glass that breaks down domain silos — correlating physical access events, IT network activity, and OT process anomalies into unified incident timelines.

Unified Correlated Context-rich
CAP-05
Compliance Automation

Continuous evidence collection and automated reporting for NERC CIP, IEC 62443, NIS2, and sector-specific regulatory frameworks — eliminating manual compliance overhead.

NERC CIP IEC 62443 NIS2
CAP-06
Executive Resilience Dashboard

Translate complex OT security data into executive-grade narratives — with business risk framing, regulatory status, and trend analysis ready for board presentation.

Board-ready Risk-framed Automated
Side-by-Side

ICG 1.x vs ICG 2.0

Capability Dimension ICG 1.x ICG 2.0
Primary Objective Threat detection & response ✦ Operational assurance & resilience
Risk Posture Model Point-in-time scoring ✦ Continuous, dynamic risk modeling
Domain Coverage OT + IT (limited) ✦ OT + IT + Physical + Cloud convergence
Response Capability Manual playbooks + alerting ✦ Autonomous orchestration + human override
Compliance Reporting Manual evidence gathering ✦ Continuous automated compliance evidence
Business Context Technical alerts only ✦ Business-impact and mission-criticality framing
Resilience Forecasting ✕ Not available ✓ Predictive scenario modeling
Executive Reporting Custom manual exports ✦ Automated board-ready dashboards
Uptime SLA Modeling ✕ Not available ✓ Operational uptime assurance engine
The future of OT security

Assurance isn't a feature.
It's a foundation.

ICG 2.0 is available now. Join the operators who have moved beyond threat management and into the era of guaranteed operational resilience.

Request a Demo Download Platform Brief