Digital

Transformation whitepaper
Solutions (DTS)

Secure your enterprise with

HARMAN DefenSight
A Comprehensive Cybersecurity Asset Management Platform
 100% wholly-owned subsidiary of Samsung
Empowering 200+ clients across 12 countries

The cyber threat is more alarming than ever!

Today, every business engagement and third-party transaction is vetted against cybersecurity
risks. Be it a merger & acquisition, vendor contracts, or even a partnership deal; cybersecurity
has become a key factor in determining the potential of every venture. This ‘wake-up call for
businesses’ has come after many companies suffered beneath-the-surface costs, attackers
gained multi-layer technological sophistication, the number of attacks increased multifold, and
the pandemic brought cybersecurity to an inflexion point.

At least one company gets hit with

ransomware every 40 seconds!
On the granular level: technologies introduce risk, and so
do humans. At present, companies manage both in abundance.
Everything from the cloud, IoT, and global connectivity to
the hybrid workforce, third-party vendors, and even
hyper-convergence create unintended gateways to risks,
vulnerabilities, attacks, and failures. The hyperconnected youth
is an easy target for social engineering scams like ransomware,
phishing, and spyware. Coupled with the rise in cloud services
and smartphones, we have newer and more potent security
vulnerabilities than what we faced a few decades ago.

There is also an increased presence of information on cyber-physical platforms while the

digital wave has swept in new forms of cyberattacks, including SQL injections, supply-chain
attacks, ML/AI attacks, and targeted Blockchain data leaks. In March 2020, cybersecurity
professionals faced a huge influx of remote workers seemingly overnight and attacks spiked
by 148%. As of today, cybersecurity is threatened by the continued expansion of
decentralized touchpoints, increasing data volume, and the possibility of shadow IT.

© 2022 HARMAN International | services.harman.com

The resulting impact on
businesses is catastrophic
On average, it takes a company 12 days to address critical
network vulnerabilities and 62 days to address critical
application vulnerabilities after they are reported. In the
meantime, the business remains unprotected. A company
might not only have to bear heavy disruption expenses and
spend considerable funds on identifying areas of repair and
patchwork, but also face irreplaceable information loss.
Economic losses include theft of intellectual property and
disruption in trading. Reputational damage is another repercussion
that can extend to loss of consumer trust and poor media coverage. To top it off, regulations
like the General Data Protection Regulation (GDPR), the California Consumer Privacy Act
(CCPA), and China’s Personal Information Protection Law may also impose fines or sanctions
as a result of cybercrimes.

Today, for businesses of any size or in any sector, a cyber-attack is more about predicting the
occurrence than weighing its possibilities. A cyber resiliency strategy and dedicated platform
are imperative to protect everything from sensitive data and personally identifiable
information (PII) to governmental and industry information systems in any organization.

Yet, Gaps still exist in fool-proofing cybersecurity

Apart from the obvious challenges in implementing the cyber resilience vision (almost 2.5
quintillion bytes of data being created every day in 2022), there are a few more hiccups
emerging today - configuration issues, patching deficiencies, and unsupported platforms at the
network/host layer of vulnerability testing. Systems are evermore interconnected and
complex in nature with a massive flux of data flowing across multiple platforms and networks.
86% of employees at different levels feel that the complexity in their organization creates
concerning levels of risk for cybersecurity breaches, with third-party cyber risks posing the
most significant threat.

All this boils down to a fundamental point: cybersecurity needs to be continuous in nature.
The same firewalls and techniques that protected you years ago might become ineffective
now. Upgrading the antivirus software on end devices and deploying single-factor
authentication no longer cuts the mark. New vulnerabilities have to be detected and fixed.
Cybersecurity needs to go beyond the baselines of organizations like The National Institute of
Standards and Technology (NIST), regulatory best practices, and internal compliance controls.
And above all, it must go beyond ‘application patching’.
© 2022 HARMAN International | services.harman.com
Enter: HARMAN DefenSight
Enabling advanced cyber-resilience
HARMAN DefenSight is a Cybersecurity Asset Management Platform that solves the
aforementioned challenges by keeping Information Technology (IT) and Operations
Technology (OT) systems safe and secure using real-time threat intelligence, monitoring,
analytics, and remediation. The patent-pending CybeIntel platform analyzes enterprise systems
at the hardware, operating system, and application levels to discover security vulnerabilities,
and conduct risk scoring, classification, and automated remediation of vulnerabilities.

This results in

Effective Accurate Enhanced Reduced

vulnerability discovery of compliance to vulnerability
scans vulnerabilities security policies patch response
times

Faster deviations Reduced false Effective Reduced costs

discovery positives through compliance and time through
risk scoring analysis automated
remediation

Configuration settings are checked for signs of

compromise using rule-based standards of NIST,
USGCB, and more as DefenSight comprehensively
deploys security assessments that determine
compliance and provide consolidated reports. It
provides metadata, scanning and patching tools with
aggregated open standards, automated vulnerability
management, measurement, and policy compliance
products to enumerate software flaws and
configuration issues related to security. It leverages
the power of AI/ML to reduce compliance
deviations and deploy predictive analysis.

© 2022 HARMAN International | services.harman.com

Delivering unprecedented customer value
Since any vulnerability in any part of an enterprise system can spread to other systems very
fast, constant monitoring and speed and accuracy of remediation are critical in keeping them
safe. That is why DefenSight continuously monitors and analyzes enterprise systems with
air-gapped protection, immutable storage, and anomaly detection. It protects platform
configurations and application data while orchestrating rapid and reliable recovery at the
disaster recovery (DR) site.

By triangulating internal systems data with external threat data in innovative ways,
DefenSight improves enterprise security and customer experience across multiple
engagement channels, reducing the cost, complexity, and time to discover, analyze, and
remediate enterprise vulnerabilities.

DefenSight uses HARMAN-defined metadata to conduct these tasks and offer patching tools.
Being heterogeneous in nature, it supports Windows, Linux, Mac and offers customization of
best-suited security policies as per requirement.

Cybersecurity Asset Management Module

Software Agents Output from Model Output from Model

Threat
Remediation
Policy module
& Risk Score
Calculation
Data from Multiple Threat
Aggregator data sources
Graph Dashboard
Advanced
AI/ML Analytics Analytics

Enterprise
IT Assets

Threat
Remediation
Policy Data
Social Media, External Security Others
Media Data sources Data sources
Internal security Logs
Twitter CVE(https://cve.mitre.org/) ArcSight/SIEM)

Blog, Forums NV (https://nvd.nist.gov/) loT logs

Software Agents
OEMs (Microsoft, Cisco etc.) News sources

Other Govt. Data sources

DefenSight Cybersecurity Asset Management Platform

It gathers input from various internal and external sources to validate the security threats of
these systems, leverages AI/ML and graph analytics models to generate a risk score and
identify vulnerable assets, and predicts which other potential systems could be vulnerable. It
recommends the right software intervention to solve the vulnerability issue and applies the
software solution in an automated fashion. It enables enterprises to keep their IT systems safe
and secure with real-time threat intelligence analytics.

© 2022 HARMAN International | services.harman.com

In a nutshell, DefenSight empowers enterprises to quickly and accurately identify the
most vulnerable systems which need immediate remediation.

Security-rich Ease of management Fast and reliable

environment Single console provides
Automation and air-gapped simplified visibility for
data helps speed up both monitoring and control
detection and recovery across heterogeneous
technologies
Timely reception of site-level
events and alerts help
quickly recover from
anomalies of any kind

Secure your data, network,

and business with DefenSight
Strengthen your cybersecurity posture with a holistic approach and continuous
improvement. Leverage HARMAN DefenSight to improve organization-wide
security infrastructure with advanced security features to confidently progress on
your digital journey. This way, you can protect your customer’s data, boost your
company’s credibility, and build an agile future safely.

About HARMAN Digital Transformation Solutions (DTS)

HARMAN’s Digital Transformation Solutions (DTS) is a strategic business unit dedicated in blending the physical and digital to make
technology more dynamic in order to serve the ever-changing human needs. Our team of over 7,000 employees, spread across
12 countries in 45+ locations, with their expertise across hardware, software, and industry domains are constantly delivering
cutting edge technology solutions to over 200 clients globally. HARMAN DTS aims towards helping customers deliver a holistic
experience to their customers – through the convergence of digital, cross channel user experience, cloud, mobility, insightful data,
and internet-of-things backed by scalable underlying IT platforms. Healthcare, Communications, Industrial, Software, Retail and
Hospitality being our key focus verticals, we have made significant investments into this space. Leveraging our global delivery
approach, IPs, platforms and people, we deploy next generation technology platforms across industries, offer cost savings and
deliver innovative solutions to help our clients on their digital journey. To know more, please visit https://services.harman.com

About HARMAN
HARMAN (harman.com) designs and engineers connected products and solutions for automakers, consumers, and enterprises
worldwide, including connected car systems, audio and visual products, enterprise automation solutions; and services supporting
the Internet of Things. With leading brands including AKG®, Harman Kardon®, Infinity®, JBL®, Lexicon®, Mark Levinson® and
Revel®, HARMAN is admired by audiophiles, musicians and the entertainment venues where they perform around the world.
More than 50 million automobiles on the road today are equipped with HARMAN audio and connected car systems. Our
software services power billions of mobile devices and systems that are connected, integrated and secure across all platforms,
from work and home to car and mobile. HARMAN has a workforce of approximately 30,000 people across the Americas, Europe,
and Asia. In March 2017, HARMAN became a wholly-owned subsidiary of Samsung Electronics Co., Ltd.

Reach us on © 2022 HARMAN International | services.harman.com