Claroty · Team8 incubated · Founded 2015
Claroty
Cyber-physical systems protection across IT, OT and IoMT
Founded in 2015 with Team8 incubation, Claroty is a Gartner Leader for Cyber-Physical Systems Protection. The platform spans the broadest module set on the market, xDome (cloud-managed), Continuous Threat Detection (CTD, on-premises), Secure Remote Access (SRA) and Edge, with particular strength in pharma, healthcare (Medigate IoMT lineage), manufacturing and mixed device estates. Artiflex IT's recommended choice for the largest and most complex UAE OT programmes.
xDome
Cloud
CTD
On-prem
SRA
Remote
Edge
Collector
What Claroty is
Claroty was founded in 2015 and incubated by Team8, the Israeli cybersecurity foundry, and has grown into one of the two reference platforms for industrial cybersecurity (Gartner Magic Quadrant for CPS Protection Platforms). The acquisition of Medigate in 2021 brought best-in-class connected-medical-device (IoMT) visibility, making Claroty the dominant choice in healthcare alongside Nozomi.
The Claroty platform spans four major products. xDome is the cloud-managed flagship for multi-site OT, IoT and IoMT discovery, exposure management and threat detection. Continuous Threat Detection (CTD) is the on-premises sibling, the heritage product preferred where data residency or air-gap requirements rule out cloud. Secure Remote Access (SRA) is one of the strongest dedicated OT remote-access modules on the market. Edge is the lightweight asset-collection layer that performs passive and (optionally) safe active queries.
Crucially, Claroty supports both passive monitoring and ICS-aware active discovery. The active queries are deliberately engineered to be safe in production environments, which gives the most complete asset inventory of any platform when the plant culture and safety case permits.
Cloud or
on-premises
xDome is the cloud-managed flagship. CTD is the on-premises sibling for air-gapped, data-residency-restricted or cloud-averse customers. Both products run the same detection engine, the choice is operational, not technical.
- Gartner Leader, CPS Protection Platforms
- xDome (cloud) + CTD (on-prem) + SRA + Edge
- Medigate IoMT lineage for healthcare
- Passive monitoring and safe active queries
- Broadest IoT and IoMT device coverage
- Strongest dedicated OT remote-access (SRA)
- Native SIEM and SOAR integration
- IEC 62443, HIPAA, NESA and ADHICS evidence
Why it wins
What makes Claroty the right choice for complex estates
The strengths that show up most often in UAE pharma, healthcare, manufacturing and multi-protocol industrial deployments.
4 products
xDome, CTD, SRA and Edge, the broadest OT module set on the market
Gartner Leader
Magic Quadrant for CPS Protection Platforms, consecutive years
IoMT depth
Medigate-rooted medical-device visibility unmatched in healthcare
Broadest module set
The widest portfolio of OT/IoT modules on the market. xDome and CTD cover visibility and detection, SRA covers vendor and engineering remote access, Edge handles asset collection. One vendor for the whole programme.
Best-in-class IoMT
The 2021 Medigate acquisition put Claroty ahead in connected medical devices: deep IoMT protocol coverage, clinical-workflow context and patient-safety risk scoring, the right choice for hospitals and large healthcare estates.
Safe active discovery
Claroty Edge performs carefully engineered active queries that are designed safe for ICS protocols, giving a more complete asset inventory than pure-passive platforms where plant culture allows.
Dedicated OT SRA
Claroty Secure Remote Access is one of the strongest purpose-built OT remote-access platforms. Critical when third-party vendors, OEMs and engineers regularly access production controllers from outside the plant.
Cloud or on-premises
xDome is the cloud-managed flagship. CTD is the on-premises sibling for air-gapped, data-residency-restricted or cloud-averse customers. Most platforms force a single choice, Claroty supports both first-class.
Gartner Leader
Named a Leader in the Gartner Magic Quadrant for CPS Protection Platforms alongside Nozomi. Independent validation that the platform meets enterprise OT requirements at scale.
Who should put Claroty on the shortlist
Large UAE manufacturers, pharma and healthcare with heterogeneous device populations
Hospital and healthcare estates needing best-in-class IoMT (connected medical device) visibility
Multi-site programmes where xDome's cloud-managed SaaS reduces operational overhead
Air-gapped, data-residency-restricted or cloud-averse customers needing the on-prem CTD alternative
OT estates with heavy third-party vendor and OEM remote access (Claroty SRA)
Plants where carefully ICS-aware active discovery is acceptable for the fullest inventory
Customers building a single-vendor OT programme (visibility + detection + remote access + discovery)
Compliance-led programmes targeting IEC 62443, HIPAA, NESA and ADHICS with audit-ready evidence
Core features
What's inside Claroty
xDome platform, Cloud-managed flagship for OT, IoT and IoMT visibility.
Continuous Threat Detection (CTD), On-premises sibling for air-gapped deployments.
Secure Remote Access (SRA), Dedicated OT remote-access for vendors and engineers.
Claroty Edge, Lightweight passive and safe-active asset collection.
Exposure management, Asset-level CVE mapping and risk scoring.
Threat detection, Behavioural baselines plus ICS-specific signatures.
IoMT visibility, Medigate-derived medical-device parsers and risk scoring.
Compliance reporting, IEC 62443, HIPAA, NESA, ADHICS evidence packs.
SIEM and SOAR integration, Native connectors for major SOC platforms.
Threat intelligence, Claroty Team82 research and indicator feeds.
Choosing a product
Simplified positioning, which Claroty product fits
Claroty is sold as four complementary products. Most UAE programmes start with xDome (or CTD where on-prem is required) and add SRA where vendor remote access matters.
The strategic view
How the products relate
Most UAE Claroty programmes start with xDome (or CTD), then add SRA for vendor remote access. Edge fills in branch and small-site coverage.
Licensing
Claroty products and capabilities
xDome, CTD, SRA and Edge each license per asset, session or sensor. License the components your programme actually needs.
| Capability | xDomecloud-managed | CTDon-prem | SRAremote access | Edgecollector |
|---|---|---|---|---|
| Primary positioning | Cloud-managed OT/IoT/IoMT | On-prem visibility & detection | Vendor and engineer remote access | Asset collection layer |
| Asset visibility (passive + active) | ✓ | ✓ | ✗ | ✓ |
| Threat detection (behavioural + signatures) | ✓ | ✓ | limited | ✗ |
| Exposure / vulnerability management | ✓ | ✓ | ✗ | data source |
| IoMT (medical device) coverage | ✓ | ✓ | ✗ | ✓ |
| Secure remote access for vendors / OEMs | ✗ | ✗ | ✓ | ✗ |
| Session recording and approval workflows | ✗ | ✗ | ✓ | ✗ |
| Cloud SaaS deployment | ✓ | ✗ | hybrid | ✗ |
| On-premises deployment | optional | ✓ | ✓ | ✓ |
| Air-gap support | ✗ | ✓ | partial | ✓ |
| SIEM and SOAR integration | ✓ | ✓ | ✓ | via xDome / CTD |
| Compliance reporting (IEC 62443, HIPAA) | ✓ | ✓ | access logs | ✗ |
| Licensing basis | Per asset | Per asset | Per session / user | Per sensor |
Module availability reflects Claroty's published product set and may evolve. Artiflex confirms the exact entitlements during scoping.
Deployment Options
How we deliver Claroty across UAE plants and hospitals
xDome SaaS (default)
Claroty-hosted cloud-managed SaaS, the default deployment for modern UAE OT, IoT and IoMT programmes. Multi-site management out of the box.
CTD on-premises
Self-hosted CTD for air-gapped, data-residency-restricted or cloud-averse plants. Same detection engine as xDome, on your hardware.
Hybrid + SRA
Most large UAE programmes combine xDome (or CTD) with SRA for vendor remote access. Artiflex sizes the right mix during the assessment.
Why Artiflex IT
Delivering Claroty across the UAE
Claroty is the right answer when module breadth, IoMT depth and ICS-aware active discovery matter most. Artiflex handles platform choice (xDome or CTD), site survey, sensor and SRA design, deployment, ICS-protocol tuning, SOC integration and ongoing management, all mapped to IEC 62443, HIPAA, NESA and ADHICS. Fully managed, co-managed or assessment-only.
Frequently asked
Claroty questions we hear from UAE buyers
Should we choose xDome or CTD?
xDome (cloud-managed) is the default and the right answer for most UAE programmes, faster to deploy, less infrastructure to operate, multi-site management out of the box. CTD (on-premises) is the right answer for air-gapped sites, strict data-residency mandates and customers who refuse cloud-managed OT. Both run the same detection engine, the choice is operational not technical.
Ready to evaluate Claroty?
Book a free OT posture assessment and we will scope xDome vs CTD, SRA design and SOC integration for your UAE plants, hospitals or pharma facilities.