Secure Remote Access to Industrial Control Systems

Solve problems faster.

Serving over 1.2 million people and partners every day

How It Works

Dispel launches a single-tenant Moving Target Defense SD-WAN with, as needed, intermediary virtual desktops, recording and logging servers, and patch staging sandboxes.

Remote Users connect to this network, are brought down to the Wicket ESI at the edge of your OT network, and are then able to reach whitelisted HMI/PLCs.

Your time should matter

Slow tools sink teams and their reputations. Get a remote access product that connects you in seconds, not minutes.

Connect within seconds.

Your systems should work

Your team depends upon remote access to cut downtime. Get reliable remote access that doesn’t come at the cost of network security.

"That's why we use Dispel"

Connects in Seconds

Drive systems like you used to through a simple user interface sitting atop a dependable, global communications infrastructure.

Scalable Vendor Access

Whether 1 vendor to 1 device or 100 vendors to 30,000 devices; Dispel provides a standardized remote access system.

Makes Cybersecurity Happy

Control to whom, when, for how long, and where access is granted. Manage and audit from a single platform.

We know this matters

Operations and Cybersecurity should not be in conflict. Both have the same mission at heart - to maximize the uptime, availability, and crew safety of their team.

How to get Dispel

1. Demo

  • We work to understand your unique OT environments.
  • You get to see the platform and user experience in action.
  • We make sure your security needs are covered.
  • You will leave knowing what your deployment will cost.

2. Pilot

  • Put the product in your team’s hands.
  • Make sure IT, OT, and administrators are happy.
  • We work with you to finalize scope.

3. Deploy

  • Fully deploy within 4 hours.
  • Train your whole team in 30 minutes.
  • Never worry about patching or updating your remote access system again.

4. Sustain

“Dispel has truly simplified remote SCADA access for the city of Brentwood. The platform is secure, simple to use, and very efficient.”

Eric Brennan – Water Operations Manager at City of Brentwood

Why people get Dispel for their teams

For Operators

Sub 30-second connection times to any system they have permission to access, with the tools and multi-monitor feeds they need to do their work unencumbered, and the record keeping needed to clearly show who did what and when.

For Vendors

A standardized way to get Vendors to their equipment in minutes, rather than weeks of wrangling with cybersecurity.

For Administrators

A single system through which remote access can be governed, and the reporting infrastructure needed to keep compliance happy.

For Cybersecurity

The enhancements they need to keep the plant conformant with the latest in cybersecurity and resiliency standards.

For Management

An end to the infighting between Operations and IT, and a beginning to meaningful improvements in Uptime, Availability, and Safety.

Uptime, Availability, and Safety

Built for the mission.

Good systems are difficult to design, build, maintain, and improve. If you have operational technology in your environment, you are dealing with a system of systems - something an order of magnitude more complex. Your ability to understand, operate, and enhance this system of systems is why you get paid to go to work every day. That’s your mission.

Why is this important? The mission of both Operations and Cybersecurity can more precisely be defined as maximizing Uptime, Availability, and Safety at minimal cost within the constraints of time and individual ability. A good place to start pursuing that mission is to recognize you are dealing with a system of systems; identify what those systems are; and then make sure those systems work well with one another when focused on those three goals.

Enter remote access. As a concept, Operations cares about remote access because of its potential to increase Uptime, Availability, and Safety through the improved responsiveness of team members and minimized count and duration of instances where personnel need to be physically near equipment. As a concept, Cybersecurity cares about remote access because it creates the potential for a breach that could shut down the plant or inflict physical harm on personnel. One side views it as an enabler. The other views it as a concern. Both tend to find an inordinate amount of their time consumed working on, with, or around whatever compromise solution is reached.

We believe remote access should be viewed as a system within a system of systems. With that as the mindset, we built our remote access system from the ground up to cleanly interleave with the Operations and Cybersecurity systems found at utilities, factories, and energy firms. It has taken us over 2,000 conversations with Operations and Cybersecurity professionals, 300,000 hours of work, and no small amount of luck to get where we are today. The result is the product we hope you consider deploying.

Cybersecurity teams tend to advocate for Dispel because it provides the scale, control, tracking, compliance reporting, and moving target defenses they want around anything related to Operations. Operations teams tend to turn to Dispel because it means their crews are able to reach their equipment in seconds with the tools they need to do their job. Management approves Dispel because it is modular, does precisely the tasks for which it was purchased, and is relentlessly improved.

Deployment tends to start with the placement of a piece of hardware onsite between the Internet access point for the facility and whatever security stack (firewalls, usually) is already at the plant. If it is a particularly large facility, or geographically dispersed (a windfarm, for example), we suggest putting hardware next to each subsystem you want to remotely reach. If you happen to have a strong technical team, we can forego the hardware and install the necessary software on a virtual machine instead.

This first phase done, an Administrator can give anyone the ability to remotely access a given piece of equipment for a specified timeframe through the Dispel management console. Alternatively, for those of you with a firmwide access control system, the process of granting and revoking device-specific access can be as straightforward as linking your Dispel deployment to the access control server.

Features and modules like livestreaming, session recording, multimonitor viewing, time-based access control, user-specific whitelisting, equipment-specific maintenance workstations, SIEM hookups, unidirectional gateways, and patch staging servers exist because some situations call for them. We provide a longer list below.

Choose a system that was built for your mission. Deploy Dispel.

See why Connecticut Water chose Dispel

See it in action: a remote access product that’s more secure, easier to manage, and faster than anything else on the market. Presented by Will Perez at ARC Forum.

How they use us

  • 40+ facilities

    Across 3 independent sites. We cover a lot of ground and equipment.

  • 24/7 access

    For over 150 operators on their SCADA network.

  • Corporate ≠ ICS

    We protect both for them, but the networks are completely separate.

Why they chose us

  • Their operators loved us

    Because they were happy with the connection speed and how easy it is.

  • They saved $980k per year

    Even with the deployment of full geographic redundancy.

  • Standardized administration

    For IT to administer, instead of 300 jumphosts across both networks.