Advance IT / ICS Cybersecurity with Nozomi Networks and Fortinet

Date: September 26, 2017 By: Chet Namboodri

In the future, an organization’s cybersecurity strategy will largely be defined by how well both OT and IT networks can integrate to bring improved vigilance, visibility and protection. In today’s connected world this is more important than ever.

Recently, Nozomi Networks had the privilege of speaking at the 2017 Fortinet 361 event in Vienna, Austria, where IT / OT cyber resilience was a hot topic. I was pleased to discover that many attendees were interested in Fortinet’s commitment to OT (Operations Technology) and ICS (Industrial Control Systems) cybersecurity. They were also eager to learn how Nozomi Networks is helping Fortinet extend their security offering into the industrial realm with our technology.

As you may know, many enterprise organizations which have at least some of their infrastructure operated by OT networks, are concerned about cybersecurity. Industrial Control Systems (ICS), including the ones listed below, have increasingly come under attack:

  • Supervisory Control and Data Acquisition (SCADA)
  • Programmable Logic Controller (PLC)
  • Programmable Automation Controller (PAC)
  • Distributed Control Systems (DCS)

It is becoming more important than ever for enterprise cybersecurity strategies to include an integrated OT/ICS approach. This escalating need is why Nozomi Networks has partnered with Fortinet as part of the Fortinet Security Fabric offering.

What makes Nozomi Networks special and why has Fortinet chosen us as a partner? The answer is three-fold.

Advance-IT-ICS-Cybersecurity-with-Nozomi-Networks-and-Fortinet
Nozomi Networks V-P Chet Namboodri, and Co-founder Andrea Carcano, onstage discussing
IT / ICS cybersecurity at the Fortinet 361 Security Forum.

1. Passive ICS Threat Detection Seamlessly Integrated with Active Firewalls

First, the Nozomi Networks solution, composed of SCADAguardian and the Central Management Console (CMC), is a non-intrusive and comprehensive ICS cybersecurity solution. Fortinet utilizes SCADAguardian as a passive, yet discerning and dissecting solution to extend its Security Fabric to ICS networks and applications.

SCADAguardian works in direct concert with Fortinet by transferring alerts generated for identified cyber threats to Fortinet’s FortiGate, automatically triggering policy changes and proactive remediation responses.

Since the Nozomi Networks solution integrates seamlessly with Fortinet assets and devices, ICS practitioners and security stakeholders can leverage SCADAguardian’s automated vulnerability assessment and smart incident correlation capabilities within their IT cybersecurity infrastructure. This provides unparalleled threat, risk and anomaly detection for assets within their OT/ICS deployments

2. Unparalleled Operational ICS Visibility

 Second, the Nozomi Networks solution provides excellent visibility of ICS networks in real-time. With rich functions like auto-discovery and mapping of devices, as well as automated identification of connections and vulnerabilities, it is easy to visualize and drill-down to potential threats within the ICS network.

When integrated with the Fortinet Security Fabric, large, geo-distributed enterprises can extend their visibility and monitoring strategies from the IT realm into the OT environment.

As part of the Fortinet Security Fabric, SCADAguardian’s operational ICS visibility capabilities are helping stakeholders significantly reduce mitigation, troubleshooting and forensic efforts related to threats and process anomalies.

3. Proven in Large-Scale Deployments

Last, but certainly not least, the Nozomi Networks solution is tested and proven at the enterprise level. SCADAguardian and the CMC are highly flexible and scalable, and can support thousands of industrial sites. In addition, SCADAguardian can be deployed virtually and physically. We offer various SCADAguardian appliance options that fit various computational form-factor requirements, providing the ICS thread to Fortinet’s Security Fabric no matter the industry or application.

Fortinet_NN Application Arch
This is a sample Fortinet / Nozomi Networks application architecture, illustrating how SCADAguardian appliances (blue logo) integrate with Fortinet products, providing comprehensive ICS cybersecurity.

Integrated IT / ICS Cybersecurity is Here Today

I was excited and encouraged by the conversations, as well as the interest in ICS cybersecurity, at Fortinet 361 in Vienna. It was clear that stakeholders across the IT and OT divide are converging to agree on both the importance of OT/ICS cybersecurity, as well as the methods of achieving maximum protection.

If you are among the many stakeholders directly responsible for, or effected by cybersecurity policy within your organization, check out the resources available below. They include a joint solution brief as well as my slides from our talk at the Fortinet 361 event. Don’t miss finding out how Nozomi Networks and Fortinet are working together to help you advance your OT /ICS cybersecurity program.

Related Content to Download


Solution Brief: Fortinet & Nozomi Networks ICS Cybersecurity Solutions

This document covers:

Challenges of Securing ICS
Fortinet-Nozomi Networks Joint Solution
Segmenting ICS Networks
Sample Network Architecture


DOWNLOAD NOW


Related Links

Tagged , , , , , ,