- Company (that provides the nominated product / solution / service): Nozomi Networks
- Website: http://www.nozominetworks.com
- Company size (employees): 30, growing rapidly
- Product Version Number: 16.9
- Type of solution: Hybrid
- Year this product or service was first introduced to the market: 2013
- Year the current version of this product or service has been released: 2016
- Approximate number of users worldwide: 15+, monitoring more than 50,000 industrial devices in dozens of multinational customer sites spanning the oil & gas, electric utilities, manufacturing and transportation sectors
In 3 bullets, summarize why this product or service deserves recognition:
Innovation - While system visualization and monitoring is a fundamental security control in IT systems, it has been largely unavailable for Operational Technology (OT) systems. Nozomi Networks’ SCADAguardian is a new class of application that addresses this challenge and delivers real-time cybersecurity and operational visibility for industrial control networks. Using advances in artificial intelligence and machine learning, as well as proprietary patent-pending research, SCADAguardian automatically builds an internal representation of the Industrial Control System and its process. Then it employs behavioral analytics and continuous monitoring to detect changes to baseline states. Designed for ICS and SCADA environments, SCADAguardian is easily and safely deployed without risk of downtime or network disruption.
Excellence – SCADAguardian has already delivered value to multisite, multinational operators and in its 3 years of installations has proven it meets the application and vendor standards needed by large industrial organizations. Enel, a world leading electricity and gas operator, uses SCADAguardian to manage and monitor the industrial network of the Italian power grid, a system that includes more than 500 power generation plants. “Nozomi Networks proved to us that their non-intrusive, in-depth technology was able to substantially improve the reliability, efficiency and cybersecurity of our remote control system.” – Head of Power Generation, Remote Control System, Enel
Leadership – Nozomi Networks contributes to standards groups such as the IEC TC57 WG15 subcommittee, to improve the security of industrial communications. The company also demonstrate leadership with its vision to help solve ICS/SCADA security challenges using advanced technologies in a way that matches real-world requirements. Nozomi Networks uses a combination of installation-gained knowledge and advanced techniques to analyze industrial protocol communications and identify issues. The company also ensures that SCADAguardian integrates with IT security infrastructure, becoming part of end-to-end security systems that can be efficiently managed.
In less than 300 words, summarize the most important features and benefits of this product or service
SCADAguardian provides real-time cybersecurity and operational visibility for industrial control networks. It rapidly detects cyberattacks and process anomalies, providing insights that improve cyber resiliency, reliability, and safety. By automating the task of providing up-to-the minute visualization of the industrial network, including its components, connections, and topology SCADAguardian allows OT and IT teams to focus on pre-empting or mitigating issues that could impact security or availability.
SCADAguardian is specifically designed for ICS and SCADA environments and is easily and safely deployed without risk of downtime or network disruption. At the same time, it integrates with IT security architecture, such as SIEMs, user authentication technologies and firewalls, becoming part of end-to-end security systems that can be efficiently managed.
An important element of SCADAguardian’s industrial pedigree is its real-world knowledge of industrial protocols including large-scale installations with multinational clients who require in-depth protocol support. Additionally, it utilizes Deep Packet Inspection to analyze communications at all layers of the OSI model.
The types of cyber incidents SCADAguardian detects include malicious cyber threats such as zero-day attacks with no fixed signature or pattern as well as unintentional cyber incidents such as device-generated traffic storms. Misconfigurations and process anomalies are also quickly identified, and any issues that may impact availability, safety or security are immediately communicated.
SCADAguardian provides real-time querying of any aspect of network or ICS performance, significantly reducing manual data collection work. It reduces troubleshooting and remediation efforts and provides forensic tools that assist with incident analysis.
With deployments that have scaled to hundreds of sites, customers like Enel, a world leading electricity and gas operator, are improving their cyber resiliency. “With Nozomi Networks’ SCADAguardian we can now detect and collect operational and cybersecurity issues in real-time and take corrective action before the threat can strike.” -Head of Cybersecurity Design, Enel