SlideShare a Scribd company logo

Nozomi Networks SCADAguardian - Data-Sheet

Nozomi Networks
Nozomi Networks

Learn what makes SCADAguardian (the Nozomi Networks flagship technology) so unique and powerful. From enterprise IT, to OT, we enable scalable security strategies for ICS.

1 of 4
Download to read offline
Protect your control networks from cyberattacks and operational disruptions with SCADAguardian. It rapidly detects cyber threats and process anomalies, providing unprecedented operational visibility. SCADAguardian automatically discovers the industrial network including its components, connections and topology. It develops security and process profiles and monitors the system in real- time for any changes. SCADAguardian uniquely provides: • Comprehensive, hybrid ICS threat detection that combines behavior-based, rules, signatures and artificial intelligence analysis • Superior incident capture and forensic tools • Easy integration and sharing of ICS and cybersecurity information with IT/OT environments • Enterprise-class scalability when deployed with the related Central Management Console Find out how major customers have improved reliability, safety, cybersecurity and operational efficiency with SCADAguardian. Contact us today at nozominetworks.com/contact Real-time Cybersecurity and Visibility for Industrial Control Networks Data Sheet SCADAguardian™ • Behavior-based cyber threat and process anomaly detection • Rules and signature-based threat detection • Fast and accurate analysis powered by artificial intelligence Hybrid ICS Threat Detection • Dynamic learning minimizes false alerts • Smart grouping of alerts into incidents • Automatic packet capture • TimeMachine™ system snapshots • Real-time ad hoc query tool • Major installations at critical infrastructure, process control and manufacturing organizations Superior Incident and Forensic Tools Industries Operational ICS Visibility • Automated asset inventory • Intuitive network visualization • Real-time network monitoring Rapidly Detect Cyber Threats/Risks and Process Anomalies Significantly Reduce Troubleshooting and Forensic Efforts Easily Integrate and Share ICS Information with IT/OT Environments Automatically Track Industrial Assets and Know Their Cybersecurity Risks Quickly Monitor ICS Networks and Processes with Real-time Insight Readily Implement a Tailored Solution Using Multiple Appliance Models
Sample Deployment Architecture Five Modules Deliver ICS Cybersecurity and Operational Visibility Network Visualization and Modeling ICS Threat and Anomaly Detection Asset Inventory Vulnerability Assessment Dashboards and Reporting • Improve system and process awareness with a visualization interface that shows all assets and links • Rapidly detect cybersecurity threats, risks and process anomalies • Hybrid threat detection combines best-in-class behavior-based anomaly detection with rules-based threat detection (YaraRules, Packet Rules and Assertions) and artificial intelligence analysis • Detect intrusions: Scanning and MITM attacks · Complex or zero-day attacks · Known malware files or packets and more • Detect unauthorized behavior: Remote access · Configurations · Downloads · Controller logic changes · Edits to PLC projects and more • Detect states of concern: Misconfigurations · Weak passwords · Missing updates · Open ports · Communication failures · Malfunctions and more • Auto-discovery of assets saves time and is always up-to-date • Asset views make it easy to visualize, find and drill down on asset information • Automated identification of device vulnerabilities saves time and improves cyber resiliency • Custom dashboards, detailed reports and ad hoc querying provide real-time visibility that improves both cybersecurity and operational efficiency
Value Delivered to Multinational Operators A powerful appliance for very large, demanding scenarios A rack-mounted appliance for medium scenarios A rack-mounted appliance for large scenarios A rack-mounted appliance for small scenarios 1 Rack Unit 1 Rack Unit1 Rack Unit PHYSICAL APPLIANCES 1 Rack Unit 8 54 5 Description Form Factor Monitoring Ports Multiple SCADAguardian™ Appliance Formats to Meet Your Needs Automated ICS Modeling Easy Integration with IT/OT Environments Fast ROI Dynamic Learning Operational Visibility • Includes built-in integration with: ·· SIEMs: HPE ArcSight, IBM QRadar, Splunk, etc. ·· Firewalls: Check Point, Fortinet, Palo Alto Networks, etc. ·· User Authentication: Active Directory, LDAP, etc. • Exchanges data with other IT/ICS applications via an Open API • Includes built-in support for dozens of protocols, extends to others via the Protocol SDK • Exports data for analysis and presentation in other applications • Adapts for each installation with many customizable components • Deploys quickly, with no network changes • Delivers value at numerous customer sites, with centralized monitoring of tens of thousands of industrial devices • Switches from learning to protection mode automatically, starting anomaly detection quickly • Provides real-time network visualization, including topology • Monitors assets, communications and processes • Presents actionable information in dashboards • Allows real-time querying of any aspect of network or ICS performance, reducing spreadsheet work • Installs passively and non-intrusively by connecting to network devices via SPAN or mirror ports • Learns and models large heterogeneous ICS • Identifies all assets and triggers alerts on changes A portable probe for temporary analysis of network trunks A ruggedized, DIN-rail mounted appliance for small scenarios Portable Form FactorDIN Mountable 54 N1000 N750 P500R50NSG-L-250 NSG-L-100NEW NEW (*) Plus other limitations 5,000 4001,000 150 43 x 426 x 356 1.7 x 16.8 x 14 44 x 438 x 300 1.7 x 17.2 x 11.8 43 x 426 x 356 1.7 x 16.8 x 14 44 x 438 x 300 1.7 x 17.2 x 11.8 1 Gbps 200 Mbps500 Mbps 100 Mbps 240 Gb 64 Gb180 Gb 64 Gb 260W 250W260W 250W 10 Kg 8 Kg10 Kg 8 Kg 110-240V AC 110-240V AC110-240V AC 110-240V AC 0 / +45º C 0 / +40º C0 / +45º C 0 / +40º C Yes YesYes Yes Max Protected Nodes HxWxL (mm/in) Max Throughput Storage Max Power Consumption Weight Power Supply Type Temperature Ranges RoHS Conformity 250 (*)200 93 x 202 x 200 3.66 x 7.95 x 7.87 80 x 130 x 146 3.15 x 5.11 x 5.74 200 Mbps50 Mbps 180 Gb64 Gb 100W60W 5 Kg3 Kg 110-240V AC12-36V DC 0 / +50º C-40 / +70º C YesYes
Broad Support for Industrial Control Systems and ICS / IT Protocols Support for additional systems and protocols is constantly being expanded. Visit nozominetworks.com for the latest technical specifications. Further protocols can be quickly added using the Protocol SDK. (*) Limitation on the Number of ports can be present due to the version of the Virtual Infrastructure Firmware V1000 V750 V250 V100 Hyper-V 2012+, KVM 1.2+, VMware ESX 5.x+, XEN 4.4+ Unlimited (*) 4 4 4 5,000 1,000 400 150 300 Mbps 300 Mbps 300 Mbps 300 Mbps 100+ Gb 100+ Gb 100+ Gb 100+ Gb Installation Specs Monitoring Ports Max Protected Nodes Max Throughput Storage VIRTUAL APPLIANCES V50 A powerful appliance for very large, demanding scenarios A virtual appliance for large scenarios A virtual appliance for medium scenarios A virtual appliance for small scenarios Description A virtual appliance for very small scenarios 4 50 300 Mbps 100+ Gb ICS Vendors IT Protocols ICS Protocols ABB, Allen-Bradley/Rockwell, Bristol Babcock, Beckhoff, Emerson, General Electric, Honeywell, IBM, Mitsubishi, Motorola, Rockwell Automation, Schneider Electric, Siemens, Yokogawa Aspentech Cim/IO, BACNet, Beckhoff ADS, BSAP IP, CEI 79-5/2-3, COTP, DNP3, Enron Modbus, EtherCAT, EtherNet/IP - CIP, Foundation Fieldbus, Generic MMS, GOOSE, Honeywell, IEC 60870-5-7 (IEC 62351-3 + IEC 62351-5), IEC 60870-5-104, IEC-61850 (MMS, GOOSE, SV), IEC DLMS/COSEM, ICCP, Modbus/TCP, MQTT, OPC, PI-Connect, Profinet/DCP, Profinet/I-O CM, Profinet/RT, Sercos III, Siemens S7, Vnet/IP ARP, BROWSER, Bittorrent, CDP, DCE-RPC, DHCP, DNS, DRDA (IBM DB2), Dropbox, eDonkey (eMule), FTP, FTPS, GVCP, HTTP, HTTPS, ICMP/PING, IGMP, IKE, IMAP, IMAPS, ISO-TSAP/COTP, Kerberos, KMS, LDAP, LDAPS, LLDP, LLMNR, MDNS, MS SQL Server, MySQL, NetBIOS, NTP, OSPF, POP3, PTPv2, RDP, STP, SSDP, RTCP, RTP, SSH, SNMP, SMB, SMTP, STP, Syslog, Telnet, VNC SCADAguardian is a physical or virtual appliance that provides real-time cybersecurity and operational visibility of industrial control networks. The Central Management Console (CMC) aggregates data from multiple sites, providing centralized and remote cybersecurity management. Together they deliver comprehensive ICS cyber resilience and reliability. Nozomi Networks Products About Nozomi Networks © 2017 Nozomi Networks, Inc. All Rights Reserved. DS-SG-8.5x11-004 www.nozominetworks.com @nozominetworks Nozomi Networks is revolutionizing Industrial Control System (ICS) cybersecurity with the most comprehensive platform to deliver real-time cybersecurity and operational visibility. Since 2013 the company has innovated the use of machine learning and artificial intelligence to secure critical infrastructure operations. Amid escalating threats targeting ICS, Nozomi Networks delivers one solution with real-time ICS monitoring, hybrid threat detection, process anomaly detection, industrial network visualization, asset inventory, and vulnerability assessment. Deployed in the world’s largest industrial installations, customers benefit from advanced cybersecurity, improved operational reliability and enhanced IT/OT integration. Nozomi Networks is headquartered in San Francisco, California. Visit www.nozominetworks.com

More Related Content

What's hot

Security Operation Center - Design & Build
Security Operation Center - Design & BuildSecurity Operation Center - Design & Build
Security Operation Center - Design & Build
Sameer Paradia
 
Cyber Security Awareness Session for Executives and Non-IT professionals
Cyber Security Awareness Session for Executives and Non-IT professionalsCyber Security Awareness Session for Executives and Non-IT professionals
Cyber Security Awareness Session for Executives and Non-IT professionals
Krishna Srikanth Manda
 
Secure Access – Anywhere by Prisma, PaloAlto
Secure Access – Anywhere by Prisma, PaloAltoSecure Access – Anywhere by Prisma, PaloAlto
Secure Access – Anywhere by Prisma, PaloAlto
Prime Infoserv
 
DTS Solution - Building a SOC (Security Operations Center)
DTS Solution - Building a SOC (Security Operations Center)DTS Solution - Building a SOC (Security Operations Center)
DTS Solution - Building a SOC (Security Operations Center)
Shah Sheikh
 
cyber-security-reference-architecture
cyber-security-reference-architecturecyber-security-reference-architecture
cyber-security-reference-architecture
Birendra Negi ☁️
 
Microsoft Defender and Azure Sentinel
Microsoft Defender and Azure SentinelMicrosoft Defender and Azure Sentinel
Microsoft Defender and Azure Sentinel
David J Rosenthal
 
Active Directory in ICS: Lessons Learned From The Field
Active Directory in ICS: Lessons Learned From The FieldActive Directory in ICS: Lessons Learned From The Field
Active Directory in ICS: Lessons Learned From The Field
Digital Bond
 
Zero Trust Model Presentation
Zero Trust Model PresentationZero Trust Model Presentation
Zero Trust Model Presentation
Gowdhaman Jothilingam
 
Zero Trust
Zero TrustZero Trust
Zero Trust
Boaz Shunami
 
SOC and SIEM.pptx
SOC and SIEM.pptxSOC and SIEM.pptx
SOC and SIEM.pptx
SandeshUprety4
 
Dragos S4x20: How to Build an OT Security Operations Center
Dragos S4x20: How to Build an OT Security Operations CenterDragos S4x20: How to Build an OT Security Operations Center
Dragos S4x20: How to Build an OT Security Operations Center
Dragos, Inc.
 
SABSA overview
SABSA overviewSABSA overview
SABSA overview
SABSAcourses
 
Network Architecture Review Checklist
Network Architecture Review ChecklistNetwork Architecture Review Checklist
Network Architecture Review Checklist
Eberly Wilson
 
Building Security Operation Center
Building Security Operation CenterBuilding Security Operation Center
Building Security Operation Center
S.E. CTS CERT-GOV-MD
 
Data loss prevention (dlp)
Data loss prevention (dlp)Data loss prevention (dlp)
Data loss prevention (dlp)
Hussein Al-Sanabani
 
OT Security - h-c0n 2020
OT Security - h-c0n 2020OT Security - h-c0n 2020
OT Security - h-c0n 2020
Jose Palanco
 
Proactive Threat Hunting: Game-Changing Endpoint Protection Beyond Alerting
Proactive Threat Hunting: Game-Changing Endpoint Protection Beyond AlertingProactive Threat Hunting: Game-Changing Endpoint Protection Beyond Alerting
Proactive Threat Hunting: Game-Changing Endpoint Protection Beyond Alerting
CrowdStrike
 
CyberArk Master Policy Intro
CyberArk Master Policy IntroCyberArk Master Policy Intro
CyberArk Master Policy Intro
CyberArk
 
Succeeding with Secure Access Service Edge (SASE)
Succeeding with Secure Access Service Edge (SASE)Succeeding with Secure Access Service Edge (SASE)
Succeeding with Secure Access Service Edge (SASE)
Cloudflare
 
Zero trust Architecture
Zero trust Architecture Zero trust Architecture
Zero trust Architecture
AddWeb Solution Pvt. Ltd.
 

What's hot (20)

Security Operation Center - Design & Build
Security Operation Center - Design & BuildSecurity Operation Center - Design & Build
Security Operation Center - Design & Build
 
Cyber Security Awareness Session for Executives and Non-IT professionals
Cyber Security Awareness Session for Executives and Non-IT professionalsCyber Security Awareness Session for Executives and Non-IT professionals
Cyber Security Awareness Session for Executives and Non-IT professionals
 
Secure Access – Anywhere by Prisma, PaloAlto
Secure Access – Anywhere by Prisma, PaloAltoSecure Access – Anywhere by Prisma, PaloAlto
Secure Access – Anywhere by Prisma, PaloAlto
 
DTS Solution - Building a SOC (Security Operations Center)
DTS Solution - Building a SOC (Security Operations Center)DTS Solution - Building a SOC (Security Operations Center)
DTS Solution - Building a SOC (Security Operations Center)
 
cyber-security-reference-architecture
cyber-security-reference-architecturecyber-security-reference-architecture
cyber-security-reference-architecture
 
Microsoft Defender and Azure Sentinel
Microsoft Defender and Azure SentinelMicrosoft Defender and Azure Sentinel
Microsoft Defender and Azure Sentinel
 
Active Directory in ICS: Lessons Learned From The Field
Active Directory in ICS: Lessons Learned From The FieldActive Directory in ICS: Lessons Learned From The Field
Active Directory in ICS: Lessons Learned From The Field
 
Zero Trust Model Presentation
Zero Trust Model PresentationZero Trust Model Presentation
Zero Trust Model Presentation
 
Zero Trust
Zero TrustZero Trust
Zero Trust
 
SOC and SIEM.pptx
SOC and SIEM.pptxSOC and SIEM.pptx
SOC and SIEM.pptx
 
Dragos S4x20: How to Build an OT Security Operations Center
Dragos S4x20: How to Build an OT Security Operations CenterDragos S4x20: How to Build an OT Security Operations Center
Dragos S4x20: How to Build an OT Security Operations Center
 
SABSA overview
SABSA overviewSABSA overview
SABSA overview
 
Network Architecture Review Checklist
Network Architecture Review ChecklistNetwork Architecture Review Checklist
Network Architecture Review Checklist
 
Building Security Operation Center
Building Security Operation CenterBuilding Security Operation Center
Building Security Operation Center
 
Data loss prevention (dlp)
Data loss prevention (dlp)Data loss prevention (dlp)
Data loss prevention (dlp)
 
OT Security - h-c0n 2020
OT Security - h-c0n 2020OT Security - h-c0n 2020
OT Security - h-c0n 2020
 
Proactive Threat Hunting: Game-Changing Endpoint Protection Beyond Alerting
Proactive Threat Hunting: Game-Changing Endpoint Protection Beyond AlertingProactive Threat Hunting: Game-Changing Endpoint Protection Beyond Alerting
Proactive Threat Hunting: Game-Changing Endpoint Protection Beyond Alerting
 
CyberArk Master Policy Intro
CyberArk Master Policy IntroCyberArk Master Policy Intro
CyberArk Master Policy Intro
 
Succeeding with Secure Access Service Edge (SASE)
Succeeding with Secure Access Service Edge (SASE)Succeeding with Secure Access Service Edge (SASE)
Succeeding with Secure Access Service Edge (SASE)
 
Zero trust Architecture
Zero trust Architecture Zero trust Architecture
Zero trust Architecture
 

Similar to Nozomi Networks SCADAguardian - Data-Sheet

CyberSecurity Best Practices for the IIoT
CyberSecurity Best Practices for the IIoTCyberSecurity Best Practices for the IIoT
CyberSecurity Best Practices for the IIoT
Creekside Marketing Group, LLC
 
Data center webinar_v2_1
Data center webinar_v2_1Data center webinar_v2_1
Data center webinar_v2_1
Lancope, Inc.
 
Secure IOT Gateway
Secure IOT GatewaySecure IOT Gateway
Secure IOT Gateway
LF Events
 
Cisco connect winnipeg 2018 a look at network assurance in dna center
Cisco connect winnipeg 2018 a look at network assurance in dna centerCisco connect winnipeg 2018 a look at network assurance in dna center
Cisco connect winnipeg 2018 a look at network assurance in dna center
Cisco Canada
 
ICS Security 101 by Sandeep Singh
ICS Security 101 by Sandeep SinghICS Security 101 by Sandeep Singh
ICS Security 101 by Sandeep Singh
OWASP Delhi
 
Stop Wasting Energy on M2M
Stop Wasting Energy on M2MStop Wasting Energy on M2M
Stop Wasting Energy on M2M
Eurotech
 
Java in the Air: A Case Study for Java-based Environment Monitoring Stations
Java in the Air: A Case Study for Java-based Environment Monitoring StationsJava in the Air: A Case Study for Java-based Environment Monitoring Stations
Java in the Air: A Case Study for Java-based Environment Monitoring Stations
Eurotech
 
VMworld 2013: VMware Compliance Reference Architecture Framework Overview
VMworld 2013: VMware Compliance Reference Architecture Framework Overview VMworld 2013: VMware Compliance Reference Architecture Framework Overview
VMworld 2013: VMware Compliance Reference Architecture Framework Overview
VMworld
 
People Counting: Internet of Things in Motion at JavaOne 2013
People Counting: Internet of Things in Motion at JavaOne 2013People Counting: Internet of Things in Motion at JavaOne 2013
People Counting: Internet of Things in Motion at JavaOne 2013
Eurotech
 
APT iTest and Velocity 7.3 Use Cases.pptx
APT iTest and Velocity 7.3 Use Cases.pptxAPT iTest and Velocity 7.3 Use Cases.pptx
APT iTest and Velocity 7.3 Use Cases.pptx
RajeshParmar99
 
ADAM-3600 Sales kit_WATER.pptx
ADAM-3600 Sales kit_WATER.pptxADAM-3600 Sales kit_WATER.pptx
ADAM-3600 Sales kit_WATER.pptx
CADALTAINGENIERIASRL
 
PT-DTS SCADA Security using MaxPatrol
PT-DTS SCADA Security using MaxPatrolPT-DTS SCADA Security using MaxPatrol
PT-DTS SCADA Security using MaxPatrol
Shah Sheikh
 
Smart Networks for the Industrial Internet of Things
Smart Networks for the Industrial Internet of ThingsSmart Networks for the Industrial Internet of Things
Smart Networks for the Industrial Internet of Things
Creekside Marketing Group, LLC
 
Training manual on scada
Training manual on scadaTraining manual on scada
Training manual on scada
bhavuksharma10
 
Industrial Control Systems Security - A Perspective on Product Design (Sequi,...
Industrial Control Systems Security - A Perspective on Product Design (Sequi,...Industrial Control Systems Security - A Perspective on Product Design (Sequi,...
Industrial Control Systems Security - A Perspective on Product Design (Sequi,...
sequi_inc
 
Removing Security Roadblocks to IoT Deployment Success
Removing Security Roadblocks to IoT Deployment SuccessRemoving Security Roadblocks to IoT Deployment Success
Removing Security Roadblocks to IoT Deployment Success
Microsoft Tech Community
 
Acceleration_and_Security_draft_v2
Acceleration_and_Security_draft_v2Acceleration_and_Security_draft_v2
Acceleration_and_Security_draft_v2
Srinivasa Addepalli
 
Cisco Connect 2018 Thailand - Security automation and programmability mr. kho...
Cisco Connect 2018 Thailand - Security automation and programmability mr. kho...Cisco Connect 2018 Thailand - Security automation and programmability mr. kho...
Cisco Connect 2018 Thailand - Security automation and programmability mr. kho...
NetworkCollaborators
 
Cisco Connect 2018 Thailand - Telco service provider network analytics
Cisco Connect 2018 Thailand - Telco service provider network analytics Cisco Connect 2018 Thailand - Telco service provider network analytics
Cisco Connect 2018 Thailand - Telco service provider network analytics
NetworkCollaborators
 
[Cisco Connect 2018 - Vietnam] Satit adirek hn under_the_hood_sdwan deep_dive
[Cisco Connect 2018 - Vietnam] Satit adirek hn under_the_hood_sdwan deep_dive[Cisco Connect 2018 - Vietnam] Satit adirek hn under_the_hood_sdwan deep_dive
[Cisco Connect 2018 - Vietnam] Satit adirek hn under_the_hood_sdwan deep_dive
Nur Shiqim Chok
 

Similar to Nozomi Networks SCADAguardian - Data-Sheet (20)

CyberSecurity Best Practices for the IIoT
CyberSecurity Best Practices for the IIoTCyberSecurity Best Practices for the IIoT
CyberSecurity Best Practices for the IIoT
 
Data center webinar_v2_1
Data center webinar_v2_1Data center webinar_v2_1
Data center webinar_v2_1
 
Secure IOT Gateway
Secure IOT GatewaySecure IOT Gateway
Secure IOT Gateway
 
Cisco connect winnipeg 2018 a look at network assurance in dna center
Cisco connect winnipeg 2018 a look at network assurance in dna centerCisco connect winnipeg 2018 a look at network assurance in dna center
Cisco connect winnipeg 2018 a look at network assurance in dna center
 
ICS Security 101 by Sandeep Singh
ICS Security 101 by Sandeep SinghICS Security 101 by Sandeep Singh
ICS Security 101 by Sandeep Singh
 
Stop Wasting Energy on M2M
Stop Wasting Energy on M2MStop Wasting Energy on M2M
Stop Wasting Energy on M2M
 
Java in the Air: A Case Study for Java-based Environment Monitoring Stations
Java in the Air: A Case Study for Java-based Environment Monitoring StationsJava in the Air: A Case Study for Java-based Environment Monitoring Stations
Java in the Air: A Case Study for Java-based Environment Monitoring Stations
 
VMworld 2013: VMware Compliance Reference Architecture Framework Overview
VMworld 2013: VMware Compliance Reference Architecture Framework Overview VMworld 2013: VMware Compliance Reference Architecture Framework Overview
VMworld 2013: VMware Compliance Reference Architecture Framework Overview
 
People Counting: Internet of Things in Motion at JavaOne 2013
People Counting: Internet of Things in Motion at JavaOne 2013People Counting: Internet of Things in Motion at JavaOne 2013
People Counting: Internet of Things in Motion at JavaOne 2013
 
APT iTest and Velocity 7.3 Use Cases.pptx
APT iTest and Velocity 7.3 Use Cases.pptxAPT iTest and Velocity 7.3 Use Cases.pptx
APT iTest and Velocity 7.3 Use Cases.pptx
 
ADAM-3600 Sales kit_WATER.pptx
ADAM-3600 Sales kit_WATER.pptxADAM-3600 Sales kit_WATER.pptx
ADAM-3600 Sales kit_WATER.pptx
 
PT-DTS SCADA Security using MaxPatrol
PT-DTS SCADA Security using MaxPatrolPT-DTS SCADA Security using MaxPatrol
PT-DTS SCADA Security using MaxPatrol
 
Smart Networks for the Industrial Internet of Things
Smart Networks for the Industrial Internet of ThingsSmart Networks for the Industrial Internet of Things
Smart Networks for the Industrial Internet of Things
 
Training manual on scada
Training manual on scadaTraining manual on scada
Training manual on scada
 
Industrial Control Systems Security - A Perspective on Product Design (Sequi,...
Industrial Control Systems Security - A Perspective on Product Design (Sequi,...Industrial Control Systems Security - A Perspective on Product Design (Sequi,...
Industrial Control Systems Security - A Perspective on Product Design (Sequi,...
 
Removing Security Roadblocks to IoT Deployment Success
Removing Security Roadblocks to IoT Deployment SuccessRemoving Security Roadblocks to IoT Deployment Success
Removing Security Roadblocks to IoT Deployment Success
 
Acceleration_and_Security_draft_v2
Acceleration_and_Security_draft_v2Acceleration_and_Security_draft_v2
Acceleration_and_Security_draft_v2
 
Cisco Connect 2018 Thailand - Security automation and programmability mr. kho...
Cisco Connect 2018 Thailand - Security automation and programmability mr. kho...Cisco Connect 2018 Thailand - Security automation and programmability mr. kho...
Cisco Connect 2018 Thailand - Security automation and programmability mr. kho...
 
Cisco Connect 2018 Thailand - Telco service provider network analytics
Cisco Connect 2018 Thailand - Telco service provider network analytics Cisco Connect 2018 Thailand - Telco service provider network analytics
Cisco Connect 2018 Thailand - Telco service provider network analytics
 
[Cisco Connect 2018 - Vietnam] Satit adirek hn under_the_hood_sdwan deep_dive
[Cisco Connect 2018 - Vietnam] Satit adirek hn under_the_hood_sdwan deep_dive[Cisco Connect 2018 - Vietnam] Satit adirek hn under_the_hood_sdwan deep_dive
[Cisco Connect 2018 - Vietnam] Satit adirek hn under_the_hood_sdwan deep_dive
 

Recently uploaded

BITCOIN HEIST RANSOMEWARE ATTACK PREDICTION
BITCOIN HEIST RANSOMEWARE ATTACK PREDICTIONBITCOIN HEIST RANSOMEWARE ATTACK PREDICTION
BITCOIN HEIST RANSOMEWARE ATTACK PREDICTION
ssuser2b426d1
 
A Comparative Analysis of Functional and Non-Functional Testing.pdf
A Comparative Analysis of Functional and Non-Functional Testing.pdfA Comparative Analysis of Functional and Non-Functional Testing.pdf
A Comparative Analysis of Functional and Non-Functional Testing.pdf
kalichargn70th171
 
dachnug51 - All you ever wanted to know about domino licensing.pdf
dachnug51 - All you ever wanted to know about domino licensing.pdfdachnug51 - All you ever wanted to know about domino licensing.pdf
dachnug51 - All you ever wanted to know about domino licensing.pdf
DNUG e.V.
 
dachnug51 - Whats new in domino 14 .pdf
dachnug51 - Whats new in domino 14 .pdfdachnug51 - Whats new in domino 14 .pdf
dachnug51 - Whats new in domino 14 .pdf
DNUG e.V.
 
active-directory-auditing-solution (2).pptx
active-directory-auditing-solution (2).pptxactive-directory-auditing-solution (2).pptx
active-directory-auditing-solution (2).pptx
sudsdeep
 
Wired_2.0_Create_AmsterdamJUG_09072024.pptx
Wired_2.0_Create_AmsterdamJUG_09072024.pptxWired_2.0_Create_AmsterdamJUG_09072024.pptx
Wired_2.0_Create_AmsterdamJUG_09072024.pptx
SimonedeGijt
 
ThaiPy meetup - Indexes and Django
ThaiPy meetup - Indexes and DjangoThaiPy meetup - Indexes and Django
ThaiPy meetup - Indexes and Django
akshesh doshi
 
AWS Cloud Practitioner Essentials (Second Edition) (Arabic) Course Introducti...
AWS Cloud Practitioner Essentials (Second Edition) (Arabic) Course Introducti...AWS Cloud Practitioner Essentials (Second Edition) (Arabic) Course Introducti...
AWS Cloud Practitioner Essentials (Second Edition) (Arabic) Course Introducti...
karim wahed
 
Migrate your Infrastructure to the AWS Cloud
Migrate your Infrastructure to the AWS CloudMigrate your Infrastructure to the AWS Cloud
Migrate your Infrastructure to the AWS Cloud
Ortus Solutions, Corp
 
COMPSAC 2024 D&I Panel: Charting a Course for Equity: Strategies for Overcomi...
COMPSAC 2024 D&I Panel: Charting a Course for Equity: Strategies for Overcomi...COMPSAC 2024 D&I Panel: Charting a Course for Equity: Strategies for Overcomi...
COMPSAC 2024 D&I Panel: Charting a Course for Equity: Strategies for Overcomi...
Hironori Washizaki
 
一比一原版英国牛津大学毕业证(oxon毕业证书)如何办理
一比一原版英国牛津大学毕业证(oxon毕业证书)如何办理一比一原版英国牛津大学毕业证(oxon毕业证书)如何办理
一比一原版英国牛津大学毕业证(oxon毕业证书)如何办理
avufu
 
Responsibilities of Fleet Managers and How TrackoBit Can Assist.pdf
Responsibilities of Fleet Managers and How TrackoBit Can Assist.pdfResponsibilities of Fleet Managers and How TrackoBit Can Assist.pdf
Responsibilities of Fleet Managers and How TrackoBit Can Assist.pdf
Trackobit
 
Intro to Amazon Web Services (AWS) and Gen AI
Intro to Amazon Web Services (AWS) and Gen AIIntro to Amazon Web Services (AWS) and Gen AI
Intro to Amazon Web Services (AWS) and Gen AI
Ortus Solutions, Corp
 
Shivam Pandit working on Php Web Developer.
Shivam Pandit working on Php Web Developer.Shivam Pandit working on Php Web Developer.
Shivam Pandit working on Php Web Developer.
shivamt017
 
Cultural Shifts: Embracing DevOps for Organizational Transformation
Cultural Shifts: Embracing DevOps for Organizational TransformationCultural Shifts: Embracing DevOps for Organizational Transformation
Cultural Shifts: Embracing DevOps for Organizational Transformation
Mindfire Solution
 
WEBINAR SLIDES: CCX for Cloud Service Providers
WEBINAR SLIDES: CCX for Cloud Service ProvidersWEBINAR SLIDES: CCX for Cloud Service Providers
WEBINAR SLIDES: CCX for Cloud Service Providers
Severalnines
 
React vs Next js: Which is Better for Web Development? - Semiosis Software Pr...
React vs Next js: Which is Better for Web Development? - Semiosis Software Pr...React vs Next js: Which is Better for Web Development? - Semiosis Software Pr...
React vs Next js: Which is Better for Web Development? - Semiosis Software Pr...
Semiosis Software Private Limited
 
NYC 26-Jun-2024 Combined Presentations.pdf
NYC 26-Jun-2024 Combined Presentations.pdfNYC 26-Jun-2024 Combined Presentations.pdf
NYC 26-Jun-2024 Combined Presentations.pdf
AUGNYC
 
dachnug51 - HCL Sametime 12 as a Software Appliance.pdf
dachnug51 - HCL Sametime 12 as a Software Appliance.pdfdachnug51 - HCL Sametime 12 as a Software Appliance.pdf
dachnug51 - HCL Sametime 12 as a Software Appliance.pdf
DNUG e.V.
 
CViewSurvey Digitech Pvt Ltd that works on a proven C.A.A.G. model.
CViewSurvey Digitech Pvt Ltd that works on a proven C.A.A.G. model.CViewSurvey Digitech Pvt Ltd that works on a proven C.A.A.G. model.
CViewSurvey Digitech Pvt Ltd that works on a proven C.A.A.G. model.
bhatinidhi2001
 

Recently uploaded (20)

BITCOIN HEIST RANSOMEWARE ATTACK PREDICTION
BITCOIN HEIST RANSOMEWARE ATTACK PREDICTIONBITCOIN HEIST RANSOMEWARE ATTACK PREDICTION
BITCOIN HEIST RANSOMEWARE ATTACK PREDICTION
 
A Comparative Analysis of Functional and Non-Functional Testing.pdf
A Comparative Analysis of Functional and Non-Functional Testing.pdfA Comparative Analysis of Functional and Non-Functional Testing.pdf
A Comparative Analysis of Functional and Non-Functional Testing.pdf
 
dachnug51 - All you ever wanted to know about domino licensing.pdf
dachnug51 - All you ever wanted to know about domino licensing.pdfdachnug51 - All you ever wanted to know about domino licensing.pdf
dachnug51 - All you ever wanted to know about domino licensing.pdf
 
dachnug51 - Whats new in domino 14 .pdf
dachnug51 - Whats new in domino 14 .pdfdachnug51 - Whats new in domino 14 .pdf
dachnug51 - Whats new in domino 14 .pdf
 
active-directory-auditing-solution (2).pptx
active-directory-auditing-solution (2).pptxactive-directory-auditing-solution (2).pptx
active-directory-auditing-solution (2).pptx
 
Wired_2.0_Create_AmsterdamJUG_09072024.pptx
Wired_2.0_Create_AmsterdamJUG_09072024.pptxWired_2.0_Create_AmsterdamJUG_09072024.pptx
Wired_2.0_Create_AmsterdamJUG_09072024.pptx
 
ThaiPy meetup - Indexes and Django
ThaiPy meetup - Indexes and DjangoThaiPy meetup - Indexes and Django
ThaiPy meetup - Indexes and Django
 
AWS Cloud Practitioner Essentials (Second Edition) (Arabic) Course Introducti...
AWS Cloud Practitioner Essentials (Second Edition) (Arabic) Course Introducti...AWS Cloud Practitioner Essentials (Second Edition) (Arabic) Course Introducti...
AWS Cloud Practitioner Essentials (Second Edition) (Arabic) Course Introducti...
 
Migrate your Infrastructure to the AWS Cloud
Migrate your Infrastructure to the AWS CloudMigrate your Infrastructure to the AWS Cloud
Migrate your Infrastructure to the AWS Cloud
 
COMPSAC 2024 D&I Panel: Charting a Course for Equity: Strategies for Overcomi...
COMPSAC 2024 D&I Panel: Charting a Course for Equity: Strategies for Overcomi...COMPSAC 2024 D&I Panel: Charting a Course for Equity: Strategies for Overcomi...
COMPSAC 2024 D&I Panel: Charting a Course for Equity: Strategies for Overcomi...
 
一比一原版英国牛津大学毕业证(oxon毕业证书)如何办理
一比一原版英国牛津大学毕业证(oxon毕业证书)如何办理一比一原版英国牛津大学毕业证(oxon毕业证书)如何办理
一比一原版英国牛津大学毕业证(oxon毕业证书)如何办理
 
Responsibilities of Fleet Managers and How TrackoBit Can Assist.pdf
Responsibilities of Fleet Managers and How TrackoBit Can Assist.pdfResponsibilities of Fleet Managers and How TrackoBit Can Assist.pdf
Responsibilities of Fleet Managers and How TrackoBit Can Assist.pdf
 
Intro to Amazon Web Services (AWS) and Gen AI
Intro to Amazon Web Services (AWS) and Gen AIIntro to Amazon Web Services (AWS) and Gen AI
Intro to Amazon Web Services (AWS) and Gen AI
 
Shivam Pandit working on Php Web Developer.
Shivam Pandit working on Php Web Developer.Shivam Pandit working on Php Web Developer.
Shivam Pandit working on Php Web Developer.
 
Cultural Shifts: Embracing DevOps for Organizational Transformation
Cultural Shifts: Embracing DevOps for Organizational TransformationCultural Shifts: Embracing DevOps for Organizational Transformation
Cultural Shifts: Embracing DevOps for Organizational Transformation
 
WEBINAR SLIDES: CCX for Cloud Service Providers
WEBINAR SLIDES: CCX for Cloud Service ProvidersWEBINAR SLIDES: CCX for Cloud Service Providers
WEBINAR SLIDES: CCX for Cloud Service Providers
 
React vs Next js: Which is Better for Web Development? - Semiosis Software Pr...
React vs Next js: Which is Better for Web Development? - Semiosis Software Pr...React vs Next js: Which is Better for Web Development? - Semiosis Software Pr...
React vs Next js: Which is Better for Web Development? - Semiosis Software Pr...
 
NYC 26-Jun-2024 Combined Presentations.pdf
NYC 26-Jun-2024 Combined Presentations.pdfNYC 26-Jun-2024 Combined Presentations.pdf
NYC 26-Jun-2024 Combined Presentations.pdf
 
dachnug51 - HCL Sametime 12 as a Software Appliance.pdf
dachnug51 - HCL Sametime 12 as a Software Appliance.pdfdachnug51 - HCL Sametime 12 as a Software Appliance.pdf
dachnug51 - HCL Sametime 12 as a Software Appliance.pdf
 
CViewSurvey Digitech Pvt Ltd that works on a proven C.A.A.G. model.
CViewSurvey Digitech Pvt Ltd that works on a proven C.A.A.G. model.CViewSurvey Digitech Pvt Ltd that works on a proven C.A.A.G. model.
CViewSurvey Digitech Pvt Ltd that works on a proven C.A.A.G. model.
 

Nozomi Networks SCADAguardian - Data-Sheet

  • 1. Protect your control networks from cyberattacks and operational disruptions with SCADAguardian. It rapidly detects cyber threats and process anomalies, providing unprecedented operational visibility. SCADAguardian automatically discovers the industrial network including its components, connections and topology. It develops security and process profiles and monitors the system in real- time for any changes. SCADAguardian uniquely provides: • Comprehensive, hybrid ICS threat detection that combines behavior-based, rules, signatures and artificial intelligence analysis • Superior incident capture and forensic tools • Easy integration and sharing of ICS and cybersecurity information with IT/OT environments • Enterprise-class scalability when deployed with the related Central Management Console Find out how major customers have improved reliability, safety, cybersecurity and operational efficiency with SCADAguardian. Contact us today at nozominetworks.com/contact Real-time Cybersecurity and Visibility for Industrial Control Networks Data Sheet SCADAguardian™ • Behavior-based cyber threat and process anomaly detection • Rules and signature-based threat detection • Fast and accurate analysis powered by artificial intelligence Hybrid ICS Threat Detection • Dynamic learning minimizes false alerts • Smart grouping of alerts into incidents • Automatic packet capture • TimeMachine™ system snapshots • Real-time ad hoc query tool • Major installations at critical infrastructure, process control and manufacturing organizations Superior Incident and Forensic Tools Industries Operational ICS Visibility • Automated asset inventory • Intuitive network visualization • Real-time network monitoring Rapidly Detect Cyber Threats/Risks and Process Anomalies Significantly Reduce Troubleshooting and Forensic Efforts Easily Integrate and Share ICS Information with IT/OT Environments Automatically Track Industrial Assets and Know Their Cybersecurity Risks Quickly Monitor ICS Networks and Processes with Real-time Insight Readily Implement a Tailored Solution Using Multiple Appliance Models
  • 2. Sample Deployment Architecture Five Modules Deliver ICS Cybersecurity and Operational Visibility Network Visualization and Modeling ICS Threat and Anomaly Detection Asset Inventory Vulnerability Assessment Dashboards and Reporting • Improve system and process awareness with a visualization interface that shows all assets and links • Rapidly detect cybersecurity threats, risks and process anomalies • Hybrid threat detection combines best-in-class behavior-based anomaly detection with rules-based threat detection (YaraRules, Packet Rules and Assertions) and artificial intelligence analysis • Detect intrusions: Scanning and MITM attacks · Complex or zero-day attacks · Known malware files or packets and more • Detect unauthorized behavior: Remote access · Configurations · Downloads · Controller logic changes · Edits to PLC projects and more • Detect states of concern: Misconfigurations · Weak passwords · Missing updates · Open ports · Communication failures · Malfunctions and more • Auto-discovery of assets saves time and is always up-to-date • Asset views make it easy to visualize, find and drill down on asset information • Automated identification of device vulnerabilities saves time and improves cyber resiliency • Custom dashboards, detailed reports and ad hoc querying provide real-time visibility that improves both cybersecurity and operational efficiency
  • 3. Value Delivered to Multinational Operators A powerful appliance for very large, demanding scenarios A rack-mounted appliance for medium scenarios A rack-mounted appliance for large scenarios A rack-mounted appliance for small scenarios 1 Rack Unit 1 Rack Unit1 Rack Unit PHYSICAL APPLIANCES 1 Rack Unit 8 54 5 Description Form Factor Monitoring Ports Multiple SCADAguardian™ Appliance Formats to Meet Your Needs Automated ICS Modeling Easy Integration with IT/OT Environments Fast ROI Dynamic Learning Operational Visibility • Includes built-in integration with: ·· SIEMs: HPE ArcSight, IBM QRadar, Splunk, etc. ·· Firewalls: Check Point, Fortinet, Palo Alto Networks, etc. ·· User Authentication: Active Directory, LDAP, etc. • Exchanges data with other IT/ICS applications via an Open API • Includes built-in support for dozens of protocols, extends to others via the Protocol SDK • Exports data for analysis and presentation in other applications • Adapts for each installation with many customizable components • Deploys quickly, with no network changes • Delivers value at numerous customer sites, with centralized monitoring of tens of thousands of industrial devices • Switches from learning to protection mode automatically, starting anomaly detection quickly • Provides real-time network visualization, including topology • Monitors assets, communications and processes • Presents actionable information in dashboards • Allows real-time querying of any aspect of network or ICS performance, reducing spreadsheet work • Installs passively and non-intrusively by connecting to network devices via SPAN or mirror ports • Learns and models large heterogeneous ICS • Identifies all assets and triggers alerts on changes A portable probe for temporary analysis of network trunks A ruggedized, DIN-rail mounted appliance for small scenarios Portable Form FactorDIN Mountable 54 N1000 N750 P500R50NSG-L-250 NSG-L-100NEW NEW (*) Plus other limitations 5,000 4001,000 150 43 x 426 x 356 1.7 x 16.8 x 14 44 x 438 x 300 1.7 x 17.2 x 11.8 43 x 426 x 356 1.7 x 16.8 x 14 44 x 438 x 300 1.7 x 17.2 x 11.8 1 Gbps 200 Mbps500 Mbps 100 Mbps 240 Gb 64 Gb180 Gb 64 Gb 260W 250W260W 250W 10 Kg 8 Kg10 Kg 8 Kg 110-240V AC 110-240V AC110-240V AC 110-240V AC 0 / +45º C 0 / +40º C0 / +45º C 0 / +40º C Yes YesYes Yes Max Protected Nodes HxWxL (mm/in) Max Throughput Storage Max Power Consumption Weight Power Supply Type Temperature Ranges RoHS Conformity 250 (*)200 93 x 202 x 200 3.66 x 7.95 x 7.87 80 x 130 x 146 3.15 x 5.11 x 5.74 200 Mbps50 Mbps 180 Gb64 Gb 100W60W 5 Kg3 Kg 110-240V AC12-36V DC 0 / +50º C-40 / +70º C YesYes
  • 4. Broad Support for Industrial Control Systems and ICS / IT Protocols Support for additional systems and protocols is constantly being expanded. Visit nozominetworks.com for the latest technical specifications. Further protocols can be quickly added using the Protocol SDK. (*) Limitation on the Number of ports can be present due to the version of the Virtual Infrastructure Firmware V1000 V750 V250 V100 Hyper-V 2012+, KVM 1.2+, VMware ESX 5.x+, XEN 4.4+ Unlimited (*) 4 4 4 5,000 1,000 400 150 300 Mbps 300 Mbps 300 Mbps 300 Mbps 100+ Gb 100+ Gb 100+ Gb 100+ Gb Installation Specs Monitoring Ports Max Protected Nodes Max Throughput Storage VIRTUAL APPLIANCES V50 A powerful appliance for very large, demanding scenarios A virtual appliance for large scenarios A virtual appliance for medium scenarios A virtual appliance for small scenarios Description A virtual appliance for very small scenarios 4 50 300 Mbps 100+ Gb ICS Vendors IT Protocols ICS Protocols ABB, Allen-Bradley/Rockwell, Bristol Babcock, Beckhoff, Emerson, General Electric, Honeywell, IBM, Mitsubishi, Motorola, Rockwell Automation, Schneider Electric, Siemens, Yokogawa Aspentech Cim/IO, BACNet, Beckhoff ADS, BSAP IP, CEI 79-5/2-3, COTP, DNP3, Enron Modbus, EtherCAT, EtherNet/IP - CIP, Foundation Fieldbus, Generic MMS, GOOSE, Honeywell, IEC 60870-5-7 (IEC 62351-3 + IEC 62351-5), IEC 60870-5-104, IEC-61850 (MMS, GOOSE, SV), IEC DLMS/COSEM, ICCP, Modbus/TCP, MQTT, OPC, PI-Connect, Profinet/DCP, Profinet/I-O CM, Profinet/RT, Sercos III, Siemens S7, Vnet/IP ARP, BROWSER, Bittorrent, CDP, DCE-RPC, DHCP, DNS, DRDA (IBM DB2), Dropbox, eDonkey (eMule), FTP, FTPS, GVCP, HTTP, HTTPS, ICMP/PING, IGMP, IKE, IMAP, IMAPS, ISO-TSAP/COTP, Kerberos, KMS, LDAP, LDAPS, LLDP, LLMNR, MDNS, MS SQL Server, MySQL, NetBIOS, NTP, OSPF, POP3, PTPv2, RDP, STP, SSDP, RTCP, RTP, SSH, SNMP, SMB, SMTP, STP, Syslog, Telnet, VNC SCADAguardian is a physical or virtual appliance that provides real-time cybersecurity and operational visibility of industrial control networks. The Central Management Console (CMC) aggregates data from multiple sites, providing centralized and remote cybersecurity management. Together they deliver comprehensive ICS cyber resilience and reliability. Nozomi Networks Products About Nozomi Networks © 2017 Nozomi Networks, Inc. All Rights Reserved. DS-SG-8.5x11-004 www.nozominetworks.com @nozominetworks Nozomi Networks is revolutionizing Industrial Control System (ICS) cybersecurity with the most comprehensive platform to deliver real-time cybersecurity and operational visibility. Since 2013 the company has innovated the use of machine learning and artificial intelligence to secure critical infrastructure operations. Amid escalating threats targeting ICS, Nozomi Networks delivers one solution with real-time ICS monitoring, hybrid threat detection, process anomaly detection, industrial network visualization, asset inventory, and vulnerability assessment. Deployed in the world’s largest industrial installations, customers benefit from advanced cybersecurity, improved operational reliability and enhanced IT/OT integration. Nozomi Networks is headquartered in San Francisco, California. Visit www.nozominetworks.com