The unique characteristics of these environments (industrial design, unique protocols, low bandwidth networks) preclude many traditional IT enterprise security products from operating safely without impairing operations, and when introduced, can provide significant disruption and downtime to real-time, revenue generating assets.
Utilizing a similar paradigm to the enterprise IT world, our integrated technology suite:
Each layer of the solution is built to accommodate and leverage the unique functional, performance and operational needs of real-time process control environments.
Designed to deploy a Defense-in-Depth strategy, the integrated suite consists of:
Agents –Resident and remote Agents capture data to monitor and analyze the host system for real time security events as well as performance of both the system and control applications. Agents secure critical process control host systems such as DCS workstations, SCADA servers, HMI operator stations, historians, substation routers and many other IP networked systems and devices. Agents provide superior protection while gathering control system data for internal audit and regulatory compliance.
Compliance Manager – Enables companies to effectively meet compliance and auditing requirements without disruption to system availability. The system automates data gathering, normalization, archiving and reporting to support audit requirements. Also integrates and streamlines the compliance process through a single pane of glass across disparate process control environments.
Dial-up Gateway – Offers security, reliability and communications cost reduction for remote substations accessible via dial-up.
Host Intrusion Prevention System – A whitelisting-based technology that ensures only approved applications can execute on control system workstations and clients. HIPS automatically blocks all unauthorized applications including malware and rogue applications installed by users. HIPS does not impact system performance, a significant advantage over resource-hungry security applications like blacklist-based antivirus.
Security Event Manager – Provides monitoring and management of security events occurring in control system and SCADA networks. It acts as the central collection point for security data and alert management of network activity. Supports all control vendor systems, both modern and legacy.