With Operational Technology (OT) attacks on the rise, Nozomi Networks and IBM earlier this week announced that they have teamed up to bring industrial organizations around the world easier access to deep OT network visibility and continuous threat detection. The news follows recent warning from various bodies – including the UK’s NCSC and the US’ DHS and FBI of an increased treat to critical infrastructures which could potentially cause damage far beyond the obvious economic impact.
Speaking about this partnership in a blog post, Kim Legelis – Nozomi Networks’ CMO said, “We have an existing relationship with IBM having previously teamed up on joint customer engagements, so it makes perfect sense to extend the relationship to address the converging need for IT and OT cyber security.
“In fact, our solution provides the common platform for IT and OT to monitor cyber and reliability risks. For OT, Nozomi Networks technology provides a no-process-risk solution that delivers comprehensive visibility to all ICS assets, rapid identification of threats, policy violations and reliability risks. For IT, it offers complete visibility to OT networks, consolidated information from multiple industrial facilities through a single monitoring tool, faster troubleshooting of OT incidents and seamless integration with QRadar and other IT applications.”
Paul Garvey, Vice President, IBM Security Asia Pacific adds, ““Our clients are deeply concerned about escalating threats and cyber risks to critical infrastructure and industrial operations. By partnering with Nozomi Networks, our customers immediately gain market-leading OT network monitoring and threat detection technology that is fully integrated with key IBM security services and platforms such as QRadar. This partnership makes it simple and fast for our customers to improve the visibility and cyber security of industrial networks through the largest global security provider.”
The new Nozomi Networks QRadar solution is available for download on the IBM X-Force App Exchange. It provides deep visibility to OT network and assets and real time monitoring of cyber security threats and risks.
The live-streaming app displays events detected by Nozomi Networks SCADAguardian. The dashboard header provides important details at a glance – highlighting the number of events with a magnitude of 7+, the most used protocol and the most seen event name. Graphical charts provide details on event source and destination IP, while the most recent events are displayed in a live streaming list. The dashboard also supports drill down for deeper event investigation.
RSA Conference Japan
Nozomi Networks is also collaborating with IBM at the RSA Conference being held in Singapore July 24. Through a pre-conference workshop and an integrated IBM/Nozomi Networks IT/OT cyber security demo, RSA attendees will be able to see the solution’s deep industrial network visibility, non-intrusive monitoring, continuous threat detection and intelligent threat hunting capabilities firsthand