The convergence of networking and security is in a constant state of change. For CISOs and CIOs, managing the speed of digital transformation, increasingly sophisticated cybercriminals, and the changing global compliance landscape is a continuous pressure that has rapidly expanded to the operational technology (OT) environment.
Traditionally, OT security was relatively stable. Technology in these mostly industrial environments was air-gapped and unconnected to external systems. However, the speed of digital transformation has permanently altered the OT environment. Today, connected devices are managed remotely, and their data is collected and shared through the network. This shift created smarter, more responsive OT systems but also increased security risks.
Addressing this changing landscape offers new opportunities for partners. The market for OT security is still relatively new, which means a growing number of security start-ups with unproven solutions are looking to cash in. Partners with the insights to help guide CISOs away from OT decisions that could result in device and vendor sprawl will find new opportunities to expand their business in the OT space.
The critical cyber-physical space
OT environments could be in any industry, from manufacturing to transportation, energy to healthcare, utilities to communications. These industries are likely to incorporate a mix of cyber and physical systems, such as Internet of Things (IoT) devices, industrial and medical devices, and smart building solutions.
These cyber-physical systems (CPS) are increasingly connected, making it easier to monitor and control them remotely. Since CPSs often operate in environments tied to critical infrastructure, they have become an attractive target for disruptive cybercriminals. This heightened risk has increased global pressure to establish regulations and compliance frameworks specific to the OT environment.
A platform approach for better security outcomes
This new regulatory environment provides ample incentive for CISOs and CIOs to rethink their approach to OT security. Meeting the unique requirements of an OT environment is best suited to a platform solution that can secure all devices, networks, and applications. An OT platform should be able to support the industrial control systems that run and monitor OT systems, support a variety of rugged networking devices, and ensure secure connectivity to the cyber-physical environment.
As a leader in networking and security, Fortinet offers an OT Security Platform designed to protect devices, provide secure employee, supply chain, and application access, and enable IT/OT convergence that can advance business goals.
Fortinet’s OT Security Platform addresses the need for secure networking with a range of rugged Firewalls, switches, access points, and 5G extenders designed to operate in sometimes harsh environments. Most recently, our new FortiSwitch Rugged 216F-POE (power over ethernet) supports bandwidth-intensive industrial environments. The Fortinet OT platform also uses FortiSASE, our unified Secure Service Edge offering, to provide flexible, secure access to applications, either on-device or in the cloud, depending on the need.
Fortinet also enables secure IT and OT convergence by adding specific OT modules to its IT security operations products, making it easier for IT Information Security Systems to understand and work in the OT environment. Knowing what each OT device is, how it’s connected, and what it does enables more efficient network access control and the ability to micro-segment.
Advancing on OT Security
Given that the OT environment is changing rapidly, Fortinet continues investing in its comprehensive OT security solution. We recently shared expanded OT Secure Networking features and updates to FortiOS OT, including:
- FortiOS OT View enhancements that provide configurable asset location to improve asset identity, location, and communication pathways.
- New and expanded virtual patching capabilities in the FortiGuard OT Security Service via signatures that provide wide-ranging vulnerability protection and unpatched OT asset shielding.
- Secure remote third-party access for contractors, auditors, and employees using FortiSRA to protect against threats from untrusted networks.
- Achieve unified fleet management with the FortiExtender Vehicle update, a ruggedized form factor with a secure LAN extension from remote FortiGate Next Generation Fire Walls.
Fortinet has also expanded the use of AI to support OT security operations, delivering richer analytics and reporting capabilities and OT Asset management via an IT/OT overview dashboard. These AI investments will further streamline the management of OT environments, empowering security teams and alleviating workloads.
Building an OT ecosystem
For Fortinet, understanding the unique challenges of OT customers means building a robust ecosystem designed to support secure OT environments. We play a leadership role by integrating our products with key vendors and by building strategic partnerships with Industrial Automation companies and organizations working on the identification and threat analysis of OT environments such as Nozomi Networks, Dragos, Claroty, Armis, and more.
Finally, Fortinet supports its channel partners with a new Engage Preferred Services Partner (EPSP) OT Practice designation. This new designation provides OT channel partners with a leg up on the competition for OT customers by focusing on how to best design and deploy an integrated OT network infrastructure. Our ongoing commitment to enhancing products and relationships makes Fortinet a key partner for channel partners serving OT clients.