scadaguardian advanced€¦ · the best ics threat detection scadaguardian advanced data sheet...

SCADAguardian Advancedtrade protects your control networks from

cyber attacks and operational disruptions through unprecedented

operational visibility and rapid detection of threats and risks

Combining passive network analysis with Smart Pollingtrade a precise

low volume active technique it provides full asset inventory exact

vulnerability assessment and advanced ICS network monitoring

SCADAguardian Advanced automatically discovers your entire

industrial network including assets connections protocols and

topology It monitors network communications and behavior for

risks that threaten reliability and cyber security and provides the

information you need to respond quickly

SCADAguardian Advanced deliversbull Superior asset identification network visualization and

real-time monitoring

bull Best-in-class ICS threat detection using a hybrid approach

bull Enterprisewide scalability when deployed with the Central

Management Console

bull Easy integration and sharing of ICS and cyber security

information with ITOT infrastructure

Find out how customers improve the reliability cyber security and

efficiency of their facilities with SCADAguardian Advanced

Contact us today at nozominetworkscomcontact

SCADAguardian AdvancedDATA SHEET

Immediately

Visualize and Explore

Industrial Networks

Quickly Confirm

and Address

Vulnerabilities

Automatically Track All

Industrial Assets and Know

Their Cyber Security Risks

Rapidly Detect Cyber

ThreatsRisks and

Process Anomalies

Continuously Monitor

Networks and Processes

Using Full ICS Data

Real-time Cyber Security and Visibility for Industrial Control Networks

Easily Integrate and Share

ICS Information with

ITOT Environments

bull Intuitive network visualizationbull Automated precise asset inventorybull Real-time network monitoring

Superior Operational Visibility

bull Multinational deployments with hundreds of facilities and thousands of devices

bull Monitors and reduces OT risks in sectors such as critical infrastructure energy manufacturing mining transportation and utilities

Extensive Global Installations

bull Dynamic Learningtrade that reduces false alertsbull Automatic packet capturebull TimeMachinetrade system snapshotsbull Real-time ad hoc query tool

Time-Saving Forensic Tools

The Best ICS Threat Detectionbull Behavior-based anomaly detection bull Rules and signature-based detectionbull Advanced correlation for detailed insights

and rapid remediationbull OT ThreatFeedtrade (subscription) for ongoing

threat and vulnerability updates

Superior ICS Network and Operational Visibility


Real-time Network Visualization

bull Improves system awareness and understanding of network structure

and activity

bull Displays key information such as traffic throughput TCP connections

or the protocols used between nodes and zones

bull Speeds incident response and troubleshooting efforts

Flexible Navigation and Filtering

bull Shows macro views + detailed information on endpoints and connections

bull Filters by subnets and network segments or presents topologies

Immediately Visualize Your Industrial Network

Up-to-Date Asset Inventory

bull Advances cyber resiliency and saves time with automated asset inventory

bull Provides a full set of asset inventory providing accurate deep details

bull Identifies firmware versions and patch levels

Easy Asset Drilldown

bull Groups assets visually as per the Purdue model or in list views

and detailed single asset summaries

Automatically Track Your Industrial Assets

Comprehensive Cyber Security and Reliability Monitoring

bull Improves network security and productivity through dashboards charts

and queries relevant to your organization

bull Uses a full set of ICS data to monitor for threats and vulnerabilities

Clear Presentation of Key Metrics

bull Displays summarized data related to alerts incidents vulnerabilities etc

bull Includes indicators of reliability issues such as unusual variable values

Easy Access to ICS Data

bull Summarizes ICS risk information for selected date and time ranges

bull Supports drilldown on visual indicators for detailed information

bull Queries any aspect of your network or ICS performance reducing data

collection and spreadsheet work

Continuously Monitor Your Network and ICS

The Best ICS Threat Detection


Up-to-the-Minute Threat Detection

bull Identifies cyber security and process reliability threats in real-time

bull Detects attacks in process early stage advanced threats and cyber risks

bull Blocks attacks when integrated with compatible firewalls

Best-in-Class ICS Threat Detection

bull Uses multiple hybrid techniques for comprehensive risk detection

bull Ensures current monitoring when integrated with OT ThreatFeed

subscription

Quickly Detect Threats to Your ICS or SCADA System

Automated Vulnerability Assessment

bull Identifies and confirms which vendorsrsquo devices are vulnerable

bull Utilizes the US governmentrsquos NVD (National Vulnerability Database) for

standardized naming description and scoring

Efficient Prioritization and Remediation

bull Speeds workflows with vulnerability dashboards and drilldowns

bull Addresses questions like ldquoDo certain devices have vulnerable firmwarerdquo

Rapidly Identify Your Vulnerability Risks

Effective Efficient Incident Response

bull Minimizes false positives with AI-powered Dynamic Learning

bull Decreases response time with Smart Incidenttrade which correlates alerts

provides operational context and delivers automatic packet captures

Informative Forensics

bull Decodes incidents with Time Machinetrade system snapshots and diff

reports (Snapshots are dynamic allowing drilldown into rich ICS data)

bull Provides answers fast with a powerful ad hoc query tool

Reduce Troubleshooting and Forensic Efforts

Immediate Value Delivered to Multinational Organizations


500+ Hydro-generation plants on five continents

420+ Gas distribution locations

300+ Electric distribution sites

EXAMPLE

GLOBAL INSTALLATIONS

Integrated Security Infrastructure

bull Includes built-in integrations for asset management systems firewalls

identity management systems SIEMs and more

bull Extends further with an Open API

Broad Protocol Support

bull Supports dozens of ICS and IT protocols

bull Includes Protocol SDK for quick addition of new protocols

Current Details Available Online

bull See nozominetworkscomtechspecs

Easily Integrate Share Information with ITOT Environments

Swift Deployment

bull Requires minimal set-up and risk to your industrial process

bull Installs as a proven plug-and-play ISO 9001 2015

certified product

bull Rolls out across multiple sites in days and weeks versus

months and years

Immediately Valuable

bull Improves ICS visibility cyber security and reliability

bull Increases productivity and ITOT collaboration

Enhances ROI of Existing Machines

bull Utilizes current hardware when installed as a container version

Quickly Achieve a Fast ROI with Our Easy-to-Deploy Solution

Enterprise Ready

bull Scales for enterprisewide deployment with optimum performance

bull Adapts to all sites with multiple appliance models and flexible

deployment architectures

Centralized Monitoring of OT Risks

bull Consolidates information for up to hundreds of sites and thousands of devices when

used with the Central Management Console (CMC)

bull Facilitates maximum use of scarce cyber security skills

High Performance and Scalability for Multinational Deployments


OT Cyber Security Monitoring Made Easy

Full Set of ICS Databull Discovers firmware patch level and other device details not identified with passive analysis

bull Confirms vulnerabilities for faster more efficient response

bull Monitors all assets for threats and risks

Hybrid Passive + Active Approachbull Uses extensive information from passive network monitoring adding precise low volume

active Smart Polling as needed

Flexible Usage Optionsbull Offers a default configuration or manual options for limiting Smart Polling to specific

devices and network segments

Low Volume Smart Polling

Sample Deployment Architecture


Multiple SCADAguardian Appliance Formats to Meet Your Needs

Product Descriptions

Model NSG-M 1000A NSG-M 750A

Image

Description Rack-mounted appliances for real-time industrial network visibility cyber security and monitoring

Form Factor 1 rack unit 1 rack unit

Maximum Protected Nodes 10000 2500

Monitoring Ports 7 RJ45 + 4 SFP 7 RJ45 + 4 SFP

Additional Interfaces

Expansion Slots 11 11

Max Throughput 1 Gbps 500 Mbps

Storage 256 Gb 256 Gb

Power Requirements

Max Power Consumption 360W 360W

Power Supply Type 110-240V AC 110-240V AC

Ambient Conditions

Temperature Range 0 +45ordm C 0 +45ordm C

Mechanical Construction

HxWxL (mmin) 44 x 429 x 438 173 x 1689 x 1724 44 x 429 x 438 173 x 1689 x 1724

Weight 14 Kg 14 Kg

Approvals

RoHS RoHS

Certifications

CE FCC UL CE FCC UL


Model NSG-L 250A NSG-L 100A

Image




Monitoring Ports 5 RJ45 5 RJ45



Max Throughput 200 Mbps 100 Mbps

Storage 64 Gb 64 Gb

Power Requirements



Ambient Conditions




Weight 8 Kg 8 Kg

Approvals

RoHS RoHS

Certifications

CE FCC UL CE FCC UL

NSG-L Series

NSG-M Series

Rack-Mounted Appliances for Monitoring 300 - 750 Nodes


1 Expansion slot can host either 4 additional RJ45 ports OR 4 additional SFP

1 Expansion slot can host either 4 additional RJ45 ports OR 4 additional SFPs


Readily Tailor Your Solution Using Multiple Appliance Formats

() Limitation on the number of ports can be present due to the version of the Virtual Infrastructure Firmware

NSG-R Series

Virtual Appliances

Ruggedized Appliances for Monitoring 200 - 500 Nodes

Virtual Appliances for Monitoring 200 ndash 5000 Nodes

Model V1000A V750A V250A V150A V50A

Description A powerful appliance for very large demanding scenarios

A virtual appliance for large scenarios

A virtual appliance for medium scenarios

A virtual appliance for small scenarios

A virtual appliance for very small scenarios

Installation Specs Hyper-V 2012+ KVM 12+ VMware ESX 5x+ XEN 44+

Monitoring Ports Unlimited () 4 4 4 4

Max Throughput 300 Mbps

Max Protected Nodes 5000 1000 500 200 200

Storage 100+ Gb


Model NSG-R 150A NSG-R 50A

Image

Description Ruggedized appliances for real-time Industrial network visibility cyber security and monitoring

Form Factor 2 rack units DIN mountable




Expansion Slots na na


Storage 64 Gb 64 Gb

Power Requirements


Power Supply Type Dual power mode 90-264V AC 100-300V DC 12-36V DC

Ambient Conditions

Temperature Range -40 +70ordm C -40 +70ordm C



Weight 6 Kg 3 Kg

Approvals

RoHS IEC 61850-3 IEEE 1613 RoHS

Certifications

CE FCC CE FCC UL

For current information visit nozominetworkscomtechspecs or contact us

Comparison of SCADAguardian Advanced to SCADAguardian

Functionality Network Analysis Asset Inventory Vulnerability Assessment

Network Monitoringamp Threat Detection Deployment

SCADAguardian Advanced

Passive + Active Smart Polling Identifies All Assets Confirms

Vulnerabilitiesfor All Assets

amp ICS DataRequires Routable IP Address Installed on Activated SPAN

or Mirror Ports Routing for Selected IPs Enabled

SCADAguardian Passive Identifies Communicating Assets

Identifies Vulnerabilities

for Communicating Assets amp ICS Data

No Network Changes Installed on Inactive SPAN or Mirror Ports No Routing Required

Container Appliance

Model SCADAguardian Advanced Container Edition Description Embedded container application for switches routers and other security

infrastructure Fast flexible deployment option that leverages hardware units

A portable appliance for temporary scenarios is available For details contact us nozominetworkscomcontact

Extensive protocol support and many ITOT integrations are availableFor current information visit nozominetworkscomtechspecs

More Appliances and Technical Specifications

About Nozomi Networks

copy 2019 Nozomi Networks Inc

All Rights Reserved

DS-SGA-A4-001

wwwnozominetworkscom

nozominetworks

Nozomi Networks is the leader of industrial cyber security delivering the best solution for real-time visibility to manage cyber risk and

improve resilience for industrial operations With one solution customers gain advanced cyber security improved operational reliability

and easy ITOT integration Innovating the use of artificial intelligence the company helps the largest industrial facilities around the world

See and Securetrade their critical industrial control networks Today Nozomi Networks supports over a quarter of a million devices in sectors

such as critical infrastructure energy manufacturing mining transportation and utilities making it possible to tackle escalating cyber

risks to operational networks (OT)

Nozomi Networks Solution Architecture - SCADAguardian Advanced Edition

Nozomi Networks Products and Services

SCADAguardian protects control networks from cyberattacks and operational disruptions It provides

superior operational visibility and rapid detection of cyber threats plus process risks through passive

network traffic analysis

SCADAguardian Advanced extends the significant value obtained from passive network analysis with

the use of Smart Polling This precise low volume active technique provides a full asset inventory

exact vulnerability assessment and advanced ICS network monitoring

The Central Management Console (CMC) aggregates ICS data from hundreds of facilities providing

centralized and remote OT monitoring and cyber security management

OT ThreatFeed is an optional subscription that delivers threat updates curated adapted and discovered

by Nozomi Networks It ensures rapid detection of emerging threats and vulnerabilities and makes it

easy for ITOT teams to stay on top of current ICS risks

The award winning Nozomi Networks solution improves cyber resiliency and reliability via

a modular extensible and scalable architecture

Superior ICS Network and Operational Visibility


Real-time Network Visualization

bull Improves system awareness and understanding of network structure

and activity

bull Displays key information such as traffic throughput TCP connections

or the protocols used between nodes and zones

bull Speeds incident response and troubleshooting efforts

Flexible Navigation and Filtering

bull Shows macro views + detailed information on endpoints and connections

bull Filters by subnets and network segments or presents topologies

Immediately Visualize Your Industrial Network

Up-to-Date Asset Inventory

bull Advances cyber resiliency and saves time with automated asset inventory

bull Provides a full set of asset inventory providing accurate deep details

bull Identifies firmware versions and patch levels

Easy Asset Drilldown

bull Groups assets visually as per the Purdue model or in list views

and detailed single asset summaries

Automatically Track Your Industrial Assets

Comprehensive Cyber Security and Reliability Monitoring

bull Improves network security and productivity through dashboards charts

and queries relevant to your organization

bull Uses a full set of ICS data to monitor for threats and vulnerabilities

Clear Presentation of Key Metrics

bull Displays summarized data related to alerts incidents vulnerabilities etc

bull Includes indicators of reliability issues such as unusual variable values

Easy Access to ICS Data

bull Summarizes ICS risk information for selected date and time ranges

bull Supports drilldown on visual indicators for detailed information

bull Queries any aspect of your network or ICS performance reducing data

collection and spreadsheet work

Continuously Monitor Your Network and ICS










subscription
























EXAMPLE












Swift Deployment



certified product


months and years







Enterprise Ready
























Image









Power Requirements



Ambient Conditions




Weight 14 Kg 14 Kg

Approvals

RoHS RoHS

Certifications

CE FCC UL CE FCC UL



Image








Storage 64 Gb 64 Gb

Power Requirements



Ambient Conditions




Weight 8 Kg 8 Kg

Approvals

RoHS RoHS

Certifications

CE FCC UL CE FCC UL

NSG-L Series

NSG-M Series








NSG-R Series

Virtual Appliances













Storage 100+ Gb



Image








Storage 64 Gb 64 Gb

Power Requirements



Ambient Conditions




Weight 6 Kg 3 Kg

Approvals


Certifications

CE FCC CE FCC UL














Container Appliance








All Rights Reserved

DS-SGA-A4-001


nozominetworks































subscription
























EXAMPLE












Swift Deployment



certified product


months and years







Enterprise Ready
























Image









Power Requirements



Ambient Conditions




Weight 14 Kg 14 Kg

Approvals

RoHS RoHS

Certifications

CE FCC UL CE FCC UL



Image








Storage 64 Gb 64 Gb

Power Requirements



Ambient Conditions




Weight 8 Kg 8 Kg

Approvals

RoHS RoHS

Certifications

CE FCC UL CE FCC UL

NSG-L Series

NSG-M Series








NSG-R Series

Virtual Appliances













Storage 100+ Gb



Image








Storage 64 Gb 64 Gb

Power Requirements



Ambient Conditions




Weight 6 Kg 3 Kg

Approvals


Certifications

CE FCC CE FCC UL














Container Appliance








All Rights Reserved

DS-SGA-A4-001


nozominetworks



























EXAMPLE












Swift Deployment



certified product


months and years







Enterprise Ready
























Image









Power Requirements



Ambient Conditions




Weight 14 Kg 14 Kg

Approvals

RoHS RoHS

Certifications

CE FCC UL CE FCC UL



Image








Storage 64 Gb 64 Gb

Power Requirements



Ambient Conditions




Weight 8 Kg 8 Kg

Approvals

RoHS RoHS

Certifications

CE FCC UL CE FCC UL

NSG-L Series

NSG-M Series








NSG-R Series

Virtual Appliances













Storage 100+ Gb



Image








Storage 64 Gb 64 Gb

Power Requirements



Ambient Conditions




Weight 6 Kg 3 Kg

Approvals


Certifications

CE FCC CE FCC UL














Container Appliance








All Rights Reserved

DS-SGA-A4-001


nozominetworks





































Image









Power Requirements



Ambient Conditions




Weight 14 Kg 14 Kg

Approvals

RoHS RoHS

Certifications

CE FCC UL CE FCC UL



Image








Storage 64 Gb 64 Gb

Power Requirements



Ambient Conditions




Weight 8 Kg 8 Kg

Approvals

RoHS RoHS

Certifications

CE FCC UL CE FCC UL

NSG-L Series

NSG-M Series








NSG-R Series

Virtual Appliances













Storage 100+ Gb



Image








Storage 64 Gb 64 Gb

Power Requirements



Ambient Conditions




Weight 6 Kg 3 Kg

Approvals


Certifications

CE FCC CE FCC UL














Container Appliance








All Rights Reserved

DS-SGA-A4-001


nozominetworks

























NSG-R Series

Virtual Appliances













Storage 100+ Gb



Image








Storage 64 Gb 64 Gb

Power Requirements



Ambient Conditions




Weight 6 Kg 3 Kg

Approvals


Certifications

CE FCC CE FCC UL














Container Appliance








All Rights Reserved

DS-SGA-A4-001


nozominetworks






















scadaguardian advanced€¦ · the best ics threat detection scadaguardian advanced data sheet...

Documents