Professional Documents
Culture Documents
Nozomi Networks Guardian Data
Nozomi Networks Guardian Data
Guardian
Industrial Strength OT and IoT Security
and Visibility
Nozomi Networks Guardian™ unlocks visibility across OT, IoT, and IT for accelerated See
security and digital transformation.
What’s on your
Guardian reduces OT risks for the largest critical infrastructure, energy, manufacturing, network and how
mining, transportation, building automation and other OT sites around the world. it’s behaving
Detect
Cyber threats, risks
and anomalies for
IDENTIFY
faster response
Unify
Security, visibility and
ACT SCALE ASSESS
monitoring across all
your assets
DETECT
Identify
Asset Discovery and Network Visualization
Presents key data such as traffic throughput, Filter by subnets, type, role, zone and
TCP connections, and protocols topologies
Improves your understanding of ‘normal’ Group assets visually, in lists and detailed
operations single asset views
DATA SHEET
2
Guardian
Assess
Vulnerability Assessment and Risk Monitoring
DATA SHEET
3
Guardian
Detect
Advanced Anomaly and Threat Detection
Delivers ongoing OT, IoT and IT threat and Delivers ongoing OT and IoT asset profile
vulnerability intelligence and behavior data
DATA SHEET
4
Guardian
Act
Time-saving Dashboards and Forensic Tools
and Forensic detection for OT and IoT with the Asset • Correlate and consolidate alerts
Intelligence™ service for focused, actionable • Provide operational and security context
Efforts
alerts • Supply automatic packet captures
Understands normal behavior for devices Decodes incidents with Time Machine™
with frequent behavior changes, eliminating before and after system snapshots
alerts for benign anomalies
Provides answers fast with a powerful
Improves response time and productivity ad hoc query tool
with precise alerts that are easy to prioritize
DATA SHEET
5
Guardian
Scale
Unified Security for Thousands of Distributed Sites
Performance Processes data for up to 500,000 assets Aggregates data from multiple
in real-time sites when used with the Central
Management Console™
Generates network visualizations, dashboards
and reports quickly Enables centralized security risk
management for all sites
Speeds up threat detection and response
with local processing of threat and asset Provides visibility into all OT/ IoT
intelligence environments
Environments Makes it easy to harmonize security data Utilizes Nozomi Networks’ deep expertise in
for cohesive response OT protocols for accurate analysis
Includes built-in integrations for asset, Includes Protocol SDK and on-demand
ticket and identity management engineering services for new protocol
systems, as well as SIEMs support
nozominetworks.com/integrations nozominetworks.com/techspecs
DATA SHEET
6
Guardian
Enhance Guardian for
Expanded Visibility and
Threat Detection
SUBSCRIPTION
Threat Intelligence
Reduces risks by shrinking the mean-time-to-
detection (MTTD), minimizing impacts
SUBSCRIPTION
Smart Polling
Adds low-volume active polling to Guardian’s
GUARDIAN ADD-ON
passive asset discovery
Remote Collectors
Identifies non-communicating assets
and rogue devices Supplement Guardian data via low-resource appliances
for distant and distributed locations
Delivers accurate vulnerability assessment for fast
and efficient response Collect data and send it to Guardian for further analysis
DATA SHEET
7
Guardian
Flexible Deployment
and Licensing
Industrial You can deploy the Nozomi Networks solution in a wide variety of mixed environments
for rapid asset discovery, network visualization and accelerated security.
Strength OT
and IoT Security
and Visibility
Threat Asset
Intelligence Intelligence
Integrated
Systems SOC
Central Management
Console
Guardian
OT IoT
Multiple Nozomi Networks offers a range of licensing options to fit your organization's preferences,
including:
Licensing
Options • Subscription licenses
• Enterprise license agreements (ELAs)
• Perpetual licenses
Please contact your Nozomi Networks Sales Director for more information.
DATA SHEET
8
Guardian
Sample Deployment
Architecture
Purdue Model You can tailor the Nozomi Networks solution to meet your needs by utilizing its flexible
architecture, extensive range of appliances, and integrations with other systems.
Example
SOC /
INTEGRATED REMOTE BUSINESS CONTROL
SYSTEMS ACCESS CAMERA TABLET COMPUTER CENTER
Level 3
Operations (ICT/DMZ)
DNS HISTORIAN Central Management Console
H I GH A VA I L A B I L I T Y C O N F I GU R A T I O N
Level 2
Process Network
HMI ENGINEERING
WORKSTATION
Guardian
Level 1 +
Control Network Smart Polling
PLCs/RTUs
OPTIONAL
Level 0
Field Network
SITE #1
SITE #2
SITE #N
World Nozomi Networks partners deeply with the IT/OT services and technology companies you
trust. These include:
Class
Partners • Strategic alliances with enterprise IT and managed security providers
• Technology integrations with leading IT/OT solutions
• SI/VAR relationships with 250+ prominent organizations around the world
DATA SHEET
9
Guardian
Guardian Appliances
for the Large Enterprise
Weight 18 Kg 17 Kg
* Virtual RTUs can either be subRTUs or smart meters reachable through direct or serial communication. ** See Remote Collector tech specs for more details.
For complete and current tech specs, visit: nozominetworks.com/techspecs, or contact us.
DATA SHEET
10
Guardian
Guardian Appliances
for the Mid-Enterprise
Storage 256 Gb 64 Gb
Weight 14 Kg 8 Kg
* See Remote Collector tech specs for more details. | For complete and current tech specs, visit: nozominetworks.com/techspecs, or contact us.
DATA SHEET
11
Guardian
Guardian Appliances
for Specialized Requirements
Storage 64 Gb 256 Gb
Form Factor 2 rack unit DIN mountable Desktop with wall mount kit
Weight 6 Kg 3 Kg 2.5 Kg
* See Remote Collector tech specs for more details. | For complete and current tech specs, visit: nozominetworks.com/techspecs, or contact us.
DATA SHEET
12
Guardian
Guardian Appliances
for Remote Sites
Remote Collector
Up to 15 Mbps Throughput
NRC-5
Storage 8 Gb
Weight 1.2 Kg
Compliance RoHS
Deployment Options Hyper-V 2012+, KVM 1.2+, VMware ESX 5.x+, XEN 4.4+
For complete and current tech specs, visit: nozominetworks.com/techspecs, or contact us.
DATA SHEET
13
Guardian
Guardian Appliances
for Virtual Environments and Containers
Virtual Series
Deployment Options Hyper-V 2012+, KVM 1.2+, VMware ESX 5.x+, XEN 4.4+
* Performance is dependent upon hardware configuration and resource allocation. ** See Remote Collector tech specs for details.
Container Edition
Embedded container appliance for switches, routers and other security infrastructure.
Fast, flexible deployment option that leverage your existing devices.
Available for Guardian with the Smart Polling add-on module only.
Container
Add-ons Smart Polling module: included | Threat Intelligence and Asset Intelligence subscriptions: can be added
For complete and current tech specs, visit: nozominetworks.com/techspecs, or contact us.
Multiple Here are several options for deployment and support assistance:
DATA SHEET
14
Guardian
Products
and Services
PRODUCT
Guardian
Guardian provides industrial strength OT and IoT
security and visibility. It combines asset discovery, PRODUCT
Threat Intelligence
The Threat Intelligence service delivers ongoing
OT and IoT threat and vulnerability intelligence. SUBSCRIPTION
GUARDIAN ADD-ON
Smart Polling
Smart Polling adds low-volume active polling to
Guardian’s passive asset discovery for enhanced GUARDIAN ADD-ON
asset tracking, vulnerability assessment and
security monitoring.
Remote Collectors
Remote Collectors capture data in remote,
distributed locations and send it to Guardian
for analysis, improving visibility while reducing
deployment costs.
DATA SHEET
15
Guardian
Nozomi
Networks
The Leading Solution for OT and IoT
Security and Visibility
Nozomi Networks is the leader in OT and IoT security and visibility. We accelerate
digital transformation by unifying cybersecurity visibility for the largest critical
infrastructure, energy, manufacturing, mining, transportation, building automation
and other OT sites around the world. Our innovation and research make it possible
to tackle escalating cyber risks through exceptional network visibility, threat
detection and operational insight.