Forescout Combines IT and OT Security Platforms
February 21, 2019
Technologies introduced an unified device visibility and control
platform for IT and operational technology (OT) security. Integrating
recently acquired SecurityMatters technology into its core platform,
Forescout will deliver the world’s most robust visibility and control
capabilities to manage cyber risk across both IT and OT domains.
Additional new enhancements will enable comprehensive visibility for
multi-cloud infrastructures, provide superior auto-classification for
medical and industrial devices, and automate network segmentation
controls across firewalls, as well as cloud and software-defined network
Jon Oltsik, senior principal analyst,
ESG said, “We are at a tipping point in cybersecurity where IP-connected
devices continue to flood enterprises, IT is converging with OT, and
businesses are moving to the cloud. These trends can cause significant
risk and are leading the industry to gravitate towards integrated
platforms to reduce complexity and handle as much as possible. Forescout
is one of the first vendors to offer security capabilities that align
with new requirements.”
Superior auto-classification for medical, industrial and IoT devices: Extensive enhancements in auto-classification capabilities now allow organizations to auto-classify more devices and leverage this context for policy enforcement. Expanded coverage identifies over 500 different operating systems and over 5,000 different device vendors and models. New deep-packet inspection of over 100 IT and OT protocols powers accurate classification of healthcare devices from over 350 leading medical technology vendors, and thousands of industrial control and automation devices. Forescout’s industry-leading device cloud has now grown to more than eight million devices, enabling superior classification efficacy, velocity and coverage across IT, IoT and OT.
Advancements in network segmentation controls and automation: As organizations embrace IT and OT segmentation, Forescout enables them to automate controls across heterogeneous firewalls as well as physical, virtual, cloud and SDN environments. The Forescout platform now includes orchestration of segmentation controls with Fortinet next-generation firewalls and Cisco DNA-Center. This adds to existing segmentation capabilities with Palo Alto Networks, Check Point, AWS, VMware and leading enterprise and industrial networking equipment.
Improved cross-domain risk assessment and incident response: With the growing connectivity between IT and OT networks it is important to understand the risk profile of devices in both domains. Forescout adds new risk assessment capabilities, including vulnerability assessment for OT devices and industrial control systems (ICS). Additionally, new rogue device detection identifies impersonators using spoofing techniques and helps organizations prevent malicious access, as well as improve audit compliance. For organizations looking to improve security and IT operations efficiency, the Forescout platform now orchestrates with ServiceNow ITSM and Security Operations products to automate incident response.
Forescout now offers the most scalable and modular device visibility and control platform. Comprised of software products that start with device visibility in Forescout eyeSight, customers can add products such as Forescout eyeControl and Forescout eyeExtend as their needs grow. Customers and channel partners have complete flexibility to customize their purchase and choose perpetual licensing or term-based subscription.