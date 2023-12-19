Fortinet has expanded its security portfolio with new hardware and software designed to protect resources attached to industrial networks. The vendor's OT Security Platform includes a new ruggedized switch and wireless AP as well as expanded support for its analytics and threat-detection software.\n\nFortinet\u2019s OT platform encompasses its FortiGate Next-Generation Firewalls (NGFWs), FortiSwitch Secure Access Switches,\u00a0FortiAP Secure Wireless Access Points, its Network Traffic Analyzer, and FortiClient Endpoint Security Agent. Together these resources watch OT traffic and protect endpoints from malware, viruses, and other threats.\n\nAll of this is controlled by the vendor\u2019s flagship FortiOS operating system that works with Fortinet's overarching Security Fabric, which delivers enterprise IT functions such as firewalls, access control, authentication, SD-WAN, switching, and wireless services.\u00a0\n\nThe ultimate goal is to enable enterprise customers to seamlessly converge OT and enterprise IT networks, said Nirav Shah, vice president of products and solutions for Fortinet.\u00a0\u201cThe Security Fabric, with expansive solutions in the enterprise environment,\u00a0coupled with the purpose-built OT solutions in the OT Security Platform, enables IT and OT convergence as a guiding strategy for CIOs and CISOs.\u201d\n\nIn the release this week, Fortinet added a new FortiSwitch Rugged 424F industrial Ethernet switch and a FortiAP 432F access point for use in hazardous OT environments. The switch supports real-time OT networking protocols and integrates with FortiGate NGFWs to offer integrated security and access control.\n\nThe new AP, like other APs in the Fortinet product line, is designed to let customers easily segment Wi-Fi networks to thwart attacks from spreading across unprotected devices, according to Fortinet. The vendor also added a ruggedized FortiExtender Vehicle 211F wireless gateway for connected fleets, mobile systems, and OT deployments.\n\nOn the software side, the company updated the FortiOS OT View dashboard, which correlates and displays OT data. This dashboard is aimed at making it easy for organizations to understand their entire attack surface \u2013 both IT and OT \u2013 and take action from a single console.\n\n\u201cFortinet customers familiar with FortiOS on the\u00a0enterprise side of the network will benefit from the same look, feel and functionality in the OT environment with additional OT features,\u201d Shah said. \u201cOperators can manage network security, zero trust and security operations across IT and OT while ensuring operational safeguards are in place to support the OT priorities of safety and production reliability.\u201d\n\nIn addition, the dashboard can integrate data from FortiAnalyzer, which includes OT-specific analytics, risk, and compliance reports; FortiNDR [network detection and response], which can now analyze more than 15 different OT-network protocols; FortiDeceptor, the vendor\u2019s deception technology for early breach and attack isolation, which now supports 30 OT protocols and additional OT decoys; OT threat intelligence from FortiGuard OT Security Service; and FortiGuard Outbreak Alerts, which now include OT-specific threat reports.\n\n\u201cThe OT Security Platform enables the initial connectivity of previously air-gapped factory and systems all the way to advanced security solutions as customers build out their OT Security Operations Center,\u201d Shah said.\n\nOT security is critical to safeguard cyber-physical systems, which includes critical infrastructure and industry verticals.\u00a0In addition, Fortinet's OT threat intelligence shows that the manufacturing sector is an increasing target as nefarious actors look to monetize production interruptions as part of their ransomware campaigns, Shah said.\u00a0\n\nAccording to Fortinet\u2019s 2023 State of Operational Technology and Cybersecurity Report, three-fourths of OT organizations reported at least one intrusion in the last year with malware (56%) and phishing (49%) among the most common type of incidents. That same research showed nearly 80% of respondents reported having greater than 100 IP-enabled OT devices in their OT environment, highlighting just how significant a challenge it is for security teams to secure an ever-expanding threat landscape. Add to that the difficulty in protecting many of these \u2018aging\u2019 systems \u2013 the average age of ICS systems across their organization are between 6 and 10 years old.\n\n\u201cIn OT, priorities include safety, production reliability, and business continuity, whereas the IT priority is business continuity.\u00a0OT production concerns and safety are\u00a0typically\u00a0distant concepts\u00a0for IT teams. Technically, network devices may need to operate in harsh environmental conditions, and security solutions need to be able to understand OT communication protocols to protect vulnerable OT devices,\u201d Shah said.\n\nAll products are available now.