Americas

  • United States
michael_cooney
Senior Editor

Fortinet reinforces OT network security protection

Analysis
Aug 06, 20244 mins
Network SecurityNetworkingSASE

Fortinet enhances its OT Security Platform and closes a deal to acquire data loss prevention player Next DLP.

Male and Female Industrial Engineers in Hard Hats Discuss New Project while Using Laptop. They Make Showing Gestures.They Work in a Heavy Industry Manufacturing Factory.
Credit: Gorodenkoff / Shutterstock

Fortinet has bolstered its operational technology protection platform with a variety of new features, including improved device identification and patching capabilities, and it introduced new ruggedized switches targeted at high-bandwidth networks.

The new features are part of Fortinet’s overarching OT Security Platform, which is designed to protect industrial control systems and infrastructure from cyber threats.  The platform provides visibility into OT networks, vulnerability identification, zero-trust capabilities and advanced threat protection.

As with IT networks, remaining secure requires OT networks and security to rapidly evolve to keep up with new threats and changing technology—particularly the need to connect every device,” wrote John Maddison, chief marketing officer at Fortinet, in a blog about the new features. “Traditionally, OT security has relied on obscurity because everything was air-gapped and nothing was connected to external systems. But this approach has changed rapidly over the last five years, resulting in nimbler, more responsive OT environments—and increased risk.

Cyberattacks that compromise OT systems are rising, according to Fortinet’s 2024 Global State of Operational Technology and Cybersecurity Report. Among the organizations surveyed, 73% experienced an intrusion that impacted either OT systems only or both IT and OT systems, up from 49% in 2023.

To help customers address those risks, Fortinet has added enhanced asset identification and OT network topology views to the package’s management display, FortiOS OT View. With this support, the system can now see and identify connected devices as well as the networks connecting them. 

In addition, the vendor added virtual patching signatures in the FortiGuard OT Security Service that offers vulnerability protection and unpatched OT asset shielding.

“It’s becoming more important to understand what each OT devices is, what it does, how it’s connected, and what it can talk to. [The new features] allow a more efficient NAC and microsegmentation strategy to be applied,” Maddison stated. “It also allows virtual patching to be deployed to protect against urgent vulnerabilities.”

Fortinet also boosted visibility into OT assets from its FortiSOAR security orchestration, automation, and response platform to help customers more efficiently manage OT resources. Improved analytics, and network behavior analysis are also part of the platform enhancements.

Lastly, a new FortiDeceptor-as-a-Service option expands deception capabilities for OT and IoT with more devices and protocols, simplifying deployments for users, Maddison said. FortiDeceptor DaaS creates and deploys decoy systems that mimic real assets within a network. By creating decoyed resources that attract attackers, customers can identify and analyze their behavior without compromising real systems. The platform provides detailed insights into attacker activities, helping businesses design countermeasures.

New switches and an acquisition

On the hardware front, the company added two new switches, the 24-port FortiSwitch Rugged 216F-POE (power over ethernet), which is aimed at supporting high-bandwidth industrial network connections, and the FortiSwitch Rugged 424F-POE, which is aimed at improving connectivity for industrial IoT devices.

In related Fortinet news, the vendor said it has acquired enterprise data loss prevention (DLP) player Next DLP and is bringing that technology to its SASE/SSE package as well as integrating additional insider risk and data protection capabilities across the Fortinet Security Fabric. Next DLP technology specializes in determining insider threat risks and tracking potential stolen internal data.