Swimlane and Nozomi Networks automate security orchestration

Swimlane, a low-code security automation company, and Nozomi Networks, an OT and IoT security company, announced a technology integration that combines low-code security automation with OT and IoT security. The combined solution allows industrial and critical infrastructure security operations to maintain continuous asset compliance while mitigating the risks of attacks from both OT and IT entry points.

Healthcare, utilities, transportation, and food production are increasingly viewed as vulnerable and lucrative targets based on their ability to disrupt society. As attacks on critical infrastructure become more common, it is critical to strengthen protection for OT and cyber-physical systems (CPS) with more advanced, low-code security orchestration, automation, and response (SOAR) capabilities that span IT and OT. Despite this, Gartner estimates that roughly 90% of OT security teams are still in the remedial phase of protection (e.g. discovery, patching, and firefighting).

“Critical infrastructure is facing a surge in targeted attacks and an ongoing shortage of cybersecurity expertise to detect and respond to these OT and IT attacks,” said Chet Namboodri, Senior Vice President of Business Development and Alliances at Nozomi Networks. “By partnering with Swimlane, we are empowering customers with an IT/OT converged and more automated approach to accelerating their response to incidents against their critical infrastructure.” 

The Swimlane and Nozomi Networks integration elevates the protection of OT and critical infrastructure with multiple benefits:

1. Real-Time Incident Response Capabilities: The integration enables security analysts to respond to threats in near real-time through either a fully-automated response, or via a single-click triage action when human-in-the-loop interaction is required. Presenting OT security operation teams with early detection information helps reduce the risk of the most sophisticated breaches while compressing the mean-time-to-detect (MTTD) and mean-time-to-respond (MTTR).
2. Automated Asset Management, Compliance and Defense: By leveraging Nozomi Networks robust discovery and vulnerability detection, a complete and autonomous process can be deployed utilizing Swimlane to orchestrate managed patching of critical systems, preventative patching across OT assets and a reduced attack surface for would-be attackers.
3. SOC Automation Suite and System of Record: The Swimlane platform enables IT and OT security teams to connect their processes through a common lens. This not only provides increased visibility across joint initiatives but enables distributed security personnel to seamlessly work cases as situations dictate using the same interface.

“While critical infrastructure providers face the same IT-based security challenges of other industries, the threat is exacerbated by an entirely new set of attack vectors targeting OT infrastructure,” said Mike Kay, Senior Vice President of Business Development at Swimlane. “Partnering with Nozomi Networks puts customers on the front foot of defending their critical assets. Together, we are closing the security gap by combining best-in-class security automation with OT and IoT security technology to help teams advance their operational and security preparedness.”