Claroty xDome and Fortinet’s FortiManager work together to simplify policy enforcement for OT assets to help protect these industrial networks from the risks associated with digital transformation. Combining Fortinet’s expertise in enterprise network security with Claroty’s knowledge of industrial environments and the CPS within them, this solution provides granular enforcement of security zones and policies across the operational network.
The solution adds new organizational security zone features that support dynamic asset grouping based on attribute profile definitions. Security zones and associated assets are then imported into Fortinet FortiManager as tags and device lists where administrators may apply enforceable communication policies. Policies are centrally managed in FortiManager and sent to FortiGate next-generation firewalls to permit or restrict communications to and from the CPS assets based on defined permissions and restrictions. This approach helps ensure broad policy enforcement and simplifies management of policies and CPS segmentation for the enterprise.