Guardian overview

Guardian is the main Nozomi Networks sensor.

Asset discovery

Guardian gives you the ability to automatically track your industrial control systems (ICS), operational technology (OT) and Internet of Things (IoT)/Industrial Internet of Things (IIoT) assets.
  • Highly accurate asset inventory of all communicating devices
  • Extensive node information including name, type, serial number, firmware version and components
  • Actionable risk assessment insights including security and reliability alerts, missing patches and vulnerabilities

Network visualization

Guardian gives you instant visibility of your entire network. This lets you:
  • Have instant awareness of your OT/IoT networks and normal activity patterns
  • Access key data such as traffic throughput, transmission control protocol (TCP) connections, and protocols
  • Use intuitive dashboards and reports with macro and micro views, plus filtering and grouping

Automated vulnerability assessment

Guardian lets you quickly identify which ICS, OT and IoT devices are vulnerable. This provides:
  • Efficient prioritization and remediation
  • A faster response with vulnerability dashboards, drill-downs and reports
  • Based on the U.S. government’s National Vulnerability Database (NVD) for standardized naming, description and scoring
Continuously monitor your networks and automation systems. Guardian gives you:
  • The ability to continuously monitor all your assets, network communications and supported protocols
  • Easy access to summarized ICS, OT and IoT risk information
  • The ability to highlight potential reliability issues, such as unusual process values

Anomaly-based detection

Guardian builds a baseline of your environment and uses that knowledge to detect threats such as transferred malware, suspicious communications, unwanted operations, or changes to the network.