What is our primary use case?
We use
Nozomi Networks in our operational technology environment to manage the inventory of assets in our plants and conduct vulnerability assessments and risk quantification. It helps us identify communication that is not allowed between zones.
What is most valuable?
The most valuable features of
Nozomi Networks are the visibility of OT protocols and the versatility in finding the details of the assets feeding the tool. It is helpful because we can see all the traffic coming from the plants. We can distinguish what kind of traffic is our baseline, what is different from normal operation, and what is traversing the OT zone to the IT zone.
What needs improvement?
Nozomi Networks currently offers add-ons, such as ARP agents, that can be installed on machines to expand the information we receive from sensors. However, these are part of a licensing structure, which can be costly. It would be very helpful if these agents were available free of charge. The solution itself has no major problems, but this is a feature request I would make for improvement.
For how long have I used the solution?
I have had experience with Nozomi Networks for three years.
What do I think about the stability of the solution?
I would rate the stability of Nozomi Networks as a nine out of ten. It is very good.
What do I think about the scalability of the solution?
Scalability is straightforward and tied to the license. We have a batch of 5,000 assets, but deploying the
Guardian solution is unlimited. We can install the software image anywhere in any plant and still receive information.
How are customer service and support?
I would rate their customer service at eight out of ten. While their support is good, we are looking for added value in a provider. I would like to see more proactive communication and campaigns from them to help us gain further benefits and visibility of the product features.
How would you rate customer service and support?
Which solution did I use previously and why did I switch?
We previously used
Tenable OT Security. We switched to Nozomi Networks due to price and architecture. Scalability is easier with Nozomi Networks, and the reporting part is integrated with the tools, unlike in Tenable, where it was separate.
How was the initial setup?
The initial setup was very easy. We have a solution called
Vantage licensed by assets. We manage 5,000 assets and deploy the tool with Nozomi Networks software. We only need to connect a span port or mirror port from the network to start receiving information.
What's my experience with pricing, setup cost, and licensing?
Nozomi Networks is priced moderately. Its cost is not too expensive, but it is not low either.
What other advice do I have?
Nozomi Networks scores a nine out of ten overall. There is no perfect solution, but it is a solid choice for managing OT security.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Other
*Disclosure: My company does not have a business relationship with this vendor other than being a customer.