Segregation of OT and IT Networks and Subnets
Overview of the project
The project for segregation of the OT and IT networks was undertaken to reduce the risk of cyber attacks and improve the security and performance of the company network. Segregation of the networks and subnets allowed critical devices to be isolated, reducing the tolerance window and improving operational resilience.
Objective
The main objective of this project was to reduce the tolerance window by segregating the OT network from the IT network and isolating out of support devices that could not be updated. The aim of this strategy is to improve the overall security and performance of the company network.
The NEXQ solution
NEXQ designed a solution that provides for segregation of the OT and IT networks using firewalls and VLAN, isolation of devices that cannot be updated, and implementation of further security measures such as continuous monitoring and control of access.
Implementation
The project was carried out in various steps: analysis of the existing network, design of the segregation architecture, implementation of firewalls and VLAN, isolation of out of support devices, and configuration of access monitoring and control systems. The staff was trained to manage and monitor the new network structure.
Results obtained thanks to the NEXQ solution
The new network architecture has improved security by reducing the attack points, increased performance by isolating problematic devices and improved overall management of the network. Segregation of the OT and IT networks has also guaranteed a better operational continuity.
Advantages
Reduced risk of cyber attacks
By segregating the OT and IT networks, we significantly reduced the attack points, limiting the access of criminals to critical segments of the network.
Isolation of out of support devices
Devices that could not be updated were isolated in dedicated subnets, limiting their potential impact on overall security of the network.
Improved network performance
Segregation of the networks and subnets has optimised network traffic, improving performance and reducing latency for critical applications.
Implementation of firewalls and VLAN
The use of firewalls and VLAN has allowed a precise segmentation of the network, strictly controlling traffic and preventing unauthorised access.
Continuous monitoring and control of access
We have implemented continuous monitoring systems to promptly detect any anomalies and access controls to guarantee that only authorised users and devices can access the network resources.
Training of IT personnel
The personnel has been trained to manage the new network architecture, ensuring an efficient and prompt management of security operations.
Resilience and operational continuity
Segregation of the OT and IT networks has improved network resilience, guaranteeing that any problems in one part of the network do not propagate to other operating areas.
Compliance with security regulations
The solution has been designed to comply with the main security regulations and standards, guaranteeing that NEXQ operates in compliance with industry best practices.
If you want to learn more about segregation of networks or discover how we can help you to optimise your IT resources and reduce costs, please don't hesitate to contact us.