Azure Defender för IoT

Continuous asset management and threat detection for all your operational technology (OT) device

Påskynda IoT/OT-innovationen med enhetlig säkerhet

Protect all your IoT/OT devices and get comprehensive visibility into risk with Azure Defender for IoT. Utilize agentless network monitoring for asset discovery, vulnerability management, and continuous threat detection across all IoT/OT devices, whether they’re unmanaged devices or managed devices provisioned via Azure IoT Hub. Centralize IT/OT security via integration with Azure Sentinel and third-party solutions. Deploy in either on-premises or Azure-connected environments.

Automated asset discovery for all your IoT/OT devices.

Sårbarhetshantering som identifierar IoT/OT-risker, upptäcker otillåtna ändringar och prioriterar riskreducering

IoT/OT-baserad beteendeanalys upptäcker avancerade hot snabbare och mer korrekt

Integrering med Azure Sentinel och lösningar från tredje part, som andra SIEM, biljetter och CMDB:er

Identifiera alla dina IoT/OT-enheter automatiskt

Accelerate modernization initiatives by using agentless, non-invasive monitoring to gain a complete inventory of all your IoT/OT assets across diverse industrial automation equipment, including their asset details (such as manufacturer, type, and IP/MAC address). Easily implement Zero-Trust policies by visualizing network topology and how devices communicate with each other.

Utvärdera och minimera IoT/OT-risken kontinuerligt

Hantera säkerhetsrisker proaktivt i din IoT/OT-miljö. Identifiera risker som icke-korrigerade enheter, öppna portar, obehöriga program och obehöriga anslutningar. Få direktaviseringar om ändringar som t.ex. obehöriga enheter, konfigurationsändringar eller uppdateringar av PLC-koden (Programmable Logic Controller).

Prioritera korrigeringar baserat på riskpoäng och automatiserad hotmodellering som identifierar de mest sannolika angreppsvägarna till att kompromettera dina viktigaste tillgångar.

Identifiera och undersök moderna IoT/OT-hot

Sortera aviseringar snabbt, undersök rotorsaker och sök efter nya hot. Identifiera avvikande eller obehöriga aktiviteter med IoT/OT-baserad beteendeanalys med Layer 7-djuppaketgranskning. Ta emot aviseringar om dagnollattacker och fillös skadlig kod, samt andra metoder som signaturbaserade lösningar inte har upptäckt. Undersök historisk trafik med frågor som skräddarsys efter de unika egenskaperna för varje IoT/OT-protokoll. Utforska PCAP:er med fullständig återgivning för ytterligare analys.

Skydda hela IoT/OT-stacken med Azure Security

Get a unified view of your security with Azure Security Center, your dashboard for a unified view of security across all your on-premises and cloud workloads including IoT/OT devices, virtual machines, networks, apps, and data. Monitor the security of your entire stack using built-in security assessments, or create your own in Azure Security Center. Plus, get threat protection for your cloud workloads with the addition of Azure Defender.

Integrera med Azure Sentinel och säkerhetsarbetsflöden

Detect and respond to multistage attacks across IoT/OT boundaries with the help of machine learning provided by integration with Azure Sentinel, a cloud-native SIEM/SOAR platform. Utilize threat intelligence distilled from trillions of signals and hunt for threats spanning assets and users from a single integrated experience.

Take advantage of existing SOC workflows via built-in integration between Azure Defender for IoT and a broad range of third-party tools like SIEMs, ticketing, and CMDBs.

Build security into your managed IoT/OT devices

Build smarter, more secure IoT applications and embrace security by design with Azure solutions such as IoT security agents, Azure Sphere, Azure IoT Edge, and Azure IoT Device SDKs. Help ensure these devices remain protected by enabling continuous monitoring with Azure Defender for IoT, allowing you to innovate without sacrificing security.

Omfattande inbyggda funktioner för säkerhet och efterlevnad

  • Microsoft investerar över USD 1 miljarder USD varje år på forskning och utveckling av cybersäkerhet.

  • Vi sysselsätter fler än 3,500 säkerhetsexperter som arbetar helt och hållet med din datasäkerhet och sekretess.

  • Azure har fler efterlevnadscertifieringar än någon annan molnleverantör. Visa den fullständiga listan.

Try Azure Defender for IoT today

Azure Defender for IoT now offers agentless monitoring capabilities from the recent CyberX acquisition at no charge during public preview. Pricing for these capabilities will be announced in the future, and notice will be provided before the preview ends. If you choose to continue using these capabilities after the preview, you’ll be billed at the applicable rates. Security capabilities for IoT/OT devices managed through Azure IoT Hub will continue to be billed at pre-existing rates. For these devices, you have the option of being billed by device or by messages.

Jacobs

"The Azure IoT security solution is straightforward to implement while enabling us to efficiently manage system security and resiliency across multiple distributed locations."

Adi Karisik, Global Technology Leader for Operational Technology, Jacobs

Vanliga frågor om Azure Defender för IoT

  • Azure Defender for IoT is an agentless security solution for both unmanaged and managed IoT/OT devices, delivering holistic protection for IoT/OT environments. It provides asset discovery, vulnerability management, and continuous threat monitoring, integrated with Azure Sentinel. An open system, it integrates with your current IT security stack (including SIEMs, SOAR, ticketing, and CMDBs) and SOC workflows to deliver unified IT/OT security monitoring and governance.
  • Azure Defender innehåller hotidentifiering för dina arbetsbelastningsmiljöer i molnet, medan Azure Defender för IoT specifikt skyddar både hanterade och ohanterade IoT/OT-enheter mot de specialiserade hot de möter. Angripare använder andra metoder för att skada IoT/OT-nätverk än IT-nätverk och Azure Defender för IoT identifierar dem med sin kunskap om de specialiserade protokoll, enheter och beteenden mellan datorer som finns i IoT/OT-miljöer.
  • Azure Sentinel is the industry's first cloud-native SIEM/SOAR solution. Azure Defender for IoT tightly integrates with Azure Sentinel with just a few clicks, and feeds it IoT/OT alerts. SOC teams can then use Azure Sentinel to detect and investigate multistage IT/OT attacks, threat hunt with Azure Log Analytics, leverage threat intelligence, and utilize SOAR playbooks to automate incident response.
  • No. While Azure Defender for IoT integrates tightly with Azure Sentinel, Sentinel isn't required. Azure Defender for IoT is an open system that also offers rich APIs and out-of-the-box integrations with third-party solutions such as Splunk, IBM QRadar, and ServiceNow.
  • Azure Defender for IoT can be deployed in Azure-connected, on-premises, or hybrid environments. The Azure Defender for IoT sensor connects to the SPAN port of a network switch or to a network TAP and collects a copy of the network traffic using passive non-invasive monitoring that has no impact on the network.
  • Azure Defender för IoT har stöd för ett brett utbud av protokoll för olika industriell automatiseringsutrustning, baserat på erfarenhet från alla industriella sektorer och BMS-miljöer (Building Management System). För anpassade eller tillverkarspecifika protokoll erbjuder Microsoft en SDK som gör det enkelt att utveckla, testa och distribuera anpassade protokollsavsökningar som plugin-program, utan att avslöja tillverkarens information om hur protokollen är utformade eller dela PCAP:er som kan innehålla känslig information.

Kom igång med Azure Defender för IoT

Lär dig hur det fungerar