The growth of globally-interconnected systems and the increase in cyberthreats are causing security challenges for federal agencies. With the added responsibility of maintaining national security and adhering to mandates, federal agencies are experiencing increased pressure to accelerate the adoption of a Zero Trust architecture.
To support the federal government’s Zero Trust cybersecurity initiative, Palo Alto Networks announced today that its IoT Security solution has achieved Federal Risk and Authorization Management Program (FedRAMP) Moderate Authorization. With this milestone, Palo Alto Networks IoT Security offering is helping agencies protect their unmanaged IoT devices with machine learning (ML)-powered visibility, threat prevention and Zero Trust policy creation with enforcement in a single platform. This adds to Palo Alto Networks existing product offerings that support the U.S. government's cybersecurity mission.
Earlier this year, the U.S. Department of Veterans Affairs (VA) selected Palo Alto Networks to modernize their cybersecurity. Among other initiatives, the VA is expanding its use of next-generation security technology to gain automated visibility and security for all the Internet of Medical Things devices on its network.
Recent guidelines, such as the President’s Executive Order on Improving the Nation’s Cybersecurity, issued in May 2021, and the more recent federal Zero Trust strategy from the U.S. Office of Management and Budget (OMB), spotlight the need to protect managed devices and unmanaged Internet of Things (IoT) devices, owned or controlled by federal agencies.
While these advisories are intended to further the security of IoT devices used by federal agencies, a focus on device-level security alone is not enough. Manufacturing supply chains are complex and not transparent, meaning at-risk technology may be embedded in devices that do not obviously contain vulnerable or banned components. In addition, the service life of many devices, such as medical infusion pumps, can be far longer than the viability of the technology they contain.
These guidelines are in addition to the following mandates to protect IoT devices:
The IoT Security solution helps U.S. agencies leverage their current Palo Alto Networks Next-Generation Firewalls (NGFWs) to help automate Zero Trust security for IoT devices as follows:
Given the dynamic nature of IoT and the environment in which devices are deployed, it is critical to go beyond embedded device security and have the capability to dynamically secure the data center, healthcare and critical infrastructure network extending from headquarters to branch offices, to work-from-home settings, in real-time.
Networks can and should be a priority detection and enforcement point for IoT device security. Technologies exist today, grounded in ML, to help federal agencies realize this goal.
Learn more about the importance of putting IoT security at the forefront of your agency’s Zero Trust strategy by reading our white paper: The Right Approach to Zero Trust for IoT Devices.
By submitting this form, you agree to our Terms of Use and acknowledge our Privacy Statement. Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.