SANTA CLARA, Calif., Feb. 20, 2018 /PRNewswire/ -- Palo Alto Networks® (NYSE: PANW), the next-generation security company, today announced the introduction of its ruggedized PA-220R next-generation firewall. This new NGFW appliance is designed to prevent successful cyberattacks in the network environments of industrial control systems, or ICS, and supervisory control and data acquisition, or SCADA, systems. The PA-220R meets required performance and reliability standards for operating in demanding industrial settings, such as utility substations, power plants and factory floors.

Organizations are evolving their understanding about the need to improve industrial cybersecurity. In their annual survey, Securing Industrial Control Systems, SANS Institute reports that the number of organizations perceiving the level of threat to control systems as "critical" or "high" increased by 26 percent to 69 percent in 2017. Protecting critical infrastructure from cyberattacks poses unique challenges because the environments can be harsh, and systems often use specialized protocols. Advanced IT technologies in ICS and SCADA environments must often be connected to external networks, increasing exposure to risk and requiring sophisticated cybersecurity to ensure that successful cyberattacks are prevented.

Palo Alto Networks can now better prevent successful cyberattacks on customers in ICS/SCADA environments with its new PA-220R NGFW. The new ruggedized NGFW has been designed to operate reliably in environments with extreme temperatures, humidity, dust, vibration and electromagnetic interference, using the PAN-OS® operating system to deliver granular, ICS-specific traffic visibility, network segmentation, and integrated threat prevention to industrial networks in harsh environments. These enhancements provide enterprise-class cybersecurity capabilities that safely enable operational technology, or OT, modernization.


  • "We have worked with Palo Alto Networks for the last ten years because it has simplified our perimeter security while improving visibility within our IT environment. With the introduction of the PA-220R, we can now extend these capabilities to our OT deployments and within our exploration, production and processing assets, even in locations with harsh environments. Because the underlying technology is the same, we now have a unified, centrally managed security architecture across the plant floor, corporate networks, and even the industrial cloud."
    -     Mario Chiock, CISO emeritus and fellow, Schlumberger
  • "Critical infrastructure operators have the challenging task of addressing the rapid digital transformation in OT and a rising threat and regulatory landscape specific to ICS. Even assets in remote locations are starting to be attacked and regulated. The PA-220R is a comprehensive security product that allows owner operators to more easily meet their regulatory obligations and stop cyberthreats from compromising critical processes and safety within OT."
    -     Steve Parker, president, EnergySec
  • "ICS systems are being modernized to be more efficient through the use of more advanced IT technologies, often increasing exposure to attacks. Better industrial cybersecurity offerings are required to safely enable OT modernization; and the new Palo Alto Networks PA-220R next-generation firewall optimizes the ICS-specific security that we already provide to our customers, now for deployment in the harshest of industrial environments and remote locations."
    -     Lee Klarich, chief product officer, Palo Alto Networks


The PA-220R will be orderable on February 26 starting at $2,900.


About Palo Alto Networks
Palo Alto Networks is the next-generation security company, leading a new era in cybersecurity by safely enabling applications and preventing cyber breaches for tens of thousands of organizations worldwide. Built with an innovative approach and highly differentiated cyberthreat prevention capabilities, our game-changing security platform delivers security far superior to legacy or point products, safely enables daily business operations, and protects an organization's most valuable assets. Find out more at

Palo Alto Networks, the Palo Alto Networks logo and PAN-OS are registered trademarks of Palo Alto Networks, Inc. in the United States and in jurisdictions throughout the world. All other trademarks, trade names or service marks used or mentioned herein belong to their respective owners.



SOURCE Palo Alto Networks, Inc.


What is a denial of service attack (DoS) ?

A Denial-of-Service (DoS) attack is an attack meant to shut down a machine or network, making it inaccessible to its intended users by flooding it with traffic.
  • 3
  • 56001

What is an Intrusion Prevention System?

An Intrusion Prevention System (IPS) is a network security prevention technology that examines network traffic flow to detect and prevent vulnerability exploits
  • 5
  • 106600

Product Summary Specsheet

Key features, performance capacities and specifications for all Palo Alto Networks firewalls.
  • 85
  • 235645

What is a Zero Trust Architecture?

Businesses who want to prevent the exfiltration of sensitive data and improve their defense against modern cyber threats can consider a Zero Trust architecture.
  • 1
  • 38083

What is Cybersecurity?

Cybersecurity refers to the preventative techniques used to protect the integrity of networks, programs and data from attack, damage, or unauthorized access.
  • 4
  • 80678

PA-5200 Series Datasheet

Palo Alto Networks® PA-5200 Series of next-generation firewall appliances is comprised of the PA-5280, PA-5260, PA-5250 and PA-5220.
  • 21
  • 87560