All Posts By

Ofer Amitai

In search of network security and simplicity

By | news | No Comments

In this new article Ofer Amitai, CEO & co-founder of Portnox, outlines the seven most important capabilities that agencies should focus on when choosing a NAC solution.

After all, we live today in the world of devices.  In almost every enterprise, devices outnumber employees. Everything is connected these days — IP phones, the conference room smart TV, the AC systems, the lighting infrastructure and coffee machines. IP addresses rule.

The people in charge of network security must now plan for a new set of threats. For each organization that plan looks a bit different, but it should always surround the “crown jewels” with the appropriate security techniques. For government agencies, these jewels would include personally identifiable information on citizens and employees, national security-related information, financial data and mission-critical systems.  IT managers must make sure that IoT, bring-your-own and managed devices are not posing a risk to the agency’s assets.

Published in GCN.com.

Read the full article here.

Top Five Cybersecurity Trends to Expect in 2019

Top Five Cybersecurity Trends to Expect in 2019

By | Network Security | No Comments

From a certain perspective, 2018 hasn’t been as dramatic a cyber-security year as 2017, in that we haven’t seen as many global pandemics like WannaCry. Still, Ransomware, zero-day exploits, and phishing attacks, were among the biggest threats facing IT security teams this year. 2018 has not been a dull year as far as breaches. The cycle of exploit to discovery to weaponization has become shorter, and unfortunately, it has become more difficult to protect the enterprise network and the various devices connected to it. In 2017, roughly 63% of organizations experienced an attempted ransomware attack, with 22% reporting these incidents occurred on a weekly basis (*ESG Master Survey Results, 2018 IT Spending Intentions Survey, December 2017). We expect to wind up with close statistics for 2018.

Here are five trends we believe will dominate cyber security in 2019.

  1. Security and Privacy Merge.
    Despite the fact that everyone is still trying to understand the new privacy landscape and perhaps because they haven’t fully grasped the new realities, everyone is paying attention. Perhaps it is our ever increasing focus on privacy in general and GDPR specifically. Perhaps it is because more organizations will be working long hours to embrace the compliance measures that are needed to protect privacy that we won’t see a major lawsuit against a company. All we know is that we have seen an increase in companies seeking NAC solutions to keep up with all the new compliance regulations and it is very satisfying to hear that sigh of relief, when a company has implemented their solution.
  2. AI + ML = forensics and investigations.
    Artificial Intelligence (AI) and Machine Learning (ML) are going to be implemented into the arena of practical usage in cyber security – mainly for forensics and identification of culprits in cyber events. Investigating security events is costly both in terms of time and the expertise required. We believe that AI and ML are well positioned to help in these investigations for obvious reasons, relating to computing power and specialized programming of what to look for and the ability to learn. AI and ML enable the clustering and analysis of monumental volumes of data that would otherwise be impossible to do within a reasonable amount of time even if you had the best trained minds in the business working on the investigation.
  3. Ransomware – more targeted attacks are expected against wealthy and famous individuals.
    Social networks offer a world of insights and information on almost anyone who has an account. Unfortunately, it provides a lot of details that assist cyber offenders in the monetization of attacks (due to bitcoin) and the ease of performing spear phishing attacks – all will be combined for a more targeted approach.
  4. IoT security issues will increase.
    IoT will be deployed in more business usages and scenarios. The risk will rise and eventually this will cause more issues with a few headlines of devices that were used to hack networks.
  5. The conversation – Whose job it is to protect organizations in the public and private sector?
    Nationwide attacks on large businesses will bring up the discussion of who should protect a country and a business from cyber security attacks. Should the state and country be active in the defense of the private sector? In the same respect, you wouldn’t expect a bank branch to deploy anti-missile defense systems against the possibility of an offending country.

At Portnox, we will continue to innovate our network security and risk control tools to provide solutions to all, empowering our customers with valuable, holistic solutions to protect their networks.

From all of us here at Portnox, we wish you happy holidays and a great new year!

Dynamic Port Configuration

By | Uncategorized | No Comments

CORE has a built-in capability to discover and define port properties automatically, thus eliminating unnecessary manual labor. The most common reason for editing default rules is to adjust the uplink identification rule if the default settings do not identify your uplink ports automatically.

The administrator has control to set any of the following properties:

  • Uplink – defines if a port is connected to other switches.
  • Rex – sets special ports that will be skipped by CORE enforcement and will never be blocked.
  • Hub – categorizes a port as an authorized hub port.
  • Display – determines whether to display the ports in CORE’s UX, or to remove them completely.
  • Automatic Acknowledge – any device that connects to an “automatic acknowledge” port will be whitelisted by its MAC address.

Watch this video for more details on how to set dynamic port configurations:

frost and sullivan

Portnox Named Network Access Control Market Leader for Midsize to Large Organizations by Frost & Sullivan

By | Our Technology | No Comments

“Easy NAC”… Easier said than done?

As you know, the enterprise network no longer sits within traditional and secured walls in offices. The enterprise intellectual property, data bases, workflows and communications have been moving in a perimeter-less environment for a while now, extending to any place where employees and data travel. Mobility, digitization, and IoT have changed the way we live and work, resulting in ever expanding networks and increasing complexities in resource management and disparate security solutions.

The fact that organizations are decentralizing has made it more important than ever to have solid network security and controls for every endpoint, no matter which access layer is being used to connect with the network. For this reason, having centralized and software-based network access controls (NAC) are more important than ever. No matter where your employees are connecting from and through which devices, no matter which contractors or guests are requesting access; IT security teams can now offer smooth continuity of workflows and productivity while maintaining full visibility and implementing security-controls on any endpoint accessing the enterprise network.

Simplicity.

Over here at Portnox, we must take all of the latest changes to the network into consideration as we continue to innovate and craft our solutions. It helps that the main focus point at Portnox has always been to deliver a simple experience to the end-user as well as the IT administrator. Portnox solutions simplify onboarding, operations and maintenance by offering simplified architecture in a centralized, software-based solution for easy deployment and management. Our team does not deal with physical appliances but rather delivers software solutions – whether using the on-prem or cloud options. All solutions function across all access layers, providing 100% coverage and visibility of the network and continuous risk-monitoring.

For these reasons, among the main NAC vendors, Portnox has been named the leader for network access control products in the category of midsize to large organizations with a 22% market share by global research firm Frost & Sullivan. In the new report, analyst Tony Massimini said: “Portnox’s simplified architecture, which supports both 802.1X authentication and SNMP based control, sets it apart from competitors.” A full copy of the report is available here.

The Frost & Sullivan report highlighted several Portnox innovations, including:

  • Agentless architecture (but includes optional agent) for specific use cases, including continuous risk monitoring for roaming devices, remote access and cloud access.
  • Vendor agnostic design that connects directly to network infrastructure equipment via native protocols
  • Support for both 802.1X and non-802.1X devices
  • Powerful RESTFul API which enables customers to automate threat response workflows
  • Unique, profiling (fingerprinting) technology

Managed Service Providers (MSPs) and Managed Security Service Providers (MSSPs).

Oftentimes, SMB to Large organizations turn to Managed Service Providers and Managed Security Service Providers (MSP/MSSPs) to handle their cyber security protective services.

In reviewing the key factors to growth in the NAC market in 2018, the report cited, among other things, the severe shortage in skilled security professionals that challenges all organizations, but more so the SMB-to-large segments than large enterprises. Next-generation NAC provides tools to offload many of the functions and automate workflows, thereby helping these organizations to overcome this shortage in skilled IT security professionals. At the same time, NAC will insert great relief to the many overworked and busy IT teams that are handling Network security and administration responsibilities.

This same automation and ease is extended to the management of customers by MSP/MSSPs. Portnox offers convenient and scalable NAC as-a-Service that allows MSP/MSSPs to serve their customers quickly, to keep track of what they are using and to handle growing organizations efficiently.

Vision

No matter the circumstances of the organization, Portnox is proud to offer a solution that is flexible and simple enough for anybody:

  • On premises Vs. cloud-delivered network security platforms
  • 802.1x protocols Vs. non-802.1X systems
  • Agentless Vs. agent (based on use case)

Read all about it in the full report available here

Here’s to a secure, productive and prosperous 2019!

Frost and Sullivan

Portnox Named Network Access Control Market Leader for Midsize to Large Organizations by Frost & Sullivan

By | press releases | No Comments

Company Cited for Simplifying Endpoint Security Policy Compliance and Supporting All Access Devices

New York, Dec. 10, 2018 – Portnox, a leading provider of network visibility, access control and device risk management solutions, today announced it has been named the leader for network access control (NAC) products among midsize to large organizations with a 22% market share by global research firm Frost & Sullivan. In the new report, analyst Tony Massimini says: “Portnox’s simplified architecture, which supports both 802.1X authentication and SNMP based control, sets it apart from competitors.”

According to “NAC Market, Global Forecast to 2022”, NAC revenues are expected to grow from 2017 to 2022 at a 16.9% CAGR, reaching $2.1 billion. A full copy of the report is available here.

“Midsize enterprises are choosing Portnox because our technology can be deployed on-premise or as a cloud service, support any device from all access layers and eliminate the management complexity of other network access control products,” said Ofer Amitai, CEO and Co-Founder of Portnox. “We expect to extend our market lead in 2019 as more managed service providers adopt our cloud-delivered CLEAR product to offer NAC-as-a-Service.”

The Frost & Sullivan report highlighted several Portnox innovations, including:

  • An agentless architecture that supports an optional agent for specific use cases, including continuous risk monitoring and compliance checks for roaming devices
  • Powerful RESTFul API which enables customers to automate threat response workflows
  • Unique, patent-pending profiling (fingerprinting) technology
  • Support for both 802.1X and non-802.1X devices
  • Vendor agnostic design that connects directly to network infrastructure equipment via native protocols

About Portnox

Portnox provides next-generation network access control and management solutions that enable organizations to reduce risk and enforce security policy compliance. The company’s products provide automated security, visibility and control for every device accessing the network including Internet of Things (IoT), BYOD, mobile and unmanaged systems. Portnox CORE for On-Premise NAC and CLEAR for cloud-delivered NAC support hybrid environments, are easy to deploy and manage, scalable and adapt to evolving customer needs. The company has been recognized for its innovations by Info Security Products Guide, Cyber Security Excellence Awards, IoT Innovator Awards, Computing Security Awards, Best of Interop ITX and Cyber Defense Magazine. Portnox has offices in the U.S. and Europe. Visit us at www.portnox.com, and follow us on LinkedIn, Twitter and YouTube.

VP Tomer PR

Portnox Names Tomer Shemer-Buchbut Vice President of Products

By | press releases | No Comments

Cyber Security Analytics Expert Joins Leading Network Access Control Vendor’s Management Team

NEW YORK–Portnox, a leading provider of network visibility, access control and device risk management solutions, today announced that Tomer Shemer-Buchbut has joined the company as Vice President of Products. Tomer was previously head of the cyber security product team for global data-mining and intelligence provider Verint.

“Tomer is a recognized expert in cyber security analytics, advanced threat detection and building large scale software platforms,” said Ofer Amitai, CEO and Co-Founder of Portnox. “He will play a pivotal role in extending Portnox’s innovation lead in the network access control market and drive the development of new capabilities to address the growing challenges of securing IoT and hybrid cloud environments.”

Tomer is responsible for the design and development of the Portnox product portfolio. He joined Portnox from Verint, a global provider of analytics technology, where he led the company’s cyber security product team and development of unified detection and response solutions. Previously, Tomer held senior management positions in system design at Motorola Solutions, a provider of large scale secure communications solutions for enterprises and public safety organizations. He holds a BA in Computer Science and Psychology from the Open University of Israel.

“The network access control market is evolving rapidly to keep pace with large scale, distributed security risks being introduced by IoT devices, the proliferation of unmanaged hardware and use of cloud services that contain sensitive data,” said Tomer Shemer-Buchbut. “I look forward to building on Portnox’s technology leadership position, and delivering advancements that address the new security requirements created by hybrid data center-cloud infrastructures.”

About Portnox
Portnox provides next-generation network access control and management solutions that enable organizations to reduce risk and enforce security policy compliance. The company’s products provide automated security, visibility and control for every device accessing the network including Internet of Things (IoT), BYOD, mobile and managed systems. Portnox CORE for On-Premise NAC and CLEAR for cloud-delivered NAC support hybrid environments, are easy to deploy and manage, scalable and adapt to evolving customer needs. The company has been recognized for its innovations by Info Security Products Guide, Cyber Security Excellence Awards, IoT Innovator Awards, Computing Security Awards, Best of Interop ITX and Cyber Defense Magazine. Portnox has offices in the U.S. and Europe. Visit us at www.portnox.com, and follow us on LinkedIn, Twitter and YouTube.

Portnox and Microsoft Azure

Portnox CLEAR, the First Cloud-Delivered Network Access Control Solution is Now Available at Microsoft Azure Marketplace and MS AppSource

By | press releases | No Comments

New York, November 14, 2018Portnox, a market leader for network visibility, access control and device risk management solutions, today announced the availability of the Portnox CLEAR solution on Microsoft Azure Marketplace and the Microsoft AppSource.

To date, CLEAR is the only NAC as-a-Service solution provided in the Azure Marketplace and the Microsoft AppSource. As a SaaS solution, CLEAR is always running the latest version, latest security and latest features with seamless upgrades.

Portnox CLEAR, the first cloud-delivered network access control solution, offers Azure Marketplace and AppSource users a complete view of the network and visibility into all devices, as well as the ability to mitigate device risk by coping with threats in real time. Additionally, users can automate network access and on-boarding scenarios for employees, contractors, guests and non-corporate machines, on or off premise. Key features include expanded threat management, breach remediation, network access control, and automated implementation of compliance protocols.

Today’s geo-distributed and highly mobile workforce requires network access via different types of endpoints (corporate issued, BYOD and IoT) and via multiple access layers (VPN, wired, wireless or cloud). CLEAR augments network security by providing continuous endpoint visibility, including real-time risk assessments in all locations, device discovery and visibility of all endpoints, including Internet of Things (IoT) and BYOD. Unique risk-scores are generated for each device based on its security posture in conjunction with contextual behavior patterns. If the risk-score is too-high, CLEAR will not allow access or will allow limited access by quarantining the endpoints to a certain VLAN. If the risk-score is low – CLEAR continues to monitor the endpoint. Additionally, with automated threat response, CLEAR prompts patching, anti-virus and OS updates based on company policy, thereby making it more challenging for cyber offenders to exploit vulnerabilities.

QUOTE
“With the influx of connected devices on the corporate network, reaching 200 billion connected devices by 2020, and geo-distribution of organizations a common phenomenon, today’s workforce is increasingly complex and difficult to secure. All organizations need total visibility into their networks and every endpoint. Portnox is committed to making endpoint visibility and access control easier than ever before by having real-time rapid response capabilities as well as risk-mitigation tools. Our app for the Palo Alto Networks Application Framework will further help us provide complete visibility and control, keeping more enterprises safe and secure.”

  • Ofer Amitai, CEO, Portnox

About Portnox
Portnox secures connected organizations’ corporate networks utilizing its next-generation network access control and management solutions. Portnox’s solutions manage every user, every device – including: Internet of Things (IoT), BYOD, mobile and managed devices – accessing the network, everywhere.

Founded in 2007, Portnox provides its global customers with a complete view of device and network visibility, reducing security risks and improving network control. Portnox offers two solutions – CORE for On-Premise NAC and CLEAR for cloud-delivered NAC – allowing companies to grow, optimize, and evolve their infrastructure while maintaining the upmost security and compliance. The company has been recognized for numerous industry awards, including Info Security Products Guide 2018 and 2017, 2018 Cyber Security Excellence Awards, 2018 IoT Innovator Awards, 2017 Computing Security Awards, 2017 Best of Interop ITX and 2017 Cyber Defense Magazine. Portnox has offices in the U.S. and in Europe.

Portnox PANW

Portnox CLEAR App Now Available on the Palo Alto Networks Application Framework

By | press releases | No Comments

ANAHEIM, Calif. Portnox, a market leader for network visibility, access control and device risk management solutions, today announced the availability of the Portnox CLEAR app for the Palo Alto Networks® Application Framework. The Application Framework is a cloud-based framework that extends the capabilities of the Palo Alto Networks Security Operating Platform, which allows organizations to rapidly consume and implement a variety of innovative cloud-based security applications from any provider, large or small.

The app will offer Palo Alto Networks customers a complete view of the network, the ability to mitigate device risk by coping with threats in real time, as well as the ability to automate network access and on-boarding scenarios for employees, contractors, guests and non-corporate machines, IN and OUTSIDE the enterprise perimeter.

CLEAR is Portnox’s NAC-as-a-Service cloud solution, offering network administrators robust network and cloud access controls, visibility and risk monitoring capabilities. CLEAR augments network security by providing continuous endpoint visibility, including real-time risk assessments in all locations, device discovery and visibility of Internet of Things (IoT) and BYOD devices. CLEAR generates unique risk scores for each device based on the security configuration and posture of the device in conjunction with contextual behavior patterns, whether a device is on or off premise, over wired, VPN or wireless networks. As part of the Application Framework, the Portnox CLEAR app will enable customers to monitor a network or endpoint threat indications from the framework, to update the risk score of devices, and to identify all devices that share the same threat by using CLEAR’s unique visibility and data discovery capabilities. Based on policy, CLEAR will then automatically authorize or block devices from accessing the network.

QUOTES

  • “With the influx of connected devices on the corporate network, reaching 200 billion connected devices by 2020, and geo-distribution of organizations a common phenomenon, today’s workforce is increasingly complex and difficult to secure. All organizations need total visibility into their networks and every endpoint. Portnox is committed to making endpoint visibility and access control easier than ever before by having real-time rapid response capabilities as well as risk-mitigation tools. Our app for the Palo Alto Networks Application Framework will further help us provide complete visibility and control, keeping more enterprises safe and secure.”– Ofer Amitai, CEO, Portnox
  • “We are thrilled to see the debut of third-party applications for our customers, and we welcome Portnox to the Application Framework developer community. Together, we are fueling innovation in the cybersecurity market by completely changing the way that organizations test, deploy, and manage security. This important advancement will make organizations everywhere more secure and help protect our way of life in the digital age.”– Lee Klarich, chief product officer, Palo Alto Networks

AVAILABILITY

  • The Portnox CLEAR app is now available in conjunction with the Palo Alto Networks Application Framework.
  • The Palo Alto Networks Application Framework is now available worldwide to customers.

About Portnox

Portnox secures connected organizations’ corporate networks utilizing its next-generation network access control and management solutions. Portnox’s solutions manage every user, every device – including: Internet of Things (IoT), BYOD, mobile and managed devices – accessing the network, everywhere.

Founded in 2007, Portnox provides its global customers with a complete view of device and network visibility, reducing security risks and improving network control. Portnox offers two solutions – CORE for On-Premise NAC and CLEAR for cloud-delivered NAC – allowing companies to grow, optimize, and evolve their infrastructure while maintaining the upmost security and compliance. The company has been recognized for numerous industry awards, including Info Security Products Guide 2018 and 2017, 2018 Cyber Security Excellence Awards, 2018 IoT Innovator Awards, 2017 Computing Security Awards, 2017 Best of Interop ITX and 2017 Cyber Defense Magazine. Portnox has offices in the U.S. and in Europe.