Services & Solutions

Progression Systems makes it easy for you to understand and adopt cybersecurity best practices such as those outlined by the NIST Cybersecurity Framework for Manufacturing, IEC 62443 and ISO 27000. For example, NIST outlines five security framework functions – identify, protect, detect, respond and recover, that should be incorporated into your operational processes to address cyber risk. Identification includes asset management and risk assessment, while detection includes continuous monitoring and insight into anomalies and events, among other functions. The Progression Systems solution makes it easy to apply best practices around multiple NIST framework functions. As examples, it automates the creation of an asset inventory, continuously monitors your OT/IoT network and ICS, and rapidly identifies vulnerabilities. It also proactively identifies cyber risks that threaten the security of your industrial control systems, including
Assets with vulnerabilities Bad configurations (NTP/DNS/DHCP, etc.)
Cleartext or weak passwords Corrupted OT packets
Device state change
IP conflicts
New connections to the enterprise network New connections to the Internet
New communications New nodes
Policy violations New remote access
Open ports on assets Non-responsive asset
Unauthorized cross level communication Unencrypted communications

Ascertain the presence and operational state of encryption, obfuscation and other information security software
Enable real-time mapping of data flows between users, devices, services and applications
Understand data at rest and in motion state across the extended enterprise environment

A visibility-first approach determines trust for the OT
Instant visualizations baseline real-time traffic
Design and simulate policies to assess potential business impact
Spans multi-domain, multi-use-case infrastructure
Enables enterprise-wide segmentation controls across diverse enforcement technologies
Continuously monitors and validates security policy compliance
Visualize east-west and north-south traffic across your hybrid cloud environment
Implement security controls through a unified policy interface
Agentless identification and inventory of all IP-connected devices in real time
Classification and continuous posture assessment of managed, unmanaged and unknown devices
Enforced least-privileged access throughout the network
Prevent unauthorized devices from joining the network
Remediate noncompliant assets natively, using network and host controls/segmentation and through third-party integrations

Today’s modern enterprise environments are an Enterprise of Things that extends from campus to data center to cloud and no longer has a clearly defined perimeter. In other words, you can’t trust anyone. A Zero Trust (ZT) architecture abolishes the idea of a trusted network inside a defined corporate perimeter. ZT mandates that enterprises create microperimeters of control around their sensitive data assets to gain visibility into how they use data across their ecosystem to win, serve, and retain customers.

Protecting your resources while managing user access, complying with regulations and analyzing risk-based context to prevent threats is no easy feat.
Identity and Access Management (IAM) is rapidly becoming a priority for security professionals as they seek to mitigate the cost and reputational damage of compromised credentials. Identity and access management (IAM) is the practice of making sure that people and entities with digital identities have the right level of access to enterprise resources like networks and databases.
A zero-trust approach:
Establishes trust in every access request, no matter where it comes from
Secures access across your applications and network
Extends trust to support a modern enterprise across the distributed networ