Security investments onboard vessels need to include detection and response - not just prevention such as a regular anti-virus. According to Port IT, NDR is a vessel’s best protection strategy against any cyber-attack.
NDR is a security solution used to detect and prevent malicious network activity. It is capable of investing and performing forensics to determine root cause, before responding to and mitigating the attack.
Implementing NDR also gives organisations greater visibility into what is actually on the network as well as all activities. In turn, this will enable security teams to identify and stop suspicious network activity rapidly and minimise its impact on a daily business.
Defending against evolving threats onboard vessels
Port-IT NDR silently monitors a vessel’s network, watching for malicious events or suspicious traffic, even between devices only used internally, such as the VDR and a guest PC. Once this kind of traffic is detected the solution will deploy forensics, mitigate the issue and instantly informs the Port-IT Security Operations Centre (SOC) team.
To detect malicious kinds of traffic it uses a combination of artificial intelligence, machine learning and user-defined policies, offering intelligent layers on which the configuration can be strengthened. Port-IT NDR uses NTA, Network Traffic Analysis. NTA does not only monitor the network perimeter, but more importantly all traffic within the network for complete coverage. NDR detects threats across the entire network, including BYOD & IoT devices and even advanced unknown attacks that other solutions have missed.
With NDR it is not needed to install software on any device, hence it is the ultimate solution to detect malicious activity from or within a network, regardless if it is crew, business or a guest network. NDR can be used on commercial vessels and fits in perfectly on yacht networks to monitor the traffic of its guests.
Seamless integration
The Port-IT NDR solution seamlessly integrates with all existing security products of the Port-IT portfolio, providing the shipping companies with a full security-minded overview of all network elements of the vessel. Received data is monitored 24/7 and analysed by a team of maritime trained network/security engineers.
Read more here https://www.port-it.nl/services/ndr/