Truth in IT
    • Sign In
    • Register
        • Videos
        • Channels
        • Pages
        • Galleries
        • News
        • Events
        • All
Truth in IT Truth in IT
  • Data Management ▼
    • Converged Infrastructure
    • DevOps
    • Networking
    • Storage
    • Virtualization
  • Cybersecurity ▼
    • Application Security
    • Backup & Recovery
    • Data Security
    • Identity & Access Management (IAM)
    • Zero Trust
    • Compliance & GRC
    • Endpoint Security
  • Cloud ▼
    • Hybrid Cloud
    • Private Cloud
    • Public Cloud
  • Webinar Library
  • TiPs
  • DRAW

Why OT Security Requires a Different Approach Than IT

Forescout
04/14/2026
0 (0%)
Share
  • Comments
  • Download
  • Transcript
Report Like Favorite
  • Share/Embed
  • Email
Link
Embed

Transcript


fresh water, or the hospital you go to for a checkup is run on equipment that you can't even install antivirus on? It could be a camera, an MRI machine, or a system of actuators, sensors, and valves connected to an ancient computer that monitors how much bacteria there is in the water supply and how to clean it for our consumption. Our modern world is powered by this type of highly specialized equipment. These devices, once deployed, are not often updated, and as a result, many of them have vulnerabilities or fragile, sensitive network stacks. Forescout research for Dairy Labs has shown that these vulnerabilities can be exploited, and the only way to secure them is to understand where they are and partition or segment them on your network so that it only talks to known, good, necessary services. At Forescout, we passively find these and tell you what these devices are and what they're talking to. We selectively probe some of these with safe, active inspections, and this will tell us what these devices are and where they're connected to, and what they're communicating with, so that we can better identify the risks associated with these endpoints and detect any network-based threats. Whether the device is a sensor or an actuator at Purdue level zero, or it's controlling a workstation, Forescout can give you visibility into the entire OT stack and the relationship between these devices. See it, secure it, assure it.

TL;DR

  • Critical infrastructure like utilities and hospitals runs on specialized OT equipment that cannot support traditional security tools like antivirus software.
  • Many OT devices have known vulnerabilities and fragile network stacks because they are rarely updated after deployment.
  • Forescout uses passive discovery combined with safe active probing to identify OT devices and map their communication patterns across the network.

Summary

This explainer video addresses the unique security challenges facing operational technology environments in critical infrastructure. Forescout highlights that essential services like power utilities, water treatment facilities, and healthcare systems rely on specialized equipment that cannot accommodate traditional security tools such as antivirus software. These devices—ranging from MRI machines to industrial sensors and actuators—often run on legacy systems with known vulnerabilities and fragile network stacks. The video explains Forescout's approach to OT security, which combines passive discovery to identify devices and their communication patterns with selective active probing for deeper inspection. This methodology enables organizations to understand their complete OT asset inventory, map device relationships across the Purdue model from level zero sensors through control workstations, and implement network segmentation to isolate vulnerable devices from unnecessary services. The core message emphasizes that visibility across the entire OT stack is the foundation for effective security in environments where traditional endpoint protection simply cannot be deployed.

Chapters

0:00 - The OT Security Challenge
0:25 - Vulnerabilities in Critical Infrastructure
0:49 - Forescout's Discovery Approach
1:10 - Full OT Stack Visibility

Key Quotes

0:00 "Did you know the electricity that powers your home, or the water company that brings you fresh water, or the hospital you go to for a checkup is run on equipment that you can't even install antivirus on? ..."
0:40 "The only way to secure them is to understand where they are and partition or segment them on your network so that it only talks to known, good, necessary services."
1:22 "See it, secure it, assure it."

Categories:
  • » Webinar Library » Forescout
  • » Cybersecurity » Network Security
  • » Data Protection
Channels:
News:
Events:
Tags:
  • OT
  • IoT Security
  • Network Security
  • Getting Started
  • OT security
  • critical infrastructure protection
  • network segmentation
  • asset discovery
  • industrial control systems
  • Purdue model
  • vulnerability management
  • passive network monitoring
Show more Show less

Browse videos

  • Related
  • Featured
  • By date
  • Most viewed
  • Top rated
  •  

              Video's comments: Why OT Security Requires a Different Approach Than IT

              Upcoming Webinar Calendar

              • 07/14/2026
                01:00 PM
                07/14/2026
                Crafting a Championship-Caliber Security Team for Lasting Defense
                https://www.truthinit.com/index.php/channel/2025/crafting-a-championship-caliber-security-team-for-lasting-defense/
              • 07/14/2026
                02:00 PM
                07/14/2026
                Understanding the Crucial Role of Context in Safeguarding AI-Accessible Data
                https://www.truthinit.com/index.php/channel/2037/understanding-the-crucial-role-of-context-in-safeguarding-ai-accessible-data/
              • 07/21/2026
                04:00 AM
                07/21/2026
                Strategies for Managing AI Governance and Securing App-to-LLM API Traffic
                https://www.truthinit.com/index.php/channel/1967/strategies-for-managing-ai-governance-and-securing-app-to-llm-api-traffic/
              • 07/22/2026
                06:30 AM
                07/22/2026
                Insights and Strategies in Data Protection and Privacy Management
                https://www.truthinit.com/index.php/channel/2000/insights-and-strategies-in-data-protection-and-privacy-management/
              • 07/22/2026
                01:00 PM
                07/22/2026
                Insights from Attackers During the FIFA World Cup: A HUMAN Dialogue
                https://www.truthinit.com/index.php/channel/2029/insights-from-attackers-during-the-fifa-world-cup-a-human-dialogue/
              • 07/28/2026
                01:00 PM
                07/28/2026
                Illumio + Netskope: Zero Trust in the Age of AI Autonomy
                https://www.truthinit.com/index.php/channel/2031/illumio-netskope-zero-trust-in-the-age-of-ai-autonomy/
              • 07/29/2026
                04:00 AM
                07/29/2026
                Real-Time Strategies for Safeguarding Against Prompt Injections
                https://www.truthinit.com/index.php/channel/1968/real-time-strategies-for-safeguarding-against-prompt-injections/
              • 07/29/2026
                12:00 PM
                07/29/2026
                Unified Data Security in Action: Uncover, Analyze, and Resolve Threats
                https://www.truthinit.com/index.php/channel/2045/unified-data-security-in-action-uncover-analyze-and-resolve-threats/
              • 07/29/2026
                01:00 PM
                07/29/2026
                Ask Your Cloud Anything: Unlocking Governance Silos in your Environments
                https://www.truthinit.com/index.php/channel/2048/ask-your-cloud-anything-unlocking-governance-silos-in-your-environments/
              • 08/19/2026
                12:00 PM
                08/19/2026
                Becoming Agent Ready: Insights from Cyera's Expertise
                https://www.truthinit.com/index.php/channel/2036/becoming-agent-ready-insights-from-cyeras-expertise/
              • 09/30/2026
                04:00 AM
                09/30/2026
                AI Command Center: Optimizing Visibility and Control in Your Operations
                https://www.truthinit.com/index.php/channel/2024/ai-command-center-optimizing-visibility-and-control-in-your-operations/

              Upcoming Events

              • Jul
                14

                Crafting a Championship-Caliber Security Team for Lasting Defense

                07/14/202601:00 PM ET
                • Jul
                  14

                  Understanding the Crucial Role of Context in Safeguarding AI-Accessible Data

                  07/14/202602:00 PM ET
                  • Jul
                    21

                    Strategies for Managing AI Governance and Securing App-to-LLM API Traffic

                    07/21/202604:00 AM ET
                    • Jul
                      22

                      Insights and Strategies in Data Protection and Privacy Management

                      07/22/202606:30 AM ET
                      • Jul
                        22

                        Insights from Attackers During the FIFA World Cup: A HUMAN Dialogue

                        07/22/202601:00 PM ET
                        More events
                        Truth in IT
                        • Sponsor
                        • About Us
                        • Terms of Service
                        • Privacy Policy
                        • Contact Us
                        • Preference Management
                        Desktop version
                        Standard version