Upload
others
View
5
Download
0
Embed Size (px)
Citation preview
Network & Security ServicesBecause Infrastructure Matters
Publication GMSC10-BR004A-EN-P - February 2010 Copyright ©2010 Rockwell Automation, Inc. All Rights Reserved. Printed in USA.
Manufacturing Convergence – merging IT and
manufacturing systems – has created the need for
coexistence and interoperability between what were
traditionally separate functions and systems. With
people, processes and technology in unison, you can
achieve higher levels of business performance and
discover unique opportunities for competitiveness.
Manufacturing convergence provides you the capability
to be successful in today’s business environment, helping
you to address the following realities:
• Integration of business and manufacturing systems
across the enterprise to enable globalization
• Real-time information flow for innovative
business models
• Migration to one network from many proprietary aged
or over-burdened infrastructure
• Remote access to alleviate skill shortages, enabling
smaller support staffs to focus on production,
not technology
Network & Security Services
Migration provides you with long range plans to replace overburdened networks while maintaining production requirements.
Global Support. Local Address. Peace of Mind. Providing the resources you need, when and where you need them, Rockwell
Automation has an integrated, global network of ISO-certified repair centers,
exchange hubs, field service professionals, IACET-recognized training centers,
certified technical phone support centers and online tools.
www.rockwellautomation.com/services
Visit the Rockwell Automation Knowledgebase, www.rockwellautomation.com/knowledgebase, for technical information and assistance, plus:
• View technical/application notes • Subscribe for product/service email notifications • Obtain software patches • Submit a Question, Live Chat and Support Forums, and more
In the U.S./Canada, call 440.646.3434 to obtain Repair Services, Phone Support, Onsite Support Callout Services, or to register for Instructor-led Training.
Visit Get Support Now, www.rockwellautomation.com/support to select your country and find your local support information.
Meet Your Everyday Technical Needs
Maximize Your Automation Investment
Rockwell Automation Services & Support
Online & Phone Support
• System level support• Unlimited, real-time support• Unlimited, online resources & tools• Live chat & support forums
Training Services
• Instructor-led & computer or web-based courses
• Workstations• Knowledge assessments• Job aids
OnSite Support
• Embedded engineering• Preventive maintenance• Migrations & conversions• Start-up & commissioning
Repair Services
• Product remanufacturing• Third-party repair• Annual repair agreements
MRO Asset Management
• Warranty tracking• Consolidated asset reports• Quick access to global
spare parts inventory• Owned & managed spare parts
inventory
Network & Security Services
• Control system lifecycle services• Manage network convergence• Security technology, policies and
procedures services
Safety & Energy Services
• Machine safety assessments• Safety design, integration,
validation services• General & comprehensive
energy audits
InSite Managed Services
• Convergence-enabled, managed application support services
• Advanced surveillance services• Knowledge management
and hosting technologies
Real Challenges
Real Solutions
Rockwell AutomationNetwork & Security Services
At-a-Glance
Assess• Assess the current state of the
security program, design, policy
• Assess the current state of the network design, implementation
Design/Plan• Design & plan a network infrastructure
• Design & plan security program, policy, infrastructure, business continuity plan
Implement• Installation & configuration of
a network
• Implementation of a security program, infrastructure design, policy training
Audit• Audit current architecture compared to
governing body (ODVA, CNI, IEEE, TIA/EIA)
• Audit security program compared to governing body (NERC CIP, ISA 99, NIST 800-53, NIST 800-82
Manage/Monitor• Manage, maintain & monitor uptime
and issues on the network
• Managed Security Services (Incident response, disaster recovery, monitoring)
ASSESS Your Current StateAssessments help to eliminate the guessinggame when it comes to evaluating when issues arise and what is causing them, orbefore they occur. Network and security assessments evaluate the current conditionof a designed or implemented network andyour security design, program and policies.
Network assessments evaluate your current state with documentation reviewsor on-site network analysis to help you determine if your network is able to meetyour functional requirements. We will provide you with suggested resolutions toprevent or remediate these issues, as wellas learn about potential problems thatcould result in future unplanned downtime.
Security assessments evaluate the currentstate of your security policies, proceduresand technologies with documentation reviews or on-site interviews and analysisto help you determine if your security status is where it needs to be. Rockwell Automation can help reduce risks to yourbusiness by focusing on identifying potential threats and developing cost-effective countermeasures to protectthe production process.
PLAN & DESIGN Your FoundationFrom your network infrastructure to your security programs, good planning and design is the foundation upon which performance and reliability are built - without it, you may never meet your operational requirements needed to achieve your business and production goals.
The network design process begins with collaboration with you to assess the network design expectations, business objectives and identifying functional and informational requirements. Once the specific expectations and requirements are determined, a detailed specification is created - basis for the network topology design. This will help to ensure that the network design best meets the needs for your system.
Security design and planning can help you to avoid negative impacts caused by a poorly designed system. While manufacturingconvergence has many benefits, it can cause negative impacts due to environmental, architectural, maintenance and consequence of failure differences between manufacturing and IT enterprises.
IMPLEMENT Your InfrastureWhen network and security infrastructureis implemented according to industrystandards and your needs, you can realize the true value of manufacturing convergence and can negate negative impacts that can occur to your business otherwise.
Network infrastructure implementationranges from assisting with configurationsto providing turnkey solutions with ourpartners to deliver guaranteed networkinstallation. Proper implementation creates a highly operational network andincludes not only the media that transmitsthe traffic, but also the hardware that controls the flow of traffic and the software that sends, receives and manages the traffic.
Security implementation services help to foster manufacturing convergence by enabling secure conduct and help to reduce associated risks. These servicesapply security appliances, such as firewallsand implement security programs. Our security consultants will also train employees on security policy and awareness throughout the organization.
AUDIT Your StandardsNetwork and security audits are performedaccording to a set of standards provided by agoverning body and your own business andproduction standards and needs. Auditsfocus on your current state and potentialthreats to your automation assets. Aftercompletion, you will receive the appropriatedocumentation and we will offer remediation plans to meet standards thatare not currently met so you can protect your production process.
Network audits confirm proper network installation and operation. Rockwell Automation uses the latest network diagnostic tools to conduct installation and operational tests to validate system implementation and ensure performance is within standards. The standards are outlined by ANSI/TIA, ODVA or appropriategoverning body.
Security audits verify security program implementation. Our security audit programis compared to multiple governing bodies –NERC CIP, ISA-99, NIST 800-53, NIST 800-82. Audits are essential because your industrialautomation and control assets, similar to traditional IT systems, are vulnerable tomany security issues and any compromise of these systems can impact production, quality, regulatory compliance and even safety.
MANAGE & MONITOR Your InvestmentManage and monitor services are a group ofofferings that help you maintain your networkand plant floor security to achieve expectedproduction and business goals. Offeringsrange from continuous monitoring or ad hocdiagnostic monitoring to periodic visits oremergency response. These offerings can help improve uptime when you do not have the internal resources, tools and technical knowledge.
Manage, maintain and monitor with the following services:• Remote Monitoring ranges from
continuous surveillance to ad hoc, non real-time fashion to diagnostic monitoring of your network infrastructure, activity and to diagnose long term potential network and security issues.
• Network Incident Response includes network troubleshooting, repair and/or analysis.
• Security Incident Response includes management, coordination, resolution and disaster recovery* services that entail assessing/verifying security incidents and providing guidance on further action as necessary.
• Onsite Services includes annually or regularly scheduled assessments to analyze any changes to the system and their effects.
As manufacturers move toward convergence, challenges can present themselves if not managed properly, such as:• Security risks – internal and external, malicious (worms and viruses)
or accidental (users with inappropriate access rites) • Unsecure remote access - open access, no limitations • One network, multiple owners – blurred ownership and differing goals
To help you manage these challenges, Rockwell Automation Network and Security Services offers a knowledgeableteam, expertly trained in both manufacturing and IT. Our converged team has the domain expertise to provide youwith the appropriate services your industrial control and information networks require.
Understanding how your network and security infrastructure, policies and procedures affects your plant, and the personnel who use them everyday, is our job.
Rockwell Automation field engineers and consultants are trained and equipped to assess, design, implement, auditand manage your network and security infrastructure. Our complete portfolio of network and security services aredelivered globally, structured to augment your staff or manage turnkey network/security solutions with our partners– providing cost effective methods to help attain the highest return on your investment.
Our converged Network and Security team has:
• Knowledge of manufacturing applications – their dependency on the infrastructure and possible impact on the overall manufacturing process
• Awareness of manufacturing security consequences• Understanding the differences between bandwidth and latency • Knowledge of how each layer of the OSI model affects the
performance of your system• Experience with all types of manufacturing networks –
EtherNet/IP, ControlNet, DeviceNet, DH+, Remote IO, Fieldbus, and other automation industry networks
• Involvement in, and awareness of, national and global standardscommittees (e.g., Department of Homeland Security, Idaho National Labs, ISA 99 and NIST 800-82)
• Awareness of traditional IT policies and the impact they can have on the plant floor
• Capabilities to provide wired and wireless network solutions
*Disaster recovery assistance offers support when yourDisaster Recovery Plan has been implemented after a businesscontinuity impacting event has occurred.
Latency:• The time it takes for a packet to cross
a network connection, from sender to receiver
• The period of time that a frame isheld by a network devise before it is forwarded
Two of the most important parametersof a communications channel are its latency, which should be low, and itsbandwidth, which should be high. Latency is particularly important for asynchronous protocol where eachpacket must be acknowledged beforethe next can be transmitted.
Enhanced with Cisco Systems
Rockwell Automation is a Cisco Strategic Technology Integrator (STI). As a STI partner, we can provide you with a combined solution,
incorporating both Rockwell Automation and Cisco Systems hardware and services.
Our Network & Security Services global team of principle consultants, field consultants and field service professionals are Cisco certified.
Certifications include, but are not limited to: CCENT, CCNA, CCNP, CISSP, CISM