Automation Takes the Guesswork out of Risk Discovery
The first step to securing the edge is gaining transparency into the devices deployed in these environments. Edge devices are coming online at a rapid rate — IBM predicts 21.5 billion edge devices will be connected by 2025 — and network topologies are evolving quickly. For these reasons, it can be difficult to completely understand what devices are accessing the network, their relationships, how they communicate and their security profiles. Automation can help.
Using automated network device discovery, agencies can better understand the footprint of all edge devices and their security posture. This approach also can discover malicious or rogue devices as well as those that are vulnerable to cyberthreats. For example, sensors and devices often collect data from residents and assets. Should these fall into the wrong hands, hackers can conduct surveillance of unsuspecting citizens or hijack the device and use it to interrupt critical public services, such as transportation systems or emergency response networks.
LEARN MORE: How public safety is driving the deployment of mission-critical operations centers.
Automation Closes Vulnerabilities on Edge Devices
Edge devices create an enormous attack surface and can number into the thousands (think parking lot sensors, smart lighting, traffic controls, intelligent transportation and lane optimization systems). These technologies advance smart city initiatives and improve citizen services, and protecting them from attacks is crucial.
Security automation is key to closing potential security gaps quickly and proactively. For example, a hacker will scan edge networks looking for vulnerabilities, such as unpatched software or applications. This was the case in Oldsmar, Fla., where threat actors hacked an out-of-date supervisory control and data acquisition system at the city’s water plant and altered the amount of sodium hydroxide in the water.
Since many edge devices are supported by third-party applications, ensuring they are up to date is arduous and time-consuming. With automation, however, agencies can automatically scan their networks for unpatched devices and promptly push out updates before hackers can exploit any vulnerabilities.