Webinar | Modernizing Asset Inventory: A Smarter Approach to Securing Industrial Environments
Register
Welcome to the Nozomi Networks Trust Center, your gateway to understanding the robust security measures we have in place to protect our systems and your data. At Nozomi Networks, we prioritize the security and privacy of our customers' information, ensuring that our practices meet the highest industry standards.
We follow industry best practices to ensure system resilience and earn your trust with sensitive data. Through strong security policies, we help clients meet compliance and gain peace of mind. Nozomi Networks continually invests in advanced technology and skilled teams to protect your data and uphold the highest standards of security and privacy.
Nozomi Networks is committed to develop, deliver, and operate cybersecurity and visibility solutions for industrial control systems with the highest achievable level of security, integrity and availability. And to protect corporate information, personal information, and customer data against loss, unauthorized access and disclosure.
To achieve this goal, Nozomi Networks has implemented an Information Security Management System (ISMS):
Nozomi Networks places a strong emphasis on personnel security to ensure the protection of its information assets.
Nozomi Networks is committed to ensuring the highest level of corporate IT security. Here's how we approach various aspects of IT security:
Nozomi Networks ensures that users are only granted access to the network, systems, applications, and network services that they have been specifically authorized to use. Access to the system is audited, logged, and verified to maintain security and compliance.
To further reduce the risk of unauthorized access to data, Nozomi Networks' Access Control model is based on role-based access control (RBAC) to create separation of duties. The principles of least privilege are strictly enforced.
Nozomi Networks employs multi-factor authentication (MFA) for all access to systems containing client data. All employees are required to use an approved password manager. These password managers generate, store, and enter unique and complex passwords to prevent password reuse, phishing, and other password-related risks. An authentication tool is used to manage access to these accounts.
Nozomi Networks is dedicated to maintaining a secure and reliable supply chain by continuously monitoring and assessing all sub-processors of data. We use a variety of metrics to evaluate and review the performance and compliance of our sub-processors.
As part of our operations, Nozomi Networks only partners with certified third-party sub-processors. Each vendor is thoroughly assessed through our Third Party Risk Management Program to ensure they comply with mandatory privacy regulations and adhere to best practices in security. The GRC Team conducts due diligence to evaluate each vendor's privacy, security, and confidentiality practices. This process includes executing a non-disclosure agreement to implement applicable obligations.
To ensure ongoing compliance and security, all critical suppliers are audited annually. We also utilize a vendor management platform as a central repository of information, allowing us to efficiently manage and monitor our supply chain. These measures help us maintain the highest standards of security and reliability in our operations.
Nozomi Networks takes a proactive approach to risk management to ensure the security and reliability of its services. Our team regularly conducts various risk assessments on the overall corporate structure, product, new projects, and proposed changes. Once a risk is identified, we follow a comprehensive process.
This structured approach allows Nozomi Networks to effectively manage and mitigate risks, ensuring the highest standards of security for our services.
Nozomi Networks offers clients the flexibility to choose from multiple AWS datacenter locations based on their preferences and requirements.
This allows clients to select the most suitable datacenter location for their needs, ensuring optimal performance, compliance, and data sovereignty. By providing a range of options, Nozomi Networks empowers clients to make informed decisions about where their data is stored and processed, enhancing overall security and reliability.
Our privacy practices are designed to protect personal information across all aspects of our operations. This includes data related to employees, job applicants, suppliers, partners, website visitors, customers, and payors. We collect personal information only for specified, explicit, and legitimate purposes, ensuring that the data is accurate, complete, and up-to-date. We implement robust technical and organizational measures to safeguard personal information against unauthorized access, disclosure, alteration, or destruction. Regular audits and reviews are conducted to maintain data quality and integrity.
Transparency is a core value at Nozomi Networks. We provide individuals with clear and accessible information about how their personal information is collected, used, and protected. Our privacy policy and notices are readily available on our website and other relevant platforms. We also empower individuals to exercise their rights under applicable privacy laws, including the right to access, correct, delete, and restrict the processing of their personal data. Our commitment to transparency ensures that our customers can trust us with their most sensitive information.
By adhering to these principles and continuously improving our privacy practices, Nozomi Networks is committed to safeguarding personal information and ensuring compliance with the highest standards of data protection.
At Nozomi Networks, we are committed to the responsible and ethical development, implementation, and use of artificial intelligence (AI) and machine learning (ML) technologies. Our AI Policy provides comprehensive guidelines to ensure that our AI/ML systems are developed and deployed in compliance with regulatory standards, including the EU AI Act. Our Program applies to all AI/ML systems embedded in our software and services, as well as any third-party AI tools used within the organization.
Our approach aligns with our goals of enabling innovation, ensuring responsible conduct, and maintaining transparency and adherence to legal and regulatory compliance requirements.
Nozomi Networks has established a robust governance structure to oversee our AI initiatives. We have defined roles and responsibilities for the oversight of AI policy requirements, involving engineering leadership, compliance, legal, and IT departments. Review boards or committees are in place to assess AI initiatives, ensuring that all AI projects undergo thorough risk assessments and comply with evolving regulations. Such as the EU AI Act.
Our commitment to governance and accountability ensures that our AI systems operate fairly, securely, and ethically, reinforcing our dedication to maintaining the trust of our stakeholders.
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmodit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua.
DownloadLorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmodit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua.
DownloadLorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmodit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua.
Download
