Increased connectivity, automation, and other Industry 4.0 advances are helping industrial organizations to improve business operations and efficiency. But legacy Secure Remote Access (SRA) tools are unable to provide the level of security, visibility, and control that companies in critical industries need to protect their assets from an expanded attack surface and evolving threats.
Discover how a unique decentralized architecture and core set of capabilities enable Cyolo PRO to strengthen security, improve operational agility, and enhance user experience.
While most Secure Remote Access (SRA) solutions are designed either for the cloud or for isolation, Cyolo PRO is built to enable maximum deployment flexibility. A single solution that provides secure remote access to on-prem, offline environments, or cloud-connected environments, Cyolo PRO accommodates the varied, evolving needs of the modern industrial enterprise.
With no infrastructure changes needed, Cyolo PRO brings modern, identity-based authentication (including MFA), credentials vaulting, password rotation, and other security best practices to legacy OT systems – including but not limited to EoL/EoS Windows and Linux and dated PLCs and HMIs.
Cyolo PRO offers a wide range of granular controls to help admins seamlessly manage what users can and cannot do during a session. Policies are set per application or user and include parameters such as time and geo-location. Additional supervisory controls include Just-in-Time (JIT) access, supervised access, session recording, and more.
Third-party collaborations help keep operations running smoothly, but vendors and other external users may be hesitant to download agents onto their personal devices. As an agentless solution with no downloads required, Cyolo PRO makes it easy to extend secure remote access to third parties, who can begin working immediately from a web browser or locally installed applications such as RDP, SSH, TIA Portal, FactoryTalk, and Studio 5000.
Cyolo PRO’s decentralized architecture enables multi-tenancy, which means a single instance of software can serve multiple client organizations (tenants), with each tenant having its own isolated data and configurations. In practice, this allows organizations not just to easily deploy and manage access across numerous global sites but also to choose between centralized management or site-based local control in accordance with their specific security requirements.
Cyolo PRO adheres fully to the zero-trust security framework and the principle of least privilege. The solution's decentralized architecture allows customers to keep all credentials, keys, policies, and other secrets inside their trusted boundaries at all times, giving them total control over their data and eliminating a potential supply chain risk.
Cyolo PRO is composed of two distinct components: the IDAC (ID Access Controller) and a Gateway. The IDAC serves as the “brain,” while the Gateway can be placed either on-prem or on-cloud, depending on the organization’s needs.
With its decentralized architecture and lightweight, Docker-based deployment, Cyolo PRO is able to seamlessly adapt to any existing infrastructure. This flexibility allows organizations to mitigate security risks while also improving operational agility and enhancing user experience – all at the lowest cost of change and the lowest total costs of ownership.
Cyolo PRO also integrates smoothly with other security solutions, including any identity provider (IdP), security information and event management (SIEM), security orchestration and response (SOAR), IT service management (ITSM) platform, and more.
A leading power plant operator, Rapac Energy, needed to provide secure access to their OT and SCADA systems to external suppliers, global support teams, and customers. The company previously used a VPN, but access was slow and employees were frustrated. The new solution had to provide multiple security features that comply with stringent regulatory and internal requirements.
Rapac Energy looked to Cyolo to solve these challenges. The entire implementation process took only one day — the shortest implementation Rapac Energy had ever experienced.
“No solution gives me so much control and security like Cyolo. It’s everything I need in one solution.”
- Shlomo Kamilyan, CIO, Rapac Energy