- Chat with McAfee Ready to make a purchase or have questions before you buy? Chat with a McAfee expert. Available Monday to Friday.
- Find a Reseller
- Contact Me
- Call: 1-888-847-8766
Overview
Organizations tasked with running critical infrastructure such as oil and gas, energy, water, and chemical must do so across three disparate yet interconnected zones: enterprise IT, SCADA, and Industrial Control Systems (ICS). Where gaps once existed between these zones and communication was conducted along serial connections on proprietary systems, today’s environments are more interconnected than ever, leveraging the older frameworks plus expanded communication channels across IP, wireless, and mobile, and running common operating systems and applications. This has created greater efficiencies and effectiveness in terms of overall operations and measurement, but it has also introduced risk.
To address the risk, multiple products must operate together without introducing complexity or impacting availability. By working with our customers and partners, we have defined four areas that are required for a successful security strategy:
- Situational awareness gives customers visibility into security and operations across enterprise IT, SCADA, and ICS zones.
- Multi-zone protection allows discovery, prevention, detection, response, audit, and management across data, network, and endpoint within enterprise IT, SCADA, and ICS zones.
- Native support means that McAfee customers have the broadest range of out-of-the-box support for traditional IT solutions, as well as SCADA and ICS applications and protocols for truly holistic security.
- Continuous compliance helps easily demonstrate adherence to multiple regulatory mandates.
McAfee solutions provide resilience, efficient compliance measures, and instant intelligence for changing threat environments, along with the power of real-time visibility and centralized management through a single platform.
Threat Intelligence
Duqu
Get the latest threat intelligence from McAfee Labs on Duqu.
Stuxnet
Get the latest threat intelligence from McAfee Labs on Stuxnet.
Stuxnet Blogs
Read the latest Stuxnet blogs.
Night Dragon Blogs
Read the latest Night Dragon blogs.
Duqu Blogs
Read the latest Duqu blogs.
Customer Stories
Integral Energy
Integral Energy proactively assesses and manages vulnerabilities with McAfee Vulnerability Manager.
Highlights
- Discovered and assessed system vulnerabilities quickly and accurately
- Enabled threat prioritization and proactive, informed decision making
- Provided in-depth visibility regarding network assets
- Facilitated compliance with ISO 27001 standard
Mainova AG
McAfee powers network security for energy supplier Mainova AG.
Highlights
- Delivered complete protection with lower operation cost — only three IT staff members required to monitor IDS/IPS solution
- Deployed new system within three weeks of installation
- Simplified and centralized administration of configuration and guidelines for handling threats
- Precisely identified and blocked threats in real time
- Provided full transparency when monitoring network traffic
Major Urban Utility Company
For more than a decade, a major urban utility has utilized McAfee Firewall Enterprise Edition to protect critical control systems.
Highlights
- Allowed Independent Systems Operator (ISO) networks to interconnect without jeopardizing the control network
- Conducted vulnerability tests and confirmed that McAfee Firewall Enterprise Edition cannot be penetrated
- Permitted patches and upgrades to be delayed without a risk to security
- Ensured the ability to add a new rule in minutes
Public Utility District, United States
McAfee strengthens the network perimeter for this large public utility district.
Highlights
- Prevented 30,000 – 50,000 unwanted emails from entering the network each day
- Increased user productivity without jeopardizing security
- Provided strong security for both corporate IT and critical infrastructure networks
- Protected against blended Internet and insider threats
- Improved efficiency for the IT department, reducing administration, overhead, and costs
Products
McAfee Embedded Control
McAfee Embedded Control focuses on solving the problem of increased security risk arising from the adoption of commercial operating systems in embedded systems. Embedded Control is a small-footprint, low-overhead, application-independent solution that provides “deploy-and-forget” security.
McAfee Deep Defender
McAfee Deep Defender helps stop advanced stealth attacks with the industry's first hardware-assisted security enabled by McAfee DeepSAFE technology. Unlike traditional security solutions, Deep Defender operates beyond the operating system to provide real-time kernel monitoring to reveal and remove advanced, hidden attacks.
McAfee Global Threat Intelligence
McAfee Global Threat Intelligence Proxy (McAfee GTI Proxy) enables McAfee VirusScan Enterprise nodes to perform McAfee GTI file reputation queries from within the enterprise network — without requiring direct access to the public McAfee cloud.
Risk & Compliance
McAfee Integrity Control
McAfee Integrity Control combines industry-leading whitelisting and change control technology, ensuring that only trusted applications run on fixed-function devices, such as point-of-service (POS) systems, ATMs, and kiosks.
McAfee Risk Advisor
McAfee Risk Advisor saves you time and money by proactively correlating threat, vulnerability, and countermeasure information to pinpoint at-risk assets and optimize patching efforts.
McAfee Vulnerability Manager
McAfee Vulnerability Manager finds and prioritizes vulnerabilities and policy violations on your network. It balances asset criticality with vulnerability severity, enabling you to focus protection on your most important assets.
Database Security
McAfee Database Activity Monitoring
Boost your overall database security with reliable, real-time protection against external and internal threats across physical, virtual, and cloud environments. McAfee's activity monitoring sensors require no costly hardware or changes to your existing system architecture, giving you an easy-to-deploy, highly scalable database security solution. The sensors immediately detect any kind of unauthorized or malicious behavior and terminate it without significant impact to overall system performance. McAfee Database Activity Monitoring greatly simplifies your database security management and helps ensure compliance with PCI DSS, SOX, HIPAA/HITECH, SAS 70, and many other types of regulations.
Data Protection
McAfee DLP Monitor
McAfee DLP Monitor enables you to find, track, and protect sensitive information from any application or location, in any format, over any protocol or port, over time. Unrivaled data analytics support easy, accurate policy creation and rapid, flexible response.
Network Security
McAfee Firewall Enterprise
McAfee Firewall Enterprise is a next-generation firewall that restores control and protection to your network.
McAfee Network Security Platform
McAfee Network Security Platform is the industry's most secure network intrusion prevention system (IPS). Backed by McAfee Labs, it protects customers on average 80 days ahead of the threat. It blocks attacks in real time, before they can cause damage, and protects every network-connected device. With Network Security Platform, you can automatically manage risk and enforce compliance — while improving operational efficiency and reducing IT efforts.
Security Management
McAfee ePolicy Orchestrator
McAfee ePolicy Orchestrator (ePO) is a key component of the McAfee Security Management Platform, and the only enterprise-class software, to provide unified management of endpoint, network, and data security. With end-to-end visibility and powerful automations that slash incident response times, McAfee ePO software dramatically strengthens protection and drives down the cost and complexity of managing risk and security.
SIEM
McAfee Enterprise Security Manager
McAfee Enterprise Security Manager provides the speed and rich context required to identify critical threats, respond quickly, and easily address compliance requirements. Continuous global threat and enterprise risk feeds deliver adaptive and autonomous risk management, allowing remediation of threats and compliance reporting in minutes instead of hours.
McAfee Enterprise Log Manager
McAfee Enterprise Log Manager automates log management and analysis for all log types, including Windows Event logs, Database logs, Application logs, and Syslogs. Logs are signed and validated, ensuring authenticity and integrity — a necessity for regulatory compliance and forensics. Out-of-the-box compliance rule sets and reports make it simple to prove your organization is in compliance with regulations and internal policies.
McAfee Advanced Correlation Engine
McAfee Advanced Correlation Engine monitors real-time data, allowing you to simultaneously use both rule-based and rule-less correlation engines to detect risks and threats before they occur. You can deploy Advanced Correlation Engine in either real-time or historical modes.
McAfee Application Data Monitor
McAfee Application Data Monitor decodes an entire application session to Layer 7, providing a full analysis of everything from the underlying protocols and session integrity all the way up to the actual contents of the application (such as the text of an email or its attachments). This level of detail supports accurate analysis of real application use, while also enabling you to enforce application use policies and detect malicious, covert traffic.
McAfee Database Event Monitor for SIEM
McAfee Database Event Monitor for SIEM delivers non-intrusive, detailed security logging of database transactions by monitoring access to database configurations and data. It not only consolidates database activity into a central audit repository, but integrates with McAfee Enterprise Security Manager to intelligently analyze and detect suspicious activity.
Services
Critical Infrastructure Security Assessment
Foundstone’s expert team of consultants identify weaknesses in your security posture and develop actionable recommendations to mitigate the risks your environment faces from external attackers, insider threats, automated worms, and network management errors.
SCADA Emergency Incident Response
A security breach has been identified on your network, and the compromise could result in disruption of service, instability of control systems, or even loss of human lives. How can you reduce these risks by being prepared?
News / Events
News
- McAfee Aims to Protect Critical Infrastructure from Increased Attacks
May 15, 2012 - McAfee and CSIS Report Reveals Dramatic Increase in Cyberattacks and Sabotage on Critical Infrastructure Yet Organizations Remain Unprepared
April 19, 2011 - Media Alert: Major New Report From McAfee and CSIS on Cyber-Security for Critical Infrastructure Worldwide, Dial-in Options Available
April 13, 2011 - McAfee Application Control Solution Tested for Compatibility by Siemens-Division Industry Automation
April 13, 2011 - McAfee Advocates Using Global Attack Information Sharing to Counter Growing Cyber Threats to Critical Infrastructure and the American Economy
March 16, 2011 - McAfee and Wind River Announce Strategic Agreement for Security Protection beyond the PC
February 16, 2011
Events
No results foundResources
Security Connected for Public Sector: Situation Under Control
Through its optimized, connected security architecture and global threat intelligence, learn how McAfee delivers security that addresses the needs of the military, civilian government organizations, critical sectors, and systems integrators.
Seriously Powerful Solutions: Security Connected for Critical Infrastructure
The Security Connected framework from McAfee integrates multiple products, services, and partnerships to provide centralized, efficient, and effective risk mitigation. Across IT, SCADA, and ICS, Security Connected addresses endpoint, data, and network security.
Podcasts
Reports
Solution Briefs
Technology Blueprints
White Papers
Community
Forums
No results foundBlogs
- McAfee Labs Threat Report for Q1 2012: Threats Gone Wild
David Marcus - May 23, 2012
McAfee Labs has just released the McAfee Threats Report, First Quarter 2012, and I’m proud of it. I am cribbing from the intro to this quarter’s report, but it kinda says it all: “The Greek philosopher Heraclitus, known for his doctrine of change as central to the universe, once wrote that ‘everything flows, nothing Read more... - Securing the Panama Canal
Brian Contos - May 23, 2012
I just finished up a trip to Panama City, Panama. I’ve been to several countries in Central America like Costa Rica, El Salvador and Guatemala, but this was my first trip to Panama. In countries like Panama, the general rule of thumb is that business is focused across three primary verticals: financial services, telecommunications, and Read more... - Securing Energy Substations
Eric Knapp - May 15, 2012
Applying cyber security measures to industrial control systems represents some unique challenges. How do you obtain situational awareness across zones while enforcing the maximum possible level of network separation? How do you protect against malware while limiting the application of patches and updates to real-time systems? If a system is compromised in some way, how Read more... - March #SecChat Recap: Critical Infrastructure Security
Brian Contos - April 06, 2012
As we kicked off our March #SecChat on critical infrastructure, the first question on many participants’ minds was one of definition: What makes an infrastructure critical in the first place? There seem to be countless general definitions for critical infrastructure floating around, and quite a few short lists of which infrastructures should be included. None Read more... - Situational Awareness Part 2
Brian Contos - March 28, 2012
Today’s discussion, and the final installment of our podcast series on critical infrastructure with Eric Knapp, will be part 2 of Situational Awareness. If you haven’t already listened to part 1, you might want to take some time and listen to part one first, so you have a little bit of the background information. Welcome Read more...