-
Featured services
Think beyond the robots
The successful integration of AI and IoT in manufacturing will depend on effective change management, upskilling and rethinking business models.
Read the blog -
Services
Leverage our capabilities to accelerate your business transformation.
-
Services
Network Services
Popular Products
-
Private 5G
Our turnkey private 5G network enables custom-built solutions that are designed around unique use cases and strategies, and deployed, run and optimized through a full network-as-a-service model.
-
Managed Campus Networks
Our Managed Campus Networks services transform campus networks, corporate area networks and interconnected local area networks, and connect smart places and industries.
-
-
Services
Cloud
Popular Products
-
Cloud Architecture and Modernization
Discover how to achieve your business goals through cloud modernization practices, that deliver improved agility, reusability and scalability.
-
Cloud Optimization
Discover how to maximize operational excellence, business continuity and financial sustainability through our cloud-advanced optimization services.
-
-
Services
Consulting
-
-
Services
Data and Artificial intelligence
-
Services
Technology Solutions
Client stories
-
Services
Data Center Services
-
Services
CX and Design
-
Services
Application Services
-
Services
Sustainability Services
-
Services
Digital Workplace
-
Services
Business Process Services
Master your GenAI destiny
We’ll help you navigate the complexities and opportunities of GenAI.
Explore GenAI -
-
-
Insights
Recent Insights
-
The Future of Networking in 2025 and Beyond
-
Using the cloud to cut costs needs the right approach
When organizations focus on transformation, a move to the cloud can deliver cost savings – but they often need expert advice to help them along their journey
-
Make zero trust security work for your organization
Make zero trust security work for your organization across hybrid work environments.
-
-
Master your GenAI destiny
We’ll help you navigate the complexities and opportunities of GenAI.
Explore GenAI -
-
Master your GenAI destiny
We’ll help you navigate the complexities and opportunities of GenAI.
Explore GenAI -
Discover how we accelerate your business transformation
-
About us
CLIENT STORIES
-
Liantis
Over time, Liantis – an established HR company in Belgium – had built up data islands and isolated solutions as part of their legacy system.
-
Randstad
We ensured that Randstad’s migration to Genesys Cloud CX had no impact on availability, ensuring an exceptional user experience for clients and talent.
-
-
CLIENT STORIES
-
Liantis
Over time, Liantis – an established HR company in Belgium – had built up data islands and isolated solutions as part of their legacy system.
-
Randstad
We ensured that Randstad’s migration to Genesys Cloud CX had no impact on availability, ensuring an exceptional user experience for clients and talent.
-
-
CLIENT STORIES
-
Liantis
Over time, Liantis – an established HR company in Belgium – had built up data islands and isolated solutions as part of their legacy system.
-
Randstad
We ensured that Randstad’s migration to Genesys Cloud CX had no impact on availability, ensuring an exceptional user experience for clients and talent.
-
Everest Group PEAK Matrix® Assessment
NTT DATA is a Leader and Star Performer in the Everest Group Sustainability Enablement Technology Services PEAK Matrix® Assessment 2024.
Get the Everest report -
- Careers
Summary
Together with Bayer AG we’re protecting their operational technology (OT) environment against evolving cyberthreats. Bayer wanted to improve the visibility and transparency of the complex OT environment in their Pharmaceuticals Division, which is spread across the company’s 15 largest sites worldwide.
The goal was to increase asset availability and protect critical infrastructure from potential cyberattacks. The chemical and pharmaceutical company selected Guardian appliances and the Central Management Console from Nozomi Networks. Our security experts designed, implemented and rolled out the solution globally.
Business need
Bayer wants to protect its critical infrastructure from interruptions
In the development and construction of a production plant, the functional requirements are the first and foremost priority. Availability around the clock is of the utmost importance so that production does not come to a standstill. However, the integration of the corporate network increases the need to protect such OT systems against cyber risks. Companies that are considered operators of critical infrastructures need to protect themselves through the latest technologies so that they can respond at the earliest signs of attacks and anomalies within the network.
Bayer AG’s Pharmaceuticals Division also faces this challenge. While Bayer already had well-established security policies and protocols in place, in light of the rapid increase in cyberattacks they wanted to better protect themselves against new threats, as well as prevent data from being compromised or from intellectual property falling into the wrong hands. For Bayer, the issue of product safety – and therefore patient safety – is a top priority. Since the company’s supply chain is spread across several production sites and countries, the transparency and security of OT processes and networks required further optimization. Although Bayer had an overview of the number of individual devices in its networks, the IT team was not able to identify how they communicate with each other and where vulnerabilities and risks lie. Meanwhile, those responsible were faced with the challenge of standardizing security processes across IT and OT.
The new solution, as an additional building block in securing production facilities, was intended to help Bayer Pharmaceuticals find weak points and detect and respond to attacks at an early stage. Additionally, Bayer wanted a uniform management level to consolidate global risk monitoring and OT visibility across all sites in order to optimize workflows.
"We need to be able to constantly detect attacks and anomalies in our production network as early as possible in order to prevent a system failure."
Solution
Advanced detection capabilities identify potential cyberthreats and vulnerabilities in the plant
Bayer selected us to implement the Guardian solution with Nozomi Networks’ Central Management Console (CMC). To begin the project, a Guardian appliance and virtual management console were initially installed at a selected production site as part of a proof of concept (PoC) to demonstrate the solution’s features and capabilities. Nozomi Networks’ Guardian appliance automatically tracks OT and IoT assets and monitors communications and device behavior to gain insight into the network and its activity patterns.
In this way, it detects anomalies in behavior as well as attacks and identifies the respective vulnerabilities with the appropriate priority. In doing so, the CMC consolidates OT and IoT visibility and risk monitoring across all sites to streamline workflows and accelerate incident response.
The results of the PoC impressed those in Bayer’s in-house OT security team: Guardian not only automatically creates a comprehensive asset inventory, but also creates full transparency of all operations in the company’s own network, which supports optimized network configuration. The security team is thus able to reduce manual troubleshooting and forensic efforts, speeding up the response to potential vulnerabilities.
Our security experts handled the design, implementation and global rollout of the solution at all production sites in close coordination with Bayer. Our tried-and-tested project method was chosen for the implementation, in which eight so-called work packages were ‘worked through’ step by step. The project started with a kick-off and the general design of the architecture. This was followed by an initial inventory and a rough design for each individual site, defining where the appliance would be inserted into the network and what data traffic would be monitored. The next step was configuration and – as soon as the number of alarms had been reduced and all false alarms had been fished out – final fine-tuning, including activation of the protection mode.
All further measures were then implemented, including real-time reports, dashboards, audits, integration into the central Security Operation Center (SOC) and final training sessions for the security managers at Bayer.
"As a major supplier in the pharmaceutical sector, providing patients with their medications is our top priority. An intrusion detection system is an essential component of our strategy, which we have successfully integrated, together with our partner NTT."
Outcomes
Bayer now has visibility of its complex, globally distributed OT environments
With the new solutions, Bayer AG has the capability to optimize its network security in a highly targeted manner. Network communication and behavior are constantly monitored in order to detect anomalies and possible attacks, which allows for a swift response to potential incidents before they can disrupt operations. Advanced threat intelligence capabilities identify cyberattacks as well as production risks early. The included threat intelligence service continuously updates Guardian appliances with the latest data and analysis.
The pharmaceutical company is thus always kept up to date on emerging OT and IoT threats and can promptly detect and prevent the spread of potential infiltrations across its networks. This allowed around-the-clock availability of the production plants, which is essential for the pharmaceutical sector.
The central console at the main site in Leverkusen also gives Bayer’s managers a consolidated overview of all production sites around the world, providing company-wide transparency. With the help of our experts, the systems were also configured in such a way that false alarms and operating costs are reduced to a minimum.