* [Blog](https://www2.paloaltonetworks.com/blog)
* [Network Security](https://www2.paloaltonetworks.com/blog/network-security/)
* [IoT](https://www2.paloaltonetworks.com/blog/category/iot/)
* Modernize Your Infrastruc...

# Modernize Your Infrastructure Management by Removing IoT Blind Spots

[](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fwww2.paloaltonetworks.com%2Fblog%2Fnetwork-security%2Fmodernize-your-infrastructure-management-by-removing-iot-blind-spots%2F)  
[](https://twitter.com/share?text=Modernize+Your+Infrastructure+Management+by+Removing+IoT+Blind+Spots&url=https%3A%2F%2Fwww2.paloaltonetworks.com%2Fblog%2Fnetwork-security%2Fmodernize-your-infrastructure-management-by-removing-iot-blind-spots%2F)  
[](https://www.linkedin.com/shareArticle?mini=true&url=https%3A%2F%2Fwww2.paloaltonetworks.com%2Fblog%2Fnetwork-security%2Fmodernize-your-infrastructure-management-by-removing-iot-blind-spots%2F&title=Modernize+Your+Infrastructure+Management+by+Removing+IoT+Blind+Spots&summary=&source=)  
[](https://www.paloaltonetworks.com//www.reddit.com/submit?url=https://www2.paloaltonetworks.com/blog/network-security/modernize-your-infrastructure-management-by-removing-iot-blind-spots/&ts=markdown)  
\[\](mailto:?subject=Modernize Your Infrastructure Management by Removing IoT Blind Spots)  
Link copied  
By [Muninder Singh Sambi](https://www.paloaltonetworks.com/blog/author/muninder-singh-sambi/?ts=markdown "Posts by Muninder Singh Sambi")  
Mar 22, 2021  
5 minutes  
[IoT](https://www.paloaltonetworks.com/blog/category/iot/?ts=markdown)  
[IoT Security](https://www.paloaltonetworks.com/blog/network-security/category/iot-security/?ts=markdown)  
[NAC](https://www.paloaltonetworks.com/blog/category/cybersecurity-2/nac/?ts=markdown)  
[Network Access Control](https://www.paloaltonetworks.com/blog/category/network-access-control/?ts=markdown)

Market forecasts suggest that by 2030 around 50 billion Internet of Things (IoT) devices will be in use worldwide, creating a massive web of interconnected devices spanning everything from connected google glasses to office cafe appliances.

The lines between the corporate and public networks are already blurred with the"work from home" trend and the shift to cloud environments, and this is only compounded by the massive influx of IoT - your traditional perimeter is already becoming a relic of the past.

Most organizations are still relying on traditional infrastructure visibility solutions to enable IT and Security, a great example of this is Network Access Control (NAC). NAC is good for profiling managed users and devices to minimize the network security risk but has limited visibility into the unmanaged and unagentable IoT and OT devices. Since it uses visibility as an enabler for enforcement, accurate discovery, identification and context of all devices including burgeoning IoT and OT devices become critical to make sure that your network is segmented properly and their associated security risks are reined in.

Given these macro trends, do you think you are prepared for the risk of unmanaged devices? Can you segment your network confidently? Does your security team get device details so they can prioritize and make decisions? Are you detecting new devices as they are added to your network? Is your NAC enforcing the right controls on the right devices or are all devices created equal?

To answer these questions, one needs to apply the below foundational cybersecurity best practices to devices, not just users, apps and data.

* Visibility in to all devices (IT, IoT, OT) connecting to your network
* Segmentation and separation of different device types
* Granular policy creation to limit devices based on their role and function
* Controlling device access to the network to limit risk

As mentioned before, current NAC solutions are not fundamentally designed to discover modern devices to enable these best practices, they can however help with enforcement and segmentation. The prerequisite to applying segmentation is to understand the device's true identity and behavior. For this machine learning (ML) and artificial intelligence (AI) is the preferred approach to identify and profile devices, even those not known before. ML/AI is no longer a next-gen technology for us---it is here and available. We have coupled ML with the largest crowdsourced pool of big IoT device data to identify devices quickly, accurately, and to understand their behavior- what, why and where it is trying to connect. This analysis produces accurate device information and recommends policies to enforce control specific to that device and its placement on your network, informing NAC, and IT/security teams to make decisions when the time comes. For example, imagine a scenario in healthcare wherein a newly FDA approved DICOM imager is purchased by the clinical department. The security team uses NAC visibility to identify it as only a "HP device", but with Palo Alto Networks' superior IoT device visibility, the same HP device is identified as an HP DICOM Imager and goes a step further to show what this device is communicating with. Palo Alto Networks IoT Security solution compliments and enhances NAC policies and implementation by providing additional visibility and context across all traditional IT and modern day IoT and OT devices. This combination results in elevating your overall security posture.

The combined use of these advanced technologies also comes in handy when a device type is used for multi purposes. A great example is Apple iPads. People and organizations are coming up with innovative ways to use iPads. Retail industry is using them as a form filler, as an edge credit card processing device, or even to look for customer's profile data. Even if a NAC identifies the device as an Apple iPad, not knowing the behavior would still result in placing the iPad device in the wrong network segment causing customer transaction disruption. But Palo Alto networks can again enhance the NAC policies by sharing extensive details on the iPad device and its behavior thus helping NAC to segment the device accurately without causing business disruption.

Palo Alto Networks is the only solution in the market today that helps you protect every IT, IoT and OT device on your network, even unknown ones with industry's most comprehensive IoT Security solution delivering ML-powered visibility, prevention, and enforcement in a single platform.

![](https://www.paloaltonetworks.com/blog/wp-content/uploads/2021/03/Screen-Shot-2021-03-22-at-3.20.08-PM.png)

Palo Alto Networks is revolutionizing the IoT security industry by delivering a cutting edge and yet a simplified holistic solution with security at its core. We have delivered best-in-class IoT Security that makes your NAC smarter. It natively shares IT, IoT and OT device information with your NAC, provides policy recommendations and is effortless to deploy with just a simple SW subscription. The IoT Security solution is delivered from the cloud that can be deployed across any architecture or any sensor or enforcement point across hardware, software and cloud. The whole solution will scale linearly for you. Our cloud delivered model provides new innovations and threat detection techniques with no customer operational impact.

Securing your network with NAC from IoT threats is like navigating across a maze of unknown and unmanaged devices with a compass. Palo Alto Networks is the modern day GPS that will automatically navigate through risks and protect every IoT device on your network!

**[Read](https://www.paloaltonetworks.com/content/dam/pan/en_US/assets/pdf/datasheets/iot-security.pdf) for more information on IoT Security from Palo Alto Networks.**

*** ** * ** ***

## Related Blogs

### [Announcement](https://www.paloaltonetworks.com/blog/category/announcement/?ts=markdown), [IoT](https://www.paloaltonetworks.com/blog/category/iot/?ts=markdown), [IoT Security](https://www.paloaltonetworks.com/blog/network-security/category/iot-security/?ts=markdown), [Network Access Control](https://www.paloaltonetworks.com/blog/category/network-access-control/?ts=markdown)

[#### Unlock the power of IT and security solutions with ZERO IoT blindspots](https://www2.paloaltonetworks.com/blog/network-security/zero-iot-blind-spots/)

### [Announcement](https://www.paloaltonetworks.com/blog/category/announcement/?ts=markdown), [IoT](https://www.paloaltonetworks.com/blog/category/iot/?ts=markdown), [IoT Security](https://www.paloaltonetworks.com/blog/network-security/category/iot-security/?ts=markdown), [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown)

[#### Announcing Device Security: Supercharging Proactive Device Protection](https://www2.paloaltonetworks.com/blog/network-security/announcing-device-security-supercharging-proactive-device-protection/)

### [IoT](https://www.paloaltonetworks.com/blog/category/iot/?ts=markdown), [IoT Security](https://www.paloaltonetworks.com/blog/network-security/category/iot-security/?ts=markdown)

[#### You Can't Spell Platformization Without IoT](https://www2.paloaltonetworks.com/blog/network-security/you-cant-spell-platformization-without-iot/)

### [Industrial OT Security](https://www.paloaltonetworks.com/blog/network-security/category/industrial-ot-security/?ts=markdown), [IoT](https://www.paloaltonetworks.com/blog/category/iot/?ts=markdown), [IoT Security](https://www.paloaltonetworks.com/blog/network-security/category/iot-security/?ts=markdown), [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown)

[#### Safeguard OT Environments with the Power of Precision AI](https://www2.paloaltonetworks.com/blog/2024/10/safeguard-ot-environments-power-precision-ai/)

### [Healthcare](https://www.paloaltonetworks.com/blog/category/healthcare/?ts=markdown), [IoT](https://www.paloaltonetworks.com/blog/category/iot/?ts=markdown), [IoT Security](https://www.paloaltonetworks.com/blog/network-security/category/iot-security/?ts=markdown)

[#### MDS2: A Treasure Trove for Internet of Medical Things (IoMT) Security](https://www2.paloaltonetworks.com/blog/network-security/treasure-trove-for-iomt-device-security/)

### [IoT](https://www.paloaltonetworks.com/blog/category/iot/?ts=markdown), [IoT Security](https://www.paloaltonetworks.com/blog/network-security/category/iot-security/?ts=markdown), [Retail](https://www.paloaltonetworks.com/blog/category/retail/?ts=markdown)

[#### Smart Retail Supply Chains Need Smarter IoT Security](https://www2.paloaltonetworks.com/blog/network-security/retail_supply_chain_iot_security/)

### Subscribe to Network Security Blogs!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.
![spinner](https://www2.paloaltonetworks.com/blog/wp-content/themes/panwblog2023/dist/images/ajax-loader.gif) Sign up  
Please enter a valid email.  
By submitting this form, you agree to our [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown) and acknowledge our [Privacy Statement](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown). Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.  
This site is protected by reCAPTCHA and the Google [Privacy Policy](https://policies.google.com/privacy) and [Terms of Service](https://policies.google.com/terms) apply.  
{#footer} {#footer}

## Products and Services

* [AI-Powered Network Security Platform](https://www.paloaltonetworks.com/network-security?ts=markdown)

* [Secure AI by Design](https://www.paloaltonetworks.com/precision-ai-security/secure-ai-by-design?ts=markdown)

* [Prisma AIRS](https://www.paloaltonetworks.com/prisma/prisma-ai-runtime-security?ts=markdown)

* [AI Access Security](https://www.paloaltonetworks.com/sase/ai-access-security?ts=markdown)

* [Cloud Delivered Security Services](https://www.paloaltonetworks.com/network-security/security-subscriptions?ts=markdown)

* [Advanced Threat Prevention](https://www.paloaltonetworks.com/network-security/advanced-threat-prevention?ts=markdown)

* [Advanced URL Filtering](https://www.paloaltonetworks.com/network-security/advanced-url-filtering?ts=markdown)

* [Advanced WildFire](https://www.paloaltonetworks.com/network-security/advanced-wildfire?ts=markdown)

* [Advanced DNS Security](https://www.paloaltonetworks.com/network-security/advanced-dns-security?ts=markdown)

* [Enterprise Data Loss Prevention](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Enterprise IoT Security](https://www.paloaltonetworks.com/network-security/enterprise-device-security?ts=markdown)

* [Medical IoT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [Industrial OT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [Next-Generation Firewalls](https://www.paloaltonetworks.com/network-security/next-generation-firewall?ts=markdown)

* [Hardware Firewalls](https://www.paloaltonetworks.com/network-security/hardware-firewall-innovations?ts=markdown)

* [Software Firewalls](https://www.paloaltonetworks.com/network-security/software-firewalls?ts=markdown)

* [Strata Cloud Manager](https://www.paloaltonetworks.com/network-security/strata-cloud-manager?ts=markdown)

* [SD-WAN for NGFW](https://www.paloaltonetworks.com/network-security/sd-wan-subscription?ts=markdown)

* [PAN-OS](https://www.paloaltonetworks.com/network-security/pan-os?ts=markdown)

* [Panorama](https://www.paloaltonetworks.com/network-security/panorama?ts=markdown)

* [Secure Access Service Edge](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Prisma SASE](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Application Acceleration](https://www.paloaltonetworks.com/sase/app-acceleration?ts=markdown)

* [Autonomous Digital Experience Management](https://www.paloaltonetworks.com/sase/adem?ts=markdown)

* [Enterprise DLP](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Prisma Access](https://www.paloaltonetworks.com/sase/access?ts=markdown)

* [Prisma Browser](https://www.paloaltonetworks.com/sase/prisma-browser?ts=markdown)

* [Prisma SD-WAN](https://www.paloaltonetworks.com/sase/sd-wan?ts=markdown)

* [Remote Browser Isolation](https://www.paloaltonetworks.com/sase/remote-browser-isolation?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [AI-Driven Security Operations Platform](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cloud Security](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Cortex Cloud](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Application Security](https://www.paloaltonetworks.com/cortex/cloud/application-security?ts=markdown)

* [Cloud Posture Security](https://www.paloaltonetworks.com/cortex/cloud/cloud-posture-security?ts=markdown)

* [Cloud Runtime Security](https://www.paloaltonetworks.com/cortex/cloud/runtime-security?ts=markdown)

* [Prisma Cloud](https://www.paloaltonetworks.com/prisma/cloud?ts=markdown)

* [AI-Driven SOC](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cortex XSIAM](https://www.paloaltonetworks.com/cortex/cortex-xsiam?ts=markdown)

* [Cortex XDR](https://www.paloaltonetworks.com/cortex/cortex-xdr?ts=markdown)

* [Cortex XSOAR](https://www.paloaltonetworks.com/cortex/cortex-xsoar?ts=markdown)

* [Cortex Xpanse](https://www.paloaltonetworks.com/cortex/cortex-xpanse?ts=markdown)

* [Unit 42 Managed Detection \& Response](https://www.paloaltonetworks.com/cortex/managed-detection-and-response?ts=markdown)

* [Managed XSIAM](https://www.paloaltonetworks.com/cortex/managed-xsiam?ts=markdown)

* [Threat Intel and Incident Response Services](https://www.paloaltonetworks.com/unit42?ts=markdown)

* [Proactive Assessments](https://www.paloaltonetworks.com/unit42/assess?ts=markdown)

* [Incident Response](https://www.paloaltonetworks.com/unit42/respond?ts=markdown)

* [Transform Your Security Strategy](https://www.paloaltonetworks.com/unit42/transform?ts=markdown)

* [Discover Threat Intelligence](https://www.paloaltonetworks.com/unit42/threat-intelligence-partners?ts=markdown)

## Company

* [About Us](https://www.paloaltonetworks.com/about-us?ts=markdown)
* [Careers](https://jobs.paloaltonetworks.com/en/)
* [Contact Us](https://www.paloaltonetworks.com/company/contact-sales?ts=markdown)
* [Corporate Responsibility](https://www.paloaltonetworks.com/about-us/corporate-responsibility?ts=markdown)
* [Customers](https://www.paloaltonetworks.com/customers?ts=markdown)
* [Investor Relations](https://investors.paloaltonetworks.com/)
* [Location](https://www.paloaltonetworks.com/about-us/locations?ts=markdown)
* [Newsroom](https://www.paloaltonetworks.com/company/newsroom?ts=markdown)

## Popular Links

* [Blog](https://www.paloaltonetworks.com/blog/?ts=markdown)
* [Communities](https://www.paloaltonetworks.com/communities?ts=markdown)
* [Content Library](https://www.paloaltonetworks.com/resources?ts=markdown)
* [Cyberpedia](https://www.paloaltonetworks.com/cyberpedia?ts=markdown)
* [Event Center](https://events.paloaltonetworks.com/)
* [Manage Email Preferences](https://start.paloaltonetworks.com/preference-center)
* [Products A-Z](https://www.paloaltonetworks.com/products/products-a-z?ts=markdown)
* [Product Certifications](https://www.paloaltonetworks.com/legal-notices/trust-center/compliance?ts=markdown)
* [Report a Vulnerability](https://www.paloaltonetworks.com/security-disclosure?ts=markdown)
* [Sitemap](https://www.paloaltonetworks.com/sitemap?ts=markdown)
* [Tech Docs](https://docs.paloaltonetworks.com/)
* [Unit 42](https://unit42.paloaltonetworks.com/)
* [Do Not Sell or Share My Personal Information](https://panwedd.exterro.net/portal/dsar.htm?target=panwedd)
  ![PAN logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/pan-logo-dark.svg)
* [Privacy](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown)
* [Trust Center](https://www.paloaltonetworks.com/legal-notices/trust-center?ts=markdown)
* [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown)
* [Documents](https://www.paloaltonetworks.com/legal?ts=markdown)

Copyright © 2026 Palo Alto Networks. All Rights Reserved

* [![Youtube](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/youtube-black.svg)](https://www.youtube.com/user/paloaltonetworks)
* [![Podcast](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/icons/podcast.svg)](https://www.paloaltonetworks.com/podcasts/threat-vector?ts=markdown)
* [![Facebook](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/facebook-black.svg)](https://www.facebook.com/PaloAltoNetworks/)
* [![LinkedIn](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/linkedin-black.svg)](https://www.linkedin.com/company/palo-alto-networks)
* [![Twitter](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/twitter-x-black.svg)](https://twitter.com/PaloAltoNtwks)
* EN  
  Select your language