Volkswagen Slovakia Implements Progress® Flowmon® to Provide IT Teams Insight Into Its Complex Infrastructure

Volkswagen Slovakia is one of the largest employers in its respective country with around 11,000 employees across two manufacturing plants.

Volkswagen Slovakia has a large IT infrastructure across its two locations. Its IT and operational technology (OT) departments are operating and monitoring 100,000 IP addresses, 8,000 user ID credentials and hundreds of automated machines. The growing complexity behind the IT and OT networks was pressing the auto manufacturer to start new strategies with security monitoring and detecting security anomalies.

“One of the most important initiatives we were trying to implement is the Zero Trust policy. Currently, standard security perimeters no longer exist,” said Marian Klaco, Chief Information Security Officer, Volkswagen Slovakia. “It is due to the increasing complexity through the usage of cloud services in both IT and OT environments, usage of IoT devices and increased complexity of computer and supply chain attacks.”

Volkswagen Slovakia was searching for a flexible security tool with the capability of enterprise-wide security monitoring. Since the complex IT and OT infrastructure offers a greater attack surface, the team wanted to proactively monitor it and effectively solve the issues.

After contacting Progress and doing due diligence and a Proof of Concept with Progress^® Flowmon^®, the company chose to deploy Flowmon company-wide.

There are a few specific products of the Flowmon solution which are used by Volkswagen Slovakia. The IT team utilizes the Flowmon Anomaly Detection System (ADS) to locate anomalies within network communication protocols. For example, if any inconsistent communication goes over proxy servers, Flowmon ADS is deployed to find, examine and remove any threats. Mr. Klaco notes how helpful this one capability of Flowmon has been to protect, monitor and secure their network infrastructure.

“Flowmon’s functionalities help us identify, investigate and eliminate anomalies in our network communication. It helps us identify malicious behavior in the usage of our systems and applications,” said Mr. Klaco. “Due to fact that our infrastructure is complex, it is necessary to be able to eliminate false positives in security monitoring, and this is something which Flowmon ADS can do well.

"Flowmon Probe is another component being used by the IT departments to investigate traffic coming from applications, as well as capture network traffic for analysis. Specifically, Mr. Klaco and his team use Packet Investigator and its automated analysis capability to further examine any issues found in the captured traffic.