Xona and Forescout Integrate Secure Remote Access and OT Cybersecurity for Critical Infrastructure

Facing mounting threats and stricter compliance mandates, industrial operators need secure OT access that doesn’t compromise uptime. Xona, a secure access solutions provider, and Forescout, a cybersecurity company, have partnered to deliver an integrated solution that combines real-time visibility with zero-trust remote access.

The partnership brings together Xona’s clientless, zero-trust remote access platform with Forescout’s continuous device visibility and context-aware enforcement engine. The result is a layered approach to securing OT, IT, and IoT environments, where user access is dynamically aligned to asset posture and system behavior.

“The joint solution from Xona and Forescout is fundamentally about rethinking secure remote access and visibility in OT environments,” said Bill Cantrell, Chief Strategy Officer at Xona. "Traditional approaches, such as VPNs, jump servers, or IT-based remote privileged access management tools, create unacceptably broad, persistent connections from user endpoints into critical systems. This exposes OT networks to lateral movement, ransomware, and insider threats.”

“In contrast, our integration brings together two purpose-built capabilities: Xona delivers secure, zero-trust access through a clientless, browser-based platform that fully isolates endpoints from critical OT systems, and Forescout provides dynamic, real-time visibility and context across the OT, IT, and IoT landscape using its 4D Security Platform.”

Context-Aware Access That Adapts in Real Time

A key differentiator in the Xona–Forescout integration is the use of dynamic context to guide access decisions. Rather than rely on static permissions, security teams can set policies that respond to real-time asset risk and behavioral indicators.

“What makes this unique is that Forescout’s asset context and risk scoring can directly inform access decisions within Xona,” Cantrell added. “So, access is no longer static, it can be dynamic based on posture, behavioral anomalies, and policy enforcement. If an asset’s risk profile spikes, access can be revoked or denied, ensuring critical infrastructure stays protected under any conditions.”

Driving Demand in Critical Infrastructure Sectors

While full-scale deployments are still in early stages, interest in the combined solution is strong, especially among energy, utilities, and transportation organizations looking to reduce manual intervention in access control and accelerate response during incidents.

“Several organizations have told us they want this integration for two key reasons,” said Cantrell. “First, to improve access decisions in real time by correlating Forescout’s dynamic asset risk scores with Xona’s session-based access controls, helping enforce least privilege access and adapt to changing OT conditions without manual intervention. And second, to accelerate forensic investigations by unifying asset behavior context with Xona’s detailed session logs and video recordings. This makes it faster and easier for security teams to understand what happened, who accessed what, and whether actions aligned with asset risk at the time.”

Built for Brownfield Deployments

Both platforms are designed to integrate into existing OT environments without requiring major network redesigns or new endpoint agents. This makes them suitable for brownfield deployments where uptime is critical and legacy systems are common. “Xona and Forescout are both designed to deploy into brownfield OT environments as an overlay, without requiring a network redesign, endpoint agents, or complex architectural changes,” Cantrell explained.

“A typical deployment path includes:

Asset discovery: Forescout automatically discovers and classifies OT, IT, and IoT assets and those can be mapped directly into the Xona Platform.

Access policy definition: Xona deployed in 20–30 minutes per site and identity-based, time-based, and role-based access policies are configured, aligned to regulatory requirements.

Integration: Forescout and Xona are integrated to share asset and posture data.

Monitoring and governance: Every session is logged and recorded and as teams gain confidence, they reduce reliance on legacy VPNs or jump servers, and consolidate into a unified access and visibility stack.”

“This approach allows organizations to reduce cyber risk, meet regulatory demands, and modernize OT access, all without disrupting current operations or introducing cloud dependencies.”

The joint solution is designed to support sectors such as energy, oil and gas, water, transportation, and healthcare, environments where secure, compliant, and efficient remote access is essential. By combining context-aware visibility with isolated access delivery, Xona and Forescout aim to help these organizations modernize cybersecurity strategies while maintaining operational resilience.