{"id":3172,"date":"2026-06-12T07:32:10","date_gmt":"2026-06-12T07:32:10","guid":{"rendered":"https:\/\/inprotech.es\/?p=3172"},"modified":"2026-06-12T07:32:19","modified_gmt":"2026-06-12T07:32:19","slug":"inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice","status":"publish","type":"post","link":"https:\/\/inprotech.es\/en\/inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice\/","title":{"rendered":"InprOTech Guardian and the Purdue Model: OT Segmentation in Practice"},"content":{"rendered":"<p><span style=\"font-weight: 400;\">Segmenting an OT network well is not just about separating teams. It consists of understanding functions, dependencies and real flows to reduce risk without losing operability.<\/span><\/p>\n<figure id=\"attachment_3173\" aria-describedby=\"caption-attachment-3173\" style=\"width: 697px\" class=\"wp-caption aligncenter\"><img loading=\"lazy\" decoding=\"async\" class=\" wp-image-3173\" src=\"https:\/\/inprotech.es\/wp-content\/uploads\/2026\/06\/1-2.png\" alt=\"\" width=\"697\" height=\"386\" srcset=\"https:\/\/inprotech.es\/wp-content\/uploads\/2026\/06\/1-2.png 1916w, https:\/\/inprotech.es\/wp-content\/uploads\/2026\/06\/1-2-300x166.png 300w, https:\/\/inprotech.es\/wp-content\/uploads\/2026\/06\/1-2-1024x567.png 1024w\" sizes=\"auto, (max-width: 697px) 100vw, 697px\" \/><figcaption id=\"caption-attachment-3173\" class=\"wp-caption-text\">OT Network Map with Purdue Tiering in Guardian<\/figcaption><\/figure>\n<p>&nbsp;<\/p>\n<p><span style=\"font-weight: 400;\">In industrial cybersecurity, seeing the network is not enough. What is relevant, from a technical and risk management point of view, is to understand what function each asset fulfills, at what operational level it works and what impact unforeseen communication between areas would have. In this context, the <\/span><b>Purdue Model<\/b><span style=\"font-weight: 400;\"> continues to be a useful reference for structuring OT environments, and <\/span><b>InprOTech Guardian<\/b><span style=\"font-weight: 400;\"> allows this conceptual framework to be transferred to an observable and maintained inventory.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Guardian allows you to maintain a structured device list, classify assets by Purdue tier, differentiate authorized and unauthorized equipment,\u00a0 and flag critical devices\u00a0 to avoid unnecessary active interactions. This foundation is especially valuable when the organization needs to move from an OT network that is difficult to govern to an architecture that can\u00a0 be technically and normatively analyzed, justified, and improved, especially in projects aligned with <\/span><b>IEC 62443<\/b><span style=\"font-weight: 400;\">. The Purdue view of the network map organizes devices by tier, allowing you to identify at a glance the actual structure of the environment and communications between tiers.<\/span><\/p>\n<h2><b>Why is the Purdue Model still useful?<\/b><\/h2>\n<p><span style=\"font-weight: 400;\">The Purdue Model was developed at Purdue University in the early 1990s as a framework for integrated manufacturing (PERA), and is the conceptual basis adopted by IEC 62443 and ISA-95. Today it is still a clear way of <\/span><b>ordering the industrial environment by function and exposure<\/b><span style=\"font-weight: 400;\">. It&#8217;s not just about drawing layers, it&#8217;s about <\/span><b>reducing risk, limiting lateral movement, and establishing coherent communication rules<\/b><span style=\"font-weight: 400;\"> that can be sustained in operation.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">In practical terms, Guardian helps translate that model into the organization&#8217;s actual inventory:<\/span><\/p>\n<ul>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><b>Level 0<\/b><span style=\"font-weight: 400;\">: sensors, actuators and field devices.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><b>Level 1<\/b><span style=\"font-weight: 400;\">: PLC, RTU, basic controllers, I\/O devices and first layer of control.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><b>Level 2<\/b><span style=\"font-weight: 400;\">: HMI, SCADA, monitoring stations, and historization servers.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><b>Level 3<\/b><span style=\"font-weight: 400;\">: MES, operation servers, plant databases and production management.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><b>Level 4<\/b><span style=\"font-weight: 400;\">: ERP, CRM, SCM and business systems connected to operations.<\/span><\/li>\n<\/ul>\n<figure id=\"attachment_3175\" aria-describedby=\"caption-attachment-3175\" style=\"width: 581px\" class=\"wp-caption aligncenter\"><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-3175\" src=\"https:\/\/inprotech.es\/wp-content\/uploads\/2026\/06\/2-2.png\" alt=\"\" width=\"581\" height=\"588\" srcset=\"https:\/\/inprotech.es\/wp-content\/uploads\/2026\/06\/2-2.png 581w, https:\/\/inprotech.es\/wp-content\/uploads\/2026\/06\/2-2-296x300.png 296w\" sizes=\"auto, (max-width: 581px) 100vw, 581px\" \/><figcaption id=\"caption-attachment-3175\" class=\"wp-caption-text\">Visual diagram of levels 0-4 with examples of assets detected by Guardian<\/figcaption><\/figure>\n<p>&nbsp;<\/p>\n<p><span style=\"font-weight: 400;\">The Guardian&#8217;s own manual already contemplates this organization and reminds us of something important: <\/span><b>some devices can change levels depending on their function and location<\/b><span style=\"font-weight: 400;\">. That nuance is essential. The same technology can occupy different positions if it acts as an engineering station, plant server, or gateway between environments.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">In other words, <\/span><b>Purdue should not be applied as a rigid template<\/b><span style=\"font-weight: 400;\">, but as a guide to classification with technical and operational criteria.<\/span><\/p>\n<h2><b>How to classify devices in a useful way<\/b><\/h2>\n<p><span style=\"font-weight: 400;\">One of the most common mistakes in OT is to classify assets only by their trade name or by the manufacturer. To segment well, you need a <\/span><b>functional classification<\/b><span style=\"font-weight: 400;\">. With Guardian, the recommendation is to assign each asset at least these parameters:<\/span><\/p>\n<ul>\n<li style=\"list-style-type: none;\">\n<ul>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><b>Purdue Level<\/b><span style=\"font-weight: 400;\">.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><b>Authorized\/unauthorized<\/b><span style=\"font-weight: 400;\">.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><b>Critical \/ non-critical<\/b><span style=\"font-weight: 400;\">.<\/span><\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<ul>\n<li aria-level=\"1\"><b>Risk scoring<\/b><span style=\"font-weight: 400;\"> (low, medium, high) automatically assigned by Guardian.<\/span><\/li>\n<\/ul>\n<ul>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><b>Customizable fields<\/b><span style=\"font-weight: 400;\"> (key-value): process, line, cell, location, owner&#8230;<\/span><\/li>\n<\/ul>\n<p><span style=\"font-weight: 400;\">This classification allows the inventory to stop being a static list and become a <\/span><b>decision tool<\/b><span style=\"font-weight: 400;\">.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">For example:<\/span><\/p>\n<ul>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">A <\/span><b>line PLC<\/b><span style=\"font-weight: 400;\"> should appear at <\/span><b>Level 1<\/b><span style=\"font-weight: 400;\"> and should typically only communicate with defined supervisory or engineering systems.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">A <\/span><b>SCADA<\/b><span style=\"font-weight: 400;\"> or <\/span><b>historian<\/b><span style=\"font-weight: 400;\"> fits into <\/span><b>Level 2<\/b><span style=\"font-weight: 400;\">, with expected communications to controllers and some plant services.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">An <\/span><b>MES<\/b><span style=\"font-weight: 400;\"> or operations server is located at <\/span><b>Level 3<\/b><span style=\"font-weight: 400;\">, where segmentation should be stricter with respect to Level 4 and remote access.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">An <\/span><b>ERP<\/b><span style=\"font-weight: 400;\"> belongs to <\/span><b>Level 4<\/b><span style=\"font-weight: 400;\"> and should not maintain direct and indiscriminate relationships with control assets.<\/span><\/li>\n<\/ul>\n<p><span style=\"font-weight: 400;\">Guardian helps validate this organization by providing <\/span><b>network mapping<\/b><span style=\"font-weight: 400;\">, <\/span><b>device listing<\/b><span style=\"font-weight: 400;\">, communications visibility, and detection of nodes that have not been recognized as legitimate. This crossover between inventory and observed traffic is what turns a theoretical classification into a <\/span><b>verifiable classification<\/b><span style=\"font-weight: 400;\">, useful both for operation and for technical review.<\/span><\/p>\n<h2><b>Segmentation according to IEC 62443: from theory to operational control<\/b><\/h2>\n<p><span style=\"font-weight: 400;\">The <\/span><b>IEC 62443 series <\/b><span style=\"font-weight: 400;\">\u00a0doesn&#8217;t just ask for visibility. What it requires is segmentation <\/span><b>based on zones and ducts<\/b><span style=\"font-weight: 400;\">, with separation between functions, access control, minimization of communications and risk traceability. In that context, Purdue does not replace IEC 62443, but it does provide a useful reference structure for defining zones that make operational sense and turning a regulatory requirement into a maintainable practice.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">In addition, this approach fits in with widely used recommendations in industrial safety, such as those contained in <\/span><b>NIST SP 800-82 Rev. 3<\/b><span style=\"font-weight: 400;\"> and in <\/span><b>\u00a0<\/b><span style=\"font-weight: 400;\">CISA&#8217;<\/span><b>s ICS Recommended Practices<\/b><span style=\"font-weight: 400;\">, where reliable inventory, segmentation, and communication control appear as structural measures to reduce exposure and improve resilience. They are also applicable in frameworks such as ISO 27001, ENS and the NIS2 Directive for operators of essential services.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">With Guardian, this approach can be landed in a practical way:<\/span><\/p>\n<ol>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><b>Discover real assets<\/b><span style=\"font-weight: 400;\"> and remove blind spots from inventory.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><b>Assign Purdue level<\/b><span style=\"font-weight: 400;\"> to each device based on its function automatically.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><b>Identify in the Purdue view communications between non-adjacent levels<\/b><span style=\"font-weight: 400;\">, marked as compliance warnings (IEC 62443).<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><b>Flag critical devices<\/b><span style=\"font-weight: 400;\"> to prevent unwanted active actions.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><b>Detect unauthorized equipment<\/b><span style=\"font-weight: 400;\"> and connections that break the segmentation policy.<\/span><\/li>\n<\/ol>\n<figure id=\"attachment_3177\" aria-describedby=\"caption-attachment-3177\" style=\"width: 699px\" class=\"wp-caption aligncenter\"><img loading=\"lazy\" decoding=\"async\" class=\" wp-image-3177\" src=\"https:\/\/inprotech.es\/wp-content\/uploads\/2026\/06\/3-2.png\" alt=\"\" width=\"699\" height=\"387\" srcset=\"https:\/\/inprotech.es\/wp-content\/uploads\/2026\/06\/3-2.png 1916w, https:\/\/inprotech.es\/wp-content\/uploads\/2026\/06\/3-2-300x166.png 300w, https:\/\/inprotech.es\/wp-content\/uploads\/2026\/06\/3-2-1024x567.png 1024w\" sizes=\"auto, (max-width: 699px) 100vw, 699px\" \/><figcaption id=\"caption-attachment-3177\" class=\"wp-caption-text\">Inventory view in Guardian with asset classification by level<\/figcaption><\/figure>\n<p>&nbsp;<\/p>\n<p><span style=\"font-weight: 400;\">This approach helps answer questions that appear in any audit or bastioning project:<\/span><\/p>\n<ul>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><b>Which assets are part of each zone?<\/b><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><b>Which systems cross levels without clear justification?<\/b><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><b>What unauthorized devices are present on the network?<\/b><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><b>Which assets are so sensitive that they should be excluded from active interaction?<\/b><\/li>\n<\/ul>\n<p><span style=\"font-weight: 400;\">When that information is maintained in Guardian, compliance moves away from scattered spreadsheets to a <\/span><b>living inventory, with context and exportable evidence<\/b><span style=\"font-weight: 400;\">.<\/span><\/p>\n<h2><b>Regulatory compliance and evidence that does work<\/b><\/h2>\n<p><span style=\"font-weight: 400;\">Talking about compliance in OT should not be reduced to &#8220;having segmentation&#8221;, but to <\/span><b>being able to demonstrate it<\/b><span style=\"font-weight: 400;\">. Guardian enables you to do just that: up-to-date inventory, Purdue tiering, communications visibility, and exportable reports for auditing, technical governance, and decision-making.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">This makes it easier to prepare evidence for regulatory frameworks, internal audits, sectoral requirements and projects aligned with <\/span><b>IEC 62443<\/b><span style=\"font-weight: 400;\">, especially in aspects related\u00a0 to asset identification, segmentation, communications control and operational risk management. It also supports internal initiatives that reference guides such as <\/span><b>NIST SP 800-82<\/b><span style=\"font-weight: 400;\"> for secure OT architecture and hardening of the industrial environment. It also supports compliance initiatives with ISO 27001, ENS and the NIS2 Directive, which require verifiable evidence on network health and access control in critical environments.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Useful segmentation is not the one that is best drawn, but the one that can be justified with current data from the network.<\/span><\/p>\n<h2><b>From drawn segmentation to governed segmentation<\/b><\/h2>\n<p><span style=\"font-weight: 400;\">Many organizations believe they have segmentation because there is a theoretical architecture in a document. The problem arises when actual traffic, uninventoried assets, or operational changes contradict that design.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">With Guardian, the Purdue Model is no longer a static figure and becomes a way to organize inventory, review communications, and detect real deviations. This step is key to maturing industrial safety:\u00a0 it <\/span><b>is not enough to define levels, they must be governed<\/b><span style=\"font-weight: 400;\">.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">In practice, good OT segmentation starts with something very specific: <\/span><b>knowing what is there, where it is, what function it fulfills and what it should communicate with<\/b><span style=\"font-weight: 400;\">. When that foundation is well built, alignment with IEC 62443 ceases to be a documentary exercise and becomes a tangible improvement for plant resilience.<\/span><\/p>\n<p>&nbsp;<\/p>\n<figure id=\"attachment_3179\" aria-describedby=\"caption-attachment-3179\" style=\"width: 703px\" class=\"wp-caption aligncenter\"><img loading=\"lazy\" decoding=\"async\" class=\" wp-image-3179\" src=\"https:\/\/inprotech.es\/wp-content\/uploads\/2026\/06\/4-2.png\" alt=\"\" width=\"703\" height=\"389\" srcset=\"https:\/\/inprotech.es\/wp-content\/uploads\/2026\/06\/4-2.png 1916w, https:\/\/inprotech.es\/wp-content\/uploads\/2026\/06\/4-2-300x166.png 300w, https:\/\/inprotech.es\/wp-content\/uploads\/2026\/06\/4-2-1024x567.png 1024w\" sizes=\"auto, (max-width: 703px) 100vw, 703px\" \/><figcaption id=\"caption-attachment-3179\" class=\"wp-caption-text\">Summary of hardware assets in the Guardian dashboard, sorted by Purdue tier<\/figcaption><\/figure>\n<p><b>References<\/b><\/p>\n<p><b>[1] <\/b><a href=\"https:\/\/inprotech.es\/wp-content\/uploads\/2025\/07\/ES-IN-INT-Manual-Usuario-InprOTech-Guardian-v0.17.pdf\"><b>InprOTech Guardian<\/b><span style=\"font-weight: 400;\"> \u2013 <\/span><i><span style=\"font-weight: 400;\">InprOTech Guardian v0.17 User Manual<\/span><\/i><span style=\"font-weight: 400;\">. Internal product document.<\/span><\/a><\/p>\n<p><b>[2] <\/b><a href=\"https:\/\/www.isa.org\/standards-and-publications\/isa-standards\/isa-iec-62443-series-of-standards?utm_source=chatgpt.com\"><b>ISA<\/b><span style=\"font-weight: 400;\"> \u2013 <\/span><i><span style=\"font-weight: 400;\">ISA\/IEC 62443 Series of Standards<\/span><\/i><span style=\"font-weight: 400;\">. Safety standards for industrial automation and control systems.<\/span><\/a><\/p>\n<p><b>[3] <\/b><a href=\"https:\/\/webstore.iec.ch\/en\/publication\/7029?utm_source=chatgpt.com\"><b>IEC<\/b><span style=\"font-weight: 400;\"> \u2013 <\/span><i><span style=\"font-weight: 400;\">IEC TS 62443-1-1: Terminology, concepts and models<\/span><\/i><span style=\"font-weight: 400;\">. Base conceptual de la serie IEC 62443.<\/span><\/a><\/p>\n<p><b>[4] <\/b><a href=\"https:\/\/nvlpubs.nist.gov\/nistpubs\/SpecialPublications\/NIST.SP.800-82r3.pdf?utm_source=chatgpt.com\"><b>NIST<\/b><span style=\"font-weight: 400;\"> \u2013 <\/span><i><span style=\"font-weight: 400;\">SP 800-82 Rev. 3: Guide to Operational Technology (OT) Security<\/span><\/i><span style=\"font-weight: 400;\"> (2023). Guide to OT architecture, threats, vulnerabilities, and countermeasures.<\/span><\/a><\/p>\n<p><b>[5] <\/b><a href=\"https:\/\/nvlpubs.nist.gov\/nistpubs\/SpecialPublications\/NIST.SP.800-82r3.pdf?utm_source=chatgpt.com\"><b>NIST<\/b><span style=\"font-weight: 400;\"> \u2013 <\/span><i><span style=\"font-weight: 400;\">SP 800-82 Rev. 3: publication note<\/span><\/i><span style=\"font-weight: 400;\">. Context and scope of the review.<\/span><\/a><\/p>\n<p><b>[6] <\/b><a href=\"https:\/\/www.cisa.gov\/resources-tools\/resources\/ics-recommended-practices?utm_source=chatgpt.com\"><b>CISA<\/b><span style=\"font-weight: 400;\"> \u2013 <\/span><i><span style=\"font-weight: 400;\">ICS Recommended Practices<\/span><\/i><span style=\"font-weight: 400;\">. Segmentation, defense-in-depth, and remote access in ICS.<\/span><\/a><\/p>\n<p><b>[7] <\/b><a href=\"https:\/\/www.nist.gov\/image\/figure-1-purdue-model-computer-integrated-manufacturing\"><b>NIST<\/b><span style=\"font-weight: 400;\"> \u2013 <\/span><i><span style=\"font-weight: 400;\">Purdue Model of Computer Integrated Manufacturing<\/span><\/i><span style=\"font-weight: 400;\">. Model reference diagram.<\/span><\/a><\/p>\n<p>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Segmenting an OT network well is not just about separating teams. It consists of understanding functions, dependencies and real flows to reduce risk without losing operability. &nbsp; In industrial cybersecurity, seeing the network is not enough. What is relevant, from a technical and risk management point of view, is to understand what function each asset&#8230;<\/p>\n","protected":false},"author":1,"featured_media":3187,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[49,17],"tags":[],"class_list":["post-3172","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-guardian-en","category-techpapers-en"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.8 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>InprOTech Guardian and the Purdue Model: OT Segmentation in Practice - InprOTech<\/title>\n<meta name=\"description\" content=\"Learn how to segment OT networks using the Purdue Model and IEC 62443 with InprOTech Guardian: asset inventory, level classification, and audit-ready evidence.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/inprotech.es\/en\/inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"InprOTech Guardian and the Purdue Model: OT Segmentation in Practice - InprOTech\" \/>\n<meta property=\"og:description\" content=\"Learn how to segment OT networks using the Purdue Model and IEC 62443 with InprOTech Guardian: asset inventory, level classification, and audit-ready evidence.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/inprotech.es\/en\/inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice\/\" \/>\n<meta property=\"og:site_name\" content=\"InprOTech\" \/>\n<meta property=\"article:published_time\" content=\"2026-06-12T07:32:10+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2026-06-12T07:32:19+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/inprotech.es\/wp-content\/uploads\/2026\/06\/80.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1200\" \/>\n\t<meta property=\"og:image:height\" content=\"630\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"admin\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"admin\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"8 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/inprotech.es\\\/en\\\/inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/inprotech.es\\\/en\\\/inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice\\\/\"},\"author\":{\"name\":\"admin\",\"@id\":\"https:\\\/\\\/inprotech.es\\\/#\\\/schema\\\/person\\\/cb0ae1292b18b48c1e89b0e4e7ef15d9\"},\"headline\":\"InprOTech Guardian and the Purdue Model: OT Segmentation in Practice\",\"datePublished\":\"2026-06-12T07:32:10+00:00\",\"dateModified\":\"2026-06-12T07:32:19+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/inprotech.es\\\/en\\\/inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice\\\/\"},\"wordCount\":1339,\"commentCount\":0,\"image\":{\"@id\":\"https:\\\/\\\/inprotech.es\\\/en\\\/inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/inprotech.es\\\/wp-content\\\/uploads\\\/2026\\\/06\\\/80.jpg\",\"articleSection\":[\"Guardian\",\"Techpapers\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/inprotech.es\\\/en\\\/inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/inprotech.es\\\/en\\\/inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice\\\/\",\"url\":\"https:\\\/\\\/inprotech.es\\\/en\\\/inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice\\\/\",\"name\":\"InprOTech Guardian and the Purdue Model: OT Segmentation in Practice - InprOTech\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/inprotech.es\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/inprotech.es\\\/en\\\/inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/inprotech.es\\\/en\\\/inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/inprotech.es\\\/wp-content\\\/uploads\\\/2026\\\/06\\\/80.jpg\",\"datePublished\":\"2026-06-12T07:32:10+00:00\",\"dateModified\":\"2026-06-12T07:32:19+00:00\",\"author\":{\"@id\":\"https:\\\/\\\/inprotech.es\\\/#\\\/schema\\\/person\\\/cb0ae1292b18b48c1e89b0e4e7ef15d9\"},\"description\":\"Learn how to segment OT networks using the Purdue Model and IEC 62443 with InprOTech Guardian: asset inventory, level classification, and audit-ready evidence.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/inprotech.es\\\/en\\\/inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/inprotech.es\\\/en\\\/inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/inprotech.es\\\/en\\\/inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice\\\/#primaryimage\",\"url\":\"https:\\\/\\\/inprotech.es\\\/wp-content\\\/uploads\\\/2026\\\/06\\\/80.jpg\",\"contentUrl\":\"https:\\\/\\\/inprotech.es\\\/wp-content\\\/uploads\\\/2026\\\/06\\\/80.jpg\",\"width\":1200,\"height\":630},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/inprotech.es\\\/en\\\/inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Portada\",\"item\":\"https:\\\/\\\/inprotech.es\\\/en\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"InprOTech Guardian and the Purdue Model: OT Segmentation in Practice\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/inprotech.es\\\/#website\",\"url\":\"https:\\\/\\\/inprotech.es\\\/\",\"name\":\"InprOTech\",\"description\":\"The Cybersecurity Solution for the Industrial Environment\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/inprotech.es\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/inprotech.es\\\/#\\\/schema\\\/person\\\/cb0ae1292b18b48c1e89b0e4e7ef15d9\",\"name\":\"admin\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/d903daf71b546605502fd9841b9dc598cc8d3a04ee26680ca18eb3633e5209be?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/d903daf71b546605502fd9841b9dc598cc8d3a04ee26680ca18eb3633e5209be?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/d903daf71b546605502fd9841b9dc598cc8d3a04ee26680ca18eb3633e5209be?s=96&d=mm&r=g\",\"caption\":\"admin\"},\"sameAs\":[\"https:\\\/\\\/inprotech.es\"],\"url\":\"https:\\\/\\\/inprotech.es\\\/en\\\/author\\\/moon\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"InprOTech Guardian and the Purdue Model: OT Segmentation in Practice - InprOTech","description":"Learn how to segment OT networks using the Purdue Model and IEC 62443 with InprOTech Guardian: asset inventory, level classification, and audit-ready evidence.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/inprotech.es\/en\/inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice\/","og_locale":"en_US","og_type":"article","og_title":"InprOTech Guardian and the Purdue Model: OT Segmentation in Practice - InprOTech","og_description":"Learn how to segment OT networks using the Purdue Model and IEC 62443 with InprOTech Guardian: asset inventory, level classification, and audit-ready evidence.","og_url":"https:\/\/inprotech.es\/en\/inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice\/","og_site_name":"InprOTech","article_published_time":"2026-06-12T07:32:10+00:00","article_modified_time":"2026-06-12T07:32:19+00:00","og_image":[{"width":1200,"height":630,"url":"https:\/\/inprotech.es\/wp-content\/uploads\/2026\/06\/80.jpg","type":"image\/jpeg"}],"author":"admin","twitter_card":"summary_large_image","twitter_misc":{"Written by":"admin","Est. reading time":"8 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/inprotech.es\/en\/inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice\/#article","isPartOf":{"@id":"https:\/\/inprotech.es\/en\/inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice\/"},"author":{"name":"admin","@id":"https:\/\/inprotech.es\/#\/schema\/person\/cb0ae1292b18b48c1e89b0e4e7ef15d9"},"headline":"InprOTech Guardian and the Purdue Model: OT Segmentation in Practice","datePublished":"2026-06-12T07:32:10+00:00","dateModified":"2026-06-12T07:32:19+00:00","mainEntityOfPage":{"@id":"https:\/\/inprotech.es\/en\/inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice\/"},"wordCount":1339,"commentCount":0,"image":{"@id":"https:\/\/inprotech.es\/en\/inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice\/#primaryimage"},"thumbnailUrl":"https:\/\/inprotech.es\/wp-content\/uploads\/2026\/06\/80.jpg","articleSection":["Guardian","Techpapers"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/inprotech.es\/en\/inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/inprotech.es\/en\/inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice\/","url":"https:\/\/inprotech.es\/en\/inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice\/","name":"InprOTech Guardian and the Purdue Model: OT Segmentation in Practice - InprOTech","isPartOf":{"@id":"https:\/\/inprotech.es\/#website"},"primaryImageOfPage":{"@id":"https:\/\/inprotech.es\/en\/inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice\/#primaryimage"},"image":{"@id":"https:\/\/inprotech.es\/en\/inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice\/#primaryimage"},"thumbnailUrl":"https:\/\/inprotech.es\/wp-content\/uploads\/2026\/06\/80.jpg","datePublished":"2026-06-12T07:32:10+00:00","dateModified":"2026-06-12T07:32:19+00:00","author":{"@id":"https:\/\/inprotech.es\/#\/schema\/person\/cb0ae1292b18b48c1e89b0e4e7ef15d9"},"description":"Learn how to segment OT networks using the Purdue Model and IEC 62443 with InprOTech Guardian: asset inventory, level classification, and audit-ready evidence.","breadcrumb":{"@id":"https:\/\/inprotech.es\/en\/inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/inprotech.es\/en\/inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/inprotech.es\/en\/inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice\/#primaryimage","url":"https:\/\/inprotech.es\/wp-content\/uploads\/2026\/06\/80.jpg","contentUrl":"https:\/\/inprotech.es\/wp-content\/uploads\/2026\/06\/80.jpg","width":1200,"height":630},{"@type":"BreadcrumbList","@id":"https:\/\/inprotech.es\/en\/inprotech-guardian-and-the-purdue-model-ot-segmentation-in-practice\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Portada","item":"https:\/\/inprotech.es\/en\/"},{"@type":"ListItem","position":2,"name":"InprOTech Guardian and the Purdue Model: OT Segmentation in Practice"}]},{"@type":"WebSite","@id":"https:\/\/inprotech.es\/#website","url":"https:\/\/inprotech.es\/","name":"InprOTech","description":"The Cybersecurity Solution for the Industrial Environment","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/inprotech.es\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/inprotech.es\/#\/schema\/person\/cb0ae1292b18b48c1e89b0e4e7ef15d9","name":"admin","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/d903daf71b546605502fd9841b9dc598cc8d3a04ee26680ca18eb3633e5209be?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/d903daf71b546605502fd9841b9dc598cc8d3a04ee26680ca18eb3633e5209be?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/d903daf71b546605502fd9841b9dc598cc8d3a04ee26680ca18eb3633e5209be?s=96&d=mm&r=g","caption":"admin"},"sameAs":["https:\/\/inprotech.es"],"url":"https:\/\/inprotech.es\/en\/author\/moon\/"}]}},"_links":{"self":[{"href":"https:\/\/inprotech.es\/en\/wp-json\/wp\/v2\/posts\/3172","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/inprotech.es\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/inprotech.es\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/inprotech.es\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/inprotech.es\/en\/wp-json\/wp\/v2\/comments?post=3172"}],"version-history":[{"count":2,"href":"https:\/\/inprotech.es\/en\/wp-json\/wp\/v2\/posts\/3172\/revisions"}],"predecessor-version":[{"id":3189,"href":"https:\/\/inprotech.es\/en\/wp-json\/wp\/v2\/posts\/3172\/revisions\/3189"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/inprotech.es\/en\/wp-json\/wp\/v2\/media\/3187"}],"wp:attachment":[{"href":"https:\/\/inprotech.es\/en\/wp-json\/wp\/v2\/media?parent=3172"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/inprotech.es\/en\/wp-json\/wp\/v2\/categories?post=3172"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/inprotech.es\/en\/wp-json\/wp\/v2\/tags?post=3172"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}