Dragos on Tuesday unveiled EmberAI, a new AI designed specifically for operational technology (OT) cybersecurity.
The new product module is built on the company’s Intelligence Fabric, a massive OT cybersecurity dataset compiled over the past decade based on adversary tracking, vulnerability research, asset and protocol research, and frontline incident response experience.
“This foundation enables EmberAI to operate on a principle that distinguishes it from generic AI: OT specific intelligence applied in context,” Dragos noted, adding, “As Dragos’s xOT integrations expand the Intelligence Fabric with new data sources, EmberAI’s intelligence and capabilities will grow with it.”
EmberAI enables analysts to use plain language queries to obtain the threat and risk information they need. The AI correlates data from multiple sources, including threat intelligence, assets, vulnerability data, and network activity, and provides responses that are based on the customer’s operational context.
The user can obtain information on who may be behind the attack, as well as attack patterns and behaviors, helping them prioritize and tailor their response effectively.
Dragos is also working on a library of OT skills based on the expertise the security firm’s own analysts apply during investigations, incident response, and preventive services.
While EmberAI can be of great use to security teams, humans remain in control and every recommendation made by the AI is transparent and auditable, the company said.
In addition, EmberAI operates inside the Dragos platform deployment controlled by the customer and the customer’s data never leaves their environment.
EmberAI is generally available in the Dragos platform.
The launch of the new AI comes shortly after Accenture announced taking a majority stake in Dragos as part of a major OT cybersecurity push.
Dragos will remain an independent company and it will also oversee runZero and NetRise, which Accenture has fully acquired. The professional services giant paid a total of $4.1 billion for the three cybersecurity firms.
Related: Dragos Acquires xIoT Security Firm Phosphorus
Related: Siemens Says Desigo CC Files Flagged as Malware by Security Engines
Related: Rockwell Automation Patches Vulnerabilities in ICS Controllers and Software
