The new world of IIoT and OT/IT convergence comes with increased cybersecurity risks. The air-gap between IT and Operational Technology (OT) systems is now a thing of the past. Deploying firewalls at the intersection of OT and IT is not enough.
Waylay's low-code automation platform and patented rules engine provide intelligent threat detection and automated response capabilities that augment existing SIEM and SOAR systems.
A recently disgruntled employee from an Energy company attempts to download several sensitive files before leaving the company.
SIEMs monitor file system events, alerts and IAM Access Logs. SOARS execute playbooks. Via API the Waylay platform creates or enriches incidents and tasks. Upon detecting anomaly with number of file downloads on a weekend it will raise alerts and create incidents to mitigate adverse effects and drive next action. Waylay’s BYOML hosts trained UEBA** ML models to monitor user behavior and can run a selected playbook to take remediation action.