SecurityBrief US - Technology news for CISOs & cybersecurity decision-makers
United States
Flux result 74ce5946 2da6 4b6d 9888 4b59ef1216c5
#
SaaS
#
Manufacturing
#
Digital Transformation

Claroty adds Visibility Orchestration to xDome platform

Thu, 16th Apr 2026 (Yesterday)
Author image
By Joseph Gabriel Lagonsin, News Editor

Claroty has added Visibility Orchestration to its xDome software-as-a-service platform to help organisations turn incomplete asset data into prioritised security actions across cyber-physical systems.

The update targets a common problem for industrial, healthcare, commercial and public sector operators: they may have asset inventories but still lack reliable detail about the devices connected to operational environments. That leaves security teams with monitoring gaps and makes it harder to judge which weaknesses matter most.

The new functions measure the quality of asset visibility rather than treating visibility as a simple yes-or-no question. In practice, the aim is to move customers from maintaining lists of connected devices to improving the depth and accuracy of the information attached to each asset.

The launch comes as security concerns around cyber-physical systems continue to rise. These environments include operational technology and connected devices such as programmable logic controllers, human-machine interfaces, medical equipment and other internet-connected assets that can provide a route into critical operations if left exposed.

Team82, Claroty's research group, verified more than 200 cyber attacks over a 12-month period in which attackers entered cyber-physical systems environments by scanning for internet-exposed devices and exploiting default credentials and insecure protocols. The company argues that such incidents show how unknown or weakly monitored assets can become entry points into systems that support essential services and industrial processes.

Data quality

The Visibility Orchestration feature set includes an automated recommendation engine that analyses an asset's current visibility score and generates tasks to close information gaps. The system can suggest follow-up actions to help security and operations teams collect missing data and improve confidence in asset records.

xDome also combines several collection methods to enrich asset profiles, including Claroty Edge, active queries and integrations with endpoint detection and response tools. The goal is to move devices from basic identification to fuller profiles containing the attributes needed for risk assessment and maintenance planning.

Another part of the release centres on the company's CPS Library, which uses artificial intelligence to model and correlate fragmented data on assets and vendors. This is intended to create a single reference point for tracking asset attributes across environments where information is often spread across multiple systems and formats.

Claroty has also added centralised management for Edge scans, allowing users to configure, schedule and monitor periodic scans for multiple hosts within xDome. The feature includes audit logging and version tracking, which may matter to organisations that need stronger operational oversight of how discovery and enrichment processes are run.

There is also a deployment element. Edge can be used without additional hardware, allowing organisations to rely on existing infrastructure rather than introducing new hosts or network changes. Claroty has also added in-application orchestration for EDR, cloud and Simple Network Management Protocol integrations so users can trigger and configure those links directly from the visibility workflow.

Risk reduction

The broader commercial aim is to connect asset discovery more directly to action. In many cyber-physical systems programmes, operators can identify devices but still struggle to turn that information into practical steps for reducing risk. Claroty is positioning the release as a way to narrow that gap by showing where data is incomplete and what teams should do next.

"Attaining meaningful visibility is the foundation of building a CPS security posture, however organizations still struggle with translating it into impact that advances business goals," said Gil Gur Arie, Chief Product Officer, Claroty.

"With high-quality, AI-enriched data that's turned into clear, prioritized actions that security and operations teams can confidently execute, Claroty xDome helps teams move beyond simple measurement to active orchestration. We provide a granular roadmap for how to fix their visibility gaps, ultimately saving them hundreds of hours in manual analysis," said Arie.

The company is targeting sectors where cyber-physical systems are central to day-to-day operations and where downtime or compromise can have direct operational consequences. In those settings, the value of an asset inventory often depends on whether teams can trust the data and whether it is detailed enough to support remediation, monitoring and incident response.

Claroty, headquartered in New York and operating across Europe, Asia-Pacific and Latin America, says its platform is used by hundreds of organisations across thousands of sites. The latest xDome addition reflects how suppliers in the cyber-physical security market are increasingly competing on the quality of asset data and on how quickly that data can be turned into specific operational tasks.

Related stories
OpenAI launches Trusted Access for Cyber with major names
Anthropic launches Claude Opus 4.7 with stronger coding
Cyber insurance now common among North American SMBs
CIQ launches Linux compliance platform ahead of deadlines
Emerson & OPSWAT strike global reseller deal for OT patching

Top stories

Team Cymru launches Total Insights Feeds for threat data
FIRST conference highlights AI & CVE disclosure push
Protegrity launches AI Team Edition for secure inferencing
Autonomize launches healthcare AI platform version 3
CERN joins OpenSearch foundation as associate member