Claroty Unveils xDome Visibility Orchestration to Turn CPS Asset Data into Targeted Risk Reduction

New updates have been reported about Claroty.

Claroty has introduced a new Visibility Orchestration feature set within its SaaS platform xDome, positioning the company to tighten the link between cyber-physical systems (CPS) asset data and concrete security outcomes across industrial, healthcare, commercial, and public-sector environments. The new capabilities convert incomplete and fragmented asset information into a quantifiable “Visibility Score” and prioritized remediation tasks, aiming to close long-standing blind spots in operational technology and IoT security.

The launch comes amid rising attacks on CPS, with Claroty’s Team82 research unit validating more than 200 incidents in a year where adversaries simply scanned for internet-exposed devices and exploited default credentials and insecure protocols to reach PLCs, HMIs, medical equipment, and other connected assets. Claroty argues that many organizations overestimate their visibility by equating basic inventories with risk-ready data, leaving boards and executives exposed despite growing scrutiny of CPS resilience.

To address this, xDome’s Visibility Orchestration engine automatically analyzes the visibility status of assets, then generates ranked recommendations to improve coverage and data fidelity, which Claroty says can save hundreds of hours of manual analysis for security and operations teams. The system coordinates multiple collection methods, including Claroty Edge, active queries, and integrations with endpoint detection and response tools, to enrich device profiles so that each asset can be assessed and maintained with higher precision.

An AI-driven CPS Library further consolidates and normalizes asset and vendor data into a single source of truth, enhancing the accuracy of attributes used for risk decisions and lifecycle management. Centralized Edge scan management allows teams to configure, schedule, and audit recurring scans across multiple hosts directly from xDome, while flexible, hardware-free Edge deployments reduce incremental infrastructure costs by leveraging existing systems.

Claroty also embeds in-app orchestration of EDR, cloud, and SNMP integrations from within the Visibility Recommendations page, designed to push richer CPS context into customers’ existing security workflows without additional tool sprawl. According to Chief Product Officer Gil Gur Arie, the objective is to shift customers from passive measurement of visibility to active, orchestrated risk reduction that supports business continuity and production outcomes.

Strategically, the enhancement deepens Claroty’s differentiation as CPS security spending accelerates and governance expectations rise, particularly in asset-intensive sectors where downtime or safety incidents carry high financial and reputational costs. Together with its on-premise Continuous Threat Detection offering and broader platform for exposure management, network protection, secure access, and threat detection, the xDome upgrade strengthens Claroty’s pitch as a full-stack CPS protection provider for enterprises seeking measurable returns on security investments.

The company, headquartered in New York with deployments at thousands of sites globally, is likely to use these orchestration capabilities to drive higher platform adoption and stickiness among existing customers. For executives, the key business implication is that Claroty is moving beyond asset discovery toward an outcome-focused model in which visibility is scored, improved, and tied directly to risk reduction in mission-critical CPS environments.