Asimily has introduced Segmentation Orchestration, a brand-new capability that bridges the gap between connected-device risk insights and enforceable network policies — no manual translation required. No competitor offers a unified platform that delivers full asset visibility, risk-driven vulnerability prioritisation, and powerful segmentation orchestration, all purpose-built for the expanding AI-era attack surface.
“AI has dramatically increased both the volume and complexity of network attacks targeting connected devices. Security teams are finding that visibility tools and manually written policies simply can’t keep up,” said Shankar Somasundaram, CEO of Asimily. “Attackers are actively exploiting the gap between what organisations can observe and what their network policies actually block. Network segmentation remains one of the strongest defences against lateral movement, but deploying it thoroughly across mixed IoT, OT, IoMT, and IT environments has traditionally demanded heavy manual work and carries a real risk of disrupting critical devices. Asimily’s Segmentation Orchestration removes those barriers by automating the entire lifecycle — from discovering devices all the way to dynamically deploying and maintaining policies at scale.”
Segmentation Orchestration is tightly integrated into the full Asimily platform, so it operates on a continuous basis rather than as a one-time configuration exercise that quickly grows stale. This solves the fundamental reason why most segmentation initiatives stall: teams may be able to draft policies, but they lack the intelligence needed to validate, deploy, and keep those policies up to date reliably — without accidentally breaking critical operations. Before a single segmentation rule is created or pushed out, Asimily identifies every device on the network, traces how each one communicates — mapping the ports, protocols, and service dependencies involved — and flags whether those network interactions are normal or suspicious. Segmentation guidance is driven by real device behaviour, not guesswork.
Segmentation Orchestration is built around eight core capabilities:
- Visibility & Inventory — leverages AI, deep packet inspection, and third-party ecosystem integrations to compile a thorough, up-to-date device inventory.
- Vulnerability Prioritisation — uses attack path analysis to surface the vulnerabilities posing the greatest risk to your specific network, and ranks them with actionable detail.
- Policy Auto-Recommendation — automatically generates targeted network segmentation policies, ordered by their expected risk reduction.
- Policy Simulation — lets security and networking teams preview the impact of a policy change before going live. This is especially vital in settings like hospitals and manufacturing plants, where a misconfigured rule could knock patient monitors offline or shut down a production line.
- Policy Creation — translates risk-aware insights into policies written in the native format and terminology of your NAC or firewall.
- Policy Application — uses purpose-built APIs and vendor integrations to push policies directly to the NAC or firewall, eliminating the need for manual entry.
- Continuous Segmentation — keeps policies current as device configurations, network topologies, and asset inventories shift over time, sidestepping the pitfalls of static IP-based rules or rigid VLAN assignments that become obsolete the moment anything changes.
- Intelligent Policy Engine — constantly audits existing policies for mistakes and contradictions, automatically replacing flawed rules with corrected versions.
“Most connected-device security programs begin with visibility, and that foundation does matter. But visibility without a clear path to action is nothing more than a dashboard,” said Constancio Fernandes, Senior Vice President of Engineering at Asimily. “Today’s AI-powered attack techniques don’t give security teams the luxury of manually interpreting what they observe. We built Segmentation Orchestration because our customers asked for a platform that turns device context into enforced network policy — automatically and continuously. Comprehensive cyber asset risk mitigation is our north star, and every investment we make in the Asimily platform moves us closer to that goal.”
Segmentation Orchestration builds on Asimily’s established foundation, which includes deep device inventory and classification, behavioural analysis of network traffic, automated patching of devices, and AI-driven vulnerability scoring calibrated to actual exploitability within each customer’s environment. Unlike standard CVSS scoring, Asimily’s proprietary ATT&CK-based analysis ties vulnerabilities to real attack pathways — so prioritisation reflects what threat actors could actually do in your unique environment rather than generic severity ratings. The capability also integrates natively with customers’ existing NAC and firewall infrastructure, helping organisations across industries extract more value from solutions they’ve already deployed. Asimily was recently ranked the #1 solution in Gartner Peer Insights and received the 2026 Global InfoSec Award in OT Security from Cyber Défense Magazine.
“Organisations evaluating solutions in this space should pay careful attention to whether a vendor is genuinely engineering new capabilities or navigating the fallout of acquisitions,” said Somasundaram. “Asimily stays focused on one thing: delivering comprehensive cyber asset risk mitigation that evolves alongside what our customers actually need.”
Looking for more? Check out the latest editorial on our sister site, Electronic Specifier. Or join the conversation by leaving a comment below or visiting our LinkedIn page.
