Asimily launched Segmentation Orchestration, a capability designed to help organizations identify and classify connected devices, map and monitor device communications, prioritize critical assets, create scalable network segmentation policies, and continuously validate policy effectiveness. The offering integrates connected-device risk intelligence directly with network policy enforcement, reducing the need for manual translation between security and networking teams.
By combining asset visibility, vulnerability prioritization, and segmentation orchestration in a single platform, Asimily aims to help organizations manage security risks across increasingly complex connected-device environments.
“AI has exploded the volume and sophistication of network attacks against connected devices, and security teams are discovering that visibility tools and manual policies cannot keep pace,” said Shankar Somasundaram, CEO, Asimily. “Attackers are exploiting the space between what organizations can see and what their network policies actually enforce. While network segmentation is one of the most effective controls against lateral movement, implementing it at scale across heterogeneous IoT, OT, IoMT, and IT asset environments has required significant manual effort and a high risk of device disruption. Asimily’s Segmentation Orchestration removes those obstacles by automating the full journey from device discovery through dynamic policy deployment.”
Integrated within the complete Asimily platform, Segmentation Orchestration operates continuously rather than as a static, quickly-outdated configuration exercise. This addresses the core reason most segmentation projects stall: organizations can write the policies, but lack the intelligence layer to validate, deploy, and continuously maintain them without breaking operations.
Before any segmentation policy is written and executed, Asimily discovers every device, maps how every device communicates across the network, including which ports and protocols are utilized, which services a device depends on, and whether those network connections are expected or anomalous. Segmentation recommendations are grounded in actual device behavior rather than assumptions.
Asimily said its Segmentation Orchestration capability is built around eight core functions. It uses AI, deep packet inspection, and ecosystem integrations to create a comprehensive inventory of connected devices and applies attack path analysis to identify and prioritize the vulnerabilities that pose the greatest risk to the network.
The platform automatically recommends network segmentation policies based on risk, allows security and networking teams to simulate the impact of policy changes before deployment, and generates policies in formats native to network access control (NAC) and firewall platforms. Through integrations and APIs, the system can apply those policies directly to NAC and firewall environments.
Asimily also said the platform continuously adapts segmentation policies as devices, configurations, and network topologies change, helping organizations avoid outdated static controls. In addition, its Intelligent Policy Engine continuously evaluates existing policies for errors and inconsistencies and updates them when necessary.
“Most connected device security programs start with visibility. While that foundation matters, visibility that doesn’t connect to action is merely just a dashboard,” said Constancio Fernandes, senior vice president of engineering at Asimily. “Modern AI-driven attack vectors don’t wait for security teams to manually translate what they see. We built Segmentation Orchestration because our customers needed a platform that automatically and continuously transforms device context into enforced policy. Complete cyber asset risk mitigation is always the goal, and it’s what we continue building toward across every part of the Asimily platform.”
Segmentation Orchestration extends Asimily’s existing foundation of deep device inventory and classification, behavioral analysis of network traffic, automated device patching, and AI-driven vulnerability prioritization based on actual exploitability in a given environment. Unlike generic CVSS-based scoring, Asimily’s proprietary ATT&CK analysis maps vulnerabilities to real-world exploit paths so prioritization reflects what attackers can actually do in each customer’s specific environment, not theoretical severity scores. The capability integrates with customers’ existing NACs and firewalls, allowing organizations across industries to get more out of the infrastructure they’ve already deployed.
“Buyers in this space should be paying close attention to who is building product and who is navigating acquisition integration,” said Somasundaram. “Asimily remains focused on one thing, which is delivering complete cyber asset risk mitigation capabilities that evolve with what our customers actually need.”
