This project focuses on enhancing cyber defense capabilities through the deployment of intelligent AI agents that augment human expertise within Security Operations Centers (SOCs). Addressing key challenges such as alert fatigue, manual threat correlation, and high-volume event processing, the solution integrates seamlessly with existing infrastructure—including K3s clusters, Loki, Vector, and Security Onion. The core of the solution is a multi-agent architecture that automates tier-1 security analysis while escalating complex threats to human analysts with full contextual insight.

This session explains why ICS/OT directed ransomware is unlikely and helps attendees understand IT/OT-related cyber incidents and select cost-effective cyber defense solutions to protect facility operating safety, reliability, and performance (SRP).