OTEvidence - Evidence-first OT intelligence.
otevidence.ai is an offline-first research workspace for OT and industrial control system security. Teams ingest technical corpora such as manuals, exports, code, and database snapshots, then search and ask questions using hybrid retrieval. Every output is grounded in verbatim citations so conclusions are auditable, shareable, and defensible in high-stakes environments.
Create assessment bundles; upload or watch folders; reindex; track ingest status (chunks, embeddings, optional translation shadows).
Natural-language queries over the bundle; citations to chunks; optional dataset query without saving a thread.
Protocol and architecture-style signals, inventory and port-style cues, vulnerability triage hints (keyword/heuristic), chunk browser, technical summary (extractive).
Source lists and cross-check style metadata on responses where implemented; approved memory rows to steer retrieval; weak-evidence signalling.
Capture local NIC snapshot for mapping-style context (no OT network scanning).
Theme, density, compact mode, large text; recent events; onboarding tour
Answers point to source excerpts, so teams can verify, share, and audit conclusions.
Manuals, exports, code, snapshots, and optional OCR in one engagement-scoped workspace.
Core indexing and search without sending your corpus to the public internet (fits air-gapped and sensitive programmes).
Lexical + local vectors with validation cues when evidence is thin, tuned for jargon-heavy technical text.
Bundles, threads, structured triage views, and approved memory for repeatable delivery.
Clear separation between exploration and analyst-approved facts, aligned with high-trust industries.
Create a workspace for one engagement and load manuals, exports, code, snapshots, and images. Everything stays in that bundle.
The system chunks and indexes your corpus for hybrid retrieval (lexical + vectors). Core use does not require sending your documents to the public internet.
Run natural-language questions and get answers grounded in source excerpts, so claims stay checkable.
Use triage views and the evidence explorer for structured review, add approved memory for trusted facts, and save threads to keep investigations traceable over time.
Fatma, an award-winning founder with 13 years of experience, specializes in SCADA and OT security. After uncovering critical vulnerabilities as a SCADA engineer, she founded OTShield to address them, blending technical expertise with leadership and innovation to protect critical infrastructure.
12+ years in digital marketing, branding, and social strategy; scaled channels for BMW and The Restaurant Group. Focus on influencer and ambassador programmes, data-led campaigns, and measurable ROI. Portuguese, English, and Spanish.
With 35+ years in security, including senior RAF Police service and global executive roles, he has led multimillion-pound cyber programs. A trusted advisor and visionary, he aligns security with business value and resilience.
Claus is a transformation leader and trusted advisor, helping mid-sized companies grow through strategic expertise and the innovative #cocovestment® approach, combining knowledge and resources for sustainable success.
Leads UK B2B and B2G sales in critical infrastructure and regulated sectors for CISOs, technology leaders, and public-sector buyers. Matches SafeTech’s OT and cybersecurity portfolio to business and regulatory needs, blending operational security insight with commercial delivery.
Dhruv blends cybersecurity academics with hands-on penetration testing, threat detection, and vulnerability research, focused on OT. He keeps sharpening skills to harden organisational defences. Outside work he uses AI-driven security tools and CTFs to stay current.
Rakesh specialises in application security and penetration testing (web, APIs, enterprise), with 5+ years across telecom, banking, fintech, and consulting. MSc (Warwick), LPT, CRTA, educator (50+ sessions), founder of Rootecstak.
Aditya works in cybersecurity: forensics, cryptography, pentesting, enterprise risk, SOC support, and vulnerability assessments. Certs include CEH v12, OPSWAT ICIP, Zscaler admin, Cisco Ethical Hacking, NSE 1–3, and Google Cybersecurity; built an SHA-256 email prototype; ex DHL/DPD.
Pranay Pathak completed a B.Tech in CS & IT (Cyber Security major) in 2024 and has worked in cybersecurity since graduation. He brings hands-on experience with common security tooling and working knowledge of threat management, incident response, and compliance.
Best for: First proof on a real corpus
Typical buyer: Single team evaluating value
Bundles / workspaces: Limited (e.g. 1–2)
Seats: Small cap
Indexed capacity: Capped
SSO / central identity: Optional add-on
Support: Email / best effort window
Deployment options: Standard install
Security review support: Light
Best for: Ongoing programmes
Typical buyer: Multi-analyst delivery team
Bundles / workspaces: Higher
Seats: Medium
Indexed capacity: Higher cap
SSO / central identity: Often included or add-on
Support: Standard business hours
Deployment options: Standard + more policy options
Security review support: Standard questionnaire support
Best for: Regulated, large, or isolated environments
Typical buyer: Security, procurement, and IT joint buying
Bundles / workspaces: Highest / negotiated
Seats: Large / negotiated
Indexed capacity: Highest / negotiated
SSO / central identity: Typically included
Support: Named options, SLA options
Deployment options: solated / VPC-style / controlled rollout patterns (custom)
Security review support: Deeper review and onboarding
otevidence is an offline-first OT and ICS research workspace. You ingest technical corpora into engagement bundles, then search and ask questions with citation-backed answers tied to excerpts from your documents.
Owner-operators, OT security consultancies and integrators, product security teams, high-trust programmes, and industrial research labs that need defensible technical answers from their own evidence.
Core indexing and search are designed to run without sending your corpus to the public internet. Optional operator-controlled local services (for example translation, if enabled) stay under your policy.
No. otevidence is built for heterogeneous OT evidence inside a bundle, with hybrid retrieval and answers anchored to retrieved source text, not anonymous cloud inference for core workflows.
Common examples include PDFs, Office formats, HTML/RTF, text and tables, source code, SQLite snapshots, and images (OCR when OCR tooling is available and configured). Exact handling depends on file quality and local configuration.
OCR quality depends on scan resolution, fonts, and layout. If OCR is unavailable or the PDF has poor text extraction, results may be partial. The UI typically surfaces whether OCR capability is present.
No. otevidence does not perform OT network scanning. Some views can include local workstation network interface information captured on the analyst machine for mapping-style context only.
These are heuristic, evidence-driven cues derived from indexed text. They support prioritisation and review. They are not a replacement for validated scanning, testing, or vendor advisories.
Responses are grounded in retrieved passages. When retrieval confidence is low, the product can flag weak evidence so analysts know the answer may be incomplete or needs more sources.
Analysts can pin validated facts into approved memory to steer retrieval and reduce repetition. Policy-sensitive deployments can also scope retrieval using memory rules where supported.
Yes. Typical practice is one bundle per engagement to keep corpora, threads, and governance separated.
OT monitoring focuses on live visibility and detection in connected environments. otevidence focuses on document and export heavy research, triage, and citation-backed reasoning over material you provide.
No. otevidence is a research and assurance accelerator. Outputs support human judgement and review. It does not certify compliance or replace formal test programmes unless your organisation defines that scope separately.
Typical deployment is an analyst laptop or secure VM with local storage for files and indexes. Enterprise options can be discussed for controlled rollouts and procurement requirements.
Pricing depends on seats, indexed capacity, deployment model, and support tier. Contact sales for a Pilot or Team plan that matches your environment.
Treat otevidence like any tool that stores sensitive technical documents: use your standard hardening, access control, encryption-at-rest policy for the host system, backup rules, and classification handling. Exact guarantees belong in your enterprise agreement and security review pack.
Roadmap items depend on customer demand. Integrations (identity, ticketing, storage) are usually discussed under Enterprise or services packages.
SafeTech was founded on a simple belief: industrial environments are not “just another IT network.” Operational Technology has its own language, constraints, and consequences. Teams need tools that respect how plants actually run, and how decisions are reviewed when stakes are high. Our first product, OTShield, grew from that belief. It is an industrial cybersecurity platform aimed at visibility, monitoring, and explainable analytics across OT assets and traffic, with reporting language aligned to how operators and auditors think about risk. As we worked with OT teams, one pattern kept returning. Long before an alert matters in production, experts spend enormous time in manuals, exports, code, snapshots, and scattered evidence. The bottleneck is rarely “more chat.” It is traceability: answers that can be tied to source text, repeated across analysts, and defended in front of peers and customers. That is why we built otevidence. It is not a copy of OTShield’s monitoring stack. It is the same discipline in a different moment of the lifecycle: offline-first research, hybrid retrieval, and citation-backed Q&A over the corpora you already have, so your organisation can move faster without trading away evidence. Today, SafeTech continues to advance OTShield for connected operations, while otevidence serves teams who must research, triage, and document with clarity, whether they are in a plant programme, a consultancy engagement, or a high-trust environment.
SafeTech builds cybersecurity technology for Operational Technology and critical environments, with products designed for explainable insight and operational reality, not generic IT assumptions. otevidence exists to make industrial research faster and defensible: turn fragmented technical evidence into citation-backed answers and repeatable workflows, including in offline-first settings where public cloud inference is not acceptable for core work.
A world where OT and ICS security decisions are routinely grounded in evidence, traceable across teams, and reviewable under scrutiny, from plant programmes to specialist consultancies and high-trust institutions. We see continuous visibility in connected operations (OTShield) and deep, source-led understanding in research and assurance (otevidence) as two sides of the same standard: trust must be built on what you can show, not what you can guess.
 |
 |
 |
|
Founder & CEO
otevidence is the first evidence-first OT security platform built by SCADA engineers for critical infrastructure.
7 Bell Yard, London, England, WC2A 2JR
Safetech Global Limited
15233187
