Securing the Grid: Modernizing E&U Security Operations with Lakewatch (AI-Native SIEM)

Energy & Utilities (E&U) face a perfect storm: surging OT/ICS ransomware, strict NERC CIP/TSA regulations, and an explosion of IT/OT telemetry. Traditional SIEMs, hampered by ingest-based pricing and data silos, are failing to keep pace. Enter Lakewatch: Databricks’ next-generation SIEM built natively on the Lakehouse.This session explores how Energy Queensland is moving beyond traditional SIEM constraints to build a unified security data platform. We will dive into the Lakewatch, demonstrating how to eliminate "ingest taxes" and unify IT, Cloud, and OT logs using OCSF-aligned schemas. Learn how to leverage SQL-based detection engineering and AI-driven workflows to hunt threats across petabytes of historical data in seconds. Whether you're struggling with Splunk costs or the complexity of IT/OT convergence, discover how a decoupled storage and compute architecture provides the scale, flexibility, and AI-readiness required to protect critical infrastructure.