Fluency Workflows is an AI-driven module within the Fluency Security platform that automates the detection, investigation, and response to security threats. Each workflow is designed to address a specific attack pattern or threat scenario, providing contextual analysis beyond what traditional SIEMs typically offer. The platform includes the following pre-built workflows: - **Impossible Travel:** Detects logins from geographically distant locations that may indicate credential compromise. - **Email Rule Change:** Monitors suspicious email forwarding and filtering rule modifications associated with Business Email Compromise (BEC) attacks. - **New User:** Detects suspicious new user account creation and privilege escalation attempts. - **PowerShell Analysis:** Monitors and analyzes PowerShell execution patterns for signs of malicious activity or privilege escalation. - **Unknown File Reputation:** Analyzes file execution patterns and reputation data to identify malware and suspicious files. - **Lateral Movement:** Detects and analyzes lateral movement patterns across network infrastructure. Each workflow is automated and context-aware, enabling security teams to move from detection to investigation and response within a single system.