- Google announced a shift from human‑led to AI‑led cyber defense, overseen by human operators.
- At its Cloud Next conference, it introduced new agents for threat hunting, detection engineering, and third‑party context enrichment.
- Existing AI agents like Triage and Investigation have already processed millions of alerts, cutting analysis times from half an hour to about one minute.
Google is moving from a human-led cyber-defense strategy, to a human-overseen cyber-defense strategy, and to achieve that goal, it is introducing even more Artificial Intelligence (AI) agents.
Google Cloud Next is the company’s annual premier conference where it showcases its latest innovations in cloud computing, AI, security, and data analytics.
Here, it demonstrated three new agents: Threat Hunting, Detection engineering, and Third-Party Context.
Article continues below
Agentic fleet of the future
The first agent is designed to help security teams look for new attack patterns and stealthy malicious behavior that otherwise might fly under a human defender’s radar.
“As the name implies, it looks for emerging threats in your organization’s environment using intelligence from our Google Threat Intelligence and Mandiant best practices,” explained Google Cloud chief operating officer Francis deSouza. “It does this continuously at infinite scale, much faster than you could do with a human-led defense.”
The second agent, Detection Engineering, helps businesses find security coverage gaps in their IT environments, and then creates new detections and detection rules, based on the results of its findings.
Third-Party Context, an agent that, according to The Register, is soon to be released, uses third-party data to enrich and improve existing security workflows.
“It is very clear that we have moved from a human-led defense strategy to a human-in-the-loop defense strategy, to an AI-led defense strategy that’s overseen by humans,” deSouza said during the press conference at Google Cloud Next, taking place in Las Vegas this week. “Our model for the future is an agentic fleet that does a lot of the routine cyber security work at a machine pace and then is overseen by humans.”
Google’s Triage and Investigation agent, which was announced in the same manner last year, is now generally available, the publication further confirmed. Over the last year, it processed more than five million alerts, allegedly reducing a typical 30-minute manual analysis down to just 60 seconds.
Via The Register
The best antivirus for all budgets
Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews, and opinion in your feeds.
https://cdn.mos.cms.futurecdn.net/U76sZeRd6fS2fKt5RqBYPL-2560-80.jpg
Source link
