Gurucul introduces AI-driven autonomous SIEM to transform security operations
Gurucul has launched a Self-Driving SIEM powered by AI agents, automating security tasks to reduce costs by 40% and enhance analyst efficiency in threat management.
Gurucul Launches AI-Powered Self-Driving SIEM to Revolutionize Security Operations
Gurucul has unveiled its latest innovation, a Self-Driving SIEM powered by advanced AI agents, designed to automate and streamline security operations. This upgrade to Gurucul's Unified Data and Security Analytics Platform, REVEAL, integrates AI across the entire threat management lifecycle, reducing manual tasks and enabling security teams to focus on high-value activities.
Key Features of the Self-Driving SIEM
- Data Optimiser with AI Agents: New pipeline AI agents autonomously discover, classify, normalize, and filter data, reducing storage and processing costs by 40%. This minimizes reliance on manual data management, including onboarding and tuning.
- Proactive Threat Detection: AI agents detect evolving attack chains, informing new machine learning models, signatures, and rules. These agents also optimize existing models and recommend additional data sources for expanded detection use cases.
- AI Virtual Analyst: The platform includes an AI virtual analyst that provides expert guidance, triages alerts, and appends contextual insights such as attack blast radius and MITRE ATT&CK framework alignment. It leverages adaptive learning and NLP for efficient searching and incident reporting.
- Orchestration and Response: AI-powered orchestration dynamically modifies and executes response playbooks based on real-time threat data, ensuring tailored incident responses.
- Sme AI Copilot Upgrades: Originally launched in August 2023, the Sme AI copilot now features advanced prompts, enhanced natural language search, and improved incident analysis, reducing investigation times.
Industry Reactions
- Neda Pitt, CISO at BELK: "Gurucul's platform outperforms legacy SIEMs. The new AI capabilities are transforming our SOC, boosting analyst productivity and reducing busy work."
- Stewart Alpert, CISO at Hornblower: "Gurucul redefines AI-powered SIEMs. Its risk-based approach to identity is a cornerstone of our insider threat program."
- Jason Elmore, CEO at Tuearis Cyber: "Gurucul's innovations validate our decision to switch. Their platform reduces costs and keeps us ahead of threats."
CEO's Vision
Saryu Nayyar, CEO of Gurucul, emphasized the platform's focus on addressing alert overload, sophisticated threats, and operational bottlenecks. "Our AI agents optimize SecOps resources, reducing time spent on data management, detection engineering, and false positives," she said.
Availability
The upgraded platform, including the Sme AI copilot and Agentic AI multi-agent workflows, has been available since December 2024 as part of release v12.4.
Tags: #AI #Cybersecurity #Automation
Related News
ServiceNow introduces AI agents to enhance enterprise security automation
ServiceNow's new AI agents in its Security and Risk solutions aim to boost consistency and cut response times for enterprises.
SAS enhances Viya platform with AI agents and synthetic data tools
SAS introduces upgrades to its Viya platform, focusing on AI accessibility and governance for developers and non-experts.