Using AI for security log analysis and how to fix it suggestions:
Building on that foundation, leading the list of announcements is a strategy described as an “agentic security operations center” powered by its latest Gemini AI models. Google is introducing adaptive AI agents that can investigate alerts, synthesize intelligence and assist in remediation workflows in real time, which replace the need to rely on static playbooks.
The new Triage and Investigation agent is designed to autonomously analyze alerts, gather supporting evidence and deliver reasoned verdicts to help security teams reduce response times and cut through growing volumes of false positives. The new agent is now available in preview within Google Security Operations.
Google is also extending its agentic approach by allowing customers to build their own enterprise-ready security agents through support for Model Context Protocol servers. The capability removes the need for organizations to host their own MCP client infrastructure to deliver unified governance and control over custom agents, with general availability expected in early April.