Artificial Intelligence with independent agency could potentially intervene in cybercrises.

Artificial Intelligence with independent agency could potentially intervene in cybercrises.

In the rapidly evolving cyberthreat landscape, Managed Detection and Response (MDR) providers are turning to agentic AI to automate and accelerate cybersecurity tasks, such as alert triage, investigation, and response. This shift towards agentic AI is transforming the MDR market, taking it beyond generative AI models and towards something much more autonomous.

Leading the charge is eSentire, a threat detection and response specialist. Their agentic AI system, Atlas AI, can assess a security situation and collect essential data in just seven minutes—a task that would take human Security Operations Centre (SOC) analysts at least five hours on their own.

eSentire's approach to using AI for detection and response is different from others. Instead of focusing on filtering out noise and carrying out less important remedial tasks, eSentire's system is designed to generate expert-level investigation and response actions. The next layer of eSentire's agentic system handles orchestration, using telemetry tools, allowing customers to tweak the automation dial.

This agentic AI is recasting the entire MDR market, taking it beyond generative AI models and towards something much more autonomous. Gartner forecasts that a third of AI use cases will use agentic AI to fulfill their role by 2028.

When organizations select an MDR partner leveraging agentic AI, they should consider several factors. These include the depth and accuracy of automation, integration capability, transparency and control, human expertise augmentation, scalability and speed of deployment, cost-effectiveness and pricing flexibility, proactive threat intelligence, compliance and security framework alignment, and the generation of audit-ready data.

By prioritizing these factors, organizations can choose an agentic AI-powered MDR partner that offers a modernized, efficient, and reliable cybersecurity defense suited to their unique operational needs. eSentire's AI deployment should generate audit-ready data to meet organizational security and compliance standards, and their agentic AI enables organizations to demonstrate full compliance with data regulation requirements in the immediate aftermath of an incident.

However, it's important to note that eSentire's SOC analysts always have the final say as to whether a threat is truly a threat, and they will decide on next steps no matter the report's assessment. This balance between AI automation and expert human analysts ensures that complex cases are handled effectively and efficiently.

In conclusion, eSentire's use of agentic AI is a game-changer in the MDR industry. By automating and accelerating cybersecurity tasks, eSentire is providing faster detection of threats, significant reduction in false positives, minimized analyst fatigue, and overall operational cost savings. With its focus on generating expert-level investigation and response actions, eSentire is setting a new standard for cybersecurity defense.

1. The integration of agentic AI in Managed Detection and Response (MDR) is revolutionizing the industry, moving beyond generative AI models and towards more autonomous systems.
2. Gartner predicts that by 2028, a third of AI use cases will adopt agentic AI to fulfill their roles.
3. When choosing an MDR partner with agentic AI, factors such as the depth and accuracy of automation, integration capability, transparency and control, human expertise augmentation, scalability and speed of deployment, cost-effectiveness and pricing flexibility, proactive threat intelligence, compliance and security framework alignment, and the generation of audit-ready data should be considered.
4. eSentire's agentic AI system, Atlas AI, can assess a security situation and collect essential data in just seven minutes, a task that would take human Security Operations Centre (SOC) analysts at least five hours on their own.
5. eSentire's approach to using AI for detection and response focuses on generating expert-level investigation and response actions, rather than filtering out noise and carrying out less important remedial tasks.
6. eSentire's AI deployment should generate audit-ready data to meet organizational security and compliance standards, and their agentic AI enables organizations to demonstrate full compliance with data regulation requirements in the immediate aftermath of an incident.
7. eSentire's SOC analysts always have the final say as to whether a threat is truly a threat, and they will decide on next steps no matter the report's assessment, ensuring a balance between AI automation and expert human analysts.
8. eSentire's use of agentic AI is not only providing faster detection of threats but also significant reduction in false positives, minimized analyst fatigue, and overall operational cost savings, setting a new standard for the cybersecurity industry.

Read also: