Google Cloud has announced a range of new security capabilities for its Duet AI assistant, which will be implemented across Google Cloud’s security products for improved insight into enterprise-level threats.
Duet AI will be brought to Google Cloud applications including Mandiant Threat Intelligence, Chronicle Security Operations, and Security Command Center in order to provide security teams with productivity boosts and enhanced insights.
Within Mandiant Threat Intelligence, Duet AI will aggregate and summarize new threat intelligence, providing firms with simple explanations of active threat actors as well as up-to-date advice on avoiding and remediating attacks based on user prompts.
The AI tool will also be used to provide contextual information on threats within Chronicle Security Operations, and act as the backbone for a new natural language search function.
This can be used to improve the speed at which security teams can discover and respond to threats.
In an example, Google Cloud showed AI-generated results for 15 instances of document sharing within an enterprise environment, in which Duet AI laid out a timeline of cases involving suspicious file sharing, identified the user associated with the actions, and recommended the next steps.
Google Cloud expressed hope that Duet AI could be used to reduce toil and burnout in cyber security, by slashing the need for manual research and analysis.
In Security Command Center, the AI assistant, which Google calls a ‘collaborator’, can provide IT teams with plaintext summaries of security vulnerabilities and attack vectors in near-real time.
Combined with its capabilities in Mandiant and Chronicle’s applications, Duet AI can also be used to inform the steps an organization must take to stamp out poor security hygiene within its workforce.
The launch could have a sizable impact on overall security incidents, with the majority of breaches still linked to email attacks.
Tools such as Duet AI may also help security teams explore the risks of introducing generative AI into their stack, with many workers still lacking the skills to safely use the technology.
RELATED RESOURCE
Establish a clear roadmap for cyber security investigations and resolution.
DOWNLOAD FOR FREE
Google Cloud stated it will use Security AI Workbench, a platform powered by its custom security large language model (LLM) Sec-PaLM 2, as the bedrock for its security applications and will extend its abilities to partner and customer software with AI abilities.
At the launch of the AI Workbench in April 2023, Google Cloud stated that it would work to integrate more AI features across its product range in order to widen access to security information and further assist security teams.
In bringing Duet AI to Google Cloud’s security suite, Google has positioned its AI offering in direct competition with Microsoft Security Copilot, which leverages GPT-4 to provide insights and recommendations on threats within an organization’s environment.
The productivity tools Duet AI and 365 Copilot already share a number of similarities, as both Google and Microsoft have invested heavily in the wide potential for generative AI applications across their respective enterprise offerings.
Google Cloud also revealed a number of new products and services coming to the security cloud in the coming months. In collaboration with Tenable, the firm will bring agentless vulnerability scanning of Google Compute Engine Virtual Machines to the cloud via preview.
This will allow firms to detect vulnerabilities across their environments without having to mass-install security software. Firms can now customize their own posture findings through the Security Command Center.
Palo Alto Networks has also worked with Google Cloud to bring next-generation firewalls to the cloud. This can accurately detect malware, analyze TLS traffic, and actively work off up-to-date threat intelligence from Palo Alto Networks and Google Cloud.
-
Bigger salaries, more burnout: Is the CISO role in crisis?In-depth CISOs are more stressed than ever before – but why is this and what can be done?
-
Cheap cyber crime kits can be bought on the dark web for less than $25News Research from NordVPN shows phishing kits are now widely available on the dark web and via messaging apps like Telegram, and are often selling for less than $25.
-
Google Cloud wants to tackle cyber complexity – here's how it plans to do itNews Google Unified Security will combine all the security services under Google’s umbrella in one combined cloud platform
-
Google Cloud Next 2025: All the live updates as they happenedLive Blog Google Cloud Next 2025 is officially over – here's everything that was announced and shown off in Las Vegas
-
Google Cloud Next 2025 is the hyperscaler’s chance to sell itself as the all-in-one AI platform for enterprisesAnalysis With a focus on the benefits of a unified approach to AI in the cloud, the ‘AI first’ cloud giant can build on last year’s successes
-
The Wiz acquisition stakes Google's claim as the go-to hyperscaler for cloud security – now it’s up to AWS and industry vendors to reactAnalysis The Wiz acquisition could have monumental implications for the cloud security sector, with Google raising the stakes for competitors and industry vendors.
-
Google confirms Wiz acquisition in record-breaking $32 billion dealNews Google has confirmed plans to acquire cloud security firm Wiz in a deal worth $32 billion.
-
Microsoft hit with £1 billion lawsuit over claims it’s “punishing UK businesses” for using competitor cloud servicesNews Customers using rival cloud services are paying too much for Windows Server, the complaint alleges
-
Microsoft's Azure growth isn't cause for concern, analysts sayAnalysis Azure growth has slowed slightly, but Microsoft faces bigger problems with expanding infrastructure
-
The Open Cloud Coalition wants to promote a more competitive European cloud market – but is there more to the group than meets the eye?Analysis The launch of the Open Cloud Coalition is the latest blow in a war of words between Microsoft and Google over European cloud
