Intezer Launches SOC Operating Layer for AI Agents -- Security Today

Advanced Security Operations Center with CCTV Monitoring Wall

Intezer Launches SOC Operating Layer for AI Agents

The protocol integration provides frontier AI models with direct access to normalized forensic data to accelerate cybersecurity triage.

By Jesse Jacobs
Jun 22, 2026

A new software framework aims to help enterprise organizations integrate generative artificial intelligence into their security operations centers.

Intezer announced a redesigned Model Context Protocol server developed to supply autonomous tools with structured security context. The integration provides frontier AI assistants, including Anthropic Claude, OpenAI Codex and Cursor, with direct access to forensic data gathered from the automated triage of network alerts.

Plugging generative AI platforms directly into raw security detection feeds often yields inconsistent and unreliable outcomes, while building custom data pipelines remains cost-prohibitive for many enterprises. The new operating layer is designed to act as a system of record, collecting and normalizing data across various security layers before the information reaches the AI workspace.

The system ingests alerts from endpoint detection and response, network detection and response, security information and event management, identity, cloud and email security platforms. It then executes forensic analysis to deliver automated verdicts. According to company data, the autonomous layer handles the initial volume to scale down data feeds, allowing connected AI models to inherit historical context when executing response actions or generating incident reports.

By routing data through a unified protocol layer rather than individual tool connectors, security teams can use the connected AI models to write automated tuning rules for false positives, cross-reference user login histories during anomalous travel alerts and sweep enterprise networks for newly discovered threat indicators.

The integration architecture is currently available to existing customers, allowing organizations to maintain localized ownership of case histories, triage logic and internal detection rules within their own network instances.

About the Author

Jesse Jacobs is assistant editor of SecurityToday.com.

Featured

AI Camera Network Boosts Early California Wildfire Detection

Leveraging advanced sensors and visual intelligence, a statewide initiative alerts emergency personnel before 911 calls are made. Read Now
- Artificial Intelligence
- Incident Response
- Monitoring
AI Threatens to Overwhelm Device Manufacturers With Vulnerability Data

A new report warns that artificial intelligence will find more security flaws than human teams can manage without automated verification tools. Read Now
- Artificial Intelligence
- Cybersecurity
- Risk Management
Intezer Launches SOC Operating Layer for AI Agents

The protocol integration provides frontier AI models with direct access to normalized forensic data to accelerate cybersecurity triage. Read Now
The Rise of the Unmanned Business: How Access Control Shapes the Future of Operations

Modern access control has evolved from a security lock into an automated business operations engine, enabling around-the-clock unstaffed fitness centers, coworking spaces, and retail hubs. Read Now
- Access Control
- Facility Security
- Building Automation
Moving Down the Street

A short-distance relocation to a streamlined executive office anchors a remote-first hybrid work model, a 40% growth projection and upcoming smart security acquisitions. Read Now
- Dealers and Integrators
- Corporate
- Integrated Home

Artificial Intelligence

New Products

EasyGate SPT SPD

Security solutions do not have to be ordinary, let alone unattractive. Having renewed their best-selling speed gates, Cominfo has once again demonstrated their Art of Security philosophy in practice — and confirmed their position as an industry-leading manufacturers of premium speed gates and turnstiles.
Camden CM-221 Series Switches

Camden Door Controls is pleased to announce that, in response to soaring customer demand, it has expanded its range of ValueWave™ no-touch switches to include a narrow (slimline) version with manual override. This override button is designed to provide additional assurance that the request to exit switch will open a door, even if the no-touch sensor fails to operate. This new slimline switch also features a heavy gauge stainless steel faceplate, a red/green illuminated light ring, and is IP65 rated, making it ideal for indoor or outdoor use as part of an automatic door or access control system. ValueWave™ no-touch switches are designed for easy installation and trouble-free service in high traffic applications. In addition to this narrow version, the CM-221 & CM-222 Series switches are available in a range of other models with single and double gang heavy-gauge stainless steel faceplates and include illuminated light rings.
HD2055 Modular Barricade

Delta Scientific’s electric HD2055 modular shallow foundation barricade is tested to ASTM M50/P1 with negative penetration from the vehicle upon impact. With a shallow foundation of only 24 inches, the HD2055 can be installed without worrying about buried power lines and other below grade obstructions. The modular make-up of the barrier also allows you to cover wider roadways by adding additional modules to the system. The HD2055 boasts an Emergency Fast Operation of 1.5 seconds giving the guard ample time to deploy under a high threat situation.

Security Today eNews

Sign up today for essential industry news and product information that can help you stay afloat in the fast-paced world of security.

Email Address*Country*

Please type the letters/numbers you see above.