Google Agentic SOC

Google’s agentic SOC is a set of Gemini-powered agents embedded in Google Security Operations (SecOps) and Google Threat Intelligence that run SOC workflows — triage, investigation, detection engineering, threat hunting, and malware analysis — semi-autonomously under human supervision. Google frames the agents as teammates that take routine, high-volume work so analysts focus on complex investigation and response, summarized as “AI empowers defenders, it does not replace them.”1

The offering packages SOC work as a roster of role-specialized agents on one platform, governed by per-agent cryptographic identity and an explicit human-authority boundary. That framing places Google alongside Microsoft Security Copilot in the copilot-plus-specialized-agents pattern of the agentic SOC, rather than a single assistant bolted onto a SIEM.

The substrate: Google SecOps and Google Unified Security

The agents run on Google SecOps — the platform combining the Chronicle SIEM, Siemplify-derived SOAR, Mandiant threat intelligence, and Gemini. Google Unified Security (GUS) converges SecOps with Google Threat Intelligence, Security Command Center, Mandiant, and Chrome Enterprise into one platform, and is the integration surface the agents operate across.2 Google states that Mandiant analyst practice is the training signal: agents are built to “observe and act like an elite human analyst” using investigation principles derived from Mandiant.3

The agents

AgentSOC workflowProductStatus
Alert Triage and Investigation AgentTier-1/2 triage and investigationGoogle SecOpsPublic preview4
Malware Analysis AgentReverse engineering, malware triageGoogle Threat IntelligencePreview1
Detection Engineering AgentDetection authoring and validationGoogle SecOpsPreview5
Threat Hunting AgentProactive hunting over log dataGoogle SecOpsPreview5
Third-Party Context AgentEntity enrichment from external systemsGoogle SecOpsPreview5

The Alert Triage and Investigation Agent investigates an alert end to end: it gathers evidence, runs analyses such as decoding obfuscated scripts, correlates signals, and returns a true- or false-positive verdict with a transparent audit log of its evidence and reasoning.3 The Detection Engineering Agent examines a deployment, decides whether existing rules would catch a newly identified threat, generates and installs rules where gaps exist, and produces synthetic logs to confirm the rules fire.5 The Threat Hunting Agent turns threat intelligence into a hunt plan and runs the searches across customer logs for signs of existing compromise.5

Orchestration: A2A and MCP

Google’s Agent2Agent (A2A) protocol provides cross-agent interoperability, and the Model Context Protocol (MCP) provides a common interface for agent access to security tools and data; Google open-sourced MCP servers for Google Unified Security.1 The published agent roster the orchestration is meant to cover spans data management, triage, investigation, response, threat research, threat hunting, malware analysis, exposure management, and detection engineering.1

Governance: identity, anomaly detection, posture

At Google Cloud Next 2026 Google paired the SOC agents with agent-governance primitives that map onto the reference architecture’s Identity and Observability planes:5

  • Agent Identity — every agent gets a unique cryptographic identity, creating an auditable trail mapped to authorization policies (the agent identity control).
  • Agent Anomaly Detection — real-time detection of suspicious agent behavior using statistical models and an LLM-as-a-judge framework to flag unusual reasoning.
  • Agent Security dashboard — Security Command Center-powered discovery that maps agent-to-model relationships and scans for vulnerabilities.

Wiz integration feeds Wiz Defend detections into Google SecOps and Mandiant Threat Defense, adds an AI Bill of Materials to inventory shadow AI, and injects inline security checks into IDE and agent workflows.5

Human-authority boundary

Google distinguishes assistive AI (aids a human action) from agentic AI (independently identifies, reasons, and executes a task) and keeps a human in the loop over high-impact actions.1 The triage agent’s transparent audit log and source references exist so analysts can review and accept or reject its verdict, which is the oversight-layer pattern applied to defense.3

How it integrates into current SecOps

The agents are native to the SecOps console rather than a separate product: the triage agent acts on the existing alert and case queue, SOAR exposes “agentic automation” inside playbooks, and the detection agent writes into the live rule set. Access is packaged through SecOps tiers and Google Unified Security.2 New partner integrations announced alongside the agents (Darktrace, Gigamon, SAP) widen the data and action surface the agents reason over.5

Reported outcomes

Google’s figures are vendor-reported and not independently benchmarked. A named customer reports regular-expression authoring dropping from 30–60 minutes to seconds with Gemini.1 For triage, Google reports reducing a roughly 30-minute manual analysis to about 60 seconds and a 50% faster mean time to respond in early deployments.4

Open items

The 2026 agents (detection engineering, threat hunting, third-party context) are in preview with general availability stated but not dated. The performance figures are Google-reported; no public multi-task benchmark scores Google’s defender agents (see the agentic SOC thesis on the missing comparator).

Notes

Sources

Footnotes

  1. Google Cloud — The dawn of agentic AI in security operations at RSAC 2025, April 28, 2025. Agentic SOC vision; alert triage agent (Google SecOps) and malware analysis agent (Google Threat Intelligence); Agent2Agent (A2A) + MCP; planned multi-agent roster; SecOps Labs; the Apex Fintech regex testimonial. 2 3 4 5 6

  2. Google Cloud — Google Unified Security, 2026. Converged platform spanning SecOps, Google Threat Intelligence, Security Command Center, Mandiant, and Chrome Enterprise. 2

  3. Google Cloud — Use the Triage and Investigation Agent to investigate alerts, 2026. Autonomous evidence gathering, deobfuscation, true/false-positive verdict, transparent audit log; Mandiant-derived analysis principles. 2 3

  4. Google Cloud Community — Alert Triage and Investigation Agent now in public preview, 2026. Public-preview status; Google-reported triage time (~30 min to ~60 sec) and 50% faster MTTR. 2

  5. Google Cloud — Google Cloud Next 2026 wrap-up, April 25, 2026. Detection Engineering, Threat Hunting, and Third-Party Context agents; Agent Identity, Agent Anomaly Detection (LLM-as-a-judge), and Agent Security dashboard; Wiz Defend integration and AI-BOM; Darktrace/Gigamon/SAP partner integrations. 2 3 4 5 6 7 8