Latest news with #GoogleSecurityOperations
Techday NZ
06-08-2025
- Business
- Techday NZ
Claroty & Google unite to boost OT & IT threat response
Claroty has revealed a new collaboration with Google Security Operations designed to provide enhanced threat detection and response for organisations managing both IT and operational technology environments. The partnership allows organisations responsible for securing cyber-physical systems (CPS) to leverage high-fidelity, context-rich alerting and vulnerability data from Claroty's xDome and Continuous Threat Detection (CTD) platforms, integrating this information within Google's cloud-native security operations platform. Operational challenges Security operation centres (SOCs) are increasingly tasked with managing the convergence of IT and OT, leading to unique security obstacles. These include reduced visibility into threats affecting physical systems, a proliferation of unfiltered alerts, mounting compliance requirements, and slower incident response times attributed to legacy architectures and proprietary protocols commonly found in OT environments. The new integration promises to address these challenges by unifying threat detection across both IT and OT, enabling accelerated incident response, streamlining compliance, and focusing on risk-based remediation. Key features The integration is characterised by several capabilities. Notable among these is the ingestion of Claroty-generated alerts and vulnerability data into Google Security Operations, which allows for the correlation of Claroty insights with wider enterprise data. This correlation is intended to enrich context for threat detection and enable SOC teams to focus on prioritised, risk-based responses. Additionally, the combination seeks to enable earlier detection of OT, IoT, and other CPS-specific risks that may go unnoticed by traditional IT security tools, and facilitate rapid, intelligence-driven incident responses. According to Claroty, this should significantly reduce mean time to resolution (MTTR) by empowering security teams with actionable insights tailored to operational environments. Industry perspective "The CPS threat landscape is quickly expanding and is a high-value target for bad actors looking to exploit potential vulnerabilities as digital transformation takes shape across enterprises," said Tim Mackie, Vice President of Worldwide Channel and Alliances at Claroty. "By combining the verticalised expertise of Claroty and our deep understanding of CPS, from deep protocol expertise to complete asset context, with Google Security Operations' ability to prioritise threats, automate response workflows, and correlate complex attack patterns across domains, we're able to increase operational uptime, simplify compliance across hybrid environments, and above all else, reduce risk." The evolving landscape sees IT security teams increasingly responsible for a broader array of physical assets, including IoT devices, medical equipment, building management systems and elements of supply chain automation. Given the diversity of assets and associated risks, there is growing demand for integrated approaches that provide a single operational view and simplified workflows for SOC teams. McCall McIntyre, Head of Security Product Partnerships at Google Cloud, commented on this trend: "IT security teams are increasingly taking on the responsibility of securing physical assets, from IoT, to medical devices, to building management systems, to supply chain automation. They need a fully integrated solution in their SOC that leverages the unrivaled knowledge of CPS delivered by Claroty and the intelligence-driven workflows of Google Security Operations that together empower SOC teams with a unified view of threats across environments, enabling earlier detection of attacks and accelerating response times." Risk reduction By feeding high-fidelity data from Claroty's platforms into Google Security Operations, organisations are expected to strengthen their ability to detect and mitigate risks targeting their operational assets. The combined capability is positioned as supporting both compliance requirements and operational efficiency, particularly in environments where critical infrastructure is managed alongside enterprise IT systems. The companies state that the joint solution is intended to enable security teams to detect threats more quickly, remediate vulnerabilities at an earlier stage, and correlate threats across disparate systems while prioritising actions that reduce risk exposure most significantly. The integration has been designed to accommodate both cloud-based and on-premise security deployments across hybrid organisational infrastructures.
Korea Herald
24-07-2025
- Business
- Korea Herald
Elitery a Pioneering MSSP Partner for Google Cloud's "Indonesia BerdAIa untuk Keamanan Siber" Program: A Strategic Move to Strengthen National Cyber Resilience
JAKARTA, Indonesia, July 24, 2025 /PRNewswire/ -- PT Data Sinergitama Jaya Tbk (Elitery) today announced that it will be a pioneering local Managed Security Service Provider (MSSP) partner for Google Cloud's "Indonesia BerdAIa untuk Keamanan Siber" program, which is designed to empower organizations with best-in-class Google Cloud Security solutions, expertise, and training to bolster the cyber resilience of Indonesia's key economic sectors and digital landscape. This was officially announced during the " Indonesia Cyber Forum: Google Cloud's Commitment to Strengthening National Cyber Resilience with New Security Operations Data Region in Indonesia" event, held on Wednesday, July 23, 2025, at the Fairmont Hotel, Jakarta. The forum brought together key leaders from the National Cyber and Crypto Agency (BSSN), State Intelligence Agency (BIN), Google Cloud, Elitery, and representatives from both public and private sectors. This event also marked a strategic collaboration between Google Cloud, Elitery, BIN, and BSSN, focused on strengthening national digital infrastructure, enhancing cyber threat detection and response capabilities, and supporting data sovereignty policies. Fanly Tanto, Country Director, Indonesia, Google Cloud, said, "Our newly launched local Security Operations Data Region brings Google Cloud's advanced, integrated, and dedicated security technology hardware and software to Indonesia. This empowers more organizations to leverage the AI-enabled Google Security Operations platform solution while storing their security telemetry data in Google Cloud data centers in Jakarta. This is a core component of our 'Indonesia BerdAIa untuk Keamanan Siber' program, offered jointly with our key partners like Elitery. This program will help organizations overcome three of security's most persistent challenges—threat overload, operational toil, and the talent gap, thereby strengthening their cyber defenses and contributing to a more secure and prosperous digital future for Indonesia." According to the 2025 CIO Agenda report by Gartner, 70% of CIOs in Southeast Asia, including Indonesia, prioritize cyber and technology risk management, with a strong focus on demonstrating the business value of IT strategies. This highlights Indonesia's commitment to building a resilient and secure digital ecosystem. Google Cloud's Security Operations Data Region in Indonesia is hosted in Google Cloud's Jakarta Cloud Region (i.e., Google Cloud data centers located in Jakarta). This allows more organizations in Indonesia, including government agencies and enterprises in regulated industries, to take advantage of the intelligence-driven, AI-enabled Google Security Operations platform for real-time threat detection, rapid response, deep analysis, and 24/7 monitoring, all while meeting their local data residency requirements. As a certified Google Security Operations MSSP, Elitery plays a strategic role in helping organizations strengthen their cybersecurity posture. Backed by over 14 years of experience in the IT industry, Elitery designs, implements, and manages end-to-end Google Cloud security solutions, ranging from real-time threat detection and response, to ensuring compliance with national regulations. Indra Dwiputra, Director of Elitery, said, "The presence of Google Cloud's Security Operations Data Region in Indonesia provides local access to world-class digital security solutions, highly relevant for Elitery's customers across various sectors. It strengthens compliance, accelerates threat response, and promotes the use of AI in security operations. As a strategic partner of Google Cloud, Elitery is committed to supporting both public and private organizations in building resilient and sustainable digital security." About PT Data Sinergitama Jaya Tbk (Elitery): Elitery is the official Managed Security Services Provider (MSSP) for Google Cloud Security in Indonesia, with over 14 years of experience supporting digital transformation across various industries through cloud, cybersecurity, and AI solutions. As a Google Cloud MSSP, Elitery possesses deep expertise in designing, implementing, and managing end-to-end managed security solutions based on Google Cloud Security. Elitery contributes to strengthening national cybersecurity posture by delivering proactive, scalable, and regulation-compliant services—positioning itself as a strategic partner for organizations looking to build a secure and resilient digital foundation. Throughout 2024, Elitery achieved several other significant milestones, including receiving the Indonesia Best CX-EX Strategy Award 2024 from SWA, and being recognized as a Great Place to Work (GPTW) 2024, reflecting our commitment to strong governance and an inclusive, collaborative work environment.
Business Wire
15-07-2025
- Business
- Business Wire
Deepwatch Joins the Google Cloud Managed Security Services Provider Initiative
PALO ALTO, Calif.--(BUSINESS WIRE)-- Deepwatch, the leader in human + AI-driven Managed Detection and Response (MDR), today announced its inclusion in the Google Cloud Managed Security Services Provider Initiative. This collaboration brings together Deepwatch's Precision MDR and expert security services with the Google Security Operations platform to deliver unified, 24/7 managed detection and response. The solution offers end-to-end visibility, AI-powered automation, and expert human analysis across cloud, hybrid, and on-premises environments to help organizations accelerate threat detection and response, reduce false positives, lower costs, and measurably improve security posture so they can achieve cyber resilience and operational efficiency at scale. Addressing Critical Industry Challenges Remote work, cloud computing adoption, and IoT expansion demand unified visibility and precision protection, yet organizations deploy poorly-integrated tools that flood security teams with false positives and low-value investigations. These challenges, combined with the security operations center (SOC) talent shortage and the difficulty of staffing operations 24/7/365, contribute to analyst fatigue, delayed responses, and missed critical threats across an increasingly complex attack surface. 'At Deepwatch, we optimize customers' security resilience by tuning and better monitoring their existing security investments. This virtually eliminates the alert fatigue that is overwhelming security teams. The partnership with Google Cloud will allow us to amplify the capabilities of the Google Security Operations platform to deliver even greater value,' said John DiLullo, CEO, Deepwatch. 'Our world-class cyber team and advanced AI-driven, correlative detection techniques allow us to democratize cutting-edge AI technologies and services that are normally out of reach for most enterprise customers.' Comprehensive Security Operations at Scale The collaboration with Google Cloud enables Deepwatch to deliver three critical capabilities for customers that set it apart in the managed security services market: End-to-End Threat Protection: The integration of Deepwatch MDR's 24/7 expert operations with the cloud-native SIEM, SOAR, and threat intelligence of Google Security Operations provides unified security operations across hybrid, multi-cloud, and on-premises environments. AI-Driven Efficiency: Generative AI and hyper-automation rapidly analyze massive security telemetry volumes, automate threat detection and response, and significantly reduce false positives and analyst workload. Expert-Driven Scale: Deepwatch's security experts provide contextual analysis and tailored recommendations, while Google Security Operations provides the underlying technology foundation for scalable, resilient, and compliant security operations. "We're excited about our partnership with Deepwatch, which combines the cloud-native capabilities and extensive telemetry processing of Google Security Operations with Deepwatch's expert-driven Managed Detection and Response," said Jonas Kelley, Head of MSSP Partnerships for Google Cloud Security. "This collaboration can help organizations gain the visibility and actionable intelligence needed to accelerate threat detection and response and defend against sophisticated threats at scale." Market Differentiation The solution provides distinctive value through cloud-native scale and speed, best-in-class threat intelligence, and high flexibility with a technology-agnostic approach. Organizations can gain unprecedented transparency with full visibility into every detection and decision, and compliance readiness while benefiting from cost-effective operations, including high performance search across petabytes of data through Google Security Operations. For enterprise security leaders seeking both technological innovation and strategic business alignment, this collaboration enables them to achieve robust, measurable security outcomes, align security with business objectives, and maintain trust with customers, partners, and stakeholders in a rapidly evolving threat landscape. About Deepwatch Deepwatch® is the pioneer of human-driven AI-enabled MDR. The Deepwatch Platform enables lean security teams—regardless of skill level—to enhance their organization's cyber resilience and maintain regulatory compliance. By combining AI, security data, intelligence, and human expertise, Deepwatch helps organizations reduce risk through early and precise threat detection and remediation. The platform also lowers costs, maximizes existing tool investments, and enhances security team productivity. For more information about Deepwatch, visit "Deepwatch" is a trademark of Deepwatch, Inc. and its subsidiaries. All other trademarks, trade names, service marks, and logos referenced herein belong to their respective companies.
Associated Press
14-05-2025
- Business
- Associated Press
StrikeReady Launches on Google Cloud Marketplace to Deliver Day One Risk Resolution With AI-Native Security Operations Platform
Security teams can now deploy StrikeReady's AI-powered Security Command Center in minutes - deeply integrated with Google Cloud's suite of security solutions and built for instant value DALLAS, TX - StrikeReady has officially landed on Google Cloud Marketplace. Now part of the Google Cloud ISV Connect Program, StrikeReady is not just joining the ecosystem—it's broadening it. StrikeReady—a launchpad for the future of unified cyber defense—has graduated from the Google Springboard program. StrikeReady is not just adapting to the AI era—the company has pioneered it since 2019. StrikeReady leverages Google Gemini while integrating deeply with Google Security Operations—which includes Chronicle, Google Threat Intelligence—which includes Mandiant intelligence and VirusTotal, Google Security Command Center, Identity and Access Management, Gmail, and more—giving organizations a unified, vendor-neutral platform that reduces mean time to respond (MTTR) by up to 90%. Customers can deploy StrikeReady directly within their Google Cloud environments, which streamlines procurement, leverages existing Google Cloud budgets, and accelerates time to value. StrikeReady is a purpose-built platform that unifies fragmented tech stacks and supercharges security teams with automation that delivers functional AI on Day One. StrikeReady accelerates your risk management program by finally delivering risk resolution. You can integrate your Google Cloud and third-party tech stack, simplify and streamline analyst experience and collaborate while managing risk across your alerts, logs, assets, vulnerabilities, identities, and more. 'StrikeReady enables your team to fully deploy Google Cloud security solutions, Gemini AI model integration and automation—all on Day One,' said Yasir Khalid, Founder and CEO of StrikeReady. 'Unifying the user experience, while integrating collaboration in the StrikeReady platform, empowers users of any skill set to maximize their impact on investigating, remediating, and resolving risks to their organization. Key Differentiators: 'Bringing StrikeReady to Google Cloud Marketplace enables customers to quickly deploy and manage the StrikeReady platform on Google Cloud's trusted, global infrastructure,' said Dai Vu, Managing Director, Marketplace & ISV GTM Programs at Google Cloud. 'StrikeReady can now securely scale and support customers that want to use its AI-powered platform to help amplify their risk investigation, remediation and resolution efforts.' To begin a conversation on how you can transform your security operations with native AI on Day One, visit us below. About StrikeReady Founded in 2019, StrikeReady introduced the first unified, vendor-agnostic, AI-powered Security Command Center delivering full-spectrum risk visibility, intelligent threat management, and automated response from a single, integrated platform. By unifying identities, assets, vulnerabilities, and advanced simulations in one place, StrikeReady empowers organizations to proactively defend against modern threats and stay ahead of an ever-shifting cyber landscape. Moving beyond conventional AI, StrikeReady leverages its Large Action Model (LAM) to automate actions across the tech stack, creating a force multiplier for security teams seeking truly proactive risk management. Recognized by Gartner as the only Virtual Security Assistant in its Emerging Technologies report, StrikeReady is dedicated to reshaping the future of cybersecurity. For more information visit Media Contact Company Name: StrikeReady Contact Person: Cara Harbor Email: Send Email Country: United States Website: Press Release Distributed by To view the original version on ABNewswire visit: StrikeReady Launches on Google Cloud Marketplace to Deliver Day One Risk Resolution With AI-Native Security Operations Platform
Techday NZ
30-04-2025
- Business
- Techday NZ
Google Cloud unveils agentic AI to boost security operations efficiency
Google Cloud has outlined its plans to integrate agentic AI into its security operations in an effort to automate routine tasks and improve efficiency for security teams. The use of agentic AI within security is intended to move beyond existing assistive AI by allowing intelligent agents to independently identify, reason through, and dynamically execute tasks, while keeping human analysts informed and involved in the process. Building on customer experiences with Gemini in Security Operations, Google Cloud aims to develop a security operations centre (SOC) where these intelligent agents collaborate with human analysts. Hector Peña, Senior Information Security Director at Apex Fintech Solutions, commented on the current benefits, stating: "No longer do we have our analysts having to write regular expressions that could take anywhere from 30 minutes to an hour. Gemini can do it within a matter of seconds." Google Cloud has recently developed new AI agents as part of its Gemini in Security suite. The alert triage agent in Google Security Operations is designed to perform dynamic investigations and deliver verdicts on alerts. This agent is expected to be available in preview to selected customers in the second quarter of 2025. It analyses the context of each alert, gathers supporting information, and provides an audit log detailing the evidence, reasoning, and decisions behind its verdicts. This tool aims to reduce repetitive work for Tier 1 and Tier 2 security analysts who manage high volumes of daily alerts. In Google Threat Intelligence, the malware analysis agent is designed to undertake the reverse engineering of potentially malicious files. Also expected to be available for preview to selected customers in Q2 2025, this agent examines suspicious code, creates and executes deobfuscation scripts, and presents a summary along with a determining verdict regarding the file's safety. The agentic SOC concept involves connecting multiple specialised agents that collaborate with analysts to automate a variety of security workflows. Google Cloud believes this could yield significant efficiency gains, enabling security professionals to dedicate more attention to complex threats and strategic priorities. Google Cloud provided examples of critical SOC functions that could be automated or orchestrated through agentic AI. These include data management, alert triage, investigation, response actions, threat research, threat hunting, malware analysis, exposure management, and detection engineering. To support the deployment of reliable AI agents, Google Cloud leverages its broad security data and expertise, advanced AI research, and integrated technology stack. The company stated that these resources allow for the development of agents capable of human-like planning and reasoning, producing consistent and high-quality outcomes across security tasks. Google also pointed to the modularity of this approach, with new agents constructed through the combination of existing security capabilities. Interoperability is also a focus for Google Cloud, with the introduction of the Agent2Agent (A2A) protocol to enable communication among agents developed by different developers, and the model context protocol (MCP) for standardised interaction between AI and security applications. Google Cloud is open-sourcing MCP servers for Google Unified Security, allowing customers to build custom workflows that combine Google Cloud and other security solutions. The company emphasises its commitment to an open ecosystem in which agents from various vendors and products can work together. Grant Steiner, Principal Cyber-Intelligence Analyst, Enablement Operations, Emerson, said: "We see an immediate opportunity to use MCP with Gemini to connect with our array of custom and commercial tools. It can help us make ad-hoc execution of data gathering, data enrichment, and communication easier for our analysts as they use the Google Security Operations platform." Google Cloud also introduced SecOps Labs, an initiative offering customers early access to AI pilots in Google Security Operations, and providing a mechanism for the community to give feedback. The initial set of pilots includes autonomous conversion of threat reports into detection rules, the generation of automation playbooks based on historical incident analysis, and updates to data parsers using natural language commands. SecOps Labs is intended as a space for teams to trial and refine AI capabilities, and help shape future Google Security Operations technologies by offering feedback based on real-world experiences.
