gcp Google Cloud Blog ·

Google Cloud AI Threat Defense Combats AI-Driven Cyberattacks

blogaisecuritygcpengineergovernmentgcp-gke
feature announcement

Google Cloud introduces AI Threat Defense, a unified platform leveraging Gemini, Wiz, CodeMender, and Mandiant to counter AI-powered cyberattacks. This new framework aims to provide defenders with a speed and context advantage over attackers who are increasingly using AI for zero-day exploits and rapid multi-agent attacks. The platform assists organizations in preparing, scanning, prioritizing, remediating, and monitoring threats across their software development lifecycle. It's designed for security engineers and architects managing cloud environments.

  • Google AI Threat Defense Unified Platform
  • Four-Stage AI Threat Defense Framework
  • AI's Growing Role in Cyber Threats and Defense
  • Morgan Stanley's Success with AI Threat Defense
  • Human Oversight in AI-Driven Security
Features (2)
  • Google AI Threat Defense Unified Platform

    Google Cloud has launched AI Threat Defense, integrating Gemini's reasoning, Wiz's cloud context, CodeMender's remediation, and Mandiant's intelligence into a single platform. This aims to provide defenders with a comprehensive, AI-driven approach to security.

  • Four-Stage AI Threat Defense Framework

    The platform operates on a continuous four-stage framework: Prepare (mapping exposed assets), Scan & Prioritize (deep-dive risk analysis), Remediate (autonomous code fixes via CodeMender), and Monitor (AI agents hunting for threats). This enables proactive mitigation and faster response times.

Enhancements (1)
  • Morgan Stanley's Success with AI Threat Defense

    Morgan Stanley partnered with Google Cloud and Wiz, implementing the AI Threat Defense framework principles. This collaboration reduced their mean time to detect threats by 99.9%, shifting from reactive to proactive mitigation within 90 seconds.

Notes (3)
  • AI's Growing Role in Cyber Threats and Defense

    Attackers are increasingly leveraging AI for sophisticated cyberattacks, including the first known AI-built zero-day exploit. The speed of these attacks has accelerated dramatically, with handoff times between attack stages dropping from hours to seconds. This evolving landscape necessitates advanced defense mechanisms.

  • Human Oversight in AI-Driven Security

    While AI agents automate tasks like penetration testing and threat investigation, strategic human oversight remains essential. The platform is designed for autonomy under human supervision, empowering security teams to manage the software development lifecycle efficiently.

  • Securing AI Infrastructure and Combating Shadow AI

    The article emphasizes the need for AI-native, agent-driven infrastructure and enforcing Zero Trust for AI to counter internal risks like shadow AI and unauthorized agents. Building secure AI infrastructure from the ground up is crucial.

Read the original announcement →

https://cloud.google.com/blog/products/identity-security/cloud-ciso-perspectives-how-ai-leverages-deep-context-defenders-advantage/

Related releases