Virtualization Technology News and Information
Article
Search:
RSS
Follow VMblog.com:
Improve end user experience in VDI, DaaS and physical endpoint environments
Intezer Expands AI SOC Offering to Support Identity-Based Alert Triage
Intezer announced a major update to its AI SOC platform to autonomously triage and investigate identity-based threats with the precision and expertise of a seasoned SOC analyst.

Identity-related alerts, which include suspicious logins, impossible travel, and anomalous access attempts, require in-depth manual investigation, consuming valuable analyst time and slowing response rates. These delays increase mean time to respond (MTTR) and drain resources, leaving organizations vulnerable to threats. With IBM reporting a 71% year-over-year increase in cyberattacks leveraging stolen or compromised credentials, rapid and accurate identity threat response has become more important than ever.

Intezer's AI SOC platform now integrates with top identity providers like Microsoft Entra ID and Okta to autonomously triage identity alerts. By combining smart queries, contextual data enrichment, and AI-driven decisions, the platform replicates the investigative approach of a human analyst, dramatically improving accuracy and drastically cutting response times.

Key capabilities of Intezer's identity-based alert triage:
  • Smart Queries Against IDP Data: Automatically enriches alerts with user activity logs, domain permissions, and suspicious patterns directly from identity providers.
  • Autonomous Decision-Making: Analyzes the entire alert and its enriched data, correlates with similar activity, and leverages threat intelligence to distinguish legitimate access (i.e. enterprise VPNs) from malicious intent.
  • Automated User Feedback Requests: Proactively contacts users, managers, or security teams via email, Slack, or other channels to validate activity; incorporates feedback directly into the decision-making process to ensure accurate and actionable outcomes.
"Identity alerts are one of the most common and time consuming alerts that security teams deal with, so this is an important milestone for us as we help organizations further automate their SOCs, allowing security analysts to focus on strategic threats instead of getting buried in the noise," said Roy Halevi, co-founder and CTO at Intezer.
Published Thursday, March 06, 2025 12:12 PM by David Marshall
Filed under:
Get This Featured White Paper: Securing and Optimizing Military and Government Endpoints
You may also be interested in this white paper: The Business Value of Forward Networks
Comments
There are no comments for this post.
To post a comment, you must be a registered user. Registration is free and easy! Sign up now!
Datacenter
Global Digital
haf
DTX
DTW-NA
innovatrix
Economist Impact
GISEC
IPS MP
global-digital-cx
vExpert
Calendar
<March 2025>
SuMoTuWeThFrSa
2324252627281
2345678
9101112131415
16171819202122
23242526272829
303112345