What Google unveiled
Google described an "agentic" defense portfolio that stitches together threat feeds, security workflows and automated mitigation so software agents can perform tasks that previously required human judgment. The suite ties into Google Cloud's existing security services and shifts routine triage, prioritization and some corrective actions to AI-driven agents.
The company framed the move as a response to faster, more automated attacks: agents can hunt intrusions, block exploits, and handle behind-the-scenes intelligence and logistics faster than human teams alone.
How the agents operate
- Detection: flag anomalous behavior in network traffic or cloud workloads.
- Orchestration: coordinate firewall rules, isolate hosts, or roll out patches across environments.
- Intelligence synthesis: pull together indicators of compromise and threat actor behavior for longer-term defense planning.
By automating these layers, Google aims to reduce dwell time and limit damage when exploits are found.
Wiz: the missing piece
Alphabet completed a $32 billion all-cash acquisition of Wiz, a company known for finding deep cloud and network vulnerabilities that often evade standard scanners. Integrating Wiz's discovery technology with Google Cloud telemetry and agentic controls is intended to create a tighter loop between detection and remediation.
Wiz's tooling maps complex cloud configurations and identifies risky identity setups or privilege escalations — common weak links in recent breaches — and its findings are meant to feed the agentic controls that enact fixes.
Related Articles
- Google expands Gemini in Chrome to seven Asia‑Pacific countries
- Claude Opus 4.7 Launches for Developers
- Developers Are Running AI Locally. CISOs Didn't See This Coming.
The $32 billion Wiz acquisition and Google's agentic defense suite aim to shorten dwell time by automating detection, orchestration and remediation — moving routine defensive work from human teams to AI-driven agents.
