Looking to harness the power of AI for security, Google on Monday announced the Google Cloud Security AI Workbench, a new platform based on the Sec-PaLM large language model (LLM).
Google said the new security model has been fine-tuned for security use cases, incorporating Google’s visibility into the threat landscape and Mandiant’s intelligence on vulnerabilities, malware, threat indicators, and behavioral threat actor profiles.
“With our AI advances, we can now combine world class threat intelligence with point-in-time incident analysis and novel AI-based detections and analytics to help prevent new infections,” said Sunil Potti, vice president and general manager of Google Cloud Security. “These advances are critical to help counter a potential surge in adversarial attacks that use machine learning and generative AI systems.”
The AI Workbench product will compete with Microsoft Security Copilot, which is based on GPT-4 and announced a month ago. Google announced that Accenture will be the first partner to use AI Workbench.
As part of AI Workbench, Google said one of the tools was VirusTotal Code Insight, which uses the Sec-PaLM LLM to analyze and explain the behavior of potentially malicious scripts, and promises to better detect which scripts are actually threats.
Google also plans to leverage Google Cloud and Mandiant Threat Intelligence to deliver Mandiant Breach Analytics for Chronicle. The tool promises to automatically alert security teams to active breaches in the enterprise’s environment. It will use Sec-PaLM to help contexualize and respond instantly to the findings from the threat intelligence.
Mandiant Threat Intelligence AI, built on top of Mandiant’s massive threat graph, will also leverage Sec-PaLM to quickly find, summarize, and act on threat relevant each specific organization.