.png)
We’re thrilled to be named a Cool Vendor in the Cool Vendors™ for the Modern Security Operations Center report from Gartner. We launched Dropzone AI early in 2023 with the goal of empowering cyber defenders with unlimited intelligence. Traditional approaches to automation are too rigid and unable to handle messy real-world tasks that security operations teams spend most of their time with. Hiring and training more skilled staff would be nice, but it’s unfortunately not an option for most teams.
.png)
The market has embraced Dropzone’s vision of an AI SOC analyst, and we’re happy to be working with dozens of organizations today, autonomously investigating endpoint, cloud, network, identity, phishing, and other types of alerts in production environments. To date, over hundreds of people have tried out our test drive. Try it yourself! Send suspected phishing emails to scan@try-dropzone.ai.
Earning Trust From Our Customers
Our customers love this augmentation for their teams. Staff provide human-in-the-loop review of Dropzone AI investigations, either closing or escalating them. This saves them 5-40 minutes per investigation as Dropzone AI provides summaries with top findings and links to raw evidence. Upon turning on their POC, one prospect recently sent us a note, “I haven’t been in our [EDR tool] since we started. Dropzone tells me everything I need to know!”
Trust in our AI SOC analyst must be earned, not given, which is why we take pains to continually measure and improve precision (fewer false positives) and recall (fewer false negatives). We aim for customers to view the Dropzone AI SOC analyst as a critical team member, allowing them to focus on tasks requiring human insight, such as instrumentation, policy, and cross-team collaboration.
New Features
The market for AI SOC analysts is evolving quickly, and Dropzone AI’s product is evolving as well. In the past couple of months, we’ve added:
- Insight tags that make it easier to program actions for investigations
- Response actions allow teams to program what happens for different investigation outcomes
- New integrations for Microsoft Defender, Phantom, and Stellar Cyber
Fulfilling the Promise of Agentic AI for Security Operations
Agentic AI systems harness the reasoning capabilities of LLMs to autonomously complete tasks. Gartner sees significant growth in this area for cybersecurity, predicting, “By 2028, multiagent AI in threat detection and incident response will rise from 5% to 70% of AI implementations to primarily augment, not replace staff.”1
Read the Cool Vendor report to learn more!
Other resources
GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally, Gartner COOL VENDORS badge is a registered trademark of Gartner, Inc. and/or its affiliates and are used herein with permission. All rights reserved.
Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.
1Gartner, How to Evaluate Cybersecurity AI Assistants, Jeremy D'Hoinne, Eric Ahlm, Pete Shoard, 8 October 2024
.png)
