Simbian has launched its AI Threat Hunt Agent, which integrates with the Microsoft Sentinel data lake, aiming to accelerate and scale threat hunting capabilities for organizations, particularly Microsoft 365 E5 customers. The company’s AI SOC Agent has also been extended to leverage the security data available in Microsoft Sentinel data lake, aligning with Simbian’s vision of Superintelligence for Accelerated Security. Simbian’s AI Threat Hunt Agent automates the process of validating threat hunt hypotheses using artificial intelligence. Threat hunters can use natural language to identify potential threat actor techniques, tools, and operational areas within their organizations. The AI Threat Hunt Agent then queries security data across various tools to find supporting evidence, investigating deeply to confirm malicious activity chains and providing timely feedback to analysts. Simbian states this is the first and only threat hunt solution to automate the validation of threat hunt hypotheses at scale across an enterprise. The integration with Microsoft Sentinel data lake addresses key challenges in threat hunting by allowing Simbian to reason across months of diverse enterprise logs to identify long-running threats or execute discreet investigations. Simbian’s AI SOC Agent, which investigates and responds to security alerts, has also been enhanced to utilize Microsoft Sentinel data lake for deeper analysis across all major alert sources, including SIEMs and EDRs. Microsoft Sentinel data lake is a cloud-native security data lake designed for ingesting, storing, and analyzing large volumes of diverse security data at scale on a single, open-format, extensible platform. Krishna Kumar Parthasarathy, Corporate Vice President, Microsoft Sentinel Platform, commented, “Sentinel data lake delivers on Microsoft’s vision of being the best security platform for security in the AI era. We are excited to have partners like Simbian demonstrating the power of this platform and show a path towards more autonomous security capabilities.” Ambuj Kumar, Simbian Co-founder and CEO, stated, “Simbian is honored to work with Microsoft to take advantage of the wide breadth of data provided by Sentinel data lake and provide autonomous solutions for our mutual customers’ pain points in threat hunting. By automating the mechanical and reasoning aspects of threat hunting across large volumes of data from Sentinel data lake, customers can hunt broader and deeper to uncover threats that matter and focus on the creative side of threat hunting.” The new Simbian AI Threat Hunt Agent, in conjunction with the existing Simbian AI SOC Agent, completes the full lifecycle of threat hunting. Threat hunters can formulate hypotheses informed by security context gathered by Simbian, validate them with the AI Threat Hunt Agent, and then use the AI SOC Agent to investigate and respond to findings. The Simbian AI Threat Hunt Agent is currently available in private preview. Organizations interested in participating can contact Simbian via their website. Simbian’s AI SOC Agent and Context Lake are both generally available. Simbian, headquartered in Mountain View, California, focuses on building Superintelligence for Accelerated Security by offering AI Agents that autonomously complete various security tasks. The company is venture-backed.