IBM has introduced new agentic and automation capabilities to its managed detection and response service offerings to help enable autonomous security operations and predictive threat intelligence for clients.
IBM is launching Autonomous Threat Operations Machine (ATOM), an agentic artificial intelligence (AI) system providing autonomous threat triage, investigation and remediation with minimal human intervention. IBM is also introducing the new X-Force Predictive Threat Intelligence (PTI) agent for ATOM, which uses industry vertical-specific AI foundation models to generate predictive threat insights on potential adversarial activity and minimise manual threat hunting efforts.
“Organisations continue to be challenged by increasingly stealthy and persistent cyber threats, which are slowing detection and response times,” said Mark Hughes, the global managing partner for cybersecurity services at IBM. “By delivering agentic AI capabilities, IBM is automating threat hunting to help improve detection and response processes so clients can unlock new value from security operations and free up already scarce security resources.”
Autonomous Threat Operations Machine (ATOM)
Powering IBM’s Threat Detection and Response (TDR) services, ATOM’s AI agentic framework and orchestration engine uses multiple individual agents to augment an organisation’s existing security analytics solution and help accelerate threat detection, analyse alerts with enrichment and contextualisation, perform risk analysis, create and execute investigation plans, and perform remediation actions which enhance the security analyst experience. This orchestration allows security teams to focus on high priority threats, rather than spending valuable time on false positives or lower-priority risks.
As a global systems integrator and managed security services provider, IBM Consulting helps clients manage their security operations centre (SOC) outcomes, including the delivery of AI-based orchestration for threat detection and response. Within the TDR platform, ATOM acts as a vendor-agnostic digital operator and provides AI capabilities that integrate with existing solutions from IBM and partners including Google Cloud, Microsoft and more.
Predictive Threat Intelligence (PTI)
IBM X-Force Predictive Threat Intelligence (PTI) integrates AI with expert human analysis to help curate proactive threat intelligence. Built on proprietary AI foundational models and trained on cybersecurity data, PTI provides a tailored, contextualised threat intelligence feed and predicts potential threats based on adversary behaviour.
To extract early indicators of behaviour and compromise, PTI gathers data from more than 100 sources including X-Force Threat Intelligence, open-source RSS feeds, APIs and other automated sources, as well as user-supplied organisational context. PTI synthesises that information into collective intelligence reports that include recommended threat hunt queries tailored to the organisation’s specific needs. By focusing on indicators of behaviours, instead of just indicators of compromise, businesses can get ahead of threats.
RSAC 2025 Conference
This week, during the RSAC 2025 Conference in San Francisco, attendees can find IBM on-stage and at the booth on the Moscone Centre’s North expo floor (#N-5871). For more details on IBM’s presence at the RSAC 2025 Conference, visit: https://www.ibm.com/events/rsa-conference.
Comment on this article via X: @IoTNow_ and visit our homepage IoT Now
