AI Security Research Portal
Sourcessourceseed2026-07-04ai-securityai-for-securityai-socagentic-socsecurity-operationsincident-responserisk-based-response

AgentSOC: A Multi-Layer Agentic AI Framework for Security Operations Automation

Capture

Abstract Summary

AgentSOC proposes a multi-layer agentic AI framework for SOC automation. It normalizes alerts, enriches context, generates hypotheses, validates structural feasibility, and recommends policy-compliant responses. The paper reports conceptual evaluation in a large enterprise setting and a minimal LANL authentication-data proof of concept.

Why It Matters For The Wiki

This source directly maps to Agentic SOC and safe response automation. It can help distinguish SOC agents that only summarize evidence from agents that plan and recommend containment actions under policy constraints.

Recommended Ingest Notes