News Daily Nation Digital News & Media Platform

collapse
Close menu
×
Home / Daily News Analysis / Netskope launches AI agents for SOC and NOC automation

Netskope launches AI agents for SOC and NOC automation

May 15, 2026  Twila Rosenbaum  4 views
Netskope launches AI agents for SOC and NOC automation

Netskope has introduced a new AI-driven platform layer designed to ease the operational burden on security and network operations teams. The offering, called Netskope One AgentSkope, is an agentic AI framework that automates key workflows within the company's SASE (Secure Access Service Edge) platform. With enterprises struggling to manage soaring alert volumes and increasingly complex infrastructure, this move aims to provide much-needed relief for SOC (Security Operations Center) and NOC (Network Operations Center) staff.

According to Netskope, approximately 40% of alerts in SOC and NOC environments go uninvestigated due to a lack of resources. This persistent gap leaves organizations vulnerable to threats that slip through the cracks. AgentSkope directly addresses this challenge by embedding AI agents into the Netskope One data layer, enabling them to analyze and act on information without requiring data to be exported to external systems. This architectural choice reduces latency, minimizes data movement, and simplifies integration — a critical advantage for teams already overwhelmed by tool sprawl.

What is AgentSkope?

AgentSkope functions as an autonomous force multiplier, as described by Netskope co-founder and CEO Sanjay Beri. “By abstracting away operational complexity and removing internal development bottlenecks, we are empowering security and network leaders to drastically reduce manual troubleshooting, free up their skilled staff for strategic initiatives, and adapt their defenses at the speed of business,” Beri said in a statement. The platform’s agentic approach means that each agent can execute multi-step workflows — from investigation through remediation recommendations — using natural language interfaces. This lowers the barrier for adoption, allowing analysts to interact with the system conversationally rather than through complex queries.

The agents are designed to handle repetitive triage and investigation work so human analysts can focus on higher-value decisions. Rich Davis, director of product and solutions marketing at Netskope, explained in an interview that “Agents can handle the repetitive triage and investigation work so human analysts can focus on higher-value decisions.” Importantly, human oversight remains a cornerstone of the design. While agents can autonomously gather data, triage risks, and initiate workflows such as creating IT service tickets or notifying analysts, they will not take final action without approval. “Once the investigation is complete, the agent will wait for a member of the security team to review its findings and direct it to take action,” Davis said. “This provides the balance between time savings and human control.”

The Six AI Agents

With the initial release, Netskope launched six agents, each targeting specific operational domains:

  • DLP AISecOps Agent: Automates data loss prevention (DLP) alert triage, reducing false positives and surfacing priority cases for analysts.
  • Insider Threat AISecOps Agent: Correlates user behavior with DLP data to identify potential insider risks. This agent is currently in private preview.
  • Private Access AIOps Agent: Audits access settings and generates policies based on usage patterns, streamlining Zero Trust enforcement.
  • DEM Data Intelligence Agent: Converts telemetry data from digital experience monitoring into actionable troubleshooting insights.
  • DEM Insights Agent: Highlights performance issues and trends across digital environments, helping NOC teams proactively address bottlenecks.
  • CCI Insights Agent: Enables natural language queries of cloud and SaaS risk data, making cloud security assessments more accessible to non-experts.

These agents are natively integrated into the Netskope One platform, allowing customers to configure them within a single interface. No additional integrations are required because the agents access all relevant data sources directly through the platform’s shared architectural foundation.

Industry Context and Analyst Perspective

The launch comes at a time when AI-driven automation is rapidly gaining traction in cybersecurity operations. IDC research manager Pete Finalle noted, “In the face of a rapidly expanding, AI-fueled threat landscape, CIOs and CISOs must invest in agentic security automation as a force multiplier to enhance skilled human resources. The ability to intelligently triage threats, help manage the increasing scope and scale of modern threats, and keep up with new AI models/agents can no longer remain a manual process.” Finalle’s comments underscore a broader industry shift toward integrating AI agents into security platforms to address the talent shortage and operational fatigue.

Netskope’s approach differs from some competitors by embedding agents directly into the data layer rather than overlaying them as separate tools. This design reduces the need to move large volumes of data to external systems for analysis, addressing both cost and latency concerns. In particular, reducing SIEM data ingestion costs is a key benefit for enterprises that face escalating budgets for log storage and processing.

The company also emphasized that AgentSkope is built with expansion in mind. While the initial release includes six agents, Netskope plans to add new agents monthly, covering additional use cases as customer needs evolve. The Insider Threat AISecOps Agent, currently in private preview, is expected to move to general availability later in 2026. Over time, the portfolio could extend to areas such as threat hunting, compliance automation, and cloud security posture management.

For security and network operations teams already using Netskope One, AgentSkope offers a path to reduce manual effort and improve response times. By offloading repetitive tasks to AI agents, organizations can reallocate their most experienced personnel to strategic initiatives. At the same time, the built-in human oversight ensures that automation does not come at the cost of control — a critical consideration for regulated industries and those with strict compliance requirements.

The broader market for agentic AI in cybersecurity is expected to grow significantly in the coming years, driven by the need to counter increasingly sophisticated attacks and manage sprawling digital environments. Netskope’s early entry into this space with a platform-native approach positions it to capture a share of that demand, particularly among enterprises already invested in SASE architectures. As more organizations adopt SASE for its convergence of networking and security, embedding intelligent automation directly into that platform could become a competitive differentiator.

AgentSkope and five of the six agents are generally available as of May 2026. The Insider Threat AISecOps Agent remains in private preview. Netskope has not disclosed pricing details, but the agents are included as part of the Netskope One platform subscription, with possible tiered access based on customer licensing levels. As the agent portfolio expands, organizations will have the opportunity to further tailor their automation strategies to their specific operational challenges.


Source: Network World News


Share:

Related posts
Your experience on this site will be improved by allowing cookies Cookie Policy

These cookies are essential for the website to function properly.

These cookies help us understand how visitors interact with the website.

These cookies are used to deliver personalized advertisements.