Ontinue, which provides AI-powered managed XDR services, announced it is bringing an autonomous investigations capability to market. This technology employs managed XDR to scale security analysis, accelerate investigations and reduce SecOps burden, all with agentic AI.
When an incident is escalated to the Ontinue Cyber Defense Center, its AI agents automatically aggregate telemetry, tests hypotheses and conduct a full investigation. The concept is to cut mean investigation time and resolve nearly all incidents without requiring customer involvement.
“Agentic AI doesn’t just evolve how we do security — it redefines it,” said Geoff Haydon, Ontinue’s CEO. “Unlike traditional automation tools that follow prescriptive, rule-based scripts, the generative nature of Agentic AI allows it to learn, reason, test and adapt within the context of any given situation. It doesn’t just assist humans, it amplifies them. Autonomous investigations allow Ontinue’s cyber defenders to move faster, go deeper and make more accurate decisions on behalf of customers. This is not an incremental innovation; it’s a fundamental leap forward in how MDR should be delivered.”
The new autonomous investigation capability also offers contextual depth across logs, identities, endpoints and cloud environments, translating to 24×7, expert-level analysis, action and resolution, at scale.
“Since our inception, we have always viewed AI as a critical technology for overcoming the scale and speed limitations that legacy MDRs simply can’t address,” said Theus Hossmann, CTO, Ontinue. “Automation in security operations has always been limited to deterministic use cases – “if we see x, then do y” – which is useful, but only allows us to automate situations we can predict or have seen before. Novel, more complex incidents have traditionally been left up to humans to investigate because they require human-level reasoning and intuition, and as a result these are the incidents that take the most time to resolve. We took a multi-agentic approach when we built autonomous investigations into the ION SecOps platform which completely flips this paradigm on its head by allowing us to harness near human-level reasoning and creativity at machine speed. As attack surfaces continue to expand and new threats emerge faster than ever, the ability to automatically investigate complex, multi-dimensional incidents is essential.”
