Pondurance's Agentic AI and platform delivers rapid threat containment, 95% faster response times, and 80% reduction in false positive tickets - fundamentally redefining the economics and performance of managed security operations

WASHINGTON: Pondurance, the leading provider of next-generation managed detection and response (MDR) services engineered to eliminate breach risk for mid-market organizations, today announced the general availability of Pondurance Kanati(™) - an innovative Agentic AI that now powers the core of Pondurance's award-winning MDR Security Operations Center (SOC) service. Kanati establishes a new operational standard empowering a Managed SOC capable of autonomous operation, where human analysts operate as supervisors rather than first responders, enabling machine-speed defense as the new baseline.

“Cyber adversaries operate at machine speed, using AI with no rules of use. Security operations must match that pace or fall behind, while protecting and not negatively impacting each customer’s environment,” said Doug Howard, CEO of Pondurance. “With our new Pondurance Kanati Agentic AI SOC, we’ve reimagined from the ground up how the SOC operates in the next-generation MDR, fusing at peak more than 60TM of daily event, alert, and threat intelligence data with contextual AI to achieve containment for high-confidence threats.”

SOC Operations at Machine Speed

The design of Pondurance Kanati doesn’t layer automation onto legacy workflows. It uses an AI-native operating model where machine-speed defense is the baseline, and human expertise is focused precisely where it matters most. By autonomously taking action on high-confidence threats instantly, Kanati reduces the workload of human SOC Analysts, allowing them to focus on complex or low-confidence situations that require human intervention while simultaneously decreasing response times. In short, we become more proactive advisory, recommending not only improvement to a customer’s defensive posture and exposure, but broader IT improvements to create higher levels of protection.

This results in lightning fast threat analysis, a dramatic reduction in false positives, and rapid containment for high-confidence threats. Initial performance measurements of Kanati demonstrate:

• 90% faster threat analysis with AI-powered confidence rating and containment
• < 2 minute average investigation time of all alerts, regardless of priority
• 80% reduction in false positive tickets
• 10X improvement in contextual enrichment and correlation of threats
• Rapid identification of exposures that need to be closed before they are exploited
• 100% coverage of alerts resulting in all alerts investigated with full analytical rigor

How Kanati Works – Reimagining the Managed SOC

Traditional SOCs depend on human analysts to triage alerts, correlate data, and execute response playbooks - creating bottlenecks that extend dwell time, increase costs, and can introduce human error. We release the power of the human analyst in the Pondurance SOC to supervise and take their expertise to a new level.

Next generation AI SIEMs, often positioned as SOC in the box, are often unproven and have a small customer base, limited data to process, and are not backed by 24x7 staffing of a SOC and SOC operations. Exposing the customer to AI drift and hallucinations, complete dependence on AI to make the right decision without human supervision, as well as no one to speak to when there are questions.

Kanati replaces alert-driven, error-prone workflows with a coordinated system of AI agents that operate continuously across the full threat lifecycle. While still providing the all important human oversight, SOC expertise availability, and 24x7 platform and security operations.

Kanati’s capabilities include:

• Ingestion and normalization of telemetry across endpoint, network, cloud, operating systems, and identity platforms in real time
• Conducting multi-step, cross-system investigations autonomously - correlating signals using historical and behavioral baselines and risk-weighted context
• Execute verified containment actions autonomously for high-confidence threats, including endpoint isolation and identity control measures
• Generating detailed, audit-ready investigation documentation for every alert
• Escalating lower-confidence, novel, or strategically complex decisions to experienced human analysts for oversight and action
• Analyzing at peak >60TB of daily operational data - including event telemetry, alert history, incident response IOCs, techniques, and customer context - at machine speed
• Supervision by expert security analyst and care and feeding by best in class detection engineers and security engineers, all empowered by embedded AI capabilities

Kanati categorizes threats using a confidence-band model that assesses both accuracy of threat determination and appropriateness of response actions. Only the highest-confidence incidents are autonomously resolved. Lower-confidence threats are escalated for human review, ensuring that automation never outpaces accountability.

Built for Trust, Governance, and Transparency

Recognizing that autonomy in cybersecurity demands accountability, Pondurance engineered Kanati from the ground up with security-by-design principles for Agentic AI resulting in an Agentic AI empowered SOC with enterprise-grade governance and explainability controls.

Kanati provides:

• Data Isolation – the AI operates in a tightly controlled, tenant-isolated environment. By design, all AI-agent data access and memory and training is locked down to a single tenant.
• Data Protection – all customer data remains within Pondurance's infrastructure. We leverage Amazon Bedrock for our AI implementation to guarantee data isolation. Customer data never leaves our Amazon environment, is processed for one customer at a time, and is not used to train external foundation models.
• Accountability – every automated decision is logged, policy-bound, and auditable, including Explainable AI investigation trails and immutable audit logs, ensuring customers retain governance while gaining machine-speed execution.
• Opt-Out availability - Customers who cannot utilize Agentic AI solutions due to regulatory constraints may opt-out of Kanati at any time.

Pricing and Availability

Kanati is included across all configurations of the Pondurance MDR service at no additional cost, delivering faster and more accurate threat analysis and autonomous containment of high-confidence threats as a standard capability. The platform is available immediately to qualified enterprise and mid-market customers in North America.

For more information or to request a demonstration, visit pondurance.com or email kanati@pondurance.com.

About Pondurance

Pondurance is the only next-generation managed detection and response service specifically engineered to eliminate breach risk. As a full-service provider of incident response (DFIR), MDR, exposure management, and cybersecurity advisory and compliance services, Pondurance protects mid-sized organizations from data breach risks before, during, and after they occur. Organizations entrusted with consumer PHI and PII rely on Pondurance for a unified platform and outsourced security operations center service designed to eliminate cybersecurity and regulatory risk.

Fonte: Business Wire