Introducing Cortex AgentiX: A New Era in Security Automation
Palo Alto Networks is rolling out its latest innovation, Cortex AgentiX, designed to transform how organizations approach security automation. As the next iteration of Cortex XSOAR, AgentiX positions itself as the premier platform for building, deploying, and managing a future-ready AI agent workforce.
A Revolutionary Approach to Threat Management
The need for rapid response in the face of increasingly sophisticated cyber threats is more pressing than ever. Cyber adversaries can now launch attacks at speeds up to 100 times faster than before, making traditional methods of security response inadequate. AgentiX steps into this gap, bringing automation to security operations centers (SOCs) in a way that was previously unattainable.
By leveraging powerful prebuilt agents, AgentiX can dynamically formulate and execute solutions much like a human expert would. This capability translates into an impressive 98% reduction in mean time to resolution (MTTR) and a 75% decrease in manual tasks, allowing security teams to redirect their focus toward more strategic priorities.
Insights from Leadership
Gonen Fink, Executive Vice President of Products at Cortex, emphasizes the importance of controlled AI deployment, saying, “Unleashing autonomous agents without tight control is a recipe for disaster. That’s why we built AgentiX on our proven Cortex platform, delivering full agentic AI with the necessary control and traceability that enterprises require.” This focus on oversight is crucial as it moves away from mere automation to fundamentally shifting SOC operations from reactive alert chasing to proactive management.
Comprehensive Workflow Automation
Unlike fragmented solutions that only address specific SOC tasks, AgentiX offers holistic workflow autonomy. With a foundation built on a decade of security automation expertise, it has been fine-tuned through 1.2 billion real-world playbook executions. AgentiX also supports over 1,000 prebuilt integrations to maximize its effectiveness across various enterprise tools, ensuring seamless functionality.
Key Features of Cortex AgentiX
Organizations utilizing Cortex AgentiX can expect numerous advantages:
Deploy Prebuilt, Experienced Security Agents
AgentiX enables users to go beyond conventional static playbooks by offering a range of prebuilt agents designed to act as a natural extension of existing operations. This includes specialized agents such as:
- Threat Intelligence Agent: Enhances threat intelligence by aggregating data and identifying emerging adversarial tactics.
- Email Investigation Agent: Automates comprehensive email threat responses across all platforms.
- Endpoint Investigation Agent: Provides quick analysis and forensics, facilitating host containment on major endpoint detection and response (EDR) platforms.
- Network Security Agent: Manages threat responses and policy control across both Palo Alto Networks and third-party firewalls.
Create Custom Agents with Ease
With an intuitive no-code agent builder, organizations can swiftly create tailored AI agents. This GenAI tool utilizes over 1,000 prebuilt integrations and includes robust guardrails for effective control.
Orchestrate Enterprise-Wide Workflows
AgentiX allows users to initiate context-aware agents from any Cortex product or manage intricate workflows across the entire organization, ensuring that operations are efficient and cohesive.
Govern Autonomous Actions with Precision
Safety is paramount when implementing AI in security contexts. AgentiX includes role-based access controls and requires human approval for significant actions, maintaining stringent compliance and security protocols. Each action taken by an agent comes with comprehensive auditability, supporting rigorous compliance requirements.
Recognition from the Industry
Francis Odum, founder of Software Analyst Cyber Research (SACR), highlights AgentiX’s unique position in the market: “Cortex AgentiX stands out by building its agentic workforce on Palo Alto Networks’ existing SecOps infrastructure. This ensures agents function within a well-governed automation framework, a critical advantage over newer competitors that may lack proper policy enforcement and oversight.”
Availability
Cortex AgentiX is currently available through Cortex Cloud and Cortex XSIAM, with planned expansions to Cortex XDR and the standalone AgentiX platform expected in early 2026. By integrating advanced automation capabilities, Palo Alto Networks continues to position itself at the forefront of the cybersecurity landscape, preparing organizations for the future of security operations.
