IBM has unveiled new advancements in its managed detection and response services aimed at enhancing autonomous security operations. The company introduced the Autonomous Threat Operations Machine (ATOM), a novel agentic AI system designed to conduct autonomous threat triage, investigation, and remediation with limited human input. This development is part of IBM's efforts to streamline security processes and improve threat management for its clients.

In addition to ATOM, IBM is launching the X-Force Predictive Threat Intelligence (PTI) agent for ATOM. This agent utilizes AI models tailored to specific industry sectors to produce predictive threat insights, facilitating the detection of potential adversarial activities and reducing the need for manual threat hunting.

"Organizations continue to be challenged by increasingly stealthy and persistent cyber threats, which are slowing detection and response times," stated Mark Hughes, Global Managing Partner for Cybersecurity Services at IBM. "By delivering agentic AI capabilities, IBM is automating threat hunting to help improve detection and response processes so clients can unlock new value from security operations and free up already scarce security resources."

ATOM enhances IBM's Threat Detection and Response (TDR) services with its AI agentic framework and orchestration engine. It works by integrating with an organization's current security analytics solutions, accelerating threat detection, enriching and contextualizing alerts, performing risk analysis, and executing remediation actions. Such orchestration enables security teams to prioritize significant threats without being bogged down by less critical issues.

IBM Consulting supports clients by managing Security Operations Center (SOC) outcomes, including the integration of AI-based threat detection and response orchestration. Within the TDR platform, ATOM operates as an agnostic digital operator, compatible with existing IBM and partner solutions from companies like Google Cloud and Microsoft.

The X-Force PTI complements AI with expert human analysis to furnish proactive threat intelligence. This capability, built on proprietary AI models trained with cybersecurity data, supplies a tailored threat intelligence feed and forecasts potential threats based on adversary behavior.

PTI compiles data from over 100 sources including X-Force Threat Intelligence, RSS feeds, APIs, and user-supplied organizational context. It transforms this data into comprehensive intelligence reports with recommended threat hunt queries suited to an organization's needs, allowing businesses to anticipate threats by focusing on behavior indicators rather than just compromise indicators.

IBM is showcasing these innovations during the RSAC 2025 Conference in San Francisco, where attendees can visit the IBM booth on the Moscone Center's North expo floor (#N-5871). More information about IBM's participation at the RSAC 2025 Conference is available at: https://www.ibm.com/events/rsa-conference.