Gemini in Security Command Center, which is a product in the Gemini for Google Cloud portfolio, provides assistance with cloud security and enterprise security operations for Security Command Center customers enrolled in the Enterprise service tier.
Learn how and when Gemini for Google Cloud uses your data.
Where to interact with Gemini in Security Command Center
You can find the Gemini features in the Enterprise tier of Security Command Center.
Case AI summaries
The AI Investigation widget looks at a whole case (alerts, events, and entities) and provides you with an AI-generated case summary of how much attention the case might require. The widget also helps you better understand the security issue by summarizing the alerts and by providing recommendations for the next steps you can take to remediate the issue.
You can find the AI Investigation widget that displays the AI summaries for cases under the Case Overview tab on the Cases page in the Security Operations console.
UDM search queries generated from natural language questions
Gemini in Security Command Center can translate simple natural language questions about your threat data into UDM Search queries that you can run against UDM events.
You can enter your natural language questions about your threat data on the SIEM search page, which you can find in the Investigations menu.
Set up Gemini in Security Command Center
Case AI summaries and UDM search queries are included in Security Command Center Enterprise tier.
No additional setup steps are required.
What's next
- See the latest enhancements and fixes in release notes.
- Learn how Gemini for Google Cloud uses your data.
- Learn more about Security Command Center.