A completely revamped connector and MCP server gives Anthropic Claude, OpenAI Codex, Cursor, and other AI agents seamless access to the forensic knowledge and security context Intezer builds from auto-triaging 100% of alerts — enabling security teams to ramp up full Agentic SOC with instant time-to-value.
Intezer, the AI SOC platform for enterprise powered by ForensicAI™, today announced a completely revamped Model Context Protocol (MCP) server, enabling organizations to effectively and efficiently adopt frontier AI agents into their security operations and put Claude, Codex, and Cursor to work, accelerating any SOC task by 10x.
As AI agents including Anthropic Claude and OpenAI Codex are deployed across enterprise security operations, security leaders are asking where exactly these agents fit, and what does the stack need to look like for them to deliver real value?
Also Read: CIO Influence Interview with Hugo Dozois-Caouette, CTO and Co-founder at MaintainX
Plugging AI agents directly into detection tools does not produce consistent, reliable and scalable outcomes. Building custom agent pipelines from scratch is expensive, unreliable at scale, and still leaves the coverage gaps that matter most. Intezer now provides the answer: a proven operating layer that gives AI agents everything they need to work effectively in the SOC from day one.
“An AI platform does its best work standing on a real foundation of security knowledge, not on a dozen raw feeds it has to assemble itself,” said Itai Tevet, CEO and co-founder of Intezer. “This release gives Claude and Codex that foundation with all your cases, your workflows, your triage logic, your institutional memory. AI executes. Humans supervise. And now the supervising got a lot faster too,”
Intezer’s framework for AI adoption in the SOC includes:
- Detection (sensor) layer: EDR, NDR, SIEM, identity, cloud security, and email security platforms, each alerting on their specific attack surface.
- Operations layer: Intezer AI SOC ingests every alert from every source, applies forensic-grade investigation, and produces a verdict at 98% accuracy in under two minutes. Less than 2% of alerts are escalated to human review. Intezer is the SOC operating layer and system of record: every alert investigated, every verdict stored, every case documented, every detection rule tuned, and every piece of organizational security context accumulated in-house and available to any agent that connects.
- Agentic interaction layer: Anthropic Claude, OpenAI Codex, Cursor, and other AI agents connect to Intezer via MCP and execute custom response actions, grounded in the forensic evidence Intezer already assembled.
This is what effective AI agent adoption in the SOC looks like. Agents that leverage a deep forensic knowledge base, picking up cases with investigations already run and verdicts already backed by evidence, rather than trying to assemble a picture from raw signals alone.
Catch more CIO Insights: What Does “Job-Ready” Really Mean in IT and Cybersecurity?
[To share your insights with us, please write to psen@itechseries.com ]
