Skip to main content

Thales unveils generative AI solution for Security Operations Centres (SOCs)

  • Thales's AI accelerator cortAIx has unveiled GenAI4SOC, the first solution of its kind developed in France, to detect cybersecurity incidents on enterprise information systems by combining the use of generative AI with the subject-matter expertise of operators of critical civil and military information systems.
  • As cyberthreats become more sophisticated, more frequent and more damaging, partly because of the increasing use of AI by cyberattackers, AI technologies can also help analysts to implement the most effective threat detection strategies.
  • AI-augmented threat detection enables analysts to anticipate cyberthreats earlier and expand the range of systems under supervision.

At European Cyber Week in Rennes, Brittany, from 19-21 November 2024, Thales is presenting GenAI4SOC, a dedicated solution for Security Operations Centres (SOCs) that uses generative AI technologies for faster detection of cybersecurity incidents on enterprise information systems.

GenAI4SOC is designed to speed up threat detection and adapt automatically to the rapidly developing cyberthreat landscape. It enables SOCs to react faster to zero-day threats and vulnerabilities so that new detection rules can be built, deployed and scaled more quickly.

To provide effective cyber-attack detection and response solutions, Thales relies on Security Operations Centres (SOCs) to ensure 24/7 supervision of IT infrastructure, detect cybersecurity incidents and trigger coordinated responses and remediation planning.

Located all over the world, Thales's SOCs detect and analyse threats in real time, support response planning and verify that the IT infrastructure is in compliance with applicable security policies and regulations.

GenAI4SOC assists analysts by proposing detailed, verifiable responses:

  1. Natural-language explanations based on the tool's understanding of the threat as well as Cyber Threat Intelligence sources
  2. Strategy proposals for improved threat detection
  3. Creation of new detection rules for operators via a chat function trained using Reinforcement Learning with Human Feedback (RLHF)

Thales's new generative AI solution for SOCs draws on an extensive sovereign cybersecurity knowledge base including a range of Thales sources (Cyber Threat Intelligence, detection rule libraries, vulnerability monitoring) focused on critical civil operations (finance, insurance, automotive, manufacturing, energy, etc.) as well as defence, aerospace and space activities.

About Thales

Thales (Euronext Paris: HO) is a global leader in advanced technologies specialising in three business domains: Defence & Security, Aeronautics & Space and Cybersecurity & Digital identity.

It develops products and solutions that help make the world safer, greener and more inclusive.

The Group invests close to €4 billion a year in Research & Development, particularly in key innovation areas such as AI, cybersecurity, quantum technologies, cloud technologies and 6G.

Thales has close to 81,000 employees in 68 countries. In 2023, the Group generated sales of €18.4 billion.