CrowdStrike Launches New Autonomous AI Solutions to Revolutionise SOC Operations

CrowdStrike has taken another step in the evolution of cybersecurity with the introduction of Charlotte AI Agentic Response and Charlotte AI Agentic Workflows, two innovations designed to drive Security Operations Centres (SOCs) towards an AI-native model. These solutions join Charlotte AI Agentic Detection Triage, consolidating Charlotte AI as an autonomous analysis, reasoning and response engine, capable of operating with proprietary and third-party data without the need for direct human intervention.

With this commitment, the CrowdStrike Falcon platform is positioned as the most advanced in the industry, integrating autonomous AI throughout the threat detection, investigation and mitigation cycle. The goal: to move from reactive security to a proactive approach that optimises human resources and accelerates incident response.

Automation with human reasoning

Charlotte AI Agentic Response enables the automation of forensic analysis, lateral movement tracking and strategic decision-making by simulating the thinking of an experienced analyst. According to CrowdStrike, this capability can save hours per week on repetitive tasks, allowing teams to focus on critical operations.

Charlotte AI Agentic Workflows, powered by Falcon Fusion SOAR, allows workflows to be built using drag-and-drop interfaces powered by language models. This enables complex tasks such as isolating devices or generating automated reports for different audiences, including simultaneous translation for global teams.

In addition, Falcon Complete Next-Gen MDR incorporates Charlotte AI into its daily operations, enabling human analysts to accelerate alert triage and optimise analysis, combining expert monitoring with autonomous AI-based decisions.

Beyond the endpoint: identity, XIoT and resilience

CrowdStrike also extends the reach of Charlotte AI to new layers of protection. Charlotte AI Agentic Detection Triage for Identity, integrated into Falcon Identity Protection, prioritises identity threats along with endpoint and cloud alerts, facilitating faster detection of real attacks.

In parallel, the Falcon platform adds new capabilities aimed at critical infrastructure protection with Falcon for XIoT and the use of ExPRT.AI. This solution, validated by more than 12 industrial system manufacturers, provides threat intelligence specific to operational environments, prioritising actively exploited vulnerabilities.

Finally, the new CrowdStrike Pulse Services provide strategic guidance for implementing autonomous AI, helping to assess capabilities, align processes and adjust policies in a customised way.

Transforming the cyber security model

George Kurtz, CEO of CrowdStrike, sums up the approach: ‘Charlotte AI goes beyond offering suggestions: it autonomously investigates, reasons and responds within expertly defined boundaries. This innovation marks the transition from reactive protection to truly proactive security.’

With this move, CrowdStrike redefines the concept of a modern SOC, integrating autonomous capabilities with human intelligence and consolidating its leadership as a reference platform in intelligent cybersecurity.