Netskope has announced Netskope One AgentSkope, an architectural foundation that allows organisations to easily deploy Netskope AI agents capable of executing end-to-end workflows. Serving as a new intelligent layer of the Netskope One Platform, AgentSkope enables agentic operations that support security and networking teams: automating onerous operational processes and freeing up skilled staff to focus on strategic initiatives.
Security operations centres (SOCs) and network operations centres (NOCs) are facing unprecedented challenges: 40% of alerts are going entirely uninvestigated due to a lack of capacity. AgentSkope addresses systemic capacity issues, removing complexity and acting as an autonomous force multiplier for both security and networking teams. AgentSkope provides the foundation to build and release agents quickly and efficiently, creates a common set of security, privacy and GRC controls to protect customers uniformly across the platform, provides a consistent experience and tracks and monitors agent utilisation. Netskope AI agents help organisations to drastically reduce time spent on manual workflows, from policy creation through to triage, investigation and troubleshooting, allowing organisations to adapt their defences at the speed of business. By 2028, cybersecurity AI agents will autonomously manage 25% of incident response workflows for data security events, enhancing data risk mitigation speed and effectiveness.
The initial launch includes six agents, with more to follow over the coming months:
- Netskope DLP AISecOps Agent: A first-of-its-kind resource for agentic Data Loss Protection (DLP) analysis. This agent mimics the actions of a security operations analyst to execute end-to-end data protection workflows, applying contextualised risk assessments (finding the needle in the haystack), intelligent triage and investigation, and agentic risk remediation. Providing a unified workflow for data security analysts to investigate and remediate, the DLP AISecOps Agent helps teams avoid losing hours to low-value incidents, false positives, or duplicates. This enables organisations to achieve robust security outcomes with more efficient teams, by helping teams to focus resources on critical threats. One large beta customer, a global professional services organisation, is using the DLP AISecOps Agent to analyse millions of alerts, convert them into dozens of cases that are automatically investigated in minutes, and free up team members to focus their time on the most important cases that require human attention.
- Netskope Insider Threat AISecOps Agent: Focuses on triage and analysis of insider threats, combining DLP alerts with user behaviour data to identify malicious activity and protect against insider threat.
- Netskope Private Access AIOps Agent: Automatically audits configurations for Netskope One Private Access, removing dormant settings and helping to ensure access privileges are not left open. It generates granular application segments and policies based on user consumption patterns.
- Netskope DEM Data Intelligence Agent: Streamlines troubleshooting for user experience issues by transforming granular telemetry and raw metrics from digital experience management (DEM) into actionable insights via natural language in an easy to use conversational interface.
- Netskope DEM Insights Agent: Provides a high-level view of organisational digital health, correlating granular telemetry to surface critical incidents, macro-impacting trends and performance bottlenecks.
- Netskope CCI Insights Agent: Empowers SOC analysts to query complex risk attributes and compliance certifications across more than 85,000 cloud, AI and SaaS applications using natural language, enabling conversational interaction with app risk data.
Sanjay Beri, Co-Founder and CEO of Netskope commented: “Security and network operations teams today are overwhelmed by an endless loop of manual triage, and bogged down by repetitive tasks across disparate tools, leading to severe analyst burnout, an inability to innovate at speed, and unchecked risk. That’s why we built AgentSkope to act as an autonomous force multiplier, providing a shared architectural foundation that allows organisations to easily deploy AI agents capable of executing end-to-end workflows. By abstracting away operational complexity and removing internal development bottlenecks, we are empowering security and network leaders to drastically reduce manual troubleshooting, free up their skilled staff for strategic initiatives, and adapt their defenses at the speed of business.”
Stuart Walters, Partner and Chief Information Officer, BDO UK said: “It won’t surprise anyone to hear that as the fifth-largest accountancy and business advisory firm in the world, BDO is data-rich. Our security and access infrastructures are complex, and staffed by busy and experienced teams. In the UK, we already rely on Netskope to secure our data, but we know the scale of the challenge is only going to grow as we encourage AI adoption—so too is the increased data movement that brings. Agentic operations that support our security and networking operations teams in handling their growing workflows will be very important for us moving forward.”
Pete Finalle, Research Manager, Security & Trust at IDC commented: “Security and network operations teams shoulder an incredible burden as the embrace of AI exacerbates their never-ending list of tasks. For decades, the answer to new security concerns has been consistent – additional tools, additional features, and additional complexity, which has increased operational noise and continues to highlight personnel resource limitations. In the face of a rapidly expanding, AI fueled threat landscape, CIOs and CISOs must invest in agentic security automation, as a force multiplier to enhance skilled human resources. The ability to intelligently triage threats, help manage the increasing scope and scale of modern threats, and keep up with new AI models/agents, can no longer remain a manual process.”
AgentSkope and the DLP AISecOps, CCI Insights, Private Access AIOps, DEM Data Intelligence and DEM Insights agents are all generally available, with the Insider Threat AISecOps Agent currently in private preview.
