PRE Security is adding multi-tenant management capabilities to its
AI-native SecOps platform, a move aimed at allowing MSSPs and enterprises to streamline their management operations in an increasingly distributed IT environment.
The two-year-old startup’s introduction this month of its Multi-Tenant Management System is a recognition that as more enterprise operations continue to spread out across on-premises data centers, the cloud, and the edge, ensuring their security gets more complex, according to co-founder and CEO
Paul Jespersen.“MSSPs often have combinations of on-premises customers and cloud-connected customers,” Jespersen told MSSP Alert. “Many enterprises have separate divisions or subsidiaries, sometimes each with their own tools and data sources. A government entity like a state or a federal department might have many agencies under its umbrella. ... Organizations can be distributed around tools, business structures, or any number of other factors, and most current systems do a poor job if any of dealing with that.”
Further complicating the situation, each division, subsidiary, or agency may be using their own SIEM or other security tools, which makes managing and collecting all the data even more challenging, he said.
AI-Infused SecOps
PRE Security infuses its AI Native Predictive SecOps platform with generative and agentic AI capabilities to make cybersecurity tools proactive with the Multi-Tenant Management System becoming its latest feature. The platform can replace or enhance existing tools, such as Splunk, QRadar (which
Palo Alto Networks bought from IBM in September 2024), Microsoft’s Sentinel as the SIEM, other extended detection and response (XDR) or security operations center (SOC) offerings with an AI-first approach, according to Jespersen.
Included in the platform are tools like AI SIEM, which uses AI for data ingestion and management, Generative XDR for more complete correlation of alerts, Predictive AI for addressing bad actors and incidents before they happen, and SOCGPT, an AI assistant that manages all internal and external interactions within the system, including dynamic visualizations and reporting and text and voice chat interface.
Within these areas are features like the company’s Parserless data ingestion, which uses its patent-pending AI processes to let users ingest any data from any source without having to have a pre-built integration or parser in hand.
“For a MSSP, this means having the ability to onboard any customer, without concern as to which tools they might already be using and if the MSSP already has integrations for those,” Jespersen said. “This is a major challenge and limitation for many MSSPs.”
Proactive XDR
Similarly, Generative XDR detections are superior to traditional detections in scope and in the ability to detect novel or unknown tactics, he said. With Traditional XDR tools, each detection is manually built by the vendor or user and “is essentially a kind of recipe, waiting for a match,” the CEO said.
“In our AI-based approach, we have trained the AI on all things cyber and detection, like what is MITRE, what is the kill chain, what are Sigma rules, what are CVEs, and the detections can be triggered not just on those exact matches, but on similar activities, which may well have avoided the constructed detections,” he said. “Essentially, we
use AI to fight AI. More and more attacks are evading detection because it is so easy for an attacker to modify or disguise the known attacks by using AI.”
Multi-Tenancy + miniSOC
The introduction of the Multi-Tenant Management System comes two months after the San Jose, California, company
rolled out two other solutions – GenAI EDR and miniSOC — at the RSA Conference. The first tool brings generative and agentic AI to Windows 11 endpoints as an alternative to static and rules-based endpoint detection and response offerings.
It streams telemetry like Windows event logs and registry changes in real time to PRE Security’s AI engine, CyberLLM, which correlates the data and provides contextual detections and predicts emerging risks.
MiniSOC brings an enterprise-grade AI SOC-in-a-box to Apple devices, pairing the company’s AI SecOps platform with the vendor’s M4-based Mac mini to enhance the chips and Mac Studio desktop system. MiniSOC delivers PRE Security’s AI-based features – including CyberLLM, AI SIEM, Parserless Ingestion, and agentic AI – to the Apple devices.
“Combining Multi-Tenant with miniSOC allows for an MSSP to deploy low-cost, high-efficiency hardware to an end user as an on-prem solution that can be managed remotely along with any combination of other miniSOC or other end users,” Jespersen said. “A given MSSP might have some customers deployed using miniSOCs, and others via our SaaS or on an enterprise server. It’s very flexible in being able to meet requirements from a variety of end users.”
New Hires
Jespersen co-founded PRE Security in 2023 after 30 years in the IT industry – most within the cybersecurity field – including stints with Stellar Cyber, Sandfly Security, and Lastline. Along with the Multi-Tenant Management System, PRE Security also
named two new vice presidents to oversee global business development, international sales, and sales in the Asia-Pacific (APAC) region.
