AI SOC Platform Automating Threat Detection and Response

COMPANY OVERVIEW

Radiant Security, founded in 2021 by cybersecurity veterans Shahar Ben-Hador (CEO) and Barry Shteiman (CTO), is a San Francisco-based company that provides an AI-powered SOC Co-Pilot platform designed to automate alert triage, investigation, and response workflows for Security Operations Centers. In November 2023 the company announced a $15 million Series A led by Next47 with participation from Lightspeed Venture Partners, Acrew Capital, Uncorrelated Ventures, Jibe Ventures, and General Advance. Radiant Security's solution delivers full workflow automation — enrichment, triage, investigation, and one-click remediation — across any alert type and tool stack, claiming up to 95% reduction in analyst workload and significantly faster response times.

CORE FOCUS

Security operations centers are overwhelmed by alert volume, with analysts spending the majority of their time on manual enrichment, correlation, and triage tasks rather than genuine threat investigation. Radiant Security addresses this by automating the complete SOC workflow from raw alert ingestion through investigation and response — handling the repetitive analytical work so analysts can focus on decisions that require human judgment. The platform ingests data from any security tool, applies AI to enrich and correlate signals, performs root cause analysis, and produces executable response plans that analysts can review and launch with a single click. Real-time phishing analysis, network alert triage, and cross-source data investigation are handled autonomously, dramatically compressing response timelines.

PRODUCTS & TOOLS

AI-Driven Alert Triage — Automated enrichment and prioritization engine that processes every alert regardless of volume or type.

• Full workflow automation across enrichment, triage, and investigation for any alert source
• AI-powered root cause analysis produces investigation findings without analyst effort
• Up to 95% reduction in analyst workload by automating routine investigation steps

Raw Data Access & Security Data Lake — Unified data ingestion and querying capability across all connected security data sources.

• Ingests and correlates data from any security tool or log source
• AI-powered data analysis surfaces patterns and anomalies across the full dataset
• Security Data Lake querying enables investigation without moving data between tools

Response Plan Configuration & Automation — Executable response playbooks with one-click remediation and cross-tool orchestration.

• Generates automated response plans based on investigation findings
• One-click remediation actions execute containment across all connected tools
• Custom AI preferences allow tuning of threat response to organizational requirements

Real-Time Phishing & Network Analysis — Specialized detection modules for high-frequency threat categories.

• Automated phishing detection with real-time email artifact analysis and threat indicator extraction
• Network alert ingestion with AI-driven triage logic and priority-based escalation
• Immediate containment actions triggered upon confirmed malicious classification