Keeper’s agentic AI solution monitors and analyzes privileged sessions to instantly identify and terminate attacks
Keeper Security, the leading cybersecurity provider of zero-trust and zero-knowledge Privileged Access Management (PAM) software protecting passwords and passkeys, privileged accounts, secrets and remote connections, announces KeeperAI, a new agentic AI feature for its KeeperPAM® platform. KeeperAI enables real-time session monitoring and analysis, automated threat classification and instant response to combat cyber attacks and suspicious behavior – customizable to meet an organization’s exact specifications.
“The reality is that cyber threats are no longer just a question of if, but when and how quickly you respond,” said Craig Lurey, CTO and Co-founder of Keeper Security. “KeeperAI’s agentic capabilities allow you to automatically monitor, identify and mitigate threats in real time, shutting down high-risk sessions, unauthorized access or improper account elevations.”
Meeting Today’s Security Challenges
Insider threats, privilege misuse and advanced persistent threats have long challenged security teams. In the era of pervasive, AI-powered cyber attacks, traditional manual session reviews and rule-based alerts leave organizations falling woefully behind today’s fast-moving threats. KeeperAI addresses this challenge with continuous monitoring of privileged sessions, automatic risk classification and session summaries, and configurable responses that can terminate sessions or trigger alerts when suspicious and malicious behavior is detected – without the need for human intervention. As a sovereign AI product, each organization using KeeperAI has full ownership and control over the data it uses and generates.
KeeperAI’s key features include:
- Automated Session Analysis: Analyze session metadata, keystroke logs, and command execution logs to detect unusual behavior.
- Threat Classification: Automatically categorize detected threats and assign risk levels.
- Session Termination: Trigger automatic session termination based on designated threat classification.
- Customizable Configuration: Adjust risk parameters and detection rules to your environment.
- Session Search: Search across sessions to locate specific keywords or activity.
- Flexible Deployment: Support for both third-party, cloud-based and on-premises LLM inference.
Also Read: Composio Unveils MCP Gateway for Developers’ Safe Access
KeeperAI will categorize commands into threat risk levels from Critical to High, Medium and Low. Once KeeperAI is enabled, administrators can customize the risk level classification and policy on detection, giving admins the ability to define rule-based policies for specific command patterns – with the choice to automatically terminate risky sessions or simply monitor them when threats are detected. The solution allows customers to integrate with major LLM providers such as AWS Bedrock, Anthropic, Google Gemini and OpenAI. It supports compatible cloud and on-premises deployments without vendor lock-in.
“Security teams shouldn’t have to waste hours reviewing logs or manually shutting down risky sessions,” said Jeremy London, Director of Engineering, AI and Threat Analytics at Keeper Security. “That’s why we built KeeperAI as an agentic AI system – it doesn’t just detect anomalies, it actively monitors and takes action on them in real time. With controls and parameters configured by humans, KeeperAI independently terminates high-risk sessions and enforces security policies instantly. This eliminates alert fatigue, accelerates response times to seconds and allows teams to focus on strategy instead of firefighting.”
Source: PRNewswire