What happened
Google Cloud announced AI Threat Defense on 2026-05-28, an always-on autonomous platform combining Mandiant's frontline IR experience, Wiz's cloud exposure management, Gemini's reasoning capabilities, and CodeMender's automated patching. The platform uses a four-step framework: exposure reduction, deep-dive AI penetration testing, autonomous vulnerability remediation (via Gemini and CodeMender), and machine-speed detection and response — designed to match the speed of AI-driven attacks.
Why it matters
This is the first integrated platform combining threat intelligence (Mandiant), cloud risk context (Wiz), and autonomous code remediation (CodeMender/Gemini) under one architecture. It signals that AI-for-security is moving from advisory tooling to autonomous remediation — a fundamental shift in what CISOs should expect vendors to deliver.
Applicability
Google Cloud customers should evaluate AI Threat Defense for exposure management and autonomous patching workflows. Security consulting firms should benchmark this platform's autonomous remediation against their existing DAST/SAST/patching workflows to identify where human-in-the-loop decision points are still required.