Resources
AI Security Operations Blog
Practitioner perspectives and technical deep dives on AI in security operations from the Crogl team. Written for security analysts, SOC leaders, and practitioners deploying AI in the enterprise.
June 12, 2026
Outcome-Driven Security Operations Require Multi-Model Support
Security operations teams are accountable for outcomes regardless of what is happening in the technology ecosystem. That accountability creates a clear requirement: multi-model support.
Read MoreJune 10, 2026
Neurosymbolic Systems for SOC Operations
Neurosymbolic AI combines adaptive reasoning with rules-based control. Here is what that means for SOC investigation and for AI systems that have to support the way analysts already work.
Read MoreJune 8, 2026
Why We Made Crogl Available as a Free Download
Crogl CEO Monzy Merza explains why the company made its AI security operations platform available as a free download for organizations operating in highly constrained environments.
Read MoreJune 4, 2026
Introducing Crogl LiveStream: Live Demos, Real Questions, No Scripts
Crogl is opening its doors every week. Live demos, real Q&A, no scripts — an honest look at what AI in the SOC can and cannot do today.
Read MoreMay 18, 2026
What Agentic AI Means for SOC Investigation
Agentic AI attacks are no longer theoretical. A single threat actor used AI as the primary execution layer to compromise eleven organizations. Here is what it means for SOC investigation and what a defensive capability looks like in production.
Read MoreMay 13, 2026
What Is Alert Triage and Where Does It Stop?
Alert triage classifies and prioritizes security alerts. But classification is not investigation. Here is what triage does, where it ends, and what has to happen next.
Read MoreMay 11, 2026
Why AI SOC Agents Fail and Why Crogl is Free
Crogl CEO Monzy Merza on what good AI looks like in the SOC, and why removing the procurement barrier is the only way practitioners can find out for themselves.
Read MoreMay 1, 2026
What Is Autonomous SOC Investigation?
Most security AI classifies alerts — it tells you something happened. Autonomous SOC investigation goes further: assembling full context, querying every relevant data source, and delivering a documented finding before an analyst is involved.
Read MoreApril 20, 2026
Do Your Agents Know Your Secrets?
Your AI SOC agent just disabled a compromised account, queried your SIEM, and rotated an API key. But where did it get the credentials to do that? Every useful agent becomes a secrets-handling system — and that changes everything about how you should architect it.
Read MoreApril 14, 2026
Why Can’t I Just Vibe Code My Own Harness?
Everyone has access to the same frontier models. The differentiation is in the harness — the context management, the knowledge graph, the orchestration logic. A recent Stanford/MIT study measured that gap at 6x. In security, that gap is the difference between catching the intrusion and writing the breach report.
Read MoreMarch 20, 2026
AI Agents Are Not Enough
AI agents are powerful — but deploying them everywhere trades one bottleneck for another. The real breakthrough isn’t agentic AI. It’s AI that manages AI.
Read MoreMarch 18, 2026
A Deep Dive into Innovation: The AI SOC Summit Hackathon Recap
Seventeen security practitioners. Eleven agentic skills. Four points between the winners and the rest. A recap of the AI SOC Summit Hackathon — what was built, who won, and what it says about the future of the SOC.
Read MoreFebruary 12, 2026
Building Community Around the AI SOC Revolution
Why we built the AI SOC Summit — and why practitioner-led community matters more than ever as AI transforms security operations.
Read MoreJanuary 26, 2026
Data Privacy Week: Why “Your Data Never Leaves” Isn’t a Tagline — It’s an Architecture
On Data Privacy Week, a look at why data sovereignty in AI-powered security operations requires architectural commitment — not just policy promises.
Read MoreJanuary 26, 2026
Data Privacy Week: Are Cyber Attacks Increasing or Are We Just Paying More Attention?
SOC leaders love to embrace the idea that attacks spike during awareness campaigns — but the data tells a different story about visibility, scrutiny, and reporting.
Read MoreJuly 28, 2025
Why CISO Risk Management Strategy Still Rules the Agenda in 2025
AI-driven productivity gains, shifting regulatory frameworks, and exponential surface area expansion are redefining what risk management means for today’s CISOs.
Read MoreJune 11, 2025
Rethinking Security Operations in the Age of AI
Why the future of security operations isn’t about normalization — it’s about knowledge graphs, compound AI, and meeting data where it lives.
Read More