As enterprises race to adopt agentic AI for productivity, many struggle with complex integrations and limited governance. Palo Alto Networks has unveiled Cortex AgentiX, a next-generation platform to build, deploy, and govern the AI agent workforce of the future.
Evolving from Cortex XSOAR®, AgentiX merges agentic AI intelligence with enterprise-grade guardrails, enabling organizations to scale AI automation securely across security operations centers (SOCs).
Countering AI-Powered Adversaries
With cyberattacks accelerating up to 100 times faster using AI, AgentiX equips SOC teams with intelligent, prebuilt agents that can plan, reason, and execute solutions like human experts. The result: up to a 98% reduction in mean time to respond (MTTR) and 75% less manual work, freeing analysts to focus on strategic security transformation. “Unleashing autonomous agents without tight control is a recipe for disaster,” said Gonen Fink, EVP of Products, Cortex, Palo Alto Networks. “AgentiX delivers the full power of agentic AI with the control, traceability, and permission management enterprises demand. This isn’t just automation — it’s the end of manual toil.”
Beyond Task Automation
Unlike siloed tools that automate individual SOC tasks, AgentiX delivers end-to-end workflow autonomy. Built on more than a decade of security automation leadership and trained on 1.2 billion real-world playbook executions, the platform supports 1,000+ prebuilt integrations and native Model Context Protocol (MCP) for seamless interoperability across enterprise systems.
AI Agents for Every Security Domain
At launch, AgentiX introduces specialized agents that act as virtual teammates across core security areas:
-
Threat Intelligence Agent — Aggregates and enriches threat data to identify related attacks.
-
Email Investigation Agent — Automates detection and containment of email-based threats.
-
Endpoint Investigation Agent — Performs forensics, analysis, and host containment.
-
Network Security Agent — Orchestrates responses and policy control across multi-vendor firewalls.
-
Cloud Security Agent — Protects cloud environments from posture to response.
-
IT Agent — Automates IT tasks like patching, upgrades, and onboarding.
Enterprises can also build custom no-code agents via the GenAI builder, using AgentiX’s integrations and governance to ensure AI actions remain safe and compliant.
Governance at the Core
AgentiX embeds enterprise-grade guardrails — including role-based access controls, human-in-the-loop approvals, and auditability — ensuring AI-driven automation remains traceable, secure, and compliant with strict industry standards.
Expert Endorsement
Francis Odum, Founder of Software Analyst Cyber Research (SACR), noted:
“Cortex AgentiX stands apart by leveraging Palo Alto Networks’ SecOps backbone and a decade of SOAR maturity. This ensures agents operate within a governed automation framework, unlike newer entrants lacking enterprise-grade policy enforcement. Deployed across XSIAM, XDR, and Cortex Cloud, Palo Alto Networks is leading the agentic AI era.”
Availability
Cortex AgentiX is available today in Cortex Cloud™ and Cortex XSIAM®, with Cortex XDR® and the standalone AgentiX platform coming in early 2026.
By combining the intelligence of autonomous agents with the discipline of enterprise governance, Palo Alto Networks is setting a new benchmark for secure, controlled AI automation — empowering organizations to move from reactive defense to truly autonomous cybersecurity operations.
