Gemini in Security Command Center

Gemini in Security Command Center, which is a product in the Gemini for Google Cloud portfolio, provides assistance with cloud security and enterprise security operations for Security Command Center customers enrolled in the Enterprise service tier.

Learn how and when Gemini for Google Cloud uses your data.

Where to interact with Gemini in Security Command Center

You can find the Gemini features in the Enterprise tier of Security Command Center.

Case AI summaries

The AI Investigation widget looks at a whole case (alerts, events, and entities) and provides you with an AI-generated case summary of how much attention the case might require. The widget also helps you better understand the security issue by summarizing the alerts and by providing recommendations for the next steps you can take to remediate the issue.

You can find the AI Investigation widget that displays the AI summaries for cases under the Case Overview tab on the Cases page in the Security Operations console.

UDM search queries generated from natural language questions

Gemini in Security Command Center can translate natural language questions about your threat data into UDM Search queries that you can run against UDM events.

You can enter your natural language questions about your threat data on the SIEM search page, which you can find in the Investigations menu.

Set up Gemini in Security Command Center

Case AI summaries and UDM search queries are included in the Security Command Center Enterprise tier using the Security Operations console.

No additional setup steps are required.

What's next

Except as otherwise noted, the content of this page is licensed under the Creative Commons Attribution 4.0 License, and code samples are licensed under the Apache 2.0 License. For details, see the Google Developers Site Policies. Java is a registered trademark of Oracle and/or its affiliates.

Last updated 2025年11月24日 UTC.