The system combines Gemini, Wiz, CodeMender, and Mandiant to continuously scan, prioritize, and patch security flaws without waiting for human intervention.

Google Cloud announced AI Threat Defense, a platform that scans enterprise systems for security vulnerabilities, ranks them by their exploitability and business impact, generates code fixes, and deploys patches automatically. It is the fourth major AI cyber defense tool launched by a frontier AI developer this year, following offerings from Anthropic, OpenAI, and Microsoft.

What it does

Google claims that AI Threat Defense goes beyond detecting threats and reporting them to cyber teams to fix. It prioritizes vulnerabilities by actual exploitability and business impact, then automates the fix from detection through deployment.

AI Threat Defense runs four steps in tandem: harden the environment, scan deeply for vulnerabilities, remediate them with AI-generated fixes, and monitor for new threats around the clock.

The platform draws on four components:

1. Gemini handles reasoning and code analysis. 
2. Wiz, which Google acquired in 2025 for $32 billion, maps live exposure across cloud infrastructure, applications, identities, and APIs and runs AI-driven penetration testing to validate which flaws can actually be exploited.
3. CodeMender, developed by Google DeepMind, generates fixes directly inside a developer’s coding environment and verifies each patch before it goes live.
4. Mandiant, acquired by Google in 2022 for $5.4 billion, contributes threat intelligence and response playbooks from frontline incident response work.

Google claims that using multiple “lighter” AI models rather than a single one allows each model to play to its strengths, enables broad and continuous scanning, while reserving frontier models for the highest-risk applications.

Where Google fits in the market

Google is the latest major AI developer to jump into the agentic AI cybersecurity space. In April, Anthropic made big news with its launch of Claude Mythic Preview, limiting access to a few dozen testing partners out of concern the AI model was “too powerful” to release.

Soon after, OpenAI released ChatGPT-5.5-Cyber, also limiting access to cybersecurity professionals by vetting applicants through its Trusted Access for Cyber (TAC) program.

Most recently, Microsoft introduced MDASH, a cybersecurity system of multiple AI models that work together to analyze software code and identify weaknesses.

All have shown strong ability to surface previously undetected threats at scale. Google’s AI Threat Defense also claims this but goes further by automatically fixing vulnerabilities, a step the others leave to the client’s engineers. Whether that distinction holds up in production environments is untested at scale. Early partners deploying the platform include Accenture, Deloitte, PwC, and Netenrich.

AI Threat Defense is available through Google Cloud.