CrowdStrike has expanded its collaboration with NVIDIA to advance Agentic Managed Detection and Response (MDR) using the NVIDIA Agent Toolkit, open NVIDIA Nemotron models, and NVIDIA NeMo Data Designer. This integration powers specialized security agents that significantly speed investigative workflows and improve triage precision in CrowdStrike Falcon Complete Next-Gen MDR.
Security teams face escalating challenges as adversaries employ AI to accelerate reconnaissance, evasion, and lateral movement, generating thousands of daily detections that demand rapid, precise triage amid talent shortages and cost pressures. Agentic MDR evolves managed defense by deploying AI-native agents to augment analysts, automating high-volume Tier 1 workflows while preserving expert oversight for elite protection at enterprise scale.
CrowdStrike evaluated NVIDIA Nemotron models across Falcon Complete Next-Gen MDR use cases, customizing them with synthetic data from NeMo Data Designer to create structured training signals that enhance accuracy and consistency in investigation orchestration.
Internal testing demonstrated substantial gains: up to 5x faster investigations (reducing average agentic time to 8.5 minutes from up to 48 minutes for human-led cases) and more than 3x higher triage accuracy in high-confidence benign classifications, significantly reducing manual workload.
Fine-tuning Nemotron Nano delivered 96% accuracy in natural-language investigation query generation within Falcon LogScale, providing an intuitive interface that boosts agent efficiency.
“Adversaries are already using AI to move faster and scale their operations,” said Daniel Bernard, Chief Business Officer at CrowdStrike. “The future of managed defense isn’t adding more analysts – it’s embedding AI agents directly into SOC operations to give analysts superpowers. With Falcon Complete Next-Gen MDR, we’re applying advanced reasoning models to automate investigation and triage while maintaining expert oversight. Together with NVIDIA, we’re accelerating the shift toward Agentic MDR.”
“AI reasoning models and synthetic data are transforming how enterprises operationalize intelligence,” said Justin Boitano, Vice President, Enterprise AI Products at NVIDIA. “Together with CrowdStrike, we’re bringing secure, autonomous AI agents into security operations – enabling organizations to reason through threats, act in real time, and continuously strengthen their cyber resilience.”
“CrowdStrike’s use of advanced AI reasoning in Falcon Complete Next-Gen MDR marks a significant step forward in managed defense,” said David Burg, Global Group Head of Cyber and Data Resilience at Kroll. “By accelerating investigations and sharpening triage accuracy, it enables our teams to deliver faster, high-quality outcomes for clients around the world.”
This collaboration accelerates the transition to the Agentic SOC, embedding advanced reasoning and autonomous agents into security operations to deliver faster threat response and higher resilience at machine speed.
About CrowdStrike
CrowdStrike, a global cybersecurity leader, has redefined modern security with the world’s most advanced cloud-native platform for protecting critical areas of enterprise risk – endpoints and cloud workloads, identity and data. Powered by the CrowdStrike Security Cloud and world-class AI, the CrowdStrike Falcon® platform leverages real-time indicators of attack, threat intelligence, evolving adversary tradecraft and enriched telemetry from across the enterprise to deliver hyper-accurate detections, automated protection and remediation, elite threat hunting and prioritized observability of vulnerabilities.
TechIntelPro empowers B2B technology decision-makers with the latest industry trends, deep insights, leadership perspectives and actionable intelligence to drive both organizational and professional milestones—and thrive on the tech pulse.