Source URL: https://cloud.google.com/blog/products/identity-security/google-named-a-strong-performer-in-the-forrester-wave-for-security-analytics-platforms/
Source: Cloud Blog
Title: Google named a Strong Performer in The Forrester Wave for security analytics platforms
Feedly Summary: We are excited to announce that Google has been named a Strong Performer in The Forrester Wave™: Security Analytics Platforms, Q2 2025, in our first year of participation. The report acknowledges Google Cloud’s vision which relies heavily on Mandiant’s roots in threat-intelligence-driven security operations, which are evident in the platform.
For us, this recognition validates our vision for the future of security operations and our commitment to delivering the platform defenders need to protect their organizations from modern threats.
Traditional security operation centers (SOCs) struggle with outdated tools and practices that can not handle the complexity of modern threats. We are empowering SOCs to change this with Google Security Operations, our cloud-native, intelligence-led, and AI-driven platform.
Our recognition as a Strong Performer in this evaluation is, in our opinion, a significant acknowledgement of our vision and highlights the power and innovation of Google Security Operations.
An intelligence-led, AI-driven platform for security outcomes
Forrester evaluated vendors on criteria such as current offering, strategy, and customer feedback. As a first-time participant in this evaluation, we are proud that our position as a Strong Performer highlights, in our opinion, the unique strengths we bring to our customers.
“Customers speak highly of the speed of searching in the platform and the effects of the Mandiant acquisition, especially the value of its threat intelligence,” Forrester stated in the report.
A unified analyst experience. For us, the report validates our core belief that integrating workflow is paramount in modern security operations. This is the guiding principle for our experience combining SIEM, SOAR, and threat intelligence to streamline the entire threat detection, investigation, and response lifecycle. By embedding AI directly into the analyst workflow, we offer our customers detailed context, guided recommendations, and complex task automation to accelerate the entire threat detection and incident response (TDIR) process, and uplevel overall efficiency.
Intelligence-driven security. The Forrester report notes that our platform is built on a foundation of threat intelligence-driven security operations. Google Security Operations is driving change in traditional SIEM through unique Applied Threat Intelligence capabilities, which rely on Google Threat Intelligence. By giving security operators valuable context throughout their TDIR workflow, Google Security Operations can help lower the mean time to detect threats for organizations, especially when it comes to emerging threat actor behavior. This intelligence-driven approach is fundamental to how we help security teams proactively defend against adversaries.
Speed and scale. The Forrester report states that our customers speak highly of the speed of searching in the platform and the effects of the Mandiant acquisition. This synergy allows organizations to ingest and analyze security data at a speed that legacy tools can not match.
aside_block
Pioneering agentic security
Our vision extends beyond assistive AI, and we’re now pioneering agentic security operations, where customers can start to benefit from autonomous SOC workflows. Starting with our automated Alert Triage agent, first announced at Google Cloud Next 2025, we are actively building agentic workflows for detection engineering, triage and investigation, threat hunting, and response.
Agentic security can help analysts delegate complex tasks, and free them to focus on higher-value work that supports their security strategy. Ultimately, we believe it will give defenders a crucial advantage.
A modern platform for modern threats
Google Security Operations is designed to meet the challenges of the modern threat landscape head-on. We combine Google Threat Intelligence with the power of our SIEM, SOAR, and best-in-class AI to give you a comprehensive security platform. This gives customers the power to see more, automate, and act decisively with confidence.
“With Google Security Operations, we’re logging approximately 22 times the amount of data, we’re seeing three times the events, and we’re closing investigations in half the time,” said Mike Orosz, CISO, Vertiv.
Learn more
Forrester’s recognition reinforces, for us, our dedication to empowering security teams with the tools to minimize operational burdens, streamline their work, and deliver superior security results.
To learn more about how you can modernize with Google Security Operations, and to read the full The Forrester Wave™: Security Analytics Platforms, Q2 2025 report, we invite you to access your complimentary copy here.
Forrester does not endorse any company, product, brand, or service included in its research publications and does not advise any person to select the products or services of any company or brand based on the ratings included in such publications. Information is based on the best available resources. Opinions reflect judgment at the time and are subject to change. For more information, read about Forrester’s objectivity here .
AI Summary and Description: Yes
Summary: The announcement details Google’s recognition as a Strong Performer in The Forrester Wave™ report for Security Analytics Platforms, highlighting their commitment to innovative security operations through an intelligence-led, AI-driven platform. It underscores the challenges in traditional security operations and Google’s advancements in automated workflows and threat intelligence integration.
Detailed Description:
The text elucidates Google’s emergence as a key player in the security analytics domain, particularly with their Google Security Operations platform that integrates advanced technologies to enhance threat detection and response. Significant points include:
– **Recognition and Validation**:
– Google Cloud has been acknowledged in The Forrester Wave™ report, particularly in its inaugural participation, emphasizing the strength of their vision and technological integration.
– Mandiant’s legacy in threat intelligence is key to the platform’s design and effectiveness in modern security operations.
– **Challenges in Traditional Security Operations**:
– Traditional security operation centers (SOCs) are often hindered by outdated tools that cannot address contemporary threats.
– **Google Security Operations Features**:
– **AI-Driven Platform**: Integrated AI designed to embed directly into the analyst workflow, enhancing threat detection and response through:
– Guided recommendations
– Contextual information
– Automation of complex tasks
– **Threat Intelligence Integration**: Leveraging Google Threat Intelligence provides security operators with crucial insights during the TDIR (Threat Detection, Investigation, and Response) workflow.
– **Performance Metrics**:
– Customers reportedly experience faster data searching capabilities and improved analysis speed compared to legacy tools, underpinned by Mandiant’s contributions.
– Notable improvements have been observed, such as logging 22 times more data and closing investigations in half the time.
– **Emerging Concepts in Security**:
– Google is pioneering **agentic security operations** aimed at allowing autonomous SOC workflows, which can delegate complex tasks to automated systems and allow human analysts to focus on strategic work.
– **Overall Vision and Strategy**:
– The integration of SIEM (Security Information and Event Management) and SOAR (Security Orchestration, Automation, and Response) into a cohesive platform aims to streamline operations and significantly enhance security outcomes for organizations facing modern threats.
This recognition by Forrester strengthens Google’s claim that their innovative approach is crucial for modern security operations, affirming their focus on reducing operational burdens for security teams while facilitating superior overall security performance.
The emphasis on modernizing threat management techniques and utilizing extensive threat intelligence positions Google as a leading player in advancing security operations in the cloud and AI landscape.