AIBullisharXiv โ CS AI ยท 7h ago7/10
๐ง
Toward Autonomous SOC Operations: End-to-End LLM Framework for Threat Detection, Query Generation, and Resolution in Security Operations
Researchers present an end-to-end LLM framework that automates Security Operations Center (SOC) workflows by combining ensemble-based threat detection, syntax-constrained query generation, and retrieval-augmented resolution support. The system reduces incident triage time from hours to under 10 minutes while achieving 82.8% detection accuracy and improving resolution prediction from 78.3% to 90.0%.