Panther launches AI security teams can trust, powered by Claude in Amazon Bedrock

Panther, the security monitoring platform for the cloud, has launched powerful new AI capabilities powered by Claude in Amazon Bedrock. With this integration, security teams can apply Claude’s advanced reasoning directly to their detection and response workflows to accelerate investigations, enhance signal clarity, and drive faster, more accurate decisions.

Working with Anthropic and AWS, Panther enables customers to:

• Create trusted, tailored security alerts with low latency
• Normalize and centralize logs in a security data lake
• Identify and prioritize critical security signals through AI analysis
• Reduce alert fatigue by up to 70% through automated triage
• Decrease mean time to resolution for security incidents

Transforming security operations: Panther's AI-driven approach

Security teams face a fundamental challenge that goes beyond just alert volume: the nuanced, context-dependent nature of alert triage that demands meticulous attention to detail across disconnected systems. "While detection engineering helped tame the noise, we still have a fundamental challenge: analyzing massive volumes of security signals at human speed," explains Jack Naglieri, Panther’s founder. "Traditional automation follows predetermined paths, while AI agents can adapt, learn, and make informed decisions based on the broader context and history of your environment."

Panther's AI agent, powered by Claude in Amazon Bedrock, transforms this paradigm by recognizing patterns that analysts might miss and eliminating the mental context-switching tax that burdens analysts pivoting between tools. This intelligent analytical layer operates at machine speed with transparent, human-like reasoning, allowing security teams to focus on strategic threat hunting and incident response—areas where human intuition and creativity remain irreplaceable.

Why Panther chose Claude

After evaluating multiple AI models for their security monitoring platform, Panther selected Claude for its superior reasoning capabilities. "We selected Claude for its unmatched creativity and reasoning abilities in security rule writing, alert triage, and analysis," said Naglieri. "The model's contextual understanding and ability to process complex security scenarios stood out in our evaluation. The flexibility to choose smaller models like Haiku for simpler summarization tasks helps us optimize costs, while leveraging Claude 3.5 Sonnet for more sophisticated analysis provides the perfect balance of performance and efficiency."

Delivering rapid AI-innovation with privacy and security

Panther's integration with Amazon Bedrock transforms how its customers leverage AI for security monitoring without sacrificing data privacy and security controls. The architecture leverages Amazon Bedrock's enterprise-grade infrastructure to deliver Claude's capabilities within a customer's own secure environment.

Panther's decision to implement Claude in Amazon Bedrock was driven by security and privacy. "The biggest thing is privacy and the single tenancy nature of Panther," said Naglieri. "It gives customers a way to access Claude foundation models directly through Amazon Bedrock." This means each customer's security data stays within their own AWS environment, never traversing the public internet or being exposed to shared infrastructure.

“Amazon Bedrock and Claude have fundamentally changed the way we build and ship AI at Panther,” said William Lowe, Panther’s CEO. “It lets us focus on what matters most: solving real customer problems while keeping their data private and secure. Our AI agents triage alerts, write queries, summarize context, and add compliance-ready comments within the customer’s own trusted environment. This leads to faster response times, less manual toil, and stronger security outcomes.”

Through Amazon Bedrock's single-tenant deployment model, each customer benefits from:

• Complete data isolation within their own Amazon Web Services (AWS) environment
• Direct integration with existing AWS security tools and services
• Granular control over data handling for compliance requirements
• Secure proxy access to Claude's capabilities without exposing sensitive data
• Up to 60% faster alert triage and response times

The deployment architecture enables rapid scaling and seamless updates. "Accessing the service through account-level integration really speeds things up," said Lowe. “Each new Panther instance deploys in its own AWS account, providing true isolation while maintaining consistent security controls.”

Claude powers intelligent security operations

Panther uses Claude predominantly for agentic tasks, focusing on interactive analysis, correlation, and resolution of security alerts. "Claude is especially great at reasoning when several data points are presented that provide context for why a behavior is happening and who is involved," said Naglieri.

The platform leverages Claude's capabilities to power key security functions:

• Interactive analysis and correlation of security alerts
• Automated alert triage at junior/mid-level analyst capability
• Recommending security rule refinement
• Detection-as-code feedback loops
• Novel pattern detection across enterprise data

"Security teams are best served to create signals relevant to them, while Claude can be our first line of defense in judging the overall risk level," said Naglieri. "This pattern is very scalable and high fidelity versus always putting a human on the receiving end."

Building the future of AI-powered security

"We believe a multi-agent security monitoring platform can reduce the overall mental load of running a security operations program while improving alert quality, triage time, and proactive identification of suspicious patterns across your Enterprise," said Naglieri. Panther plans to incorporate Claude into more vertical use cases in the security team, including rule writing.

This vision goes beyond automation—it represents a fundamental shift in how security teams protect organizations. By handling repetitive, time-intensive tasks that previously consumed analysts' bandwidth, AI frees human experts to focus on what matters most: staying one step ahead of attackers and preventing threats before they materialize.