BlueVoyant has launched BlueVoyant AI, a new security operations platform aimed at both managed and self-service security operations centres.
The launch adds a new product line to BlueVoyant's cybersecurity business, with a strong emphasis on Microsoft-focused security operations. The platform can be deployed either as a managed service supported by BlueVoyant's security team or as software used directly by customers' internal teams.
BlueVoyant is positioning the product around a common problem for corporate security teams: the volume of alerts generated by modern systems. The platform is designed to enrich, analyse and triage alerts through AI-based automation, while also carrying out response actions such as isolating devices, revoking credentials and removing malicious emails.
The approach reflects a broader shift across the cybersecurity market, as vendors try to move beyond alerting tools into automated investigation and response. BlueVoyant argues that organisations want faster action without giving up oversight, particularly as security teams face pressure to manage more incidents across increasingly complex environments.
John Hernandez, Chief Executive Officer at BlueVoyant, said the launch is intended to close a gap between the market's claims and what security teams can use in practice.
"For years, the security industry has promised AI-powered defence but failed to deliver what security teams actually need," said John Hernandez, Chief Executive Officer at BlueVoyant. "BlueVoyant AI is different. It is the product of almost 10 years of hands-on experience defending the world's most complex environments, distilled into a platform that thinks, decides, and acts at machine speed. We're not augmenting the SOC. We are helping it evolve."
BlueVoyant said its experience in Microsoft-native customer environments underpins the new platform. It has handled more than 2,500 customer deployments in Microsoft security environments, which inform its operating procedures and automated workflows.
Microsoft focus
That Microsoft emphasis is central to the company's pitch. BlueVoyant said its teams and models are trained through years of operational work across Microsoft security products, rather than through generic threat data alone. In practice, the company is seeking to distinguish itself from competitors that offer broad security tooling across multiple ecosystems without the same depth in a single vendor's stack.
The launch also reflects the commercial reality that many businesses have already standardised large parts of their cybersecurity estate around Microsoft 365, Microsoft Defender and Microsoft Entra. By focusing on those tools, BlueVoyant is trying to appeal to customers that want tighter integration with software they already use, rather than another disconnected layer of tooling.
Sebastian Sobolev, Chief Product Officer at BlueVoyant, described the product as a tool designed to reduce noise and improve decision-making for security teams.
"BlueVoyant AI delivers high-fidelity and decision-ready alerts in real time and can be the centrepiece of any security program," said Sebastian Sobolev, Chief Product Officer at BlueVoyant. "What we have built effectively eliminates false positives and shrinks response times. This isn't an incremental improvement - it's a step change for the industry. It will become the standard."
Two models
BlueVoyant is offering the platform in two forms. One is an AI-supported managed security operations service, in which the company handles detection and response on behalf of customers. The other is a self-service version for internal security teams that want to run detection, triage and response themselves.
That dual model broadens the addressable market. Some customers want to outsource day-to-day monitoring because they lack sufficient in-house security staff, while others want to retain operational control and add more automation to existing teams. By offering both options through the same platform, BlueVoyant is aiming to serve buyers at both ends of that spectrum.
BlueVoyant also said organisations can connect Microsoft 365, Defender and other trusted tools through a self-service onboarding process. The goal is to reduce the time needed to bring new customers onto the system, an issue that has often slowed adoption of security platforms that require lengthy integration projects.
Identity roadmap
Alongside the product launch, BlueVoyant pointed to identity security as its next area of development. The company said non-human identities now outnumber human users in many enterprise environments and represent a weak point for defenders. It argued that its operational experience in Microsoft Entra provides a basis for expanding further into that segment.
Hernandez linked that roadmap to the company's earlier work in identity security.
"Our heritage at BlueVoyant is rooted in identity, and we plan to leverage our expertise to evolve how organisations define and scale security around it," said Hernandez. "As organisations adopt autonomous systems, BlueVoyant AI is designed to help organisations remain secured, governed, and trusted. Today's launch is just the beginning."