Solved: Generate Query by Gemini

OrCHUK · 09-12-2024 12:30 AM

Hi.

According to Gemini in Google SecOps documentation, it mentions the capability to use Gemini for generating logs:

I'm relatively new to the Chronicle product, and my organization has recently started developing rules and playbooks. However, it appears that we don't have the option to use Gemini for SIEM Search in our interface. we only see options for "Go to Legacy search" and "UDM Lookup"

We initially thought this limitation might be related to API enablement in GCP, but we do have access to Gemini AI capabilities under "Gemini Summary" in our cases and "Generative AI" module is active under "License Management". Can anyone clarify if the Gemini AI tool's query capability requires a specific subscription tier within Google SecOps? I'm interested in this feature but unsure if it's included in our current service package or requires an additional subscription.

Thank you!

matthewnichols

Hi @OrCHUK Thank you for your post. I would suggest connecting with your account representative or partner. I do know based on this link that Gemini features are included based on your subscription tier. https://cloud.google.com/security/products/security-operations?e=48754805&hl=en Hope this helps. Cheers!

View solution in original post

matthewnichols

Hi @OrCHUK Thank you for your post. I would suggest connecting with your account representative or partner. I do know based on this link that Gemini features are included based on your subscription tier. https://cloud.google.com/security/products/security-operations?e=48754805&hl=en Hope this helps. Cheers!

suzhuang

I am not sure what license your organization has. Gemini in SecOps isn't available for standard license.

Webinar May 29th: Log Ingestion: Bindplane + Google SecOps

Generate Query by Gemini