--- title: "Ai solutions for real-world challenges" page_name: "AI Capabilities" type: "page" slug: "ai-ml-powered" published_at: "2025-02-01" modified_at: "2026-04-28" url: "https://www.sumologic.com/solutions/ai-ml-powered" canonical: "https://www.sumologic.com/solutions/ai-ml-powered" markdown_url: "https://www.sumologic.com/solutions/ai-ml-powered.md" lang: "en" excerpt: "AI should give you answers, not just a shiny button. Our AI capabilities power faster troubleshooting and investigation across observability and security for true DevSecops." --- AI SOLUTIONS FOR REAL-WORLD CHALLENGES # Endless alerts, Focused answers. Unlock insights, enhance security, and resolve issues faster with Sumo Logic’s cutting-edge AI capabilities. [Start free trial](https://www.sumologic.com/sign-up) [Get a live demo](https://www.sumologic.com/request-demo) 30 day trial. No credit card. Security operations AI for observability Built on Dojo AI Why Sumo Logic? FAQ ## Built-in AI, not bolt-on Sumo Logic embeds AI and machine learning across security, observability, and reliability workflows. Our AI doesn’t sit on the side — it drives how data is collected, reasoned over, and transformed into outcomes. ## Actionable security narratives Sumo Logic’s AI agents help security teams detect, investigate, and respond faster. They connect fragmented signals, generate story-driven insights, and propose next steps — so analysts can focus on what matters. Bullets / mini-cards: - Summary Agent – Condenses fragmented alerts into actionable narratives. - Query Agent – Translates natural language into precise queries. - SOC Analyst Agent (coming soon) – Provides AI-assisted triage and reasoning to classify, summarize, and prioritize insights. - Knowledge Agent – Answers product questions instantly, using all available documentation. [Get a demo](https://www.sumologic.com/request-demo) [View demo](https://www.sumologic.com/demo/mitre-attack-coverage-explorer) ## Fewer incidents, faster resolution. For DevOps and SRE teams, AI transforms logs into guided responses. It detects anomalies, correlates issues, and summarizes complex investigations — reducing toil and mean time to recovery. ## The foundation behind every intelligent workflow Every AI capability at Sumo Logic is powered by Dojo AI, our multi-agent reasoning system designed for trust, accuracy, and adaptability. It connects specialized agents to interpret data, test hypotheses, and provide transparent guidance — whether you’re securing cloud workloads or improving app performance. [Explore Dojo AI](https://www.sumologic.com/solutions/dojo-ai) “In particular, Sumo Logic’s powerful query functions serve as a competitive function, providing insightful results, like identifying similar errors or software versions with frequent issues. Youngjip Kim EVP, Head of AI Team 35 TB average daily log ingest volume Products used [Application reliability](https://www.sumologic.com/solutions/application-monitoring "Application Monitoring") [View customer story](https://www.sumologic.com/case-studies/samsung) ## From insights to action with Agentic AI Dojo AI transforms the way SOC analysts and SREs work. Instead of drowning in alerts or wrestling with query syntax, agents summarize, investigate, and recommend next steps. The result, faster detection, sharper defenses, and stronger resilience. ### Summary Agent: Actionable narratives Turn fragmented alerts into clear, prioritized stories that accelerate investigations and reduce fatigue. ### Query Agent: Investigation without barriers Describe your investigative intent in plain English and get precise, executable queries, no syntax expertise required. ### For SOC analysts: Faster triage, smarter defense Investigate threats with speed and confidence. From anomaly detection to correlation across systems, agents help surface what matters most. ### For SREs: Reliability with less toil Diagnose issues quickly and proactively. Agents anticipate capacity risks, generate queries, and guide you to resolution before users feel an impact. ### Proactive resilience: Beyond observability Logs are the foundation, but Dojo AI takes the next step, reasoning over patterns, proposing actions, and guiding your team from signal to response. ### Human + AI collaboration: Trust at the core Dojo AI amplifies human expertise, it doesn’t replace it. With explainable insights and guardrails, teams stay in control while AI accelerates the work. ## Transform your enterprise with AI From IT operations to security and compliance, Sumo Logic’s AI solutions empower teams to solve real-world challenges efficiently and effectively. Discover how you can unlock the full potential of your data with AI. [Start free trial](https://www.sumologic.com/sign-up) ## Additional resources [guide ### Understanding agentic AI for log analytics Read guide](https://www.sumologic.com/guides/agentic-ai-log-analytics)[Case study ### AI platform thrives with huge data intake Read case study](https://www.sumologic.com/case-studies/samsung)[podcast ### Stop writing dumb AI security policies Watch podcast](https://www.sumologic.com/podcast/ep-4-stop-writing-dumb-ai-security-policies-use-threat-models-not-fear)[blog ### The rise of shadow AIT Read blog](https://www.sumologic.com/blog/rise-shadow-ait)[blog ### Stop writing dumb AI security policies: use threat models, not fear Read blog](https://www.sumologic.com/blog/ai-security-policies)[podcast ### AI in the SOC Watch podcast](https://www.sumologic.com/podcast/ep-10-ai-in-soc) ## FAQ Still have questions? [Get a demo](https://www.sumologic.com/request-demo) What is Sumo Logic Dojo AI?+Sumo Logic Dojo AI is a multi-agent AI platform built to power intelligent security operations and incident response. It is designed to act autonomously while continuously adapting to evolving threats. What is the Query Agent?+The Query Agent helps users rapidly translate natural language requests submitted via Mobot into precise Sumo Logic queries, simplifying the exploration, analysis, and extraction of insights from complex datasets. By understanding context and user intent, it lowers the learning curve for new users while boosting efficiency for experienced analysts. What is the Summary Agent?+The Summary Agent creates AI-generated summaries of signals within an Insight, reducing noise and highlighting key context. Analysts get a clear explanation of how an Insight was triggered, making it easier to assess scope, prioritize response, and share a consistent narrative without reviewing raw logs or events. What is Mobot?+Mobot is the unified conversational interface of Sumo Logic Dojo AI that connects users to specialized agents, turning natural language requests into actionable insights quickly and intuitively. Can I use Mobot to analyze unstructured logs?+Yes. Mobot can leverage the Query Agent to search across and extract key information from unstructured logs, helping ensure critical insights aren’t missed during investigations. Does Mobot save search history?+Yes. Mobot retains conversation and search history so users can resume investigations with full context and continuity. Is customer data/PII used to train AI models? If so, are those models specific to customers or specific to the vendor’s use case, or are they general models accessible by the public?+No. Customer data is never used to train AI models. All Sumo Logic AI capabilities are designed to serve customer-specific outcomes within their own environment. Mobot uses a Large Language Model (LLM) via Amazon Bedrock, which processes data securely and does not retain or use customer information for training or other external purposes. Traditional machine learning (ML) features, such as AI-driven alerts, generate models specific to each customer’s environment and are never shared or made public. For more information, see the [security and compliance page](https://www.sumologic.com/help/docs/search/mobot/#security-and-compliance) of our help docs. Is there a human in the loop for Dojo AI?+Yes. Dojo AI assists analysts with routine tasks and recommendations, but humans review, validate, and guide actions to ensure accuracy, compliance, and trust. Do you hold any AI-specific certification/accreditation? If so, provide details, including type and frequency it is renewed.+No. What types of reviews are conducted on Dojo AI models?+All new AI capabilities undergo legal, compliance, and application security reviews prior to release. Reviews occur with every major update that introduces new analytics or processes previously unused data. Does Sumo Logic AI use open-source libraries, generative AI providers, or cloud services?+Yes. Dojo AI leverages foundation models securely hosted through Amazon Bedrock. Do Dojo AI agents access customer data?+Agent interaction with customer data varies by capability. Mobot (including Query Agent and Knowledge Agent) and Summary Agent do NOT process or analyze customer data. The SOC Analyst Agent (in preview as of February 2026 with certain chosen customers) processes customer data in order to help review insight data, correlate activity, and assist in triage and investigation as directed by the user. Any AI capability that processes customer data: - Is available only through explicit customer opt in (never automatically provisioned) - Requires execution of the applicable AI addendum to the client agreement Customers retain control over whether these data-processing capabilities are enabled in their environment. What types of customer data or personal identifying information (PII) does the AI process? Does it filter sensitive information?+Sumo Logic AI capabilities follow strict legal, compliance, and security standards to ensure data minimization and fit-for-purpose processing. - Customer data is never used to train AI models, shared externally, or used to improve global models. - Data remains within the customer’s environment and is processed only to deliver results back to that customer. - Sumo Logic applies strong safeguards and filtering to ensure sensitive data is handled securely and appropriately at all times. Capabilities that process customer data–including the SOC Analyst Agent (beta as of February 2026)–are available only through explicit customer opt-in and require execution of the applicable AI addendum. These capabilities are never automatically provisioned. Is customer data/PII used to train AI models?+No. Customer data is never used to train AI models. All Sumo Logic AI capabilities are designed to serve customer-specific outcomes within their own environment. Mobot uses a Large Language Model (LLM) via Amazon Bedrock, which processes data securely and does not retain or use customer information for training or other external purposes. Traditional machine learning (ML) features, such as AI-driven alerts, generate models specific to each customer’s environment and are never shared or made public. For more information, see the [security and compliance page](https://www.sumologic.com/help/docs/search/mobot/#security-and-compliance) of our help docs. Does any third party have access to Dojo AI customer data?+Dojo AI leverages foundation models securely hosted through Amazon Bedrock. When customer data is processed using Amazon Bedrock: - Customer inputs and outputs are treated as Customer Content under AWS terms. - AWS does not use Customer Content to train models or improve Amazon Bedrock. - AWS may access Customer Content only as necessary to provide the service or comply with law. - Third-party model providers (such as Anthropic) do not have access to customer inputs or outputs. - Customer inputs and outputs are not shared with model providers and are not used to train external models. In summary, customer data processed through Dojo AI remains within Sumo Logic’s secure environment and is used only to deliver results for that customer. It is not used to train foundation models or shared with model providers. How long does Dojo AI store customer data, and how is it deleted?+Dojo AI and classical ML features store data only temporarily to optimize performance: - AI-driven alerts use a rolling 60-day data window, retraining weekly and expiring the oldest data automatically. - Mobot may temporarily retain query history in a rolling window to improve conversational context and response accuracy. All stored data follows Sumo Logic’s data retention and deletion policies, ensuring customer information is never retained longer than necessary. Do you hold any AI-specific certifications or accreditations?+Sumo Logic is currently reviewing AI Compliance within a rapidly evolving framework, in particular ISO 42001 as designed to help organizations implement AI responsibly. Sumo Logic AI capabilities operate within our existing industry-recognized security and compliance framework, including FedRAMP Moderate, SOC 2 Type 2, HIPAA, PCI DSS 4.0.1, and ISO 27001:2022. These attestations govern the confidentiality, integrity, and protection of customer data. Availability of specific AI capabilities may vary by deployment region (including FED) based on compliance boundary requirements. Which Dojo AI capabilities are available in FED?+The current GA versions of Mobot (including Query Agent and Knowledge Agent) and Summary Agent are available in the FED deployment. The SOC Analyst Agent and certain newer Dojo AI capabilities are not currently available in FED. These capabilities depend on underlying model configurations that do not yet meet the requirements of our FED compliance boundary. We are actively evaluating future availability of these capabilities in FED as underlying model support and compliance requirements evolve. What types of model reviews are conducted?+Our Generative AI model is licensed and securely hosted via Amazon Bedrock, meaning it is not directly accessible by Sumo Logic, or Customers, or third parties. All new AI capabilities and features undergo comprehensive legal, compliance, and application security reviews before release. These reviews ensure data protection, privacy, and regulatory alignment. Additionally, recurring reviews are conducted with every major update—particularly when a capability introduces new analytics or processes previously unused data types—to maintain ongoing trust and compliance across our AI ecosystem. Can customers opt out of AI features?+Yes. Customers can opt out of specific AI features at any time by submitting a support ticket. What is included in Sumo Logic’s AI capabilities?+For a complete overview of everything included in Sumo Logic’s AI portfolio, [click here](https://www.sumologic.com/help/docs/get-started/ai-machine-learning/). ## Try it for yourself Check out Sumo Logic for free today [Start free trial](https://www.sumologic.com/sign-up) [AI Instructions](https://www.sumologic.com/ai-instructions.md)