Dojo AI
The next generation of SecOps starts in the Dojo
Sumo Logic Dojo AI puts agentic AI to work for your security operations. Inside the Dojo, intelligent agents work with your analysts to detect, investigate, and respond to threats in real time—turning overwhelming data into decisive action.
Mobot: The conversational interface
Mobot lets you talk to your data in plain language, simplifying complex security workflows into quick, natural interactions.
From deploying agents to running investigations, he’s your single point of access to the entire Dojo — getting you from question to insight faster than ever.
Mobot: The conversational interface
Mobot lets you talk to your data in plain language, simplifying complex security workflows into quick, natural interactions.
From deploying agents to running investigations, he’s your single point of access to the entire Dojo — getting you from question to insight faster than ever.
Summary Agent: Providing clear alert context
The Summary Agent automatically explains what triggered an Insight, highlighting key signals and context so analysts can quickly assess scope and prioritize response.
Spend less time sifting through raw logs with clear, actionable summaries ready to share across teams.
Summary Agent: Providing clear alert context
The Summary Agent automatically explains what triggered an Insight, highlighting key signals and context so analysts can quickly assess scope and prioritize response.
Spend less time sifting through raw logs with clear, actionable summaries ready to share across teams.
SOC Analyst Agent: Your always-on security team
This agent applies advanced reasoning to triage alerts, evaluate severity, and link related activity into a clear picture of what’s happening.
By filtering out noise and repetitive manual work, it helps your team focus on real threats and respond with confidence.
Query Agent: Transforming natural language prompts into queries
Ask Mobot about a query the same way you’d ask a teammate. The Query Agent translates your natural language requests into efficient, accurate Sumo Logic queries.
Explore data, uncover patterns, and spot anomalies without ever writing code. Analysis becomes faster, more intuitive, and far less manual.
Knowledge Agent: Help without the wait
Ask Mobot your how-to questions about onboarding, administration, or platform setup, and the Knowledge Agent will deliver instant guidance.
Get clear, citable answers in seconds so you can stay focused on your work instead of digging through docs or waiting on support tickets.
Sumo Logic MCP Server: Connecting your AI to the Dojo
External MCP makes Dojo AI the hub of your entire AI ecosystem, connecting Sumo Logic agents with your specialized agents, proprietary models, and third-party systems and tools.
It supports natural language queries across IDEs and collaboration tools so your teams can access powerful insights anywhere, securely and at scale.
Why Sumo Logic
Intelligent. Autonomous. Proven.
Built on years of expertise in log analytics and SIEM and trusted by thousands of enterprises, Sumo Logic helps teams detect, investigate, and respond faster. With Dojo AI, we take that mission even further, combining agentic AI with the scale, security, and intelligence of our platform to drive intelligent DevSecOps.
Cut through the noise
Eliminate false positives and surface what really matters. AI-driven correlation and summarization reduce alert fatigue so your team can focus on real threats.
Unify your view
Break down silos across tools and teams with a single platform for all telemetry delivering a single source of truth for security and operations.
Respond faster
Automate detection and accelerate response with log analytics and an AI-powered cloud SIEM that speeds MTTR so you can stop issues before they spread.
Stay ahead
Continuously learn and adapt with AI that evolves alongside your environment. Proactive defense keeps you ahead of attackers and outages alike.
FAQ
Still have questions?
Machine learning algorithms can more effectively detect patterns in activities and behaviors that indicate potential threats. AI assists in contextualizing indicators of compromise within the broader cybersecurity landscape for better decision-making. Deep learning models can identify complex attack vectors and suspicious activities that traditional methods might miss. AI aids in the proactive identification of potential threats by continuously monitoring for behavioral anomalies and IoCs.
Cloud infrastructure security is undergoing a significant transformation with the integration of AI. AI enhances threat detection, automates responses to security incidents and strengthens overall cybersecurity measures within cloud environments. By utilizing AI-powered tools like machine learning algorithms, security teams can detect anomalies and potential threats in real time, allowing for proactive mitigation of security risks. Additionally, AI can assist in analyzing vast amounts of security data quickly and accurately, enabling faster incident response and reducing the time to identify and contain security threats.
Some of our classical ML models store customer data in our ML pipelines to optimize performance. For example, our AI-driven alerts feature log anomaly detection and build ML models from 60 days of logs. To accomplish this, we retrain the model once a week. In this example, each week, we add one week of new data while expiring the oldest week of data. Rolling data windows are done to avoid fetching 60 days of data for every training run.
Sumo Logic Copilot also stores customer data in the ML backend to optimize performance. For example, certain Copilot features rely on the history of a customer’s queries. We will expire such data on a rolling window basis.
No. No customer data or PII is used for training or other purposes. All our capabilities serve customer outcomes. Our classic ML capabilities (e.g. AI-driven alerts and its anomaly detection features) create customer-specific models. Sumo Logic Mo Copilot uses a Large Language Model (LLM) served via Amazon Bedrock. As explained in our documentation and included links, no customer data is used for training or other purposes in the case of Sumo Logic Copilot.
Artificial intelligence (AI) enables the automation of data analysis, providing real-time insight, facilitating predictive maintenance, and improving operational efficiency. By leveraging AI technologies such as machine learning and advanced analytics, operational intelligence platforms can process large volumes of data from multiple sources, including historical and real-time data, to generate actionable insights for informed decision-making. AI algorithms can also help identify patterns, trends and anomalies in the data, enabling organizations to optimize their business operations and achieve operational excellence.
Artificial intelligence is crucial in security intelligence because it enhances threat detection, automates response actions and enables predictive analysis of potential threats. AI algorithms can analyze large volumes of data to identify patterns and anomalies, helping security teams detect and respond to cyber threats more efficiently. Additionally, AI technologies can aid in identifying vulnerabilities, predicting security risks and providing actionable intelligence to improve overall cybersecurity posture.
Ready to see how Dojo AI can improve your operations?
Experience the agentic AI platform that connects the dots—from detection to automation.
