CrowdStrike and NVIDIA Expand Partnership to Power Agentic AI in MDR

CrowdStrike has expanded its strategic collaboration with NVIDIA to accelerate the evolution of Agentic Managed Detection and Response (MDR), bringing AI-driven automation deeper into security operations. As cyber threats become faster and more sophisticated, this partnership aims to help organizations respond at machine speed while improving both efficiency and accuracy in threat detection and investigation.

As part of the collaboration, CrowdStrike will leverage NVIDIA’s Agent Toolkit, including open Nemotron models and NeMo Data Designer, to develop specialized AI security agents. These agents are designed to streamline complex investigative workflows, reduce manual effort, and enhance decision-making across security operations centers (SOCs). At the same time, CrowdStrike is expanding its Charlotte AI AgentWorks platform with support for NVIDIA Nemotron 3 Super, allowing enterprises to build custom AI agents tailored to their unique security environments.

Early internal testing has already demonstrated significant performance improvements. When powered by NVIDIA Nemotron Nano and Super models, CrowdStrike’s Falcon® Complete Next-Gen MDR achieved up to five times faster investigations and more than three times higher triage accuracy in high-confidence benign classifications. Consequently, organizations can process large volumes of alerts more effectively while reducing the burden on security analysts.

The need for such advancements is growing rapidly. Today, adversaries are increasingly using AI to accelerate reconnaissance, evade detection, and move laterally within networks. Meanwhile, security teams must analyze thousands of alerts daily, often relying on manual processes to distinguish real threats from false positives. Therefore, improving speed and precision without expanding headcount has become a critical priority for enterprises.

Agentic MDR represents a shift toward AI-native security operations, where intelligent agents work alongside human analysts to automate repetitive tasks and enhance overall outcomes. Through this partnership, CrowdStrike and NVIDIA are also strengthening autonomous agent security by integrating NVIDIA’s OpenShell runtime with the Falcon platform using a Secure-by-Design AI Blueprint. This ensures that as automation increases, security and governance remain firmly in place.

“Adversaries are already using AI to move faster and scale their operations,” said Daniel Bernard, Chief Business Officer at CrowdStrike. “The future of managed defense isn’t adding more analysts – it’s embedding AI agents directly into SOC operations to give analysts superpowers. With Falcon Complete Next-Gen MDR, we’re applying advanced reasoning models to automate investigation and triage while maintaining expert oversight. Together with NVIDIA, we’re accelerating the shift toward Agentic MDR.”

“AI reasoning models and synthetic data are transforming how enterprises operationalize intelligence,” said Justin Boitano, Vice President, Enterprise AI Products at NVIDIA. “Together with CrowdStrike, we’re bringing secure, autonomous AI agents into security operations – enabling organizations to reason through threats, act in real time, and continuously strengthen their cyber resilience.”

“CrowdStrike’s use of advanced AI reasoning in Falcon Complete Next-Gen MDR marks a significant step forward in managed defense,” said David Burg, Global Group Head of Cyber and Data Resilience at Kroll. “By accelerating investigations and sharpening triage accuracy, it enables our teams to deliver faster, high-quality outcomes for clients around the world.”

Furthermore, CrowdStrike evaluated NVIDIA Nemotron models across multiple MDR use cases, focusing on automating high-volume Tier 1 analysis while maintaining human oversight. By using synthetic data generated through NeMo Data Designer, the models are trained on real-world patterns and expert insights, significantly improving accuracy and consistency in investigations. For instance, fine-tuning the Nemotron Nano model achieved 96% accuracy in generating investigation queries within Falcon® LogScale, enabling a natural-language interface that enhances analyst productivity.

Overall, this expanded partnership highlights a broader industry shift toward AI-driven security operations. By combining advanced AI models with real-time threat intelligence, CrowdStrike and NVIDIA are helping organizations transition to an Agentic SOC where automation, intelligence, and human expertise work together to deliver faster, smarter, and more resilient cyber defense.

Cyber Technology Insights:

To participate in our interviews, please write to our CyberTech Media Room at info@intentamplify.com

Tags: AI security agents, AI-native security operations, CrowdStrike, cyber threats, NVIDIA, threat intelligence

CyberTech Staff Writer

CyberTech Staff Writer is a seasoned cybersecurity expert and analyst with over 20 years of experience in IT security and networking. Passionate about safeguarding digital landscapes, they specialize in identifying, assessing, and reporting cyber threats and best practices to help enterprises prevent and recover from cyber disasters. Their expertise covers cloud security, application security, ransomware assessment, threat intelligence, incident response, Zero Trust Network Access (ZTNA), and more. As a recognized thought leader in the cybersecurity community, the CyberTech Staff Writer collaborates to deliver insightful, actionable content that empowers organizations to build strong, proactive defenses against evolving cyber threats.