DeepTempo Expands Beyond LogLM with Launch of AI-Native Intelligent Defense Platform

DeepTempo has unveiled its Intelligent Defense Platform, an AI-native cyber defense system designed to help organizations detect and respond to increasingly sophisticated machine-speed attacks while extending existing security investments.
Related To: 
June 5, 2026
5 min read
Add Us On Google
https://www.deeptempo.ai/
6a231e5ecfceacffc574ee03 Screenshot 20260605 140635

DeepTempo has announced the launch of its Intelligent Defense Platform, a new cyber defense system designed to help enterprises, managed security service providers, service providers and critical infrastructure organizations respond to increasingly sophisticated AI-enabled cyber threats.

The company said the platform marks a significant expansion of its role in the cybersecurity market, moving beyond its origins as a provider of the LogLM foundation model toward a broader system-level approach to cyber defense. The platform is designed to provide visibility into detection quality across an organization's security telemetry while also supporting optional integrations with Vigil, the open-source AI security operations center platform DeepTempo introduced in April 2026.

The launch comes as cybersecurity teams face growing challenges from attackers increasingly leveraging artificial intelligence to accelerate and automate attacks. DeepTempo said traditional security systems are struggling to keep pace with machine-speed threats, despite advances in AI-powered vulnerability discovery tools such as Mythos and similar technologies.

According to the company, attackers are increasingly using AI not only to identify vulnerabilities but also to orchestrate and execute campaigns that can evade conventional detection and response systems.

The Intelligent Defense Platform is intended to enhance existing cybersecurity investments by adding an intelligence layer that spans threat intelligence, detection, threat hunting, response and related workflows. DeepTempo said the platform can work alongside existing security information and event management (SIEM) systems, security orchestration, automation and response (SOAR) platforms and AI-powered security operations tools to improve operational efficiency while reducing mean time to detect (MTTD) and mean time to respond (MTTR).

The company argues that cybersecurity use cases have historically been fragmented across numerous point solutions. It credits advances in telemetry management and data infrastructure technologies for making a more unified approach possible.

Rather than requiring organizations to send security telemetry to external software-as-a-service analytics environments, DeepTempo's Intelligent Defense Layer (IDL) operates within customer environments. The company said this approach enables organizations to gain insights and optionally automate actions while avoiding the costs, delays and risks associated with siloed products that centralize telemetry for analysis.

The platform is designed to unify and continuously evaluate detection capabilities across multiple telemetry sources. DeepTempo said it supports existing security investments rather than replacing them and can extend its feedback and learning capabilities to Vigil and other AI-powered security operations platforms.

By providing visibility into detection performance, operational effectiveness and both historical and projected costs, the company said the Intelligent Defense Layer can help organizations adopt machine-speed intelligence in a more controlled and measurable way.

DeepTempo positions the platform as an AI-native foundation for defending against AI-enabled attacks. The company cited research indicating that 67.2% of exploited Common Vulnerabilities and Exposures (CVEs) in 2026 were zero-day vulnerabilities. It also pointed to findings showing that 82% of detections in 2025 were malware-free, highlighting a shift away from traditional malware-based attacks.

As attackers increasingly exploit vulnerabilities shortly after discovery, DeepTempo argues that defenders need behavioral detection systems capable of identifying threats that do not rely on known malware signatures or predefined attack patterns.

The company's LogLM model serves as the foundation of the new platform. DeepTempo said the model was pretrained on billions of logs and performs approximately 279 billion calculations per sequence. According to the company, LogLM can identify complex behavioral patterns that may not be detectable through traditional human-authored rules while avoiding the retraining requirements often associated with conventional anomaly detection systems.

"When 82% of intrusions arrive without malware and breakout times are measured in seconds, you need a system to decide what actions to take and to capture end-to-end performance for continuous improvement," said Evan Powell, CEO and Founder of DeepTempo. "We built the Intelligent Defense Platform to augment what organizations already have, making every detection and workflow measurably better."

Among the platform's key capabilities is a pluggable architecture designed to reduce vendor lock-in while allowing organizations to integrate existing technologies. DeepTempo said it has established partnerships with companies including Cribl and Snowflake at the data layer and supports integration with Splunk and other SIEM platforms.

The platform also supports agentic AI technologies through skills-based integrations, whether organizations choose to deploy Vigil or other AI solutions. DeepTempo said customers can leverage enterprise licenses for OpenAI, Gemini and Claude as well as on-premises reasoning models.

Another core feature is continuous validation and monitoring. The platform evaluates the effectiveness of existing rule-based and machine learning-based detections alongside detections generated by LogLM. DeepTempo said organizations can also use the platform to assess workflow performance and estimate future operational costs.

The company has also expanded the range of telemetry that LogLM can analyze. The model now supports network flow data, firewall logs, DNS records, web application firewall telemetry, cloud performance data, common operational technology telemetry and agentic AI logs.

DeepTempo said some recent deployments achieved false-positive and false-negative rates below 1% without requiring additional adaptation, enabling security teams to focus more precisely on malicious activity while reducing operational overhead.

For organizations operating in distributed and resource-constrained environments, DeepTempo has introduced edge-focused deployment options. The company said distilled versions of LogLM can run on smaller systems while retaining the ability to detect novel and rapidly evolving attacks.

These deployment capabilities are intended to support critical infrastructure environments and portable "fly-away" systems where computing resources may be limited but advanced threat detection remains necessary.

The announcement follows DeepTempo's launch of Vigil earlier this year. The company described Vigil as the first open-source AI security operations center built on a large language model-native architecture.

With the introduction of the Intelligent Defense Platform, DeepTempo is expanding its strategy beyond AI-powered detection models toward a broader security operations framework designed to integrate with existing tools, provide continuous performance measurement and help organizations respond to increasingly automated cyber threats.

Sign up for our eNewsletters
Get the latest news and updates

Related

Mid-Market AI Gets Serious: Why 2026 Is the Year of Practical Deployment
Layered Security Strategies for Protecting Critical Infrastructure
Practical Solutions for Everyday IT Challenges
Sponsored
Resilient Patching and Guardrails for Community Repositories
Sponsored