AppOmni launches Marlin AI for SaaS security teams

AppOmni has launched Marlin AI, an autonomous artificial intelligence tool for SaaS security investigation and guided remediation, aimed at reducing the time security teams spend examining threats, alerts and warnings.

The product correlates security indicators across SaaS applications, carries out automated investigations and provides step-by-step remediation instructions within a single system. It is intended to reduce the manual research and analysis often required when teams work across several security tools.

Software-as-a-service environments have become a growing focus for security teams as businesses rely on a wider range of cloud-based applications. That has increased the volume of audit logs, alerts and user activity data teams must assess when investigating suspicious behaviour or configuration weaknesses.

Marlin AI analyses business-critical applications across a customer's SaaS estate to identify security signals. It then investigates correlated indicators to assess business impact, review security posture settings and validate threat alerts, according to AppOmni.

The system also includes remediation guidance for administrators, along with pre-built playbooks and runbooks that activate automatically. According to the company, the tool does not require manual setup, customisation or configuration before it begins producing investigation results.

Market focus

AppOmni is positioning the launch around a more specialised use of AI in cybersecurity rather than broad general-purpose models. The company argues that SaaS environments are too complex for standard generative AI tools and general large language model agents because of the relationships between application settings, user actions, security controls and business context.

Marlin AI is built on AppOmni's dataset of SaaS audit logs and activity telemetry, which it uses to analyse how attacks develop within SaaS applications. It also draws on threat intelligence from the company's AppOmni Labs team to identify vulnerabilities and weaknesses across SaaS environments.

Melissa Ruzzi, Senior Director of AI at AppOmni, described the company's rationale for the product in terms of automation and specialisation.

"When we built Marlin AI, our goal was simple: Automate and simplify security correlations and investigations to quickly solve SaaS threats," said Melissa Ruzzi, Senior Director of AI, AppOmni. "SaaS environments are incredibly complex, and general AI tools struggle to make sense of them. Marlin AI is different; AppOmni developed a holistic approach for using AI tools to solve SaaS security challenges. Marlin AI looks deeper into SaaS environments than any other solution on the market, and brings forward insights and guidance to help security teams understand what matters most so they can take action faster."

The launch comes as security operations teams face growing pressure to handle larger numbers of alerts generated by both conventional systems and newer AI-driven tools. In response, vendors have increasingly focused on products that can sift, prioritise and investigate security events with less direct analyst input.

AppOmni says Marlin AI is intended to shorten both mean time to investigate and mean time to remediate by removing repetitive SaaS investigation tasks. In practice, that means moving from alert review and indicator correlation to investigation and guided resolution without separate research outside the platform.

Analyst view

Todd Thiemann, Principal Analyst at Omdia, linked the announcement to the growing volume of security activity associated with AI systems.

"AI agents move at machine speed and generate growing volumes of activity and alerts," said Todd Thiemann, Principal Analyst, Omdia. "Security teams need a more intelligent way to prioritize and respond effectively. Marlin AI helps organizations navigate this new reality by turbocharging how existing AppOmni customers manage SaaS security while providing new customers with a superior path to operational maturity. It's an elegant approach to SaaS security and a powerful example of how purpose-built AI can deliver meaningful security outcomes at scale."

AppOmni argues that existing SaaS security tools typically surface isolated information without enough context for teams to act quickly. Its case for Marlin AI rests on combining application observability, automated investigation and prescriptive remediation in one product, particularly for organisations managing large and complex SaaS estates.

The system's main functions include AI-driven alert correlation, automated security investigations, remediation guidance, pre-built playbooks, deep SaaS analysis and contextual threat intelligence from the company's research team.

At the centre of the launch is a bet that customers will favour narrower AI systems trained for a specific security domain over broader assistants. AppOmni's position is that domain-specific analysis is needed if security teams are to distinguish between routine SaaS noise and incidents that require attention.

Marlin AI includes AppOmni playbooks and runbooks that activate automatically without prompting, scripting or integrations.