AirMDR AI SOC Analyst is an artificial intelligence system designed to perform security operations center analyst tasks. The platform automates 80-90% of L1 and L2 analyst functions, including alert triage, threat correlation, and incident investigation. The system, named Darryl, operates 24/7 and completes investigations in under 5 minutes on average. It automatically enriches findings, contextualizes and standardizes data, and prioritizes alerts based on a library of security best practices and industry standards. The platform determines root causes and the malicious nature of attacks. The AI analyst can automatically close benign alerts, block threats through firewall integration, and provide remediation support. It includes pre-built playbooks that can be customized and automated. The system generates detailed investigation and incident reports for each alert. Human oversight is maintained through chat support and access to cybersecurity experts for escalations. The platform features a natural language chatbot interface and centralized UI for managing investigations. It integrates with existing security infrastructure via API for data collection. AirMDR offers a free plan that provides automated alert triage capabilities without requiring a credit card.