The Gemini Summary widget analyzes the following case data to
generate an AI-based assessment of how much attention the case might require:
Raw JSON of the event
Involved entities
Graph data for involved entities (to determine if they have appeared in
previous malicious cases)
Similar cases
The widget also summarizes alert data to improve threat insights and recommends
next steps for remediation.
You can provide feedback on the accuracy and usefulness of the AI-generated
classification, summary, and remediation recommendations.
The Gemini Summary widget appears in the Case Overview
tab on the Cases page. For cases with only one alert, you must manually
click the Case Overview tab to view the widget.
Provide feedback for Gemini Summary
To submit feedback on the Gemini Summary, follow these steps:
Choose one of the following:
Click thumb_upThumb up if the summary is accurate and helpful. Optionally, enter comments in the Additional Feedback field.
Click thumb_downThumb down if the summary is inaccurate or unhelpful. Select a reason from the list and enter any relevant context in the Additional Feedback field.
Click Send Feedback to submit your response.
Remove the Gemini Summary widget
The Gemini Summary widget is included, by default, in the case view layout.
To remove it from the default view, follow these steps:
Go to SOAR Settings > Case Data > Views.
Select Default Case View.
Locate the Gemini Summary widget and click deleteDelete.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-18 UTC."],[[["\u003cp\u003eThe Gemini Summary widget in Google SecOps provides an AI-generated overview of a case, including its urgency, alert summaries, and recommended remediation steps.\u003c/p\u003e\n"],["\u003cp\u003eThis widget is accessible within the Case Overview tab on the Cases page, but is only available for cases with alerts and not manually created cases or cases from Your Workdesk.\u003c/p\u003e\n"],["\u003cp\u003eUsers can provide feedback on the Gemini Summary widget's accuracy and usefulness by using the thumbs up or thumbs down icons and giving more details in the \u003cstrong\u003eAdditional Feedback\u003c/strong\u003e field.\u003c/p\u003e\n"],["\u003cp\u003eThe Gemini Summary widget is included in the default case view, but can be removed by navigating to SOAR Settings, then Case Data, then Views, and then clicking the Delete icon on the Gemini Summary widget.\u003c/p\u003e\n"]]],[],null,[]]
