E2e-assure launches Cumulo, U.K. sovereign AI SOC

Abingdon, U.K., June 19 — E2e-assure announced Cumulo, an AI-first security operations centre platform it says is U.K.-owned and sovereign. The company unveiled the updated platform on June 19 in Abingdon and said it is designed to detect zero-day threats across IT and operational technology environments.

Cumulo pairs a deterministic security information and event management system, which the company describes as the system of record, with AI running in parallel to build continuous context as security data is produced. The platform creates a passive digital twin of each customer environment, covering IT and OT systems, to allow simulated attacks, identify risks before exploitation and preserve an immutable analytical trail.

Rob Demain, e2e-assure’s chief executive, said the platform was designed to continuously build understanding as data is generated while keeping expert analysts central to decisions. He framed Cumulo as a change from traditional SOC and SIEM setups that rely on sequential alert triage and retrospective investigation.

Cumulo deploys customer-dedicated local large language models inside customer-controlled infrastructure and trains them on each organisation’s environment so reasoning is context-aware. Inference runs within those sovereign environments, which keeps sensitive security data local and reduces reliance on third-party cloud AI services.

E2e-assure told clients that local inference can support operational continuity for critical sectors such as energy, water, transport, telecommunications and government services if external services are disrupted or subject to access restrictions.

The platform uses a layered AI architecture to separate environment-specific reasoning from broader intelligence tasks. A local model layer handles detection and analysis tied to the customer estate, a security intelligence layer aggregates and correlates threat data across customers, and a frontier model layer performs non-sensitive enrichment. Multiple models cross-check each investigation and generate an auditable record via a feature called the Cumulo Analyst Helper. An anti-hallucination layer validates model findings against threat intelligence and deterministic detection engines before results reach human analysts.

E2e-assure said the system keeps cleared security teams at the centre of decision-making. The company operates a U.K.-based SOC staffed 24/7 by personnel holding NPPV3 and other security clearances.

Cumulo will be offered in multi-tier editions. The Standard tier provides proactive SOC services including AI-driven investigations, autonomous threat hunting based on behavioural detection, threat intelligence feeds, reporting and compliance dashboards. The Enterprise tier adds unified IT/OT monitoring, the digital twin capability, live compliance dashboards and advanced cross-environment correlation. The company said the platform is designed to integrate with existing security stacks.

E2e-assure has provided SOC-as-a-service to government and critical national infrastructure organisations for more than a decade and stated that Cumulo is its fully owned AI SOC platform to be introduced to customers through the multi-tier product model.