Elastic Collaborates with Google Cloud to Bring its Embedded Security Layer to Google Distributed Cloud Air-Gapped Environments

Key Terms

air-gapped technical

A system described as air-gapped is physically isolated from public and private networks so it cannot be reached over the internet or company LAN, like a safe kept in a room with no phone line. For investors this matters because air-gapping reduces the risk that critical data, trading algorithms, backups or industrial controls will be accessed or tampered with by hackers, but it can also increase costs and slow information flow compared with connected systems.

sovereign cloud technical

A sovereign cloud is a cloud computing setup designed to keep data, systems and control within a specific country or legal jurisdiction so that local laws on privacy, security and government access are met. Think of it like storing valuables in a bank branch inside your own country with locked access and national oversight. For investors, it matters because demand, costs, regulatory approval and competitive advantage can be very different for services that meet these local rules.

siem technical

SIEM (Security Information and Event Management) is a software system that gathers and analyzes security-related data from across a company's computers and networks to spot suspicious activity, like a central security dashboard that flags and explains alarms from many sensors. For investors it matters because a strong SIEM helps prevent costly breaches, supports regulatory compliance, and can reduce financial and reputational risk; for vendors it can be a key revenue and growth area.

xdr technical

Extensively drug-resistant (XDR) describes a disease-causing microbe that no longer responds to most approved drugs used to treat it, leaving only a few or sometimes no reliable treatment options. For investors, XDR matters because it can reshape healthcare demand and regulatory priorities—driving urgent need for new diagnostics, therapies, or vaccines while increasing costs, clinical trial complexity, and commercial opportunity or liability for companies in the healthcare and biotech sectors.

soc technical

Standard of care (often abbreviated SOC) is the treatment or management approach that is widely accepted and used by medical professionals for a particular disease or condition. For investors, SOC provides the benchmark against which new therapies, devices, or clinical results are judged—like comparing a new car to the current most popular model; a product that meaningfully outperforms the SOC can win market share and drive revenue, while failure to beat or match it limits commercial potential.

llms technical

Large language models are advanced computer programs that read and generate human-like text by learning patterns from huge amounts of written material; think of them as digital employees that can draft reports, answer questions, summarize documents, or generate code. They matter to investors because they can change a company’s costs, speed of product development, customer service, and competitive edge — and they also create new risks and regulatory questions that can affect profits and valuation.

fedramp regulatory

FedRAMP (Federal Risk and Authorization Management Program) is a U.S. government initiative that sets security standards for cloud computing services used by federal agencies. It ensures that these online platforms protect sensitive information, similar to how a security system safeguards a building. For investors, FedRAMP indicates that a cloud service meets strict security requirements, which can influence its reliability and trustworthiness in handling data.

siem-as-a-service technical

SIEM-as-a-Service is a cloud-based offering that collects and analyzes logs and alerts from computers, networks, and applications to detect security problems and suspicious activity. Think of it as outsourcing a company’s digital security monitoring to a remote, always-on guard who aggregates camera footage and alarms, highlights threats, and suggests responses. Investors care because it affects a firm’s operational risk, regulatory compliance and potential breach costs, and it often represents recurring revenue for service providers.

Google Distributed Cloud is embedding Elastic’s agentic security operations platform, providing security analytics, automation, and XDR capabilities to help customers secure sensitive data in air-gapped environments

SAN FRANCISCO--(BUSINESS WIRE)-- Elastic (NYSE: ESTC), the Search AI Company, today announced a deep integration with Google Distributed Cloud (GDC) air-gapped, where Elastic is a critical partner providing a security layer for customers. This deep integration provides a hardened architecture for organizations handling highly sensitive, regulated workloads to use Elastic’s agentic security operations platform to combat modern AI-driven cyber threats.

Organizations in highly regulated industries must defend against increasingly sophisticated threats while maintaining strict control over sensitive data. With Google Distributed Cloud air-gapped, a key component of Google’s Sovereign Cloud solutions, this integration brings Google’s cloud services and artificial intelligence (AI) capabilities together with Elastic’s agentic security operations platform to fully disconnected, highly secure environments.

“Google Distributed Cloud air-gapped is a fully managed solution that empowers organizations to innovate securely while addressing their most stringent sovereignty and regulatory requirements,” said Rohan Grover, senior director, Product at Google Distributed Cloud. “For organizations requiring an additional layer of security, Elastic’s agentic security operations platform brings enhanced data security and data sovereignty capabilities to customers, helping them to combat modern, AI-driven cyber threats.”

Elastic Security unifies Security Information and Event Management (SIEM), Extended Detection and Response (XDR), and native automation with agentic AI embedded across prevention, detection, and response. The platform enables SOC analysts to be faster and more productive while reducing reliance on complex third-party integrations and minimizing tool sprawl.

Together, these capabilities help customers unlock valuable insights while maintaining operational control to meet the strictest digital sovereignty and regulatory requirements.

Within the Google Distributed Cloud air-gapped environments, Elastic Security provides:

• Data sovereignty and compliance: Helps organizations meet the most stringent regulatory requirements by implementing security controls at the application and data layers, including support for log retention and data visibility.
• Simplified security across complex environments: Reduces visibility gaps and tool sprawl by unifying security capabilities into a single platform, lowering operational overhead and complexity.
• Enhanced SOC analyst operations with native AI: Improves analyst efficiency through agentic capabilities, such as Attack Discovery and AI Assistant, leveraging Google’s LLMs in air-gapped environments.

“Security teams in highly regulated, air-gapped environments face growing challenges detecting and responding to AI-driven threats while maintaining strict data sovereignty and compliance requirements,” said Mike Nichols, general manager, Security at Elastic. “This integration brings a unified, agentic security operations platform designed to meet those demands.”

Elastic is already securing highly sensitive environments at scale. In December 2025, Elastic partnered with the Cybersecurity and Infrastructure Security Agency (CISA) and ECS to standardize cybersecurity monitoring across federal agencies. CISA is using Elastic to deliver SIEM-as-a-Service across Federal Civilian Executive Branch Agencies, helping reduce costs associated with data access and retention.

Additional Resources

• Blog: Securing air-gapped environments with Elastic on Google Distributed Cloud
• Get started: Elastic on Google Distributed Cloud air-gapped
• Learn more: about Elastic’s partnership with Google Cloud

Google Distributed Cloud air-gapped with Elastic Security will be generally available to customers in May 2026.

About Elastic

Elastic (NYSE: ESTC), the Search AI Company, integrates its deep expertise in search technology with artificial intelligence to help everyone transform all of their data into answers, actions, and outcomes. Elastic's Search AI Platform — the foundation for its search, observability, and security solutions — is used by thousands of companies, including more than 50% of the Fortune 500. Learn more at elastic.co.

Elastic and associated marks are trademarks or registered trademarks of elasticsearch B.V. and its subsidiaries. All other company and product names may be trademarks of their respective owners.

View source version on businesswire.com: https://www.businesswire.com/news/home/20260423013838/en/

Media Contact
Elastic PR
PR-team@elastic.co

Source: Elastic N.V.