TrendAI™, the enterprise AI security business unit of Trend Micro Incorporated announced the native integration of Anthropic’s Claude Compliance API into its core TrendAI Vision One™ platform.
The integration expands an organization’s capability to centralize the visibility and governance of corporate generative AI usage. By funneling out-of-band Claude telemetry directly into enterprise security workflows, defenders can correlate AI interactions with broader attack surface telemetry to achieve proactive exposure management and real-time risk mitigation.
The Out-of-Band Visibility Challenge
With the rapid adoption of Claude Enterprise across corporate environments, security and IT compliance teams face a significant visibility gap regarding employee interaction inside large language models (LLMs). Unmonitored prompt entries frequently introduce severe data leakage liabilities, exposing corporate networks to intellectual property loss, regulatory violations, and prompt-based system exploits.
The integration of the Claude Compliance API directly addresses this challenge, allowing enterprise administrators to securely retrieve usage data-including file uploads, conversational metadata, and activity events-for auditing, observation, and compliance tracking. TrendAI bridges this telemetry into standard Security Operations Center (SOC) workflows through two purpose-built collectors designed to meet differing corporate infrastructure and data residency mandates:
Also Read: Comcast Business Launches SecurityEdge Preferred Nationwide, Embedding Network-Native Cyber Defense
Self-Hosted Local Collector: Running internally within the customer’s infrastructure, this module pulls Claude logs natively via AI Guard™ inside the Trend Vision One environment. Designed for highly regulated industries, the architecture ensures that both the compliance access keys and conversation content remain within the organization’s local boundary, fulfilling strict data residency laws.
SIEM-Based Cloud Collector: This mechanism streams Claude telemetry directly into the cloud-native TrendAI Agentic SIEM tool, feeding the platform’s central Extended Detection and Response (XDR) correlation engine.
Granular Exposure and Threat Detection Architecture
By activating these dedicated collectors, enterprise security operations teams can execute advanced risk tracking across multiple layers:
Sensitive Data Exposure Mapping: Automatically detecting the unauthorized sharing of personally identifiable information (PII), protected health information (PHI), corporate credentials, source code repositories, and restricted intellectual property, while flagging high-risk users or projects.
Prompt-Based Attack Analysis: Identifying policy violations, harmful conversational content, jailbreak patterns, and prompt injection techniques designed to bypass model safety barriers.
Extended XDR Correlation: Aligning out-of-band AI logs with security alerts streaming from endpoints, corporate identities, networks, cloud environments, and corporate email systems to detect anomalies, insider threats, and malicious lateral movements.
“AI is now part of daily work. Security leaders want to secure and govern AI technology as part of their overall attack surface-not as siloed IT. This integration gives them exactly that: centralized visibility, detection, and risk mitigation for Claude usage, within existing security operations. It reflects TrendAI™’s broader approach: giving organizations visibility of and protection for the entire attack surface, including AI, from a single platform. That platform’s foundation is TrendAI™’s global threat intelligence research, coming from a team that is widely recognized among the world’s foremost authorities in vulnerability discovery and adversarial tracking,” said Rachel Jin, Chief Platform and Business Officer, Head of TrendAI.