Resources
Documentation links, use case templates, integration guides, and best practices quick reference.
Cybersecurity Workflows
Additional Use Cases
Incident response automation
IAM access reviews
Cloud infrastructure audits
Compliance reporting (ISO 27001, SOC 2, PCI DSS)
Log analysis & anomaly detection
Integrations relevant to Deloitte's stack (must be pre-provisioned before the pilot session):
Prompt Engineering
Role specification
State the agent's role explicitly: "You are a senior security analyst reviewingβ¦"
Output format
Define expected output format explicitly β tables, JSON, structured reports. The model follows them well.
Constraints
Specify boundaries: "Only report Critical and High severity findings" or "Choose the highest-risk category."
Confidence levels
Add HIGH / MEDIUM / LOW confidence to outputs β makes findings actionable (auto-fix vs. manual review).
Knowledge Store Tips
- Attach only files relevant to the agent's task
- Prefer structured formats (Markdown, CSV, JSON) over unstructured text or screenshots
- Keep reference files current with a regular review cadence
- For large documents, consider breaking them into focused chunks by topic
Agent Construction
- Give each step one job. If a step analyzes, prioritizes, writes a report, and files a ticket β it's doing too much.
- Name steps descriptively. "Fetch Open Vulnerabilities" is more maintainable than "Step 1".
- Use the right step type. LLM Steps for reasoning, API Action Steps for deterministic reads/writes, Action Steps for integrated product actions.
- Test iteratively. Build one step, test it, then add the next. Don't try to build the entire agent at once.
- Start simple. A 2-step agent that works is better than a 10-step agent that doesn't.
Kindo Account Team
Ron Williams Β· Tony Wong Β· Bryan Vann Β· Sean Walker Β· Joana Dias
Deloitte Coordinators
Smriti Kewlani Β· Manoj (pilot scheduling)