IRONSCALES AI Email Security API
IRONSCALES REST API for AI-driven email security platform combining threat protection and automated incident response. Enables AI agents to retrieve email threat incident data and classification, handle automated threat remediation and email quarantine workflows, access IRONSCALES Themis AI model analysis data, retrieve company-level threat reporting and dashboard data, manage incident assignment and SOC workflow automation, handle policy configuration and exception management, access email attack simulation campaign data, retrieve threat intelligence and IOC data from IRONSCALES Community, manage mitigation action tracking and resolution workflows, and integrate IRONSCALES incident data with SIEM, SOAR, and ticketing platforms.
Score Breakdown
⚙ Agent Friendliness
🔒 Security
AI email security. SOC2, GDPR. JWT token. US/EU. Email threat incident data.
⚡ Reliability
Best When
An enterprise using IRONSCALES wants AI agents to automate email threat triage, remediation workflows, Themis AI analysis access, community threat intelligence, and SOAR/ITSM integration.
Avoid When
SECURITY RISK: Automated email quarantine based on AI classification must validate false positive rate before bulk remediation. Human analyst review required for high-profile or executive account threat detections before automated response.
Use Cases
- • Triaging email threat incidents from SOC automation agents
- • Automating phishing email remediation from incident response agents
- • Accessing email threat analytics from security reporting agents
- • Integrating IRONSCALES incidents with ServiceNow from ITSM agents
Not For
- • Email gateway filtering without behavioral AI detection focus
- • Security awareness training without email security incident context
- • Consumer email security without SOC integration capabilities
Interface
Authentication
IRONSCALES uses JWT token authentication. Admin-generated API tokens. REST API documentation in help center. Webhooks for incident creation and status change events. Splunk, ServiceNow, and Jira integrations. Microsoft 365 and Google Workspace integration for mailbox access.
Pricing
Atlanta, Georgia (HQ moved from Tel Aviv). Founded 2014. AI email security with human-AI collaboration model. Raised $105M. Themis AI for threat classification. Federation of SOC analysts for collective defense. Microsoft 365 and Google Workspace native. Competes with Abnormal Security and Mimecast for AI email security.
Agent Metadata
Known Gotchas
- ⚠ SECURITY RISK: Bulk email remediation automation should validate AI confidence score before quarantine — false positives affect executive communications
- ⚠ JWT token management — tokens have expiry; agent must handle refresh or regeneration
- ⚠ Documentation in help center — API docs not freely accessible; requires customer portal login
- ⚠ No public MCP server — JWT token REST API via help center
- ⚠ Community threat intelligence — IRONSCALES federation data is crowdsourced; verify data quality for critical decisions
- ⚠ Webhook reliability — implement idempotent incident handling for potential duplicate webhook delivery
Alternatives
Full Evaluation Report
Comprehensive deep-dive: security analysis, reliability audit, agent experience review, cost modeling, competitive positioning, and improvement roadmap for IRONSCALES AI Email Security API.
AI-powered analysis · PDF + markdown · Delivered within 30 minutes
Package Brief
Quick verdict, integration guide, cost projections, gotchas with workarounds, and alternatives comparison.
Delivered within 10 minutes
Score Monitoring
Get alerted when this package's AF, security, or reliability scores change significantly. Stay ahead of regressions.
Continuous monitoring
Scores are editorial opinions as of 2026-03-07.