- Quick take: Microsoft has launched its AI-driven Security Copilot, a tool designed to accelerate cybersecurity responses and investigations.
- Core insight: Security Copilot AI, Microsoft’s new innovation, acts as a vital assistant for security teams by offering real-time malware analysis, instant security incident summaries, and the ability to detect unnoticed threats, all while integrating with the 365 Defender XDR platform, thus marking a significant advancement in the realm of cybersecurity.
- What’s next: With its ability to save up to 40% of the time on core security tasks, Security Copilot AI is poised to revolutionize the way security teams operate, making them more efficient and effective in tackling cyber threats.
This week, Microsoft unveiled its latest AI innovation: the Security Copilot AI. Available in early access for a select group of users, this AI-driven assistant echoes the functionalities of ChatGPT but has a distinct focus on cybersecurity.
How does Security Copilot AI work?
Acting as an AI wingman for security teams, Security Copilot AI taps into Microsoft’s vast reservoir of global threat intelligence and the prowess of contemporary large language models. Through its intuitive interactions, it not only fields security-related inquiries but also evolves with every interaction, ensuring tailor-made recommendations for each specific business setting.
Some standout features of Security Copilot AI include real-time malware examinations, concise summaries of security incidents, guided swift responses, and the ability to seamlessly engage with it using simple, natural language.
What’s more, Security Copilot AI boasts an impressive knack for spotting threats that might have previously flown under the radar. It achieves this by meticulously sifting through attack data and highlighting connections between various threat indicators. With such capabilities, we believe that embracing this tool can be a game-changer for defenders in the cybersecurity arena.
In recent revelations by Vasu Jakkal, the Corporate Vice President for Security, Compliance, and Identity at Microsoft, it has come to light that the Security Copilot AI is also tightly knit with Microsoft’s 365 Defender Extended Detection and Response (XDR) platform. This integration amplifies its capabilities, offering those who’ve gained early access an added advantage: free access to Microsoft Defender Threat Intelligence data.
“Security Copilot is already helping our preview customers save up to 40 percent of their time on core security operations tasks with capabilities such as writing complex queries based only on natural language questions and summarizing security incidents,” Jakkal stated.
“Security Copilot can effectively up-skill a security team, regardless of its expertise, save them time, enable them to find what previously they might have missed, and free them to focus on the most impactful projects,” she added.
How to try Security Copilot AI?
For those looking to hop onto the Security Copilot Early Access train, it’s straightforward. Reach out to your designated Microsoft sales liaison and ensure you make a pitstop at their official site to delve deep into the details.
Furthermore, for organizations already in cahoots with Managed Security Service Providers (MSSPs) within the program, the doorway is now open to broaden their Security Copilot horizon. This strategic move empowers MSSPs to jump right into the action, facilitating hands-on collaboration through the Security Copilot platform.
But that’s not all. To bolster user experience and competence, Microsoft lays out a treasure trove of resources. Comprehensive guides are available, shedding light on how to optimally harness Security Copilot AI. From summarizing incidents and scrutinizing scripts to formulating KQL queries and crafting detailed incident reports, they’ve got it all mapped out.
“In security, minutes count. With Security Copilot, defenders can respond to security incidents within minutes instead of hours or days. Security Copilot delivers critical step-by-step guidance and context through a natural language-based investigation experience that accelerates incident investigation and response,” Jakkal remarked during the tool’s initial launch in March.