Key Takeaways:
- Microsoft’s Copilot for Security solution is transitioning from preview to general availability for commercial customers on April 1st.
- Microsoft has added several new features such as customizable prompts, multi-language support, and integrations with external attack surface management tools.
- The introduction of a pay-as-you-go licensing model offers flexibility for organizations to scale usage and costs according to their specific needs and budgets.
Microsoft announced this morning some important updates for its Copilot for Security solution. The new AI assistant that launched in preview last year will become generally available for commercial customers starting on April 1.
Microsoft Copilot for Security is a new AI-powered service that can assist organizations in improving their security posture. Security professionals can use natural language commands to get a summary of vulnerabilities, URLs, or code snippets for more comprehensive analysis. It’s also possible to request incident and alert information from other security products.
“Security and IT professionals can see threats comprehensively, respond in a fraction of the time, reduce alert fatigue, and grow their security skillset. The most consistent comment we get from early users of Copilot for Security is ‘Wow!’ and we agree. We look forward to delivering more Copilot ‘wow’ in the months to come,” said Vasu Jakkal, CVP for Security.
Copilot for Security to add support for custom prompts
Microsoft has introduced a range of new features for its Copilot for Security solution. Among the new capabilities is the ability for security professionals to create and save custom prompts that can help them perform common security workstreams and tasks more efficiently. Additionally, Microsoft has added multi-language support, allowing the tool to process prompts in eight different languages. Furthermore, the company has localized the product interface in 25 languages.
Microsoft Copilot for Security is getting a new integration with Defender External Attack Surface Management (EASM). The new feature makes it easier for administrators to detect and analyze the external attack surface risks of their organization. Microsoft Entra audit logs and diagnostic logs also let security teams investigate individual users and events. Other capabilities include knowledgebase integrations, usage reporting, and third-party integrations from global partners.
Microsoft Copilot for Security is expanding its support with the addition of several new plugins, such as Netskope, Valence Security, Tanium, Cyware, and SGNL. These new partner integrations aim to assist customers in remedying risks and improving their overall security posture.
Copilot for Security pay-as-you-go licensing model
Microsoft has also announced a new pay-as-you-go licensing model that allows organizations to scale their usage and costs based on their specific needs and budget. Commercial customers will be able to pay for the service with their existing Azure subscriptions.
The Copilot for Security capacity is expected to be charged on a monthly basis through a new Security Compute Unit (SCU) at a rate of $4 per hour. Microsoft is still in the process of finalizing the pricing strategy for Copilot for Security, with more details expected to be shared in the coming weeks.
Microsoft Copilot for Security integrates with existing products
Microsoft says that the new Copilot for Security tool will be available in a standalone portal, and it will also be embedded into its existing security products. The unified security operations platform will let security professionals access the Copilot assistant within the Defender portal for SIEM and XDR. Copilot in Microsoft Purview also provides detailed insights and alert summaries.
In Microsoft Entra, the Copilot tool helps security analysts quickly detect and mitigate identity compromise attacks. Copilot in Intune makes it easier to identify the root cause of issues and make informed decisions about endpoint management.
Last but not least, Microsoft has introduced new capabilities in its security products to help IT admins discover, protect, and govern the usage of AI in enterprise environments. The company encourages customers to join its Microsoft Secure Tech Accelerator on April 3 to learn more about how to implement Copilot within their organizations.