Microsoft Incident Response Retainer Service is Now Generally Available


Microsoft has introduced a new Incident Response Retainer service for enterprise customers. The new service provides flexible pre-paid hours for specialized incident response and recovery before, during, and after a security attack.

Microsoft Incident Response is a process that enables organizations to identify and respond to security incidents in their network. It aims to streamline incident management with various tools and technologies, including security information and event management (SIEM).

Microsoft Incident Response Retainer offers several AI-powered investigation capabilities. These include malware analysis support, threat investigation, log analysis, attacker containment, and digital forensics. Moreover, an assigned security delivery manager will be responsible for proactively scheduling services throughout the year.

Additionally, Microsoft Incident Response Retainer assists in the recovery and remediation of critical systems. It enables IT admins to restore full administrative control and improve security posture to prevent security breaches.

“It’s contracted on an annual basis and the retainer hours can be used in any combination of proactive and reactive services. If additional hours are needed, customers can easily uplift extra hours as requirements change. This service provides our fastest response times and direct access to our global team of experts. It was designed to work with cyber insurance vendors and has flexible delivery options that meet the unique needs of each customer,” Microsoft explained.

Microsoft Incident Response Retainer provides quarterly threat briefings

Microsoft incident response experts help customers to mitigate an active security incident. The service also delivers quarterly threat intelligence briefings with insights on the latest threats and analysis/validation of security alerts.

Finally, Microsoft has announced a new partnership with an incident response provider Kivu. The companies plan to leverage existing relationships with cyber insurance providers to better respond to security attacks. We invite you to check out the official website to learn more about the Microsoft Incident Response Retainer.