Key Takeaways:
- Microsoft’s new Purview AI Hub provides IT administrators with valuable insights into the usage of AI applications within their organization.
- Microsoft has added AI compliance assessments and security posture management features to let organizations better safeguard their AI applications.
- Microsoft’s unified security operations platform offers administrators valuable recommendations and suggestions to enhance the investigation and response process.
Microsoft has unveiled a host of new capabilities for its Microsoft Purview and Defender for Cloud solutions. The new features help IT administrators in efficiently managing, protecting, and governing AI applications within enterprise environments.
First off, Microsoft has launched a new Purview AI Hub in public preview. This new service enables IT admins to gain insight into how AI applications are being used within their organization. This capability helps to detect and mitigate data security and data compliance risks within their organization. Customers can access the new AI Hub through the Microsoft Purview portal or the Microsoft Purview compliance portal.
Microsoft Purview has also introduced new AI compliance assessments to help organizations govern AI usage to comply with regulatory policies. The four new Compliance Manager assessment templates are currently available in public preview for commercial customers.
Microsoft Defender for Cloud updates
Microsoft has rolled out new AI security posture management capabilities for Defender for Cloud customers. This release enables customers to identify new AI attack surfaces, strengthen AI security posture, and protect AI apps against security threats. Microsoft says that AI security posture management capabilities are supported across different platforms, including Azure OpenAI Service, Azure Machine Learning, and Amazon Bedrock.
Microsoft has added new threat protection capabilities for AI workloads in Microsoft Defender for Cloud. This new feature offers integration with Azure OpenAI Service, Microsoft threat intelligence, and Azure AI Content Safety prompt shields to deliver real time contextual and actionable security alerts.
Microsoft’s unified security operations platform launches in preview
Microsoft has also announced the public preview of its new unified security operations platform experience. This new service provides recommendations and suggestions to help administrators speed up the investigation and response process.
Additionally, Microsoft has released a couple of new features for its Microsoft Sentinel and Defender XDR solutions, including automation rules, custom detections, and global search. Microsoft Defender XDR is getting new expanded attack disruption capabilities to protect customers against malicious OAuth apps.
Microsoft notes that native operational technology (OT) protection capabilities are now available for Microsoft Defender XDR customers. This new feature allows IT admins to detect and mitigate OT and industrial control system vulnerabilities.
Microsoft Copilot for Security now supports third-party plugins
Last but not least, Microsoft Copilot for Security is getting new integrations with various services, including Azure Firewall, Azure Web Application Firewall, and Microsoft Purview. Copilot for Security has also added support for various third-party plugins, including CIRCL.lu, Crowdsec, CyberArk, and Darktrace. Microsoft plans to add support for more plugins in the next few months.