Introducing a Unified Security Operations Platform with Microsoft Sentinel and Defender XDR
⚠️JUST ANNOUNCED⚠️
Today, Microsoft is announcing an exciting private preview that represents the next step in the SOC protection and efficiency journey by bringing together the power of Microsoft Sentinel, Microsoft Defender XDR and Microsoft Security Copilot into a unified security operations platform with one experience, one data model and unified features, all enhanced with more AI, automation, attack disruption and curated recommendations.
📌The move to a unified security operations platform means a fully integrated toolset for defenders to prevent, detect, investigate, and respond to threats across every layer of their digital estate.
📌The platform blends the best of SIEM, XDR, and Threat Intelligence with advanced generative AI. This allows security teams to work more efficiently and effectively, heralding a transformation in security operations.
📌With this announcement Microsoft will deliver:
🔹A Unified Platform. Comprehensive features across SIEM and XDR ensure better workflow, better results, and less work. We are bringing Microsoft Sentinel into the Defender portal, so that customers can now dramatically reduce tool switching, empowering them to build a more context-focused investigation that expedites incident response and stops breaches faster. We are unifying capabilities including single data model, advanced hunting and incident management.
🔹Embedded Security Copilot. To help analysts scale and uplevel their skills, Security Copilot capabilities are integrated into the unified SOC platform and exposed directly in Defender portal experience.
🔹Automatic Attack Disruption. The unified security operations platform is built to support a more automated SOC that better protects an organization’s assets. With AI and automated features across the lifecycle to ensure defenders keep their organizations safer.
🔹Tailored recommendations. The new SOC optimization feature will be available for Microsoft Sentinel customers in private preview, both in the unified SOC platform and in the Azure portal. New data ingestion analysis will provide recommendations to help manage costs, ensure value on all data ingested and better protect companies against threats. Tailored suggestions will be available to customers for things like recommended data log tiers, adding relevant content on top of data or ingesting new sources to protect against relevant threats.
🔗To join the private preview, sign up here: http://aka.ms/MSSecurityCCP
🔗Tech community: Introducing a Unified Security Operations Platform with Microsoft Sentinel and Defender XDR - Microsoft Community Hub
#siem #xdr #microsoft #microsoftsecurity #securitycopilot #cybersecurity #ai #copilot #microsoft365 #MSPartnerUK #msftadvocate #microsoftsentinel