In preparation for showing off their new services at the RSA Conference (A security event that is conducted around the globe, connecting industry leaders and highly relevant information), Microsoft has announced today their release of two new enterprise security tools; Microsoft Azure Sentinel and Microsoft Threat Experts. Azure Sentinel is being considered a "world-first" in cloud security powered by AI-powered cloud security, arguing that AI could prove to be pivotal in helping firms of all sizes help protect themselves from outside threats.
Microsoft's official description of Microsoft Azure Sentinel:
"See and stop threats before they cause harm, with SIEM (Security Information and Event Management) reinvented for a modern world. Azure Sentinel is your birds-eye view across the enterprise. Put the cloud and large-scale intelligence from decades of Microsoft security experience to work. Make your threat detection and response smarter and faster with artificial intelligence (AI). Eliminate security infrastructure setup and maintenance, and elastically scale to meet your security needs - while reducing IT costs."
Azure Sentinel plans to provide a single dashboard for security threats and attacks, resulting in more straightforward use and management, as well as cutting down on alert fatigue whilst still providing a much more in-depth insight into the most recent risks. The security tool can process and analyse large amounts of data when aiming to spot any upcoming threats, saving on organisations' manpower costs, whilst also improving the efficiency for scanning for potential threats. Not only can Azure Sentinel provide the above, but it can also analyse data from Office 365, and then combine it with other data in the system for analysis with no extra hidden costs. This ability was created with the aim to stop phishing scams and document-based malware affecting organisations. The 'other data' will come from research conducted by Microsoft and will cover aspects such as; human adversary intrusions, hands-on-keyboard attacks, and will even go as far as advanced attacks like 'cyberespionage', in the aim to help companies.
Microsoft's official description of Microsoft Threat Experts:
"With Microsoft Threat Experts, SOCs can further improve defences by tapping into our world-class security analysts. These experts deeply understand the security landscape and attacker techniques, have intimate knowledge of operating systems and know how to get the most out of Windows Defender ATP's features and capabilities. Our experience in battling attackers across more than a billion devices worldwide, together with the artificial intelligence (AI) necessary to harness such unprecedented optics and scale, makes our expert team unique and unmatched in the industry."
With cyber-attacks constantly becoming an increasing threat to businesses every day, Microsoft has released these two new security tools in the aim to make cyber-security for organisations more straightforward and modern, but still in-depth. A Microsoft blog post announced the news saying, "In today's climate of cybersecurity challenges, organisations must fend off relentless attacks even as they go through their journey of building and maturing their security capabilities," "Customers and Microsoft can build upon each other's expertise, intelligence, and insight through this partnerships, forming stronger defence against adversaries."