With the goal of making cloud operations more reliable, Microsoft has announced new capabilities in artificial intelligence (AI) and automation.
From now on, the Microsoft Threat Protection tool will do the heavy work, by proactively monitoring the interactions between users, email, applications and endpoint.
By using AI and automation, collect alerts and take action, () rule out the irrelevant and intensify signals that may have gone unnoticed, which frees analysts to focus on incidents that need your attention, the company said.
With respect to the endpoint, the Microsoft Defender Advanced Threat Protection (ATP) software on which Microsoft Threat Protection is based allows preventive protection, post-violation detection and automated investigation. Today, it is available for Linux and the Redmond-based company is studying its implementation on iOS and Android.
The firm recalled that as the first security and information event management system (SIEM) with fusion artificial intelligence technology, Azure Sentinel detected almost 50 billion (50,000 million) of suspicious signals in December 2019, all of them impossible to analyze manually.
In this regard, Microsoft said it was the first large company in the cloud to adopt the reality of the hybrid and multi-cloud company, with more than 60 percent of the companies using two or more cloud platforms.
To further ensure the status of our customers' various clouds, we announce the general availability of the Azure Sentinel connector for IoT and the ability to import AWS CloudTrail logs into Azure Sentinel at no additional cost between February 24, 2020 through 30 June 2020, announced.
With internal risks in sight, such as employee IP theft until harassment, Microsoft finally announced the first integrated internal risk management solution, born in the cloud,
This is Insider Risk Management in Microsoft 365, which allows customers to solve the problem without agents to implement or data intakes to configure. Its availability was planned for the next few days.
The AI ??capabilities integrated into Microsoft security solutions are trained in 8 trillion (8 billion) daily threat signals and the knowledge of 3,500 security experts. Custom algorithms and machine learning models make and learn billions of queries every day. As a result, Microsoft security solutions help identify and respond to threats 50 percent faster than was possible only 12 months ago. Today, Microsoft security solutions can automate 97 percent of the tasks that defenders' time occupied just two years ago, said the corporate vice president of the Microsoft Cyber ??Security Solutions Group, Ann Johnson.