Microsoft Azure is getting a new service named Azure Sentinel. The tool is designed to pull in vast amounts of data, including from sources such as Office 365 and third-party solutions, with the aim of identifying cybersecurity threats with the help of AI.
Once the process is complete, you’ll be able to review these threats displayed in a dashboard. According to Ann Johnson, Microsoft Corporate Vice President for Cybersecurity, the tool should help reduce alert fatigue among cybersecurity professionals.
Allegedly, Azure Sentinel was designed to support open standards such as the Common Event Format. You’ll also be able to connect it to third-party solutions such as Symantec, Check Point and Cisco.
If you’re interested in a preview, you can log into Microsoft Azure and get a glimpse into its workings, completely free of charge. At this point in time, details regarding future pricing are still unknown. However, a Microsoft spokesperson hinted at them being aligned to general Azure pricing.
The second tool announced by the company is called Microsoft Threat Experts, a new service within Microsoft Defender Advanced Threat Protection. It consists of two parts.
The first one is a managed threat hunting service. It works like this: Microsoft will sift through the customers’ data in an anonymous fashion and provide threat notifications. The second one is an “ask a threat expert” button that you’ll see displayed in the ATP console that allows you to do just what the name suggests.
Microsoft Threat Experts enters public preview starting today.