Microsoft Security Copilot helps security and IT teams to protect organizations at the speed and scale of AI. It is available in a standalone experience or embedded into other Microsoft Security products.
Control access to critical enterprise resources by business role, device type, and location, so policy changes can be made without redesigning the network.
Easily manage access control and segmentation while maintaining compliance.
Create and manage policies in an easy-to-use matrix.
Reduce the need for costly network re-architecture by automating firewall rules and access control list (ACL) administration.
Microsoft Security Copilot is well-suited for environments where security teams face high alert volumes and need rapid triage. It is effective during active threat response, helping us establish timelines and suggest remediation steps quickly. Copilot also excels in executive reporting, generating clear summaries for leadership without much effort. Security Copilot is less effective outside of Microsoft's ecosystem because it doesn't integrate well with other products.
They integrate very well, and they have a lot of options within each product. That's what they do well. They bring together the entire suite of tools, all of the edge. Each product does its thing very well, and to bring it all together utilizing AI, it's very difficult for us to understand what the paved path is to get from A to Z. And that's what they don't do so well.
The reason I said it was better was that when I ran the same query in other AI engines, like OpenAI, I still believe my Microsoft Security Copilot can be further trained to give better results than that. So I think that's something that should be an improvement.
We are not going to stop using M365 and our environment is large enough that there is not enough in-house expertise to handle all aspects of security, even with the help of a MSSP. Security Copilot helps us shore up the knowledge gap and keep our organization's security posture tight.
Anyone can use it. Easy to prompt, also capabilities to become advance with custom agents. It can become custom to your workflow. Many people will have their unique experiences to share and results are generally positive. This is a growth in the product from the effect of community and adoption/usage.
My usage of other products is based on SIEM tools. So far, Microsoft Security Copilot is the only product I've seen that works across multiple technologies/products to provide full visibility into security tooling using AI. I know other vendors are working towards this, but Microsoft has definitely taken a lead.
Helps reduce time spent creating a baseline script.
Some errors get corrected but then get reintroduced while adding functionality.
I noticed that when using this for PowerShell it will sometimes have you install the module in the script without verifying if it is already installed. You must read the script before executing.
