TrustRadius: an HG Insights company

Microsoft Security Copilot

Score8.4 out of 10

35 Reviews and Ratings

What is Microsoft Security Copilot?

Microsoft Security Copilot helps security and IT teams to protect organizations at the speed and scale of AI. It is available in a standalone experience or embedded into other Microsoft Security products.

Read more details.

Media

Screenshot of Defender USX guided response
Screenshot of Defender USX incident summary
Screenshot of the homepage - capabilities menu
Screenshot of the homepage
Screenshot of MDTI threat intel
Screenshot of session - incident summary

1 / 6

Screenshot of Defender USX guided response

Pros

  • Accelerating incident investigation and response workflows
  • Automating routine security tasks and alert triage
  • AI-powered threat analysis and signal correlation across data sources

Cons

  • High cost and lack of transparent pricing for add-ons
  • Complex initial setup and steep learning curve for new users
  • Inconsistent AI accuracy and potential for false positives in recommendations

Microsoft Security Copilot Review

Use Cases and Deployment Scope

So we use it to react more quickly to security alerts and issues. Filter through unnecessary alerts, resolve security alerts or issues that come up much quicker. So it does most of the level one triage, and we can focus on level two and level three.

Pros

  • Save money, save time, increase security, and SOC operations. Those are the things that it does well.

Cons

  • Takes a little longer than some other AI tools to configure. And you need quite a bit of knowledge of the Microsoft Stack, which has its cons, but we're a Microsoft partner. But that's about it.

Return on Investment

  • Increased revenue
  • Increased efficiency
  • Reduced overhead

Usability

MS Security Copilot Review.

Use Cases and Deployment Scope

Security Copilot helps our security teams manage overwhelming volumes of alerts by summarizing and correlating data across Microsoft Defender, Sentinel, and other platforms. We use it for incident investigation, threat hunting, posture assessments, and executive reporting. It also allows us to offload some tasks to more junior members of our team.

Pros

  • Incident investigation.
  • Threat hunting.
  • Reporting

Cons

  • We would like more integrations with third-party tools.
  • There are situations where Copilot does not execute the remediation steps in an automation correctly.

Return on Investment

  • Shift workload to more junior analysts on our team.
  • Faster response times to incidents and alerts.

Usability

Microsoft Security Copilot your assistant to navigate the future.

Use Cases and Deployment Scope

Drafting Documents, Slide Decks or sourcing information from meetings is important. I use Microsoft Security Copilot truly as a tool assisted gatherer. It’s easy to lose track on coordination and team efforts. By incorporating tools like Microsoft Security Copilot you can reduce time to obtain info and help others get unblocked by sharing resources.

Pros

  • Analysis of Code
  • Summarizing key points
  • Transcribing videos
  • Generate images
  • Translate

Cons

  • Quality of contextual information
  • Depth of conversation
  • Bias of information

Return on Investment

  • Time spent on projects
  • Reaction in engineering hours
  • Improvement in creativity

Usability

Alternatives Considered

ChatGPT and Google Gemini

Other Software Used

ChatGPT, Azure OpenAI Service

My experience with a Microsoft Security Copilot

Use Cases and Deployment Scope

I primarily use it to generate risk narratives that are clear enough for leadership but detailed enough for auditors. It nails that sweet spot well. A lot of my job circles around coordinating engineering and compliance teams, which means I have to do multiple scans now every now and again - and that's what the Microsoft Security Copilot is for.

Pros

  • It cuts down the back and forth chases with the security team
  • Grouping patterns and highlighting what matters the most to me

Cons

  • Once in a while it will be overconfident with inaccurate explanations
  • At the moment, its context window is quite limited

Return on Investment

  • It cut down the security clarification cycle from around 5 days to just a few hours
  • There has been a clear improvement in how quickly we detect and frame risks for leadership

Usability

Other Software Used

monday.com

Review Copilot

Use Cases and Deployment Scope

We use it mostly to summarize incidents and to review logs in a way that we can get quick answers from. This allows us to easily condense time spend looking into issues and have immediate actionable steps.

Pros

  • Summarize logs
  • Provide feedback
  • Provide steps and reccommendations

Cons

  • Permissions could be more granular
  • Could use more tutorials for use cases
  • Sometimes it looks into confidential information

Return on Investment

  • Very expensive to get into
  • Allowed us to save technician time by having the copilot to do the tedious work
  • A lot of upfront cost for it and for training on how to use it

Usability

Alternatives Considered

Google Gemini and ChatGPT

Other Software Used

Google Gemini, ChatGPT