Increase Security effectiveness with Security Copilot.
October 06, 2025
Increase Security effectiveness with Security Copilot.
Score 9 out of 10
Vetted Review
Verified User
Overall Satisfaction with Microsoft Security Copilot
We are an E5 customer and utilize multiple products within the Microsoft security suite (Sentinel for SIEM, Defender for Endpoint, Purview, Entra Identity Governance, Defender for Identity, etc...). Microsoft Security Copilot is extremely useful by allowing our Security Operations team to use natural language prompts to get data on activity within our environments. This is performed both proactively and during incident response. The ability to return results from various sources saves analysts time and generates efficiencies for our Security team.
Pros
- Strong integrations with Microsoft technologies.
- Provides accurate and detailed responses.
- Greatly enhances capabilities of Security team.
Cons
- Currently requires prompting to be performed within the Security application consoles. It would be beneficial to have an MCP server, allowing custom agents to interact with Security Copilot.
- Enhanced capabilities for incident response.
- Aides analysts in building custom KQL queries.
- Increased speed when actioning threat intelligence for threat hunting.
My usage of other products is based on SIEM tools. So far, Microsoft Security Copilot is the only product I've seen that works across multiple technologies/products to provide full visibility into security tooling using AI. I know other vendors are working towards this, but Microsoft has definitely taken a lead.
Do you think Microsoft Security Copilot delivers good value for the price?
Yes
Are you happy with Microsoft Security Copilot's feature set?
Yes
Did Microsoft Security Copilot live up to sales and marketing promises?
Yes
Did implementation of Microsoft Security Copilot go as expected?
Yes
Would you buy Microsoft Security Copilot again?
Yes
Comments
Please log in to join the conversation