Item: Microsoft Security Copilot
Rating: 8
Author: Verified User

Overall Satisfaction with Microsoft Security Copilot

Use Cases and Deployment Scope

Microsoft Security Copilot helps in writing small code snippets, mostly python and powershell , used for automation.
it also helps a lot in generating recommendation for security best practices to help convey the same massage to customers.

in incident response , I provide the symptoms I can see and ask Microsoft Security Copilot to give me multiple scenarios where can I chose which is most likely the one happening.

Pros and Cons

Pros

coding and scripting
general in depth search
security recommendations

Cons

underrating long code requirements , like long scripts with multiple actions
non very common programing languages like power DAX
regex

Return on Investment

reduce the need to ask simple questions to other team members
can reduce the amount of analysts needed in certain cases
reduce the effort and time from L1s

Usability

code UI and UX , main issue is slowness in responses for some complex questions. it can lose credibility if it was slow for simple qustion.
wish more color options for UI is provided.
also more options for different overly and windowed modes.
having it in separate window can be beneficial as all analysts works with multiple screens.

Alternatives Considered

ChatGPT

while answers from ChatGPT can be better some times , having Microsoft Security Copilot integrated directly in your stack is something completely different , it has awareness of you environment , EDR and XDR , security incidents in Microsoft sentinel , your entry ID enivrnment and more.

some other vendors has AI integrated into SIEM but not directly into the whole stack.

Key Insights

Do you think Microsoft Security Copilot delivers good value for the price?

Not sure

Are you happy with Microsoft Security Copilot's feature set?

Yes

Did Microsoft Security Copilot live up to sales and marketing promises?

I wasn't involved with the selection/purchase process

Did implementation of Microsoft Security Copilot go as expected?

I wasn't involved with the implementation phase

Would you buy Microsoft Security Copilot again?

Yes

Other Software Used

ChatGPT, Microsoft Power BI, FortiSOAR

Likelihood to Recommend

any scenario where the person understand enough about the question and the expected answer from Microsoft Security Copilot , otherwise using it could be misleading as the person wouldn't know if the generated answer matches reality or it didn't.

incident response and coding is a good example , running code generated by Microsoft Security Copilot directly on prod can be very harmless on the other hand.

Comments

Please log in to join the conversation

Smarter SOC Operations with Microsoft Security Copilot