Microsoft has announced the release of its latest tool, Security Copilot, designed to help security analysts respond to threats quickly, make faster decisions during incident response and assist with threat hunting and security reporting.
The tool utilizes OpenAI’s GPT-4 advanced language model and a security-specific model designed by Microsoft’s engineers to empower security teams to manage complex security situations more efficiently. Security Copilot answers security-related questions via a ChatGPT-like interface and continuously learns from these interactions to adapt to each enterprise environment and advise on the best course of action.
Microsoft’s Security Copilot aims to enhance security analysts’ capabilities by summarizing and interpreting threat intelligence to help spot malicious activity more quickly while analyzing web traffic. The tool will also assist in detecting previously overlooked threats by correlating threat activity signals and making the right connections while inspecting attack data.
“Security Copilot will simplify complexity and amplify the capabilities of security teams by summarizing and making sense of threat intelligence, helping defenders see through the noise of web traffic and identify malicious activity,” said Microsoft.
The new tool integrates data and insights from other Microsoft security tools, including Sentinel, Defender, and Intune, to provide custom guidance for each organization. “In security, minutes count. With Security Copilot, defenders can respond to security incidents within minutes instead of hours or days,” said Microsoft Security corporate vice president Vasu Jakkal.
Security Copilot is currently available in private preview, and Microsoft has not yet shared details regarding its public rollout. The company’s latest announcement follows the introduction of Microsoft 365 Copilot two weeks ago, also powered by GPT-4 and designed to boost productivity across M365 apps, from Word, Excel, PowerPoint, Outlook, and Teams to Microsoft Viva and Power Platform.
As OpenAI explained when launching GPT-4, the language model exhibits human-level performance on various professional and academic benchmarks, making it an ideal tool for analyzing and responding to security threats quickly and efficiently. “Security Copilot delivers critical step-by-step guidance and context through a natural language-based investigation experience that accelerates incident investigation and response,” said Jakkal.
With Security Copilot, Microsoft aims to help security teams catch what others miss by correlating and summarizing data on attacks, prioritizing incidents, and recommending the best course of action to swiftly remediate diverse threats in time. By providing custom guidance and insights for each organization, Security Copilot will simplify complexity and amplify the capabilities of security teams.