Microsoft launches new security AI agents to help overworked cyber professionals

News
By published

The new AI tools will come as a part of a preview in April to help IT teams deal with high-volume security threats

Microsoft Copilot logo and branding pictured on a smartphone screen.
(Image credit: Getty Images)

Microsoft is expanding its Security Copilot service with new AI agents to help overworked IT teams deal with surging security threats.

The company is adding 11 agents in total – six developed by Microsoft and five built by its partners – to the Security Copilot as part of an April preview.

The generative AI-powered Security Copilot was launched by Microsoft a year ago as a $4 per hour consumption model (pay-as-you-use). The service was designed to help to improve security outcomes at machine speed and scale, with natural language models.

It can be used as both a standalone experience or in tandem with other products in the Microsoft Security portfolio, such as Microsoft Defender XDR, Microsoft Sentinel, Microsoft Intune, Microsoft Entra, and other third-party services like Red Canary and Jamf.

All the new agents will be focused on helping teams tackle the ever increasing threats they face. Microsoft said they are all purpose-built for security and that they can learn from feedback and adapt to workloads.

What’s more, all 11 are aligned to the tech giant’s Zero Trust framework.

“This is just the beginning; our security AI research is pushing the boundaries of innovation, and we are eager to continuously bring even greater value to our customers at the speed of AI,” Alexander Stojanovic, VP of Microsoft Security AI Applied Research, wrote in a blog post.

The agents will add security ‘Triages’ onto different products, such as a ‘Phishing Triage’ in Microsoft Defender with alerts and simplified explanations for the decisions it makes.

Agents will also offer optimization in different products, such as the ‘Conditional Access Optimization Agent’ which will be deployed in Microsoft Entra.

This, the tech giant revealed, will monitor new users or apps that are not covered by existing policies, and help to identify the need for updates or security gaps they might create – the agent will recommend quick fixes.

Other agents will deal with security information, such as the Threat Intelligence Briefing agent and the Vulnerability Remediation agent.

MORE FROM ITPRO

Bobby Hellard
Bobby Hellard

Bobby Hellard is ITPro's Reviews Editor and has worked on CloudPro and ChannelPro since 2018. In his time at ITPro, Bobby has covered stories for all the major technology companies, such as Apple, Microsoft, Amazon and Facebook, and regularly attends industry-leading events such as AWS Re:Invent and Google Cloud Next.

Bobby mainly covers hardware reviews, but you will also recognize him as the face of many of our video reviews of laptops and smartphones.

More about artificial intelligence
Klarna CEO Sebastian Siemiatkowski pictured while speaking at the Symposium Stockholm 'Brilliant Minds' technology and music conference in Stockholm, Sweden.

“No, I don't think it is the end of Salesforce”: Klarna CEO clarifies why it stopped using Salesforce – and why he doesn’t think other companies will follow suit

Agentic AI concept image showing digitized human brain with a microprocessor placed in the center.

‘DIY’ agent platforms are big tech’s latest gambit to drive AI adoption
Malware Detected Warning Screen with abstract binary code 3d digital concept

Fake file converter tools are on the rise – here’s what you need to know
See more latest