Microsoft launched a new offering of managed security services. Microsoft Security Experts allows organizations fully or partially outsource threat hunting, XDR and SIEM.
Microsoft’s current portfolio is twofold. Firstly, the organization develops technology for preventing, finding and tackling threats. Solutions like Defender can be implemented on their own. Secondly, the organization provides services whereby customers are protected by external specialists, also known as managed security. From now on, all managed security services will be included in Microsoft Security Experts, a new portfolio. Simultaneously, the tech giant announced three new services, which we’ll cover down the line.
Microsoft Security Experts
The new portfolio is a statement. According to Microsoft, an effective security policy depends on people, technology and threat information. “Technology is critical, but it’s the combination of leading technologies, comprehensive threat intelligence, and highly skilled people that makes for a truly effective security posture”, Microsoft shared in the announcement.
Despite the vision, Microsoft isn’t planning on changing its current product range. Solutions like Microsoft Defender for Endpoint, Cloud and Office 365 will continue to be available as standalone products. On the other hand, Microsoft is clearly increasing its focus on managed security, as made evident by the announcement of three new services.
- Microsoft Defender Experts for Hunting is an extension of Microsoft Defender. The new service allows Microsoft Defender users to have their endpoint data monitored for specific threats by external specialists. The specialists report on threats and advise on solutions. Customers can ask questions about specific ransomware groups, incidents and malware forms. Microsoft will launch the service in the coming summer.
- Microsoft Defender Experts for XDR is an extension of Microsoft 365 Defender. In this case, Microsoft specialists monitor beyond endpoints. The entire IT environment is searched and protected. External specialists help remediate attacks. The availability is unknown. Microsoft will offer a preview starting this autumn.
- Microsoft Security Services for Enterprise is the most extensive option. Microsoft secures complete multi-cloud environments with threat hunting, managed XDR, and security information and event management (SIEM). Specialists help organizations with onboarding, daily workflows and incident response. The service is already available on-demand.
Each service is made possible by partners. Microsoft’s partner channel (Intelligence Security Association) has more than 100 service providers. They provide the manpower. Microsoft announced that the partner channel will be polished up in the coming period. XDR partners will receive new co-sell and co-marketing options. In addition, Microsoft is currently working on several APIs that open up threat information to partners’ systems. Further details will be revealed during Microsoft Inspire in July.