Microsoft on Monday announced its entry into the managed security services business. The company’s Microsoft Security Experts program includes three new managed services.
Microsoft Defender Experts for Hunting is for customers who have robust Security Operations Centers but want Microsoft to hunt for threats in endpoint data, Office 365, cloud applications, and identity sources. Microsoft experts will forward any actionable alerts they discover to Security Operations Center (SOC) personnel, along with remediation recommendations. Microsoft experts are also available on demand to answer security questions on everything from incidents to actions by nation-state actors to updates on the latest attack vectors. The expected launch window for the service is summer 2022.
Microsoft Defender Experts for XDR is for customers who need to expand the capacity of their SOC. It extends beyond endpoints to provide detection and response in Microsoft 365 Defender. It will investigate alerts and use automation and human expertise to respond to incidents alongside a local security team. The service preview is expected to roll out in fall 2022.
Microsoft Security Services for the Enterprise combines proactive threat hunting and managed XDR. It leverages comprehensive security information and event management (SIEM) and Microsoft’s XDR stack to protect all cloud environments and platforms. The service uses Microsoft security experts to manage onboarding, day-to-day interactions, practice modernization, and incident response for an organization. The service is sold through a custom statement of work and is available today.
Incident response, modernization services integrated into the Experts program
Microsoft will integrate two existing offerings into the Experts program. Microsoft Security Services for Incident Response provides experts who can be consulted before, during, and after a data breach. Microsoft professionals can help an organization eliminate a malicious actor from its environment, remediate its defenses after a breach, and build resilience against future attacks.
Microsoft Security Services for Modernization is for customers engaged in a security transformation of their organization. It provides consulting services to help customers through all stages of their security journey, including adopting a Zero Trust approach to security.
“[T]Technology alone is not enough to defend against cybercrime,” Vasu Jakkal, Microsoft vice president for security, compliance, identity and management wrote in a company blog post. “Technology is key, but it’s the combination of cutting-edge technology, comprehensive threat intelligence, and highly skilled people that enables a truly effective security posture. »
More difficult for organizations to build security teams
The challenge at this critical time when cybersecurity has reached an inflection point, Jakkal noted, is that organizations face a shortage of cybersecurity talent, with nearly one in three jobs, or 2.5 million, vacancy in the field of security in the United States. This pushes the time to detect a breach to an alarming 287 days. Even when talent is available, access to highly qualified expertise remains a challenge. “It is becoming more difficult every day for organizations to build and maintain a comprehensive security team, let alone a team with the ever-expanding skills needed to meet the range of today’s security requirements” , he wrote.
Copyright © 2022 IDG Communications, Inc.