A ZDNet article yesterday brought to my attention today just how far Microsoft has moved the needle to becoming a cybersecurity services provider. Increasingly, cloud providers are entering this market and Microsoft has started off by providing the most important services to cloud customers. Cloud has become a ubiquitous infrastructure and buyers are demanding cloud security monitoring and alerting. In fact, 40% of respondents to a recent ESG cybersecurity services study state that these services are must-haves from managed security services providers (MSSPs). In this instance, Microsoft can be considered an MSSP as it offers many of the services in this market.
Microsoft is making great strides in adding cybersecurity services to its arsenal. In April, it introduced the managed threat hunting service called Threat Experts on Demand as part of the Microsoft Defender Advanced Threat Protection (ATP) service for customers with subscriptions such as Windows 10 Enterprise E5 and the Microsoft 365 bundle, giving enterprise customers access to top Microsoft security experts when they need help working through a tough threat. Last September, the company launched its Azure Sentinel cloud-SIEM, enabling data collection across the enterprise and detection of unknown and advanced threats utilizing Microsoft’s threat intelligence telemetry, which is significant in quantity and is made actionable by the company’s artificial intelligence (AI) and machine learning (ML) and threat hunting capabilities. These ingredients enable faster response to incidents, but not all enterprises have the resources to dig deep into these tools on their own. Now with Threat Experts on Demand, Microsoft assists the enterprise to make sense of the most challenging threats.