Microsoft Security Copilot Now Available in Surface Management Portal
Microsoft has officially launched its Security Copilot, an advanced AI-driven tool designed specifically for enhancing cybersecurity through improved threat detection and response capabilities. This new feature is accessible to IT professionals via the Surface Management Portal (SMP), a specialized workspace within the Intune admin center dedicated to managing Surface device data and insights.
As part of this rollout, users can now leverage the capabilities of generative AI, significantly streamlining workflows in Surface device management. This advancement builds on the previous introduction of Security Copilot for Entra, which was announced concurrently. Key areas where Security Copilot adds value include:
- Identity Insights and Investigation: Enhancing understanding of user identities and access.
- Access Governance and Review: Facilitating oversight of user permissions.
- App and Resource Protection: Securing applications and network resources effectively.
- Monitoring and Posture Management: Assuring compliance and security posture across the board.
Revolutionizing Device Management
The integration of Security Copilot into SMP introduces a conversational AI interface that empowers administrators with seamless data access and actionable insights. This allows IT professionals to pose questions directly to the system, such as:
- “What devices are currently non-compliant and out of warranty?”
- “Can you list devices with TPM disabled and BitLocker turned off?”
- “How can we estimate carbon emissions from our Surface device inventory?”
This feature brings numerous actionable benefits, including expedited resolution times, reduced manual work, custom insights tailored to organizational needs, and an overall enhancement of the security posture. According to feedback from admins who participated in the public preview starting in February, the tool has notably sharpened decision-making processes.
Expert Insights
Reflecting on the synergy between Security Copilot and SMP, Microsoft’s Rohan Brooker highlighted the comprehensive integration of Microsoft Surface hardware, Windows firmware, Intune, and the expertise of security engineers. He stated:
“Security Copilot in the Surface Management Portal brings the integrated value of Microsoft Surface hardware, Windows firmware, Intune, and Security engineers operating as one team. Together, they enable signals to move seamlessly from Surface devices into Intune and Copilot’s language model—giving admins richer, real-time context with the tools they already use.”
Getting Started with Security Copilot
For those interested in leveraging this innovative feature, it is necessary to acquire Security Compute Units (SCUs) and activate the SMP plugin in Security Copilot. Though this feature has transitioned out of beta, Microsoft is still eager to gather user feedback. IT professionals can use the feedback button in the portal to share suggestions and improvements.
For further details, you can check out the original announcement here.
Leave a Reply