News

Microsoft Threat Protection Bundles Multiple Enterprise Security Solutions

Microsoft Threat Protection, a newly assembled bundle of security solutions for enterprise organizations, was announced this week as part of the ongoing Microsoft Ignite event.

The product doesn't contain any new security solutions and that's a deliberate strategy taken by Microsoft, according to Adam Hall, director of security product marketing at Microsoft, during a Tuesday Ignite session. The idea behind Microsoft Threat Protection is to provide optimal security with minimal complexity for enterprises.

Hall said that organizations should be operating in a world where you assume a security breach has occurred, and assume that you've been attacked. Moreover, anything can serve as an attack vector, from smartphones to laptops to Internet of Things (IoT) sensors. Microsoft's approach is to stay one step ahead by correlating collected security information, namely "6.5 trillion signals per day," which is done using Microsoft Graph information collected from consumers and businesses using Microsoft products. Microsoft additionally uses the expertise of "3,500+ in-house security specialists" to analyze threats, according to Microsoft's announcement.

Microsoft Threat Protection includes multiple security solutions that Microsoft also sells separately, but they are all tied together through the Microsoft 365 Security Center, a single dashboard that provides a graphical overview of alerts, top threats, and the devices and accounts that could be at risk. The dashboard also includes Office 365 Secure Score, a service that shows Azure services being used, along with an overall assessment of an organization's security state. There are also e-mail and phishing protections displayed in the dashboard.

There are five broad categories of security protections addressed by the Microsoft Threat Protection product. The list below, which comes from Microsoft's announcement, illustrates the security services included in the product:

During the Ignite session, speakers also typically mentioned that Attack Simulator is part of the solution. It's a tool that lets IT pros send phishing e-mails to end users to check their susceptibilities to those avenues of attack.

Microsoft's announcement promised that "customers who leverage all the services in Microsoft Threat Protection will enjoy a fully integrated, end-to-end solution, securing their enterprise, across the entire attack surface."

Possibly, since no new security products are involved, Microsoft Threat Protection may be available for enterprises to purchase and use today. It's not clear from Microsoft's announcement if that's the case, as the licensing wasn't described or mentioned.

About the Author

Kurt Mackie is senior news producer for 1105 Media's Converge360 group.

Featured

  • How To Use .CSV Files with PowerShell, Part 1

    When it comes to bulk administration, few things are handier than .CSV files. In this two-part series, Brien demos his top techniques for working with .CSV files in PowerShell. First up: How to create a .CSV file.

  • SameSite Cookie Changes Rolled Back Until Summer

    The Chromium Project announced on Friday that it's delaying enforcement of SameSite cookie changes, and is temporarily rolling back those changes, because of the COVID-19 turmoil.

  • Basic Authentication Extended to 2H 2021 for Exchange Online Users

    Microsoft is now planning to disable Basic Authentication use with its Exchange Online service sometime in the "second half of 2021," according to a Friday announcement.

  • Microsoft Offers Endpoint Configuration Manager Advice for Keeping Remote Clients Patched

    Microsoft this week offered advice for organizations using Microsoft Endpoint Configuration Manager with remote Windows systems that need to get patched, and it also announced Update 2002.

comments powered by Disqus

Office 365 Watch

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.