TrustRadius: an HG Insights company

Microsoft Security Copilot

Score7.7 out of 10

2 Reviews and Ratings

Get a Demo

What is Microsoft Security Copilot?

Microsoft Security Copilot helps security and IT teams to protect organizations at the speed and scale of AI. It is available in a standalone experience or embedded into other Microsoft Security products.

Categories & Use Cases

Media

Defender USX guided response
Defender USX incident summary
the homepage - capabilities menu
the homepage
MDTI threat intel
session - incident summary

1 / 6

Reviews

What users are saying about Microsoft Security Copilot.
View all reviews

Microsoft Security Copilot Review

Incentivized
Aana JohnsonView profile
Project Manager in Information Technology at Accenture (1001-5000 employees employees)

Use Cases and Deployment Scope

This is an AI powered solution for providing security, detect threats and investigate very effectively. Seamless integrate with Microsoft products. We can automate routine investigation that improves efficiency. It reduce manual workload and gives proactive insights that helps in reduce the risks of threats. It provide the unified view of alerts and incidents.

Pros

  • AI Powered tool for quick threat detection.
  • Seamless integration for better usability.
  • Improves efficiency by automating of routine investigations.

Cons

  • Tool has a steep learning curve.
  • Sometimes it generate false miss threats, where human oversight needed.
  • Initial setup takes time as well.

Return on Investment

  • Quick threat detection.
  • Better security or data privacy.
  • Saves time and gives better performance.

Usability

MS Security Copilot Review.

Incentivized
Verified User
Engineer in Information Technology (1001-5000 employees employees)

Use Cases and Deployment Scope

Security Copilot helps our security teams manage overwhelming volumes of alerts by summarizing and correlating data across Microsoft Defender, Sentinel, and other platforms. We use it for incident investigation, threat hunting, posture assessments, and executive reporting. It also allows us to offload some tasks to more junior members of our team.

Pros

  • Incident investigation.
  • Threat hunting.
  • Reporting

Cons

  • We would like more integrations with third-party tools.
  • There are situations where Copilot does not execute the remediation steps in an automation correctly.

Return on Investment

  • Shift workload to more junior analysts on our team.
  • Faster response times to incidents and alerts.

Usability

Microsoft Security Copilot your assistant to navigate the future.

Incentivized
Verified User
Analyst in Information Technology (10,001+ employees employees)

Use Cases and Deployment Scope

Drafting Documents, Slide Decks or sourcing information from meetings is important.

I use Microsoft Security Copilot truly as a tool assisted gatherer. It’s easy to lose track on coordination and team efforts.

By incorporating tools like Microsoft Security Copilot you can reduce time to obtain info and help others get unblocked by sharing resources.

Pros

  • Analysis of Code
  • Summarizing key points
  • Transcribing videos

Cons

  • Quality of contextual information
  • Depth of conversation
  • Bias of information

Return on Investment

  • Time spent on projects
  • Reaction in engineering hours
  • Improvement in creativity

Usability

Alternatives Considered

ChatGPT and Google Gemini

Increase Security effectiveness with Security Copilot.

Incentivized
Verified User
Director in Information Technology (201-500 employees employees)

Use Cases and Deployment Scope

We are an E5 customer and utilize multiple products within the Microsoft security suite (Sentinel for SIEM, Defender for Endpoint, Purview, Entra Identity Governance, Defender for Identity, etc...). Microsoft Security Copilot is extremely useful by allowing our Security Operations team to use natural language prompts to get data on activity within our environments. This is performed both proactively and during incident response. The ability to return results from various sources saves analysts time and generates efficiencies for our Security team.

Pros

  • Strong integrations with Microsoft technologies.
  • Provides accurate and detailed responses.
  • Greatly enhances capabilities of Security team.

Cons

  • Currently requires prompting to be performed within the Security application consoles. It would be beneficial to have an MCP server, allowing custom agents to interact with Security Copilot.

Return on Investment

  • Enhanced capabilities for incident response.
  • Aides analysts in building custom KQL queries.
  • Increased speed when actioning threat intelligence for threat hunting.

Usability

Alternatives Considered

Exabeam Fusion and Google Security Operations

Other Software Used

Google Security Operations

Review Copilot

Incentivized
Verified User
Technician in Information Technology (1-10 employees employees)

Use Cases and Deployment Scope

We use it mostly to summarize incidents and to review logs in a way that we can get quick answers from. This allows us to easily condense time spend looking into issues and have immediate actionable steps.

Pros

  • Summarize logs
  • Provide feedback
  • Provide steps and reccommendations

Cons

  • Permissions could be more granular
  • Could use more tutorials for use cases
  • Sometimes it looks into confidential information

Return on Investment

  • Very expensive to get into
  • Allowed us to save technician time by having the copilot to do the tedious work
  • A lot of upfront cost for it and for training on how to use it

Usability

Alternatives Considered

Google Gemini and ChatGPT

Other Software Used

Google Gemini, ChatGPT

Related Products

Products similar to Microsoft Security Copilot that may also meet your needs.
All comparisons
CrowdStrike Falcon
CompareLearn more
Google Security Operations
CompareLearn more
Palo Alto Networks Cortex XSIAM
CompareLearn more
SentinelOne Purple AI
CompareLearn more