Friday, November 22, 2024

New capabilities that will help you safe your AI transformation

AI is remodeling our world, unlocking new potentialities to reinforce human talents and to increase alternatives globally. On the identical time, we’re additionally going through an unprecedented risk panorama with the pace, scale, and class of assaults rising quickly. To satisfy these challenges, we should be sure that AI is constructed, deployed, and used responsibly with security and safety at its core. And it’s extra necessary than ever to leverage AI to empower all defenders and tilt the steadiness of their favor.

Safety is our high precedence at Microsoft—above all else—and our expanded Safe Future Initiative underscores our company-wide dedication to creating the world a safer place for everybody. I’m proud that Microsoft is prioritizing safety within the age of AI as we proceed to innovate with a security-first mindset. 

Immediately, new capabilities are actually accessible in Microsoft Defender and Microsoft Purview to assist organizations safe and govern generative AI purposes at work. These releases ship purpose-built coverage instruments and higher visibility that will help you safe and govern generative AI apps and their information. We’re additionally delivering a brand new unified expertise for the safety analyst and integrating Microsoft Copilot for Safety throughout our safety product portfolio.  

You’ll be capable to see firsthand these improvements and extra throughout the Microsoft Safety portfolio at RSA Convention (RSAC). I additionally hope additionally, you will be a part of me on Tuesday, Might 7, 2024, for “Securing AI: What We’ve Discovered and What Comes Subsequent,” to discover the methods that each group can implement to securely design, deploy, and govern AI.

Safe your AI transformation with Microsoft Safety

Wherever your group is in your AI transformation, you have to complete safety controls to safe govern your AI purposes and information all through their lifecycle—growth, deployment, and runtime.  

With the brand new capabilities introduced at the moment, Microsoft turns into the primary safety supplier to ship end-to-end AI safety posture administration, risk safety, information safety, and governance for AI.

A diagram showing the cycle connecting deployment, development, and runtime with AI usage.

Uncover new AI assault surfaces, strengthen your AI safety posture, and shield AI apps towards threats with Microsoft Defender for Cloud. Now safety groups can determine their total AI infrastructure—akin to plugins, SDKs, and different AI applied sciences—with AI safety posture administration capabilities throughout platforms like Microsoft Azure OpenAI Service, Azure Machine Studying, and Amazon Bedrock. You possibly can constantly determine dangers, map assault paths, and use built-in safety finest practices to stop direct and oblique assaults on AI purposes, from growth to runtime.

Built-in with Microsoft Azure AI companies, together with Microsoft Azure AI Content material Security and Azure OpenAI, Defender for Cloud will constantly monitor AI purposes for anomalous exercise, correlate findings, and enrich safety alerts with supporting proof. Defender for Cloud is the primary cloud-native software safety platform (CNAPP) to ship risk safety for AI workloads at runtime, offering safety operations middle (SOC) analysts with new detections that alert to malicious exercise and energetic threats, akin to jailbreak assaults, credential theft, and delicate information leakage. Moreover, SOC analysts will likely be in a position facilitate incident response with native integration of those alerts into Microsoft Defender XDR.

Establish and mitigate information safety and information compliance dangers with Microsoft Purview. Give your safety groups larger visibility into and understanding of which AI purposes are getting used and the way that will help you safeguard your information successfully within the age of AI. The Microsoft Purview AI Hub, now in preview, delivers insights akin to delicate information shared with AI purposes, whole variety of customers interacting with AI apps and their related danger degree, and extra. To forestall potential oversharing of delicate information, new insights assist organizations determine unlabeled recordsdata that Copilot references and prioritize mitigation of oversharing dangers. Moreover, we’re excited to announce the preview of non-compliant utilization insights within the AI Hub to assist prospects uncover potential AI interactions that violate enterprise and regulatory insurance policies in areas like hate and discrimination, company sabotage, cash laundering, and extra.

Govern AI utilization to adjust to regulatory insurance policies with new AI compliance assessments in Microsoft Purview. We perceive how necessary it’s to adjust to laws, and the way sophisticated it may be when deploying new know-how. 4 new Compliance Supervisor evaluation templates, now in preview, can be found that will help you assess, implement, and strengthen compliance with AI laws and requirements, together with EU AI Act, NIST AI RMF, ISO/IEC 23894:2023, and ISO/IEC 42001. The brand new evaluation insights may also be surfaced inside the Purview AI Hub, offering really useful actions to help compliance as you onboard and deploy AI options.

Collectively we might help everybody pursue the advantages of AI, by thoughtfully addressing the brand new dangers. The brand new capabilities in Microsoft Defender for Cloud and Microsoft Purview, which construct on high of the improvements we shared at Microsoft Ignite 2023 and Microsoft Safe 2024, are necessary developments in empowering safety groups to find, shield, and govern AI—whether or not you’re adopting software program as a service (SaaS) AI options or constructing your individual.

Learn extra about the entire new capabilities and options that assist you safe and govern AI.

Strengthening end-to-end safety with a unified safety operations platform

We proceed investing in our long-standing dedication to offering you with essentially the most full end-to-end safety on your total digital property. There’s a right away want for instrument consolidation and AI to achieve the pace and scale required to defend towards these new digital threats. Microsoft integrates the entire foundational SOC instruments—cloud-native safety info and occasion administration (SIEM), complete native prolonged detection and response (XDR), unified safety posture administration, and generative AI—to ship true end-to-end risk safety in a single platform, with a typical information mannequin, and a unified analyst expertise.  

The brand new unified safety operations platform expertise, in preview, transforms the real-world analyst expertise with a easy, approachable consumer expertise that brings collectively all the safety alerts and risk intelligence presently caught in different instruments. Analysts can have extra context at each stage, with useful suggestions and ideas for automation that make investigation and response simpler than ever earlier than. We’re additionally introducing new options throughout Microsoft Sentinel and Defender XDR, together with world search, customized detections, and automation guidelines.

We’re additionally happy to announce numerous extra new options and capabilities that may empower your safety operations middle (SOC) to work throughout Microsoft safety merchandise for stronger end-to-end safety.

  • Microsoft Safety Publicity Administration initiatives assist your safety staff determine dangerous exposures and cases of inadequate implementation of important safety controls, to search out alternatives for enchancment.
  • SOC analysts can now use insider danger info as a part of their investigation in Microsoft Defender XDR.
  • Microsoft Defender XDR expands to incorporate native operational know-how (OT) safety, enabling automated correlation of OT risk sign into cross-workload incidents and the flexibility to handle OT and industrial management system vulnerabilities immediately inside Defender XDR.
  • Expanded assault disruption in Microsoft Defender XDR, powered by AI, machine studying, and risk intelligence, will cowl new assault situations like disabling malicious OAuth apps and can considerably broaden compromised consumer disruption, akin to leaked credentials, stuffing, and guessing.
  • Microsoft Sentinel launches SOC Optimizations to supply tailor-made steerage to assist handle prices, enhance the worth of information ingested, and enhance protection towards widespread assault methods.

Expanded Microsoft Copilot for Safety integrations

With regards to supporting safety groups and relieving complexity, Microsoft Copilot for Safety provides an amazing benefit. Larger integration of Copilot throughout the Microsoft safety portfolio and past supplies richer embedded experiences and Copilot capabilities from acquainted and trusted merchandise. We’re proud to announce new Microsoft Copilot for Safety integrations, together with Purview, new accomplice plugins, Azure Firewall, and Azure Net Software Firewall. These integrations present your safety groups with real-time steerage, deeper investigative insights, and expanded entry to information from throughout your atmosphere.  

Safety for the period of AI

An end-to-end safety platform will likely be a figuring out consider each group’s transformation and can play a important position within the sturdiness of AI-powered innovation. Organizations that concentrate on securing AI and put money into utilizing AI to strengthen safety would be the lasting leaders of their industries and markets. Microsoft is dedicated to empowering these {industry} and market leaders with safety options that may assist them obtain extra. We carry collectively 4 important benefits: large-scale information and risk intelligence; essentially the most full end-to-end platform; {industry} main, accountable AI; and instruments that will help you safe and govern AI.

Microsoft Copilot for Safety is mostly accessible


Learn extra

With the final availability of Copilot for Safety, Microsoft has delivered on our promise to place industry-leading generative AI into the fingers of IT and safety professionals of all ranges of expertise. Now, with at the moment’s launch of recent capabilities in Defender for Cloud and Microsoft Purview, we’re additionally delivering on our dedication to empower IT and safety groups with the instruments they should make the most of AI safely, responsibly, and securely.

Lastly and importantly, safety is a staff sport. We stay up for working along with the {industry} and our companions on advancing cyber safety for all. 

I do hope you’ll join with us at RSAC this week, the place we will likely be demonstrating our complete safety portfolio and the way it helps you shield your atmosphere from each angle to organize for and confidently undertake and deploy AI. 

Study extra

To study extra about Microsoft Safety options, go to our web site. Bookmark the Safety weblog to maintain up with our skilled protection on safety issues. Additionally, observe us on LinkedIn (Microsoft Safety) and X (@MSFTSecurity) for the most recent information and updates on cybersecurity.



Related Articles

LEAVE A REPLY

Please enter your comment!
Please enter your name here

Latest Articles