Azure network security will benefit from generative AI thanks to new Microsoft Copilot integrations.
Microsoft Copilot for Security
Azure is thrilled to present the Microsoft Copilot for Security standalone experience’s integrations with Azure Web Application Firewall (WAF) and Azure Firewall. So are starting here with the goal of integrating interactive, generative AI-powered features into Azure network security.
By transforming industry best practices, security data from organizations, and global threat intelligence (78 trillion or more security signals) into customized insights, Copilot enables teams to secure at the speed and scale of artificial intelligence. Organizations need to take every precaution to guard against knowledgeable and well-planned cyberattacks due to the rising expense of security breaches. They require generative AI technology, which enhances human creativity and refocuses teams on what matters, in order to see more and move more quickly.
According to a recent study
- With Copilot, seasoned security analysts worked 22% faster.
- They found that utilising Copilot increased their accuracy by 7% for all jobs.
- Notably, 97% of respondents indicated they would like to use Copilot the next time they completed the same task.
Using Generative AI to Secure Azure Networks
Many Microsoft Azure customers utilize Azure WAF and Azure Firewall, two essential security services, to guard their network and apps from intrusions and attacks. These services include automatic patching against zero-day vulnerabilities, comprehensive Microsoft threat information for detection and defence against complex assaults, and enhanced threat prevention using default rule sets. These systems generate enormous amounts of logs, handle enormous volumes of packets, and analyse signals from several network resources.
Analysts labour for hours or even days on manual operations in order to process terabytes of data, sort through the noise, and find dangers. Apart from the volume of data, there is a severe lack of security knowledge. The lack of qualified cybersecurity personnel slows down reaction times to security events and restricts proactive posture management. It is also challenging to identify and develop cybersecurity expertise.
Copilot for Security
Organisations can now enable their analysts to triage and investigate hyperscale data sets seamlessly, finding detailed, actionable insights and solutions at machine speeds using a natural language interface that requires no additional training. This is made possible by the announcement of the Azure WAF and Azure Firewall integrations in Copilot for Security. By automating manual activities and enabling Tier 1 and Tier 2 analysts to take on work that would often be performed by more seasoned Tier 3 or Tier 4 professionals, Copilot improves team proficiency by guiding expert staff towards the most difficult problems.
In order to promptly notify leadership or other team members, Copilot may also effortlessly transform threat observations and investigations into summaries in plain English. By utilizing Copilot to summaries extensive data signals and produce valuable insights about the threat landscape, analysts may outmaneuver adversaries in minutes rather than hours or days, thanks to the increased organizational efficiency.
Copilot’s integration of Azure Web Application Firewall
These days, Azure WAF and Azure Firewall produces detections for a range of security threats against APIs and web applications. Terabytes of logs are produced by these detections, and Log Analytics absorbs them. Although the logs provide information on the Azure WAF actions, interpreting the logs and drawing conclusions from them requires a significant amount of effort and time on the part of the analyst.
Contextual examination of the data may be completed quickly by analysts thanks to Copilot for Security’s interface with Azure WAF. In particular, it creates an environment-specific summary of Azure WAF detections by combining information from Azure Diagnostics logs.
Investigating security concerns, such as examining WAF rules that have been triggered, looking into malicious IP addresses, examining SQL Injection (SQLi) and Cross-Site Scripting (XSS) assaults that WAF has thwarted, and providing explanations in plain English for each detection are among the main capabilities.
An analyst can obtain sufficient information to further analyse the issue by posing a natural language query about these attacks and receiving a summarised response that provides specifics on the attack’s cause. Furthermore, analysts may discover the managed and custom Azure WAF and Azure firewall rules that have been triggered most frequently inside their environment, as well as obtain information on the most frequently offending IP addresses and top malicious bot attacks, all with the aid of Copilot.
Forward-looking
Technology is moving into the future, and consumers will want more and more from their network security products to be AI enabled. Copilot puts businesses in a position to take full advantage of the opportunities that the generative AI era is presenting. With security, privacy, and compliance at its core, the integrations announced today bring together Microsoft’s security know-how with cutting-edge generative AI to create a solution that helps organizations better defend themselves against attackers while maintaining total privacy for their data.
Obtaining entry
Essentially excited to keep integrating Azure network security with Copilot to help customers be more productive and to be able to swiftly identify threats and patch vulnerabilities before their enemies do. Microsoft and a select few clients are already using these new features in Copilot for Security on an internal basis. currently thrilled to share the news of the impending public peek today.
Azure Firewall and Azure WAF Pricing
- The Azure Firewall Manager itself is free of charge.
- The WAF policies you design and the areas in which they are implemented are charged to you.
- One base policy, costing $100 per region, is the minimum fee per area.
- The standard insurance fee is still applicable, but child policies inside a single hub are free.
Azure WAF and Azure Firewall Release Date
On May 21, 2024, at Microsoft Build, they plan to release the Azure WAF and Azure Firewall preview to all customers. Everyone will continue to introduce new features and make enhancements in the upcoming weeks in response to your input.
To witness a demonstration of these features now, register your interest in early access, and learn about other Microsoft announcements at RSA, please visit the Copilot for Security booth at RSA 2024.
