What is Microsoft Security Copilot? - Microsoft Security Copilot Tutorial

- [Narrator] What is Microsoft Security Copilot? It's a virtual assistant powered by AI and it's designed for security analysis. Why do you need a Security Copilot? Because it addresses some common challenges in cyber security. For example, we have too many security threats with all kinds of hacking tactics and techniques. Too many alerts that overwhelm our security team and too many manual tasks to analyze, mitigate, and report security incidents. On the other side, we have too few skills covering multiple knowledge domains to field analysts who are experienced in security operations and too few hours for incident response. But is it possible for us to manage security at machine speed and the scale? A potential answer is using artificial intelligence or AI. Specifically, the rise of generative AI is transforming how we work and learn today. Generative AI become popular after OpenAI launched its ChatGPT application in late 2022. Powered by its large language model, ChatGPT can answer questions covering many domains, summarize text, write articles and reports, provide advice and recommendations, and analyze and generate codes. Partnering with OpenAI, Microsoft introduced Copilot, an AI powered virtual companion to improve work productivity. Built on the Copilot architecture, Microsoft offers a series of products such as Microsoft 365 Copilot, Copilot in Dynamics 365, Copilot in Power Apps, Copilot in Azure, GitHub Copilot, and Security Copilot, which you will learn in this course. There are two ways to use Microsoft Security Copilot. You can directly access the Security Copilot portal and enter your prompts just like how you use ChatGPT. This is called a standalone experience, or you can use Copilot in Microsoft Security Solutions like a Microsoft Defender, Entra, Intune, and a Purview. This is called an embedded experience. What can you do with Microsoft Security Copilot? Here are some common use cases. Summarize security incidents, investigate and respond to incidents, write security reports, analyze vulnerability impact, analyze the suspicious code, and generate scripts for threat hunting. To do that, Security Copilot integrates with variance of security solutions such as XDR, Extended Detection and Response. SIEM, security information and event management. IAM, identity and access management. Cloud posture management, Data protection, Endpoint management and Threat Intelligence.