At the Microsoft Ignite 2024 event, Microsoft announced the availability of its new Security Exposure Management tool. The tool integrates Microsoft Defender products to provide a unified view of the ‘enterprise security posture’ and helps organisations assess security threats. Microsoft has released supporting technical documentation that dives deep into the tool’s features and capabilities.
The tool also helps users mark critical assets to prioritise security and provides various controls to manage them. It also offers insights and contexts regarding data security, including events, recommendations, metrics, and initiatives. Microsoft is also said to show the user ‘attack paths’, which show how an attacker may potentially breach your data.
As mentioned, Microsoft’s Security Exposure Management tool mainly provides a unified platform, consolidating data from various sources in your organisation.
“At Microsoft, we remain steadfast in our commitment to security, which continues to be our top priority,” said Microsoft in the release document. “Through our Secure Future Initiative (SFI), we’ve dedicated the equivalent of 34,000 full-time engineers to the effort, making it the largest cybersecurity engineering project in history,” added Microsoft.
Microsoft also mentioned that one of the core motivations behind the platform is the user’s lack of understanding of the relationship between data ‘pathways’ and ‘entities’ across their systems or devices.
Microsoft’s Security Fellow and Deputy Chief Information Security Office (CISO) John Lambert said, “Defenders think in lists, cyberattackers think in graphs. As long as this is true, attackers win,” referring to how bad actors frequently exploit the relationship between data entities and devices.
Microsoft also mentioned that customers use Exposure Management in over 70,000 cloud tenants. The Security Exposure Management tool is available in the Microsoft Defender portal.
Furthermore, Microsoft also announced a $4 million AI and cloud security bug bounty called “Zero Day Quest.” The hacker bounty is aimed at researchers who want to investigate crucial security vulnerabilities, specifically in the cloud and AI. “Zero Day Quest will provide new opportunities for the security community to work hand in hand with Microsoft engineers and security researchers – bringing together the best minds in security to share, learn, and build community as we work to keep everyone safe,” said Microsoft in the announcement.
The post Microsoft Launches New Security Exposure Management Tool appeared first on Analytics India Magazine.
