Thanks to new Microsoft Copilot integrations, generative AI will improve Azure network security.
Microsoft Security Copilot
Azure is excited to provide the Azure Web Application Firewall (WAF) and Azure Firewall integrations for the Microsoft Copilot for Security standalone experience. We therefore aim to begin incorporating generative, interactive AI-powered capabilities into Azure network security at this point.
Copilot helps teams to protect at the speed and scale of artificial intelligence by converting industry best practices, security data from organisations, and global threat intelligence (78 trillion or more security signals) into personalised insights. The growing cost of security breaches forces organisations to adopt every safety measure to protect against skilled and well-planned cyberattacks. To see more and act faster, they need generative AI technology, which boosts human creativity and refocuses teams on what counts.
In line with a recent study
Experienced security analysts worked 22% faster with Copilot.
They discovered that using Copilot improved their accuracy across the board by 7%.
Remarkably, 97% of participants said they would prefer to utilise Copilot the next time they finished the identical assignment.
Using Azure Network Security Through Generative AI
Azure WAF and Azure Firewall are two of the most important security services that many Microsoft Azure users use to protect their network and apps from attacks and intrusions. These services provide increased threat prevention with default rule sets, automatic patching against zero-day vulnerabilities, and comprehensive Microsoft threat information for defence and detection against sophisticated attacks. These systems assess signals from several network resources, process massive volumes of packets, and produce vast amounts of logs.
Analysts scan gigabytes of data, sift through the noise, and identify threats by working for hours or even days on manual tasks. In addition to the amount of data, there is a serious knowledge gap in security. Response times to security events are slowed down and proactive posture monitoring is hindered by a shortage of skilled cybersecurity workers. Finding and developing cybersecurity knowledge is similarly difficult.
Copilot for Safety
With a natural language interface that doesn't require additional training, organisations can now empower their analysts to efficiently identify rich, actionable insights and solutions at machine speeds while triaging and investigating hyperscale data sets. The announcement of Copilot for Security's connectors with Azure WAF and Azure Firewall makes this possible. Copilot enhances team proficiency by directing expert workers towards the most challenging problems by automating manual tasks and freeing up Tier 1 and Tier 2 analysts to take on work that would often be completed by more seasoned Tier 3 or Tier 4 specialists.
Copilot may also easily turn threat sightings and investigations into plain-language reports to alert leadership or other team members in a timely manner. The enhanced organisational efficiency of Copilot allows analysts to outmanoeuvre opponents in minutes as opposed to hours or days by summarising large data streams and producing insightful analyses about the threat picture.
Azure Web Application Firewall integration with Copilot
These days, a variety of security threats against APIs and online applications are detected by Azure WAF and Azure Firewall. These detections generate terabytes of logs, which Log Analytics processes. Even if the logs contain information on the Azure WAF operations, it takes a lot of time and effort for the analyst to understand the logs and make inferences from them.
Thanks to Copilot for Security's interaction with Azure WAF, analysts can swiftly finish contextual analysis of the data. Specifically, it combines data from Azure Diagnostics logs to generate an environment-specific overview of Azure WAF detections.
Among the primary capabilities are the following: investigating security issues, including analysing WAF rules that have been activated, investigating malicious IP addresses, analysing SQL Injection (SQLi) and Cross-Site Scripting (XSS) attacks that WAF has stopped, and offering explanations in simple English for each detection.
By asking a natural language question regarding these attacks and getting a summary answer that gives details on the attack's origin, an analyst can have enough information to investigate the matter further. With the help of Copilot, analysts may also find out which managed and custom Azure WAF and Azure firewall rules have been activated the most within their environment. They can also learn about the most often offending IP addresses and top harmful bot attacks.
Prospective
As technology advances, users will demand more and more AI-enabled network security solutions from their providers. Businesses are better equipped to seize the opportunities presented by the generative AI era thanks to Copilot. The integrations introduced today are centred around security, privacy, and compliance. They combine Microsoft's expertise in security with state-of-the-art generative AI to produce a solution that helps organisations better defend themselves against attackers while ensuring complete privacy for their data.
Acquiring admission
Basically, we're pleased to continue fusing Copilot with Azure network security to enable clients increase productivity and be able to quickly detect threats and fix vulnerabilities before their adversaries do. These new Copilot for Security functionalities are already being used internally by Microsoft and a small number of clients. I'm excited to announce that the public preview is coming up today.
Pricing for Azure WAF and Azure Firewall
The Azure Firewall Manager is provided without cost.
You are responsible for the WAF policies you create and the regions in which they are applied.
The minimum fee per area is $100 for each region, which is the cost of one base policy.
Child policies inside a single hub are free, however the usual insurance charge still applies.
Date of Release for Azure Firewall and WAF
All clients will be able to access the Azure WAF and Azure Firewall preview on May 21, 2024, at Microsoft Build. In the following weeks, everyone will keep adding new features and improving existing ones in response to your feedback.
Please stop by the Copilot for Security booth at RSA 2024 to see a demonstration of these capabilities in action, express your interest in early access, and find out about additional Microsoft developments.
News Source: Azure Firewall
0 Comments