Introduction
Microsoft Security Copilot is an AI-powered security analysis tool that helps analysts process security signals, investigate threats, and respond to incidents at machine speed. It integrates with Microsoft Security solutions you already use, including Microsoft Purview and Microsoft Defender XDR.
Imagine you're a security operations analyst at an organization that uses several Microsoft Security solutions. Your team handles everything from reviewing data protection alerts in Microsoft Purview to investigating complex security incidents in Microsoft Defender XDR. With Security Copilot, you can accelerate these workflows using natural language prompts to summarize incidents, analyze activity patterns, and guide your investigations.
In this module, you explore Security Copilot capabilities through a series of interactive guides. You start by configuring owner settings and working with prompts and promptbooks in the standalone experience. You then move into embedded experiences in Microsoft Purview and Microsoft Defender XDR. In these experiences, Security Copilot assists with data protection investigations, insider risk analysis, compliance review, and security incident response.
By the end of this module, you're able to use Security Copilot to support security operations workflows across the standalone and embedded experiences.