By Amber Hickman |
Microsoft is introducing new agentic security capabilities for organisations with general availability of Microsoft Sentinel data lake, and the public preview of Sentinel graph and Sentinel Model Contect Protocol (MCP) server.
Sentinel is designed to give defenders a single platform to ingest security signals, correlate across domains and empower AI agents built in Security Control, VS Code and other developer platforms.
Users can now build their own Security Copilot agents using a no-code builder that lets them describe what they need in natural language. Users can also build agents in a Sentinel MCP server-enabled coding platform such as VS Code using GitHub Copilot.
“We are living through a turning point in how organisations work and defend themselves,” said Vasu Jakkal, corporate vice president of Microsoft Security at Microsoft in an online blog post. “Across industries, ‘frontier firms’ are emerging; these are businesses where humans and AI agents collaborate in real time to solve problems, innovate, and build resilient organisations.
“For security teams, this shift brings new opportunities and challenges. The complexity and speed of modern cyberthreats demand solutions that go beyond traditional tools. To address these needs, Microsoft is introducing new agentic security capabilities to empower defenders to innovate boldly and safely in this new AI era.”
Microsoft is also collaborating with Accenture, ServiceNow and Zscaler to strengthen the security ecosystem with tailored solutions that leverage the capabilities of the Sentinel platform.