This article is contributed. See the original author and article here.
We all understand that attackers know no boundaries—they will cross multiple domains like email, identity, endpoints, and applications to go after your most valuable assets. Current solutions that have been designed as point solutions don’t talk to each other and don’t connect the dots. While you might block an attacker from stealing your password, they might have found another way in via email or a vulnerable SaaS application.
With Microsoft Threat protection (MTP) we are fundamentally changing the approach to detection, investigation and response across domains to better help security teams gain end-to-end visibility into attacker activities and automatically correlate signals across domains, so we can fully understand the breadth of an attack and stop it.
MTP is an integrated, cross-domain threat detection and response solution. It provides organizations with the ability to prevent, detect, investigate, and remediate sophisticated cross-domain attacks within their Microsoft 365 environments. MTP leverages raw signal data from individual domains — user identity, endpoints, applications, email, and collaboration tools — normalizing the data at the point of creation. The data is analyzed and low-level signals that may otherwise be missed as well as individual alerts are fused into incidents, giving a complete view of an attack that can be responded to in its entirety. Powerful workflows and AI auto-heal affected assets, and advanced hunting capabilities mean organizations can use their proprietary knowledge to uncover sophisticated breaches and customize their responses.
This community will be a forum for open discussions, questions, and interaction with the Microsoft product teams working on MTP. Check back for exciting product announcements and feature updates, as well as security best practices and instructional webcasts. Be part of MTP’s innovation journey: provide feedback and inputs that will help inform our decisions and investments in building products and features that work for you.
To learn more about Microsoft Threat Protection, visit our webpage and our corporate security blog. Visit our Documentation page for deep how-to information and technical guidance. We look forward to talking with you soon.
@Raviv Tamir – Partner Group Program Manager (Microsoft Threat Protection).
Brought to you by Dr. Ware, Microsoft Office 365 Silver Partner, Charleston SC.