Microsoft will launch a new managed security service that will run alongside the company's partners with collaboration and integration points.
Called Security Experts, the service will come with new application programming interfaces (APIs) that allows access to Microsoft threat intelligence.
Featuring managed extended detection and response (MXDR) service, Microsoft said the the new offering goes beyond what's currently available, and covers endpoint email, cloud applications and identity.
The company cited growing security staff shortages in the Uniited States where only one in three jobs in the industry are filled as a driver for the service offering.
Lack of security staff is leading to substantial blow-outs in detection times, up to an alarming 287 days
The managed service offering will be come in three flavours: Microsoft Security Experts for Hunting, Microsoft Defender Experts for XDR, and Microsoft Security Services for Enterprise.
Microsoft Defender Experts for Hunting is designed for customers who want Microsoft to help them hunt for threats in Defender data, endpoints, Office 365, cloud applications and identity management.
Customers for the first option are expected to have their own robust security operations centre, whereas Microsoft Defender Experts for XDR is for organisations that need to extend that capability with a managed service.
As the name implies, Microsoft Security Services for Enterprise is aimed at larger organisations, looking for comprehensive managed services from Microsoft experts.
As part of its intelligence gathering, Microsoft said it is tracking over 35 ransomware groups currently, along with 250 unique threat actors.
Microsoft boasts that its technology has blocked some 9.6 million malware threats and almost 36 billion malicious emails.
Over 900 password attacks are blocked every second by Microsoft, which says it has more than 8500 security professionals employed currently.
Whether or the security program covers Microsoft products as well as third party ones is not clear, with independent security expert Kevin Beaumont expressing his doubts that it will.
There is no way I would subscribe to Microsoft Defender Experts for Hunting or Microsoft Defender Experts for XDR unless they covered vulnerabilities and exploitation of Microsoft products equally.— Kevin Beaumont (@GossiTheDog) May 10, 2022
Eg lack of talking about ProxyShell or marking MS zero days in TVM = no go.