A collaboration between Microsoft and data management and security firm Rubrik will let enterprise customers use generative AI and natural language processing to speed up security response times during cyberattacks and data breaches.
The two companies will integrate Rubrik Security Cloud with Microsoft Sentinel and Azure OpenAI Service, which will help organizations prioritize alerts and conduct faster investigations, according to an announcement Wednesday.
The collaboration comes at a critical time for security operations teams. Cybersecurity departments have been dealing with a rise in zero-day vulnerabilities and ransomware threats as the industry grapples with a shortage of qualified workers.
“In a time when bad actors are becoming increasingly inventive, organizations must lean on AI to turn the tables on attackers,” Charlie Bell, EVP of security, compliance, identity and management at Microsoft, said in a statement. “Working with Rubrik establishes a counterpoint to the modern threats that our customers are facing and allows organizations to react to incidents more quickly.”
The new integration will accelerate incident response and boost cyber resilience in three ways, according to Rubrik CPO Anneka Gupta:
- Speed up incident creation, by automatically creating an incident in Sentinel, based on anomalous activity within Rubrik Security Cloud.
- Automate recommended task workstreams by suggesting incident response tasks, allowing IT and security teams to investigate incidents faster, while preserving evidence.
- Accelerate cyber recovery by generating code for investigating the incident in Microsoft Sentinel.
Microsoft has used Azure OpenAI Service in a variety of use cases to help companies automate tasks.
For example, Mercedes-Benz launched a three-month beta program earlier this month to provide U.S. drivers enhanced voice control technology in their cars through its MBUX Voice Assistant, which uses Azure OpenAI. The command "Hey Mercedes," lets drivers engage in interactive commands with their car, such as getting directions or information about their destination. The beta program is an opt in.
Mercedes plans to use the ChatGPT plugin ecosystem to integrate with third-party services, allowing drivers to make dinner reservations or book a movie ticket with their voice.
Microsoft has placed significant emphasis on the ability of generative AI to help overcome the industry’s staffing deficiencies. The company in March unveiled Security Copilot, which uses generative AI to speed incident response and threat hunting.
The collaboration marks the latest effort between Rubrik and Microsoft to integrate their respective security platforms. Microsoft took an equity stake in Rubrik in August 2021.
Rubrik also announced a partnership in October 2022 to integrate its data risk insights with Microsoft Sentinel. In December, Rubrik elected John Thompson, former chairman of Microsoft and a former CEO at Symantec, as its lead independent board director.