sb-eu logo
Story image

Why Microsoft is in the security business for all the right reasons

26 Sep 2018

Only a few years ago enterprise clients all over the world, were deciding not to move their workloads to the cloud because of security.

Fast forward to today, the opposite is true. Large organisations the world over are moving their workloads to the cloud because of security.

Even organisations that are large enough to have their own CISO, cybersecurity team or even a security operations centre will never match the time and resources Microsoft is putting into security.

Microsoft has long been in the security business, although few have noticed how much the giant vendor has to offer in this space these days.

As Microsoft has reinvented itself as a cloud company under current CEO Satya Nadella, it has built over 100 datacenter's worldwide. It now processes 400 billion emails per month and has millions of enterprises rely upon its Azure cloud infrastructure.

This significant move into infrastructure has necessitated the vendor becoming super serious about its internal security. It's not just worrying about its organisational data, but a growing percentage of its client's data too.

It is also in prime position with its understanding of the Windows operating system, and now it's massive datacenter scale. This helicopter view is unique and in theory, enables it to identify threats better than any other vendor.

In recent years it has become more and more common for enterprise clients to license Microsoft's Windows defender on their endpoints supplanting traditional anti-virus endpoint protection vendors.

For the vendors being supplanted it's a tough sell. Microsoft is already licensing Windows, and it's server products to the client, why not tack on it's Windows Defender licenses too.

Although having said that, Microsoft doesn't operate in many parts of security and partners widely to fill the gaps. So opportunities do exist for focused best of breed security vendors. An example of this is Ziften, with which Microsoft partners to provide endpoint security on Linux and Mac operating systems.

The Windows Defender product itself has also come ahead leaps and bounds. It's also supported by massive resources the vendor has piled into setting up both its CDOC (Cyber defence operations centre), and it's MISTIC (Microsoft threat intelligence centre).

Microsoft is a hot cloud brand these days and is hiring some of the worlds best information security talent. This is in the context of a global skills shortage, especially in the areas of threat analysis and research being in hot demand. 

Part of the issue is the growing number of attacks and the ever-increasing mountain of data being collected inside organisations. The organisations also have limited budget to keep up with the warnings and red flags being generated.

Once again, Microsoft is uniquely positioned with it's leading edge artificial intelligence experience to apply to the skills shortage and information overload issues.

Lastly and possibly most powerfully, Microsoft has a secret weapon.

While many solutions in the cybersecurity sector are about information gathering and alerts, in the end, they come down to a security professional taking action.

Microsoft can offer customers a bunch of automation on this front. For example, when an exploit is identified, Microsoft's solutions can identify the devices on the network that need patching and do it. This process can be interrupted by security operators or the solutions left to their own devices. This could save some serious time.

While many might not think of Microsoft as a security company. It has become so. Its growth into a cloud company has necessitated this, yet the company has taken this to the next level.

The company is all in with its cloud strategy, which means they're all in with trust and security too.

Story image
Research: 61% of companies have suffered an insider attack in last 12 months
It comes as rapid migration to cloud and remote working and BYOD scenarios leave organisations increasingly vulnerable to insider attacks as a result of the upheaval caused by the COVID-19 pandemic.More
Story image
Phishing scam imitates SharePoint & OneNote for nefarious clicks
Sophos researchers say that the attackers take a slightly different approach to the standard ‘fake login’ phishing email.More
Story image
Exabeam and Code42 partner up to launch insider threat solution
The solution will give customers a fuller picture of their environment, and will leverage automated incident response to obstruct insider threat before data loss occurs.More
Story image
High-tech heist: why fending off ransomware attacks is more challenging than ever in 2020
The COVID-19 crisis has unleashed a wave of sophisticated and disruptive ransomware attacks, and the onus is on businesses to ramp up their security measures if they’re to avoid falling victim, writes Attivo Networks regional director for A/NZ Jim Cook.More
Story image
Yubico launches latest YubiKey with NFC & USB-C support
Yubico has released a new hardware authentication key, designed to provide security through both near-field communication (NFC) and USB-C connections and smart card support.More
Story image
Gartner: Security leaders must balance risk, trust and opportunity
Security and risk leaders must focus on balancing risk, trust and opportunity to help maintain the ability of their organisations to function.More