Inspira Enterprise Strengthens Security Copilot Portfolio with Two New Agents Now Available on Microsoft Security Store
In a significant advancement in cybersecurity capabilities, Inspira Enterprise has announced the general availability of two new agents within the Microsoft Security Copilot framework. The MITRE ATT&CK Coverage Insight Agent and the Initial Triage Agent are now live on the Microsoft Security Store, enhancing the tools available for security operations centers (SOCs) and cybersecurity professionals.
Enhancing Cybersecurity with New Tools
Inspira Enterprise, a recognized leader in cybersecurity and AI solutions, has introduced these agents to address the growing complexities of cyber threats. The MITRE ATT&CK Coverage Insight Agent is designed to evaluate analytic rule coverage, calculate ATT&CK coverage, identify detection gaps, and generate recommendations for improving detection capabilities. This agent leverages the MITRE ATT&CK framework, which serves as a comprehensive knowledge base of adversarial tactics, techniques, and procedures.
The Initial Triage Agent, on the other hand, focuses on providing deterministic, evidence-based triage for incidents detected by Microsoft Sentinel and Microsoft Defender XDR. It delivers structured outputs that include verdicts, confidence scores, classification reasoning, attack timelines, and recommended actions, all tailored for SOC workflows.
Implications for Security Operations
The integration of these agents into the Microsoft Security Copilot ecosystem is expected to significantly enhance the efficiency and effectiveness of security operations. Vasu Jakkal, Corporate Vice President of Microsoft Security, emphasized the transformative potential of AI in cybersecurity, stating that the collaboration with partners like Inspira is creating a new era of intelligent, collaborative cyber defense.
The agents are built to autonomously manage high-volume security and IT tasks, seamlessly integrating with existing Microsoft Security solutions. This capability allows organizations to respond to threats more swiftly, process security signals at machine speed, and assess risk exposure in real-time.
Technical Specifications and Features
MITRE ATT&CK Coverage Insight Agent
The MITRE ATT&CK Coverage Insight Agent functions as a detection coverage analyzer specifically for Microsoft Sentinel. It provides an executive summary of coverage metrics, including overall coverage percentages and detailed breakdowns by tactic and technique. The agent also identifies critical uncovered techniques and offers prioritized remediation guidance, making it an essential tool for SOC teams aiming to align their security operations with real-world adversary behaviors.
Initial Triage Agent
The Initial Triage Agent is designed to streamline the triage process for incidents detected by Microsoft Sentinel and Microsoft Defender XDR. It automatically retrieves incident metadata, including alerts, entities, and historical incidents, to provide a comprehensive overview of each case. This agent is read-only, ensuring that it does not modify incidents or alerts, which helps maintain the integrity of the incident management process.
Availability and Access
Both agents are now available on the Microsoft Security Store, making it easier for organizations to discover, purchase, and deploy these advanced security solutions. To access the agents, users can navigate to the “Agents” tab and search for “Inspira” under the Browse all agents section.
Chetan Jain, Managing Director of Inspira Enterprise, highlighted the importance of these tools in today’s rapidly evolving threat landscape. He noted that Chief Information Security Officers (CISOs) face increasing pressure to accelerate threat detection and reduce analyst fatigue. The introduction of these agents aims to equip organizations with the necessary intelligence and automation to strengthen their defenses and establish cyber resilience.
Conclusion
The launch of the MITRE ATT&CK Coverage Insight Agent and the Initial Triage Agent represents a significant step forward in enhancing cybersecurity capabilities within the Microsoft ecosystem. By integrating these tools, organizations can improve their detection coverage and streamline their incident response processes, ultimately fostering a more proactive and intelligence-driven approach to cybersecurity.
For further details on these developments, visit the original source: themainstream.co.in.
Keep reading for the latest cybersecurity developments, threat intelligence and breaking updates from across the Middle East.
