Aviatrix Blog 
Protecting the valuable data in your cloud network involves a constant repetition of three tasks: careful monitoring, analysis of each potential issue, and rapid response to definite threats. Each task requires intelligence as much as speed: how can you maintain consistent visibility across your network? How will you know if something is an anomaly or an actual threat? And how can you eliminate threat actors or malicious traffic before they cause any damage?
Aviatrix is proud to unveil a new way for organizations to identify and eliminate network threats: an integration between our solution and Microsoft Security Copilot. With this solution, you can use OpenAI to accelerate and streamline your security incident response using Aviatrix Distributed Cloud Firewall.
Aviatrix Plugin for Microsoft Security Copilot: Rapid Identification, Analysis, and Policy Recommendations for Threats
In March 2024, Microsoft selected Aviatrix to participate in the Microsoft Security Copilot Partner Private Preview because of Aviatrix’s expertise with Microsoft security technologies and leadership position in cloud networking. Aviatrix product heads worked closely with the Microsoft team to develop the new integration.
Here’s how it works. The Aviatrix plugin:
- Leverages dynamic threat intelligence from Microsoft using the Copilot for Security console.
- Uses OpenAI to summarize known threats and vulnerabilities and their threat characteristics.
- Queries the Aviatrix Distributed Cloud Firewall API to receive policy recommendations to mitigate these threats using a comprehensive defense-in-depth approach.
To make the Aviatrix plugin for Microsoft Security Copilot even more user-friendly, you can access it directly from the Microsoft Security Copilot developer console as well as other forms of automation, such as Azure Logic Apps or Azure Functions, to increase the total scope and awareness of the threat response framework. To demonstrate this capability, Aviatrix has also posted an Azure Logic App on Github. The Azure Logic App showcases how Aviatrix can receive industry-level threat analysis from Security Copilot and combine this with per-customer threat detection from Microsoft Sentinel to craft policy recommendations that are both comprehensive and also deeply customized for specific applications and environments.
This integration offers several advantages for Aviatrix and Azure customers:
- Identifying threats — Real-time access to the Microsoft Threat Intelligence Library increases awareness of emerging threats and vulnerabilities.
- Effective analysis — Natural language front-end provides interactive, rapid threat analysis coupled with immediate policy recommendations tailored to your cloud applications and workloads.
- Intelligent response — Aviatrix Distributed Cloud Firewall (DCF) uses a centralized policy engine to dynamically manage enforcement based on application or workload context and characteristics. This setup simplifies incident response, improves security posture, and reduces risk.
Fair Pricing Based on Consumption
The Aviatrix plugin for Microsoft Security Copilot plugin simplifies your billing and helps you save costs because Microsoft Security Copilot billing is based on consumption. You can control when and how you use it based on demand or necessity. Using this integration is far less expensive than paying by the hour for a “just in time” security consultant to help you respond to threats and risks after they have occurred.
Learn more about this integration watching Aviatrix SVP of Product Management Chris McHenry’s online session at the Microsoft Ignite conference, “Turn the tables with GenAI on your advanced threat response model.”